Netbird behind haproxy #296

New Issue

saavagebueno · 2025-11-20T05:09:16-05:00

saavagebueno commented

2025-11-20 05:09:16 -05:00

Originally created by @ashish1099 on GitHub (Mar 20, 2023).

here is my compose file

version: "3"
services:
  #UI dashboard
  dashboard:
    image: wiretrustee/dashboard:latest
    restart: unless-stopped
    ports:
      - 127.0.0.1:8089:80
    environment:
      - AUTH_AUDIENCE=netbird
      - AUTH_CLIENT_ID=netbird
      - AUTH_AUTHORITY=https://keycloak.example.com/auth/realms/example
      - USE_AUTH0=false
      - AUTH_SUPPORTED_SCOPES=openid profile email offline_access netbird_api
      - NETBIRD_MGMT_API_ENDPOINT=https://netbird.example.com:33073
      - NETBIRD_MGMT_GRPC_API_ENDPOINT=https://netbird.example.com:33073
    volumes:
      - /vol0/data/netbird/signal:/var/lib/netbird
  # Signal
  signal:
    image: netbirdio/signal:latest
    restart: unless-stopped
    volumes:
      - /vol0/data/netbird/signal:/var/lib/netbird
    ports:
      - 127.0.0.1:10000:80
  # Management
  management:
    image: netbirdio/management:latest
    restart: unless-stopped
    depends_on:
      - dashboard
    volumes:
      - /vol0/data/netbird/mgmt/data/:/var/lib/netbird/
      - /vol0/data/netbird/mgmt/conf/:/etc/netbird/
    ports:
      - 127.0.0.1:33073:33073 #API port
      - 127.0.0.1:33080:443 #API port
    command: ["--port", "443", "--log-file", "console", "--disable-anonymous-metrics=true", "--single-account-mode-domain=netbird.obmondo.com", "--dns-domain=netbird.selfhosted"]
  # Coturn
  coturn:
    image: coturn/coturn
    restart: unless-stopped
    domainname: netbird.example.com
    volumes:
      - /vol0/data/netbird/coturn:/etc/turnserver.conf:ro
    network_mode: host
    command:
      - -c /etc/turnserver.conf

here is my haproxy config snippet

frontend netbird 
  bind 0.0.0.0:33073 ssl crt /etc/ssl/private/letsencrypt proto h2
  mode http
  option http-use-htx
  default_backend netbird_mgmt_api

backend netbird_mgmt_ui_api
  mode http
  server netbird_mgmt_api_0 127.0.0.1:33080 check

backend netbird_mgmt
  mode http
  server netbird_mgmt_0 127.0.0.1:8089 check

backend netbird_mgmt_api
  mode http
  server netbird_mgmt_api_0 127.0.0.1:33080 ssl  verify none proto h2

I can get the UI working perfectly fine, its when, when I try to fire up the agent it just fails, I have tried whatever I can think off.

netbird up --management-url https://netbird.example.com:33073
2023-03-20T18:53:41+05:30 WARN client/cmd/root.go:185: retrying Login to the Management service in 1.104660288s due to error rpc error: code = Unavailable desc = unexpected HTTP status code received from server: 503 (Service Unavailable); transport: received unexpected content-type "text/html"
2023-03-20T18:53:49+05:30 WARN client/cmd/root.go:185: retrying Login to the Management service in 2.160763633s due to error rpc error: code = Unavailable desc = unexpected HTTP status code received from server: 503 (Service Unavailable); transport: received unexpected content-type "text/html"
2023-03-20T18:53:58+05:30 WARN client/cmd/root.go:185: retrying Login to the Management service in 2.62026012s due to error rpc error: code = Unavailable desc = unexpected HTTP status code received from server: 503 (Service Unavailable); transport: received unexpected content-type "text/html"
Error: login backoff cycle failed: rpc error: code = Unavailable desc = unexpected HTTP status code received from server: 503 (Service Unavailable); transport: received unexpected content-type "text/html"

Originally created by @ashish1099 on GitHub (Mar 20, 2023). here is my compose file ``` version: "3" services: #UI dashboard dashboard: image: wiretrustee/dashboard:latest restart: unless-stopped ports: - 127.0.0.1:8089:80 environment: - AUTH_AUDIENCE=netbird - AUTH_CLIENT_ID=netbird - AUTH_AUTHORITY=https://keycloak.example.com/auth/realms/example - USE_AUTH0=false - AUTH_SUPPORTED_SCOPES=openid profile email offline_access netbird_api - NETBIRD_MGMT_API_ENDPOINT=https://netbird.example.com:33073 - NETBIRD_MGMT_GRPC_API_ENDPOINT=https://netbird.example.com:33073 volumes: - /vol0/data/netbird/signal:/var/lib/netbird # Signal signal: image: netbirdio/signal:latest restart: unless-stopped volumes: - /vol0/data/netbird/signal:/var/lib/netbird ports: - 127.0.0.1:10000:80 # Management management: image: netbirdio/management:latest restart: unless-stopped depends_on: - dashboard volumes: - /vol0/data/netbird/mgmt/data/:/var/lib/netbird/ - /vol0/data/netbird/mgmt/conf/:/etc/netbird/ ports: - 127.0.0.1:33073:33073 #API port - 127.0.0.1:33080:443 #API port command: ["--port", "443", "--log-file", "console", "--disable-anonymous-metrics=true", "--single-account-mode-domain=netbird.obmondo.com", "--dns-domain=netbird.selfhosted"] # Coturn coturn: image: coturn/coturn restart: unless-stopped domainname: netbird.example.com volumes: - /vol0/data/netbird/coturn:/etc/turnserver.conf:ro network_mode: host command: - -c /etc/turnserver.conf ``` here is my haproxy config snippet ``` frontend netbird bind 0.0.0.0:33073 ssl crt /etc/ssl/private/letsencrypt proto h2 mode http option http-use-htx default_backend netbird_mgmt_api backend netbird_mgmt_ui_api mode http server netbird_mgmt_api_0 127.0.0.1:33080 check backend netbird_mgmt mode http server netbird_mgmt_0 127.0.0.1:8089 check backend netbird_mgmt_api mode http server netbird_mgmt_api_0 127.0.0.1:33080 ssl verify none proto h2 ``` I can get the UI working perfectly fine, its when, when I try to fire up the agent it just fails, I have tried whatever I can think off. ``` netbird up --management-url https://netbird.example.com:33073 2023-03-20T18:53:41+05:30 WARN client/cmd/root.go:185: retrying Login to the Management service in 1.104660288s due to error rpc error: code = Unavailable desc = unexpected HTTP status code received from server: 503 (Service Unavailable); transport: received unexpected content-type "text/html" 2023-03-20T18:53:49+05:30 WARN client/cmd/root.go:185: retrying Login to the Management service in 2.160763633s due to error rpc error: code = Unavailable desc = unexpected HTTP status code received from server: 503 (Service Unavailable); transport: received unexpected content-type "text/html" 2023-03-20T18:53:58+05:30 WARN client/cmd/root.go:185: retrying Login to the Management service in 2.62026012s due to error rpc error: code = Unavailable desc = unexpected HTTP status code received from server: 503 (Service Unavailable); transport: received unexpected content-type "text/html" Error: login backoff cycle failed: rpc error: code = Unavailable desc = unexpected HTTP status code received from server: 503 (Service Unavailable); transport: received unexpected content-type "text/html" ```

saavagebueno closed this issue

2025-11-20 05:09:16 -05:00

saavagebueno commented

2025-11-20 05:09:17 -05:00

@ashish1099 commented on GitHub (Mar 25, 2023):

ok, I got this working, it was haprpoxy issue, when connecting to backend with h2c

@ashish1099 commented on GitHub (Mar 25, 2023): ok, I got this working, it was haprpoxy issue, when connecting to backend with h2c

saavagebueno commented

2025-11-20 05:09:17 -05:00

@guergabo commented on GitHub (Jun 5, 2023):

what was the issue @ashish1099 ? How did you fix it. Experiencing similar.

@guergabo commented on GitHub (Jun 5, 2023): what was the issue @ashish1099 ? How did you fix it. Experiencing similar.

saavagebueno commented

2025-11-20 05:09:17 -05:00

@ashish1099 commented on GitHub (Jul 29, 2023):

@guergabo the issue was I had not setup the grpc on haproxy, let me know if you need more details

@ashish1099 commented on GitHub (Jul 29, 2023): @guergabo the issue was I had not setup the grpc on haproxy, let me know if you need more details

saavagebueno commented

2025-11-20 05:09:17 -05:00

@vasquezmi commented on GitHub (Apr 8, 2024):

@ashish1099 - I am looking into this process as well for HAProxy. What did you have to do for gRPC to work?

@vasquezmi commented on GitHub (Apr 8, 2024): @ashish1099 - I am looking into this process as well for HAProxy. What did you have to do for gRPC to work?

saavagebueno commented

2025-11-20 05:09:17 -05:00

@ashish1099 commented on GitHub (Apr 8, 2024):

@vasquezmi just enable the h2c for frontend and backend

frontend www
  bind 0.0.0.0:443 ssl crt /some/path alpn h2,http/1.1
  acl is_netbird_mgmt_api path_beg -i /api
  acl is_netbird_mgmt_grpc path_beg -i /management
  acl is_netbird_signal_grpc path_beg -i /signalexchange
  acl is_netbird_dashboard hdr(host) netbird.x.com
  use_backend netbird_signal_grpc if is_netbird_signal_grpc
  use_backend netbird_mgmt_api if is_netbird_dashboard is_netbird_mgmt_api
  use_backend netbird_mgmt_grpc if is_netbird_mgmt_grpc
  use_backend netbird_dashboard if is_netbird_dashboard

backend netbird_dashboard
  mode http
  server netbird_dashboard_0 127.0.0.1:8089 check

backend netbird_mgmt_api
  mode http
  server netbird_mgmt_api_0 127.0.0.1:33080 check

backend netbird_mgmt_grpc
  mode http
  server netbird_mgmt_api_0 127.0.0.1:33080 proto h2

backend netbird_signal_grpc
  mode http
  server netbird_signal_0 127.0.0.1:10000 check proto h2

@ashish1099 commented on GitHub (Apr 8, 2024): @vasquezmi just enable the h2c for frontend and backend ``` frontend www bind 0.0.0.0:443 ssl crt /some/path alpn h2,http/1.1 acl is_netbird_mgmt_api path_beg -i /api acl is_netbird_mgmt_grpc path_beg -i /management acl is_netbird_signal_grpc path_beg -i /signalexchange acl is_netbird_dashboard hdr(host) netbird.x.com use_backend netbird_signal_grpc if is_netbird_signal_grpc use_backend netbird_mgmt_api if is_netbird_dashboard is_netbird_mgmt_api use_backend netbird_mgmt_grpc if is_netbird_mgmt_grpc use_backend netbird_dashboard if is_netbird_dashboard backend netbird_dashboard mode http server netbird_dashboard_0 127.0.0.1:8089 check backend netbird_mgmt_api mode http server netbird_mgmt_api_0 127.0.0.1:33080 check backend netbird_mgmt_grpc mode http server netbird_mgmt_api_0 127.0.0.1:33080 proto h2 backend netbird_signal_grpc mode http server netbird_signal_0 127.0.0.1:10000 check proto h2 ```

saavagebueno commented

2025-11-20 05:09:17 -05:00

@vasquezmi commented on GitHub (May 5, 2024):

@ashish1099 thank you for sharing your HAProxy config for these.
I am still working this out as my current setup has HAProxy as a pkg in a firewall and I am double NAT's (i know why)....still working to change that.

For some reason my config does not match yours even though I put in the same areas.

For example, path_beg comes up as -m beg (weird).

`frontend vnetBird
bind :6443 name :6443 ssl crt-list /var/etc/haproxy/vnetBird.crt_list alpn h2,http/1.1
mode http
log global
option socket-stats
option http-keep-alive
option forwardfor
acl https ssl_fc
http-request set-header X-Forwarded-Proto http if !https
http-request set-header X-Forwarded-Proto https if https
timeout client 30000
acl is_netbird_mgmt_api var(txn.txnpath) -m str -i /api
acl is_netbird_mgmt_grpc var(txn.txnpath) -m beg -i /management
acl is_netbird_signal_grpc var(txn.txnpath) -m beg -i /signalexchange
acl is_netbird_dashboard var(txn.txnhost) -m sub -i sub.mydomain.net
acl aclcrt_vnetBird var(txn.txnhost) -m reg -i ^([^.]*).mydomain.net(:([0-9]){1,5})?$
acl aclcrt_vnetBird var(txn.txnhost) -m reg -i ^mydomain.net(:([0-9]){1,5})?$
http-request set-var(txn.txnpath) path
http-request set-var(txn.txnhost) hdr(host)
use_backend netbird_mgmt_api_prd_ipvANY if is_netbird_mgmt_api aclcrt_vnetBird
use_backend netbird_mgmt_grpc_prd_ipvANY if is_netbird_mgmt_grpc aclcrt_vnetBird
use_backend netbird_signal_grpc_prd_ipvANY if is_netbird_signal_grpc aclcrt_vnetBird
use_backend netbird_dashboard_prd_ipvANY if is_netbird_dashboard aclcrt_vnetBird

backend netbird_mgmt_api_prd_ipvANY
mode http
server netbird_mgmt_api_prd 192.168.1.84:33073 check

backend netbird_mgmt_grpc_prd_ipvANY
mode http
server netbird_mgmt_grpc_prd 192.168.1.84:6443 check proto h2

backend netbird_signal_grpc_prd_ipvANY
mode http
server netbird_signal_grpc_prd 192.168.1.84:10000 check proto h2

backend netbird_dashboard_prd_ipvANY
mode http
server netbird_dashboard_prd 192.168.1.84:8089 check`

@vasquezmi commented on GitHub (May 5, 2024): @ashish1099 thank you for sharing your HAProxy config for these. I am still working this out as my current setup has HAProxy as a pkg in a firewall and I am double NAT's (i know why)....still working to change that. For some reason my config does not match yours even though I put in the same areas. For example, path_beg comes up as -m beg (weird). `frontend vnetBird bind <proxy listener>:6443 name <proxy listener>:6443 ssl crt-list /var/etc/haproxy/vnetBird.crt_list alpn h2,http/1.1 mode http log global option socket-stats option http-keep-alive option forwardfor acl https ssl_fc http-request set-header X-Forwarded-Proto http if !https http-request set-header X-Forwarded-Proto https if https timeout client 30000 acl is_netbird_mgmt_api var(txn.txnpath) -m str -i /api acl is_netbird_mgmt_grpc var(txn.txnpath) -m beg -i /management acl is_netbird_signal_grpc var(txn.txnpath) -m beg -i /signalexchange acl is_netbird_dashboard var(txn.txnhost) -m sub -i sub.mydomain.net acl aclcrt_vnetBird var(txn.txnhost) -m reg -i ^([^\.]*)\.mydomain\.net(:([0-9]){1,5})?$ acl aclcrt_vnetBird var(txn.txnhost) -m reg -i ^mydomain\.net(:([0-9]){1,5})?$ http-request set-var(txn.txnpath) path http-request set-var(txn.txnhost) hdr(host) use_backend netbird_mgmt_api_prd_ipvANY if is_netbird_mgmt_api aclcrt_vnetBird use_backend netbird_mgmt_grpc_prd_ipvANY if is_netbird_mgmt_grpc aclcrt_vnetBird use_backend netbird_signal_grpc_prd_ipvANY if is_netbird_signal_grpc aclcrt_vnetBird use_backend netbird_dashboard_prd_ipvANY if is_netbird_dashboard aclcrt_vnetBird backend netbird_mgmt_api_prd_ipvANY mode http server netbird_mgmt_api_prd 192.168.1.84:33073 check backend netbird_mgmt_grpc_prd_ipvANY mode http server netbird_mgmt_grpc_prd 192.168.1.84:6443 check proto h2 backend netbird_signal_grpc_prd_ipvANY mode http server netbird_signal_grpc_prd 192.168.1.84:10000 check proto h2 backend netbird_dashboard_prd_ipvANY mode http server netbird_dashboard_prd 192.168.1.84:8089 check`

saavagebueno referenced this issue

2025-11-20 07:12:20 -05:00

[PR #296] [MERGED] feat(ui): add settings sub program #2689

saavagebueno referenced this issue

2025-11-20 07:12:21 -05:00

[PR #296] feat(ui): add settings sub program #2691

Sign in to join this conversation.

Branches Tags

main

peer-acl-multi-source

feature/affected-peers

ui-refactor

fix/ios-debug-bundle

mdm_integration

dependabot/go_modules/testcontainers-9a9ed843ba

dependabot/go_modules/github.com/fsnotify/fsnotify-1.10.1

relay-transport-observability

embedded-vnc

windows-dns-firewall

tests/enable-race-on-tests

dependabot/go_modules/aws-sdk-e0d7f0be02

dependabot/github_actions/actions-1b76ec1a46

dependabot/go_modules/pion-04391f0276

dependabot/go_modules/otel-e34c790afd

dependabot/go_modules/gorm-2271c8195b

dependabot/go_modules/wireguard-dbd6b95108

ui-refactor-gtk3

wasm-websocket-dial

feature/affected-peers-grpc

profile-id-name

profile-id

lazyconn-first-packet-fix-v2

claude/focused-gates-VMTgb

feature/immediate-handshake-on-endpoint-change

refactor/mgmt-bootstrap

dependabot/go_modules/github.com/quic-go/quic-go-0.59.1

fix/ios-login-expiry-blackhole

fix/exit-node-v6-deselect-propagation

ui-tray-linux-leftclick

dependabot/go_modules/github.com/rs/cors-1.11.1

dependabot/go_modules/github.com/ebitengine/purego-0.10.1

dependabot/go_modules/github.com/c-robinson/iplib-1.0.8

dependabot/go_modules/github.com/redis/go-redis/v9-9.20.0

dependabot/go_modules/github.com/cilium/ebpf-0.21.0

dependabot/go_modules/github.com/coreos/go-iptables-0.8.0

dependabot/go_modules/golang.org/x/mod-0.36.0

dependabot/go_modules/github.com/spf13/pflag-1.0.10

fix/ctx-enrichment

nmap/components-impl

daemon-owner

dependabot/go_modules/github.com/crowdsecurity/crowdsec-1.7.8

client-json-socket

feature/android-client-ssh

feature/ios-ssh

worktree-accept-ra-forwarding

nmap/combined-deploy

task/align_protobuff_toolset

feature/session-extend

add-json-yaml-flags

refactor/ephemeral-cleanup

claude/webtransport-relay-wasm-mUjY9

claude/vnc-udp-feasibility-6KB1U

fix-ssh-authorized-users-multi-rule

fix/wgport-config

drop-candidateviaroutes-filter

e2e-windows-dns-combined

dependabot/go_modules/github.com/Azure/go-ntlmssp-0.1.1

debug-logs

dependabot/go_modules/github.com/jackc/pgx/v5-5.9.2

fix/login-cmd-root-flags

feat/reseller-openapi-spec

github-issue-resolver

add-steamos-support

fix-darwin-uninstaller

flutter-test

dependabot/npm_and_yarn/proxy/web/postcss-8.5.12

ci/freebsd-pkg-bootstrap

cached-serial-check-on-sync

fix-mgmt-cache-bypass-overlay

revert-easyjson-5938

revert-ice-5820

revert-firewalld-5928

refactor/permissions-manager

revert-dns-5935-systemd-resolved

revert-dns-5935-5945

revert-dns-5945-mgmt-cache

feature/log-most-busy-peers

prototype/ui-wails

coderabbitai/utg/8ae8f20

feature/use-peer-fqdn-on-https

dependabot/go_modules/golang.org/x/image-0.38.0

feature/metrics-push-management-control

release/0.68.3

dependabot/go_modules/github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream-1.7.8

dependabot/go_modules/github.com/aws/aws-sdk-go-v2/service/s3-1.97.3

add-slack-channel

claude/rdp-token-passthrough-eNcqW

transparent-proxy

fix/macos-stale-route-eexist

crowdsec-selfhosted

fix/remove-otel-units

entire/checkpoints/v1

dependabot/go_modules/github.com/go-jose/go-jose/v4-4.1.4

fix/getting-started

feat/static-connectors-combined-server

feature/use-local-keys-embedded

feature/fleetdm

set-env-only-if-not-fork

feature/expose-has-channel

fix/connection-status-race

fix/filter-cgnat-cni-ice-candidates

feature/check-cert-locker-before-acme

test/proxy-fixes

test/proxy-mtu

prototype/ui-tauri

test/proxy-speed

fix-reused-ports

feat/migrate-to-embedded-idp

feature/add-serial-to-proxy-merged

deploy/proxy-serial

test/connection

feature/disable-legacy-port

feature/flag-to-disable-legacy-port

test/perftest

dependabot/go_modules/github.com/pion/dtls/v3-3.0.11

fix/http-redirect

poc-token-command

dn-reverse-proxy

prototype/reverse-proxy-rename

prototype/reverse-proxy-logs-pagination

feature/client-metrics

prototype/reverse-proxy-clusters

debug-dns-route

fix/win-dns-batch

add-extra-route-logs

job-stream-notify-disconnection-eof

deploy/secrets-manager

trigger-proxy-update

bug/update-ios-client-code-build-tags

sync-client-netmap-serial

log/conn-disconn

nmap/compaction-deploy

ci-win-test

feature/disk-encryption-check

wasm-debug

swap-dns-prio

fix/dex-config

feature/migrate-auto-groups-to-table

dependabot/go_modules/github.com/quic-go/quic-go-0.57.0

nmap/compaction

dex-nocgo-stub

feature/exclude-terraform-from-rate-limiting

test-freebsd

retries-refactor

coderabbitai/docstrings/b7e98ac

feat/integrate-zitadel

bug/ios-hanging-reconection

zitadel-idp

feat/network-map-serial

refactor/get-account-no-users

feat/auto-upgrade

feature/report-high-pat-id

feature/temporary-access-for-resource

fix/nmap-fwrules

dont-restart-dns

prototype/ui

update-gomobile

go-dns-for-ice

wasm-ldflags

test-ldflags

wasmbuild-test

feature/networks-s2s

vk/compare-nmaps

dbg/bothmaps

feature/changeset

reorder-dns-shutdown

fix/relay-reconnection-race

fix/nmap-exitnodes

vk/debug/nmap-both

move-licensed-code

feat/better-daemon-connection-lost-message

feat/auto-update-2

test/timings

refactor/getaccount-raw

tests/nmap-getaccount

refactor/nmap

refactor/nmap-limit-buffer

feature/detect-mac-wakeup

feature/extract-modules

quick-setings

feat/sync-limiter

feature/store-cache-impl

fix-install-version

feature/store-metrics

feature/metrics-on-store

feature/use-gorm-cache

loadtest-signal

unsymmetrical-squash

refactor/reducate-signaling

test/update-reduce

feature/store-cache

feature/remote-debug

cli-ws-proxy-backend-addr

feat/mgmt-map-serial

snyk-fix-d9d0081a4c7f9137bdb59d0d50a141a2

snyk-fix-7415cea5a11acd66753540ca2c598c63

job-yml-update

feature/android-allow-selecting-routes

fix/up-sequence

fix/dns-hash-update

snyk-fix-967adae9863f17f108ce8948d9117b8d

log/getaccount-by-peer

signal-suppressor

dns-exit-node

feature/auto-updates

feature/cache-srv-key

merged-fixes

fix/missed-offers-and-debug

debug-and-fixes

poc-wasm-clean-backend-s2s

test/remote-debug

debug-api

dependabot/go_modules/github.com/docker/docker-28.0.0incompatible

fix/remove-gpo-if-empty

fix/test-freebsd

fix/mysql-setup

fix/remove-logout-btn

handle-existing-domain-user

chore/unify-domain-validation

snyk-fix-c5fafc8a50ce1f29046e25a1fc346185

feat/profile-edit-btn

snyk-fix-a54966211e18d4cf67e5a2757cc006d1

log-short-id

feat/logout-ephemeral

log-checks

batch-wg-ops

nb-interface-default

feat/aws-integration

add/race-test

feature/relay-feature-versioning

fix/systemd-service-logs

poc/preprocessed-map

add-account-onboarding

bind-ipv6

fix/merge-main

logs/peerlogs-addpeer

feature/net-297-network-migration

feature/support-skip-auto-apply-exit-node-routes

set-cmd

set-command-with-cursor

feature/limit-update-channel

stop-using-locking-share

feature/poc-lazy-detection

feature/net-248-removal-of-sync-mutex-locks

test/multiple-peer-logging

preresolve

add-ns-punnycode-support

apply-routes-early

windows-search-domains

fix/connecting-route-filter

feature/management/rest-client/impersonate

debug-local-records

resource-fields-snake-case

test/grpc-rate-limit

traffic-correlation-policy

feature/rest-client-options

feat/events-metrics

feature/buf-cli

test/add-ratelimiter

test/remove-write-lock-on-add-peer

fix/add-peer-semaphore

feature/users-roles-endpoint

mlsmaycon-patch-1

debug-user-role

chore/primary-key-on-networks

feature/update-account-peers-buffer-startup

remove-ubuntu2004-runners

refactor/permissions-no-pat-allowed

ref/logrus-factory

use-conntrack-zone

deploy/permissions-account

feature/lazy-connection-idle

ref/improve-test-cov

restore-pr-3440

test/increase-grpc-timeouts

feat/buffer-account-peers-update

test/networkmapgeneration-changes

feature/base-manager

feature/flow-receiver

chore/benchmark-with-large-runner

refactor/handshake-initiator

client/ui-update-systray-icons

userspace-router

wgwatcher-test

output-if-key-already-exists

fix/relay-reconnection

feature/port-forwarding-client-codecleaning

detached2

test/callbacks-nil-iceconninfo

refactor/optimize-peer-expiration

enable-udp-port-for-docker-template

fix/relay-update

feature/apply-posture-netmap

fix/group-update-existing-resource

conntrack-stats

upgrade-okta-sdk

multi-price

test/conn-stat

set-min-parallel-tests-for-management

dns-interceptor

debug-dns

router-dns

add-static-system-info

debug-0.29.4

debug-0.33.0

account-refactoring

relay/2800_quic

route-get-account-refactoring

test/seed-random-routes

feature/get-account-refactoring

test/reconnect-race-condition

refactor/get-account-usage

feature/add-session-id-to-update-channel

improve-ipv4conn

fix/async-pion-event-handling

debug

add-offload

feature/validate-group-association-debug

fix/limit-conn-for-sqlite

test/engine-iface

test/transaction-for-jwt-sync

fix/engine-stop-in-foreground

feature/add-mysql-support

test-migration

refactor/header-size-values

relay/eliminate-gob

test/signal-dispatcher-with-relay

relay/debug

validate-icon

feature/ipv6-support

use-pre-expanded-peers-map

feature/use-signal-dispatcher

validate/peer-status

add-read-write-times

fix/sync-peer-race

feature/relay-status

netmap

evaluate/network-map-hash

fix/lower-dns-resolve-interval-on-fail

feature/relay

fix/go-mod-version

upgrade-nftables

synology-userspace-mode

fix/use-ip-for-default-routes-on-darwin

fix/proxy_close

enable-release-workflow-on-pr

deploy/peer-performance

feature/permanent-turn

feature/permanent-turn-proxy

deploy/posture-check-sqlite

feature/optimize_sqlite_save

debug-ios-behavior

fix/delete-route-only-after-adding

tshoot/windows-logger

remove-new-routing

refactor/eliminate-repo-dependency

add-arm-to-ci

refactor-demo-account-object

test/abc2

test/abc

send-ssh-rosenpass-config-meta

refactor-demo

ensure-schedule-never-runs-non-positive

feature/peer-validator-groupmgm

feature/peer-validator-fix

fix/include-active-dashboard-users

fix/handle-canceling-schedule

fix/geo-download

debug-google-workspace

yury/resolve-ip-to-location

feature/extend-sysinfo

sqlite-async-peer-status

yury/add-postgresql-store

fix/route

test-build

posture-checks-poc

debug-keycloak-idp

poc/netstack

for-pascal-tmp

peer-logout-management

manual-peer-logout

detached

chore/refactor-management

test/dns-bind

fix/enforce-acl-for-containers

yury/use-sync-map-in-updatechannel

fix/events-key-handling

filter-cache-on-load-account

fix/user-expiration

handle-user-context-cancellation

nb-client-k8s-statefulset

fake-addr

fix/iptables_in_docker

ebpf-debug

update-getting-started-flow-use-postgres

fix/peer_list_notification

feature/device-authentication-with-client-secret

feature/keep_alive

feat-groups-from-jwt

separate_proxy_from_wgconfig

fix/wg_conn

wg_conn_fix

wg_bind_parallel_processing

fix-rollback-get-acls

proxy_cfg_cleanup

performance-improvement-rego

update-lock-log-level

feat-client-side-acl

refactor/move_grpcserver_logic_to_account_manager

feature/event-storage

feature/update-idp-redeeming-invite

feature/api-peer-info

return-groupminimum-setupkey

feature/interface-bind

documentation_enhancement

fix-peer-registration

ssh

users_cache

pass-client-caller

client_caller_type

revert-283-feat-fix-windows-installer

periodic-peer-updates

ebpf

braginini/wasm

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: SVI/netbird#296