bartei / wiregui

Public

Firezone Inspired Wireguard VPN Server and nftables Firewall

nftables nicegui vpn wireguard

100% credibility

Found Apr 03, 2026 at 20 stars -- GitGems finds repos before they trend. Get early access to the next one.

AI Analysis

Python

AI Summary

WireGUI provides a self-hosted web interface for managing WireGuard VPN peers, firewall rules, user authentication, and real-time monitoring without third-party dependencies.

How It Works

🔍 Discover WireGUI

You hear about a friendly web dashboard that lets you run and manage your own secure VPN for family or team without any outside help.

📥 Set it up quickly

Follow simple steps to get it running on your computer or server, and it prepares everything automatically.

🌐 Open your dashboard

Go to the web address in your browser to see a clean interface ready for you.

🔑 Log in first time

Use the automatic welcome login to take full control right away.

➕ Add connections

Create spots for devices, share QR codes or files, and invite others to join safely.

🛡️ Customize safety rules

Decide what internet paths are open or blocked to keep your network just how you want it.

✅ VPN team connected

Everyone is online securely, you watch live stats, and feel in total command of your private network.

Sign up to see the full architecture

5 more

Star Growth

See how this repo grew from 20 to 20 stars Sign Up Free

Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose

AI-Generated Review

What is wiregui?

WireGUI is a self-hosted web dashboard for WireGuard VPN servers and nftables firewalls, inspired by Firezone—think firezone vpn github but fully on-prem with no cloud hooks. Built in Python using NiceGUI for a reactive UI, it lets you create peers with auto IP allocation (IPv4/IPv6), generate QR codes and .conf files for wireguard client setup, and enforce per-user firewall rules via CIDR/port. Docker Compose deploys it with Postgres and Valkey, handling everything from wireguard windows download configs to wireguard port exposure.

Why is it gaining traction?

It fights VPN enshittification with an AGPL license, packing SSO (OIDC/SAML), MFA (TOTP/WebAuthn), magic links, API tokens, and real-time stats like RX/TX/handshakes—features rivals lock behind SaaS. Production stacks include metrics export to VictoriaMetrics and GitOps YAML for IdP seeding, plus diagnostics for WAN checks. Devs love the QR codes speeding wireguard fritzbox einrichten and nftables chains for granular firewall control without CLI drudgery.

Who should use this?

Sysadmins tired of wg-quick YAML hell for team VPNs, homelabbers securing wireguard fritzbox tunnels with per-user rules, or DevOps teams needing SSO-integrated wireguard vpn servers. Ideal for small orgs wanting firezone-like policies (peer-to-peer/LAN access) minus subscriptions, especially on Linux hosts running wireguard app clients across Windows/macOS/mobile.

Verdict

Solid early bet for Python-powered WireGuard management if you crave full control and hate cloud VPNs, but 20 stars and 1.0% credibility scream "prototype"—docs shine, tests cover E2E flows, yet expect rough edges before prod. Test your wireguard download workflow first.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.

Stars

Forks

Followers

Base stars: 20 stars

Penalty: Very new repo (0d): -70%

Bonus: AI verified quality (100%)

Account age: 2,848 days

Repo age: 0 days

License: AGPL-3.0

Updated: Apr 03, 2026