Netbird

The layer 3 (the IP address layer) of the Virtual Private Mesh is made up of a 2 types of tunnels:

1. Mesh Tunnel - for general traffic over multiple redundant paths.
2. Direct Tunnel - for direct transfer of data over lossy link.

As of 20.12 release, the Mesh Tunnel is implemented with Tinc and the Data Tunnel with Tinyfecvpn.

The traffic between all disposable nodes are protected by Mesh Tunnel.

Tinc

In some cases (low volume) tinc can be a good alternative to Netbird.

Tinc is stable and feature rich but its development has not been very active and it can be slow:

• https://www.researchgate.net/publication/337082242_Scalability_evaluation_of_VPN_technologies_for_secure_container_networking
• ChaCha20: add optimized versions for amd64 (SSSE3 & AVX2) by hg · Pull Request #392 · gsliepen/tinc · GitHub

If possible try Netbird first.

Other Alternatives

Many new Mesh Tunnels based in Wireguard:

• Many Wireguard Managers

Some Mesh Tunnels to avoid - since they do NOT have open sourced license for their mobile phone clients:

1. Nebula from Slack
2. NetMaker
3. Headscale