Self-hosted · Linux

Gateway for your
NetBird mesh.

Run all team traffic through a hub-and-spoke gateway with management, monitoring and alerts. Disconnect idle sessions, route teams through specific exits, get Slack notifications before timeouts — without rebuilding NetBird from scratch.

Get WireGate See the panel
✓ Self-hosted, your data ✓ Cancel anytime ✓ Reverse charge for EU businesses
Features

Operate your NetBird mesh like a team product.

Hub-and-spoke gateway

Route all team peers through a central exit node. Production targets see your mesh IP, not 30 different home IPs — whitelist the gateway once and you're done.

Idle disconnect monitor

Pre-tagged peers get auto-disconnected after configurable inactivity. Per-user thresholds. Observe-only mode for pilots. Saves licenses on inactive sessions.

Slack alerts

DM the user before idle disconnect, before SSO expires, before peer is auto-deleted. Per-user opt-in, configurable lead times. No more “why was I kicked off”.

Role-based routing

Assign users to managers / developers / leads / admins / testers groups. Each role gets the right routes and policies. Move someone with a click — survives peer recreation.

Live peer dashboard

Real-time view of every peer: status, session uptime, last activity, current groups. Auto-refreshes every 15 seconds — no manual reload, no page jumps.

Audit log of every action

Every role change, idle override and Slack toggle goes to a structured log with actor, timestamp and before/after state. Compliance-friendly out of the box.

Demo

One panel. Everything in reach.

Manage roles, idle behavior and Slack opt-ins per user. Configure global notifications and monitor scope from one collapsible settings card.

https://gateway.your-org.example/
WireGate management panel
Per-user controls
Role / idle / Slack notify in one row.
Settings drawer
Slack token, lead times, monitor scope.
Live updates
AJAX refresh every 15 s.
Pricing

One license. One server. Unlimited peers.

Subscription license. Cancel anytime. Self-hosted on your own server — we never see your data.

Monthly
$9 USD / month
  • 1 production server
  • Unlimited peers and users
  • All features — gateway, monitor, Slack, audit
  • Free updates while subscription active
  • Cancel anytime, no refunds for partial months
Subscribe — $9 / mo
Save 17%
Yearly
$99 USD / year
  • Everything in Monthly
  • 2 months free — effectively $8.25 / month
  • Same features and updates
  • 14-day refund on yearly plan
  • EU businesses: reverse charge with valid VAT ID
Subscribe — $99 / yr
By subscribing you accept the License Agreement. Self-hosted, no telemetry, no usage data leaves your server.
Install

Five minutes from purchase to live panel.

  1. 1. Prepare a Linux host with NetBird already installed

    Any peer that you want to act as the gateway. Tested on Rocky 9, Ubuntu 22+, Debian 12+. Needs nftables, jq, python3.9+, root access, ports 80/443.

  2. 2. Run the installer

    curl -fsSL https://wiregate.app/install.sh | sudo bash

    The script asks for: NetBird mgmt URL, NetBird API token, admin password for the panel, your license key (emailed after purchase). Optional: Slack bot token.

  3. 3. Open the panel

    Browser to https://<gateway-mesh-ip>:3002/, log in with the admin password you chose. You'll see all your peers, ready to assign roles and idle policies.

No telemetry. The installer prompts only for values it needs, writes them to /etc/wiregate/config.env, and never phones home except to verify your license.

Installer is open and re-runnable — subsequent runs only re-prompt for missing values.