netbirdio/netbird: Open-source WireGuard-based private overlay with SSO/MFA and self-hosted options
Summary
NetBird provides a WireGuard-based private overlay network with centralized access controls, supporting both cloud and self-hosted deployments. It emphasizes ease of setup with an admin UI, SSO/MFA, and granular policies, and it details NAT traversal using WebRTC (pion/ice) with STUN and TURN fallback. The project is BSD-3-Clause licensed, with AGPL components in select directories, and offers extensive documentation, quickstart guidance, and a Terraform provider for infrastructure-as-code.