Secure connectivity for modern infrastructure.
Connect devices, servers, and teams with encrypted mesh networking. Zero-config setup, Zero Trust access, and full visibility from a single platform.
Built for distributed teams, not office perimeters.
Traditional VPNs were built for a world with office perimeters. meshr is built for distributed teams, multi-cloud, and Zero Trust — where every device is a first-class citizen.
Traditional VPN
- Hub-and-spoke topology — single point of failure
- Open inbound ports on every site
- Manual certificate management and rotation
- Complex split-tunneling configuration
- No built-in access control or audit trail
- 30-50% performance overhead
- Separate tools for SSH, monitoring, and compliance
- Hours of setup per new site or user
meshr
- Mesh topology — no single point of failure
- Zero open ports, NAT traversal built-in
- Automatic certificate issuance and rotation
- Automatic split DNS (device.meshr)
- ZTNA policies, audit logging, session recording
- Near-native performance with modern encryption
- SSH terminal, tunneling, and compliance in one platform
- One-line install, connect in seconds
Connect everything, everywhere.
Create encrypted tunnels between any devices — cloud servers, office machines, edge nodes, laptops. One flat network with automatic peer discovery and NAT traversal.
- Automatic IP assignment and DNS (
device.meshr) - Works behind NAT, firewalls, and CGN
- Linux, macOS, Windows — ARM and x86
SSH from your browser.
Access any device instantly — no SSH client, no keys to manage, no ports to open. Certificate-based authentication with every session automatically recorded for compliance.
- Short-lived certificates — no static keys
- Session recording with instant playback
- JIT privilege elevation with admin approval
Last login: Tue Mar 25 09:15:02 2026
root@api-server:~# systemctl status nginx
● nginx.service - A high performance web server
Active: active (running) since Mon; 14 days ago
root@api-server:~# df -h /
Filesystem Size Used Avail Use%
/dev/sda1 50G 12G 35G 26%
root@api-server:~# _Expose any service, securely.
Create HTTP and TCP tunnels in seconds. Share dev servers, databases, or APIs with your team — all protected by access policies and optional authentication.
- HTTP tunnels with subdomain routing
- TCP tunnels for databases, Redis, gRPC
- Basic auth, bearer token, or header-based protection
# Expose local dev server
$ meshr tunnel http 3000 --name my-app
✓ Tunnel active: https://my-app-acme.tunnel.meshr.to
# Expose database
$ meshr tunnel tcp 5432 --name staging-db
✓ Tunnel active: tcp://tunnel.meshr.to:34567
# List active tunnels
$ meshr tunnel list
NAME PROTO LOCAL PUBLIC URL
my-app http :3000 my-app-acme.tunnel.meshr.to
staging-db tcp :5432 tunnel.meshr.to:34567Every connection verified.
No implicit trust. Every connection request is evaluated against your policies in real-time. Define who can access what, on which ports, and in which direction.
- Group-based policies (user, device, network)
- Direction control: ingress, egress, bidirectional
- Access matrix and policy simulator for testing
Explore the full platform.
Every capability in one place — pick what you need, ignore what you don't.
One line to connect.
Install the agent on any device and join your mesh network in seconds.
# Install
$ curl -fsSL https://get.meshr.to/install.sh | sudo bash
# Login
$ meshr login -t <setup-key>
# Connect
$ meshr up
✓ Connected! IP: 10.0.0.5
✓ DNS: api-server.meshrSign up now — free during beta.
Every feature is unlocked while we're in beta. Connect your first peers in under five minutes. No credit card, no commitments.