meshd

mesh vpn · no accounts · no servers · no company

Your machines, one private network.
Nobody in the middle.

meshd connects your devices directly over encrypted WireGuard tunnels. Your identity is a key that never leaves your machine, and your network lives in encrypted records you control — not in anyone's cloud.

curl -fsSL https://meshd.sh/install | bash

One command installs it. One more joins each device. Source on GitHub →

Three steps, then it disappears

  1. Create a network and an invite

    Connect your wallet in the dashboard, create a network, and make an invite. The dashboard hands you a copy-paste command for the new device — a network is just encrypted records, so there is nothing to host.

  2. Run the command on the device

    It installs meshd, asks to join your network, and waits for your approval.

    curl -fsSL https://meshd.sh/install | bash -s -- up 'meshd://invite/…'
  3. Approve it

    One click back in the dashboard and the device connects on its own. Machines reach each other directly — through NATs, from anywhere, at stable mesh addresses.

What you keep

No accounts

Identity is a cryptographic key generated on your device and stored in an encrypted vault. Nothing to sign up for.

No coordination server

Devices coordinate through end-to-end-encrypted records on a decentralized web node. No company sits in your control plane.

Encrypted everywhere

WireGuard carries the traffic. Membership, endpoints, and policy are encrypted records — metadata included.

Yours to inspect

A single Go binary and a static dashboard. Read the code, run it yourself, leave whenever you like.

Start now

curl -fsSL https://meshd.sh/install | bash