11 Feb 18:25

v1.5.0 Latest

Latest

Netclient v1.5.0 Release Notes 🚀

🚀 What’s New

🔁 Overlapping Egress Ranges (beta)

Virtual NAT mode enables multiple egress routers to share overlapping IP ranges by assigning each egress a virtual range from a configurable pool.
Configurable per-network IPv4 pool and site prefix length for virtual range allocation.
Eliminates routing conflicts when multiple sites need to egress the same destination CIDRs (e.g., multiple offices routing to the same cloud VPC).
Supports both direct NAT and virtual NAT modes for flexible egress configurations.

🧭 macOS Local DNS Resolver

Darwin netclients now run their own local DNS resolver.

Benefits
- More consistent DNS resolution
- Improved compatibility with macOS networking stack
- Reduced dependency on system DNS behavior

🌐 Internet Gateways on macOS

Darwin netclients can now:
- Use Internet Gateways
- Participate in fully routed internet traffic
- This brings feature parity closer to Linux and Windows clients.

🧰 Improvements & Fixes

DNS:

Debian DNS configuration fix
Improved Windows DNS management

GeoLocation:

Consolidated IP location API usage
Added fallback mechanisms

Windows:

Improved logging
Fixed installer issues
Version command corrections
Better adapter error handling

LAN Routing:

Added configurable interface exclusion
Fixes Kubernetes endpoint detection conflicts

Known Issues 🐞

netclients cannot auto-upgrade on ipv6-only machines.
Need to optimize multi-network netclient join with enrollment key
On systems using systemd-resolved in uplink mode, the first 3 entries in resolv.conf are used and rest are ignored. So it might cause DNS issues. Stub mode is preferred.

Assets 15

netclient-darwin-amd64

sha256:6bce94ff5a1c933eb3765c7c2dfbcf8973ce7f1e4fc25779a0dfc16bbcf1ce38

14.8 MB 2026-02-11T18:25:22Z
netclient-darwin-arm64

sha256:abb5520b589f53c0778069230978e7fb6c6d8ab13bd5faaa599ce068d3797b5d

13.9 MB 2026-02-11T18:25:24Z
netclient-linux-amd64

sha256:97bbb10fa34ee1b9e00fa5bea15c9783b5ceae3863cf94927891fcbc8ee5ed66

28.2 MB 2026-02-11T18:25:28Z
netclient-linux-arm64

sha256:76baf0c275315df2468c996fad3f5c82689382d7492cb3b4fcfe6d7b2bff0ecd

26.6 MB 2026-02-11T18:25:26Z
netclient-linux-armv5

sha256:902a26a02c7f08bbd1ab70a3c979be2db1ac172e8e5f214136adc0f3e470d570

26.8 MB 2026-02-11T18:25:22Z
netclient-linux-armv6

sha256:707216596b6bc76e2eb503ada123be9e974d444806807980470afd52dc6f961f

26.9 MB 2026-02-11T18:25:25Z
netclient-linux-armv7

sha256:edd5459d4902c28468d0bb72fb1d8bd812e7e01203cd4f49524f988cfe386ea1

26.8 MB 2026-02-11T18:25:22Z
netclient-linux-mips-hardfloat

sha256:1e4bb1180d5e506c428b61c1de39d40483002915a1df1e2753a917666736d6f5

30.3 MB 2026-02-11T18:25:25Z
netclient-linux-mips-softfloat

sha256:6539bae54664e9141e06b1b2ae1b225faaf506f433ca4f5ae41896a32523f4a1

30.4 MB 2026-02-11T18:25:28Z
netclient-linux-mipsle-hardfloat

sha256:d7d32282ddf5ce552b79946b0ea8b5cdeb0c6e1deeb18abf670320bead5e0f0b

30.3 MB 2026-02-11T18:25:22Z
Source code (zip)

2026-02-11T18:14:56Z
Source code (tar.gz)

2026-02-11T18:14:56Z

22 Dec 16:39

v1.4.0

Netclient v1.4.0 Release Notes 🚀

🚀 What’s New

🌍 Posture Checks (beta)

Security feature that validates device compliance against configured policies based on device attributes such as OS, OS version, kernel version, client version, geographic location, and auto-update status.
Supports tag-based and user group-based assignment of posture checks to specific devices or users.
Tracks violations with configurable severity levels and provides real-time evaluation of device compliance.
Helps ensure only compliant devices can access network resources.

🔁 Network Traffic Logging (alpha)

Comprehensive network flow logging system that captures and stores network traffic metadata in ClickHouse.
Tracks source and destination IPs, ports, protocols, bytes/packets sent/received, and connection timestamps.
Provides API endpoints for querying flow data with filters by network, node, user, protocol, and time range.
Enables network administrators to monitor, analyze, and audit network traffic patterns for security and troubleshooting purposes.

🔄 Auto Removal of Offline Peers

Automatically removes nodes that have been offline for a configurable threshold period.
Configurable per network with customizable timeout thresholds (in minutes).
Supports tag-based filtering to selectively apply auto-removal to specific device groups.
Helps maintain clean network topology by removing stale or abandoned peer connections.

🧭 DNS Search Domains

Added DNS search domain functionality for simplified hostname resolution across distributed networks.

🖥️ New CLI Commands

netclient peers: Display WireGuard peer information including public keys, host names, endpoints, last handshake times, traffic statistics (bytes received/sent), and allowed IPs. Supports filtering by network and JSON output format for programmatic access.
netclient ping: Check connectivity and latency to WireGuard peers across networks. Supports filtering by network or peer name, IPv4/IPv6 address selection, configurable packet count, and JSON output format. Helps diagnose network connectivity issues and measure peer latency.

🧰 Improvements & Fixes

DNS Fixes: Debian DNS configuration fix.
Host Listen Port: Enhanced Port Configuration Logic.
Egress Domain Updates: Fixed domain-related issues in egress configurations to ensure consistent routing behavior.
Auto Gateway: Refresh connection metrics if no Gateway node found to update cached metrics.

Known Issues 🐞

netclients cannot auto-upgrade on ipv6-only machines.
Need to optimize multi-network netclient join with enrollment key
On systems using systemd-resolved in uplink mode, the first 3 entries in resolv.conf are used and rest are ignored. So it might cause DNS issues. Stub mode is preferred.

Assets 15

07 Nov 05:55

v1.2.0

Netclient v1.2.0 Release Notes 🚀

🚀 What’s New

🌍 Auto-Relays (formerly Failovers)

Failovers are now Auto-Relays with High Availability (HA) support.
Enables global routing optimization based on real-time latency between peers across regions.

🔁 Gateway High Availability

Gateways can now automatically assign peer relays and fallback to healthy nodes when primary gateways become unavailable.

🌐 Egress HA with Latency-Aware Routing

Egress gateways now dynamically select the optimal route based on latency, ensuring faster and more resilient connectivity.

🧭 DNS Search Domains

Added DNS search domain functionality for simplified hostname resolution across distributed networks.

🧰 Improvements & Fixes

Metrics Enrichment: Enhanced uptime and connection-status data.
DNS Control Fixes: Fixed toggle behavior for enabling/disabling Netmaker DNS on hosts.
DNS Config Update And Cleanup Handling.
Egress Domain Updates: Fixed domain-related issues in egress configurations to ensure consistent routing behavior.

Known Issues 🐞

WireGuard DNS issue on Ubuntu 24.04 and some other newer Linux distributions. The issue is affecting the Netmaker Desktop, previously known as the Remote Access Client (RAC), and the plain WireGuard external clients. Workaround can be found here https://help.netmaker.io/en/articles/9612016-extclient-rac-dns-issue-on-ubuntu-24-04.
netclients cannot auto-upgrade on ipv6-only machines.
Need to optimize multi-network netclient join with enrollment key

Assets 14

11 Sep 10:55

v1.1.0

Netclient v1.1.0

What’s New ✨

Egress Domain-Based Routing – Route traffic based on domain names, not just network CIDRs.
DNS Nameservers with Match Domain Functionality – Fine-grained DNS resolution control per domain.
Device Approval Workflow – Require admin approval before devices can join a network.

Improvements & Fixes 🛠

Access Control Lists (ACLs): Enhanced functionality and flexibility.
Stability Enhancements: More reliable connections for nodes using Internet Gateways.
DNS: Linux DNS Config Fixes
Egress HA: Optimised Egress HA routing.

Known Issues 🐞

Inaccurate uptime info in metrics involving ipv4-only and ipv6-only traffic
netclients cannot auto-upgrade on ipv6-only machines.
Need to optimize multi-network netclient join with enrollment key
Stale Peer On The Interface, When Forced Removed From Multiple Networks At Once.

Assets 14

26 Jun 06:36

v1.0.0

Netclient v1.0.0

Whats New ✨

Gateways Unified: Internet Gateways are now merged into the general Gateway feature and available in Community Edition.
Site-to-Site over IPv6: IPv4 site-to-site communication over IPv6 Netmaker overlay tunnels.

🛠 Improvements & Fixes

Auto-Sync DNS Configs: Multi-network DNS configurations now sync automatically between server and clients.
Stability Fixes: Improved connection reliability for nodes using Internet Gateways.
LAN/Private Routing Enhancements: Smarter detection and handling of local/private routes, improving peer-to-peer communication in complex network environments.

Known Issues 🐞

Inaccurate uptime info in metrics involving ipv4-only and ipv6-only traffic
netclients cannot auto-upgrade on ipv6-only machines.
Need to optimize multi-network netclient join with enrollment key
Stale Peer On The Interface, When Forced Removed From Multiple Networks At Once.

Assets 14

06 Jun 12:47

v0.99.0

Netclient v0.99.0

Whats New ✨

ACLs on Community Edition (Beta): The new version of Access Control Lists is now available in CE as a beta feature.
Auto Sync Server Settings: Automatically propagate server configuration changes across nodes.
DNS Search Domains on Windows: DNS search domains configuration for Windows clients.

🛠 Improvements & Fixes

Optimized DNS Query Handling: Faster and more efficient internal name resolution.
Improved Failover Handling: Enhanced stability and signaling for NAT traversal peer connections.
User Egress Policies: More granular control over user-level outbound traffic policies.
LAN/Private Routing Enhancements: Better detection and handling of local/private endpoint routes during peer communication.
Stale Route Cleanup on Node Disconnect: Automatically removes outdated interface routes when nodes disconnect.

Known Issues 🐞

Stale Peer On The Interface, When Forced Removed From Multiple Networks At Once.

Assets 14

25 Mar 07:31

v0.90.0

Netclient v0.90.0

Whats New ✨

ACL Rules for Egress Ranges
High Availability for Egress Routes
Added Support for Additional Nameservers.
Managed DNS Support for Windows

What's Fixed/Improved 🛠

Optimised Metrics Collection.
IPv6 DNS Entries.
FailOver connection improvements.
Optimized Failover peer signaling.
Improved Connectivity Status Indicator with real-time troubleshooting help.

Known Issues 🐞

Stale Peer On The Interface, When Forced Removed From Multiple Networks At Once.

Assets 15

17 Dec 11:54

v0.30.0

Netclient v0.30.0

Whats New ✨

Advanced ACL Rules - port, protocol and traffic direction
Reduced Firewall Requirements To One Single Port (443 udp/tcp)
Option to Turn off STUN or specify custom stun servers

What's Fixed/Improved 🛠

Ipv6 Metrics Data
Optimised MQ message size

Known Issues 🐞

Stale Peer On The Interface, When Forced Removed From Multiple Networks At Once.

Assets 14

08 Nov 10:31

v0.26.0

Netclient v0.26.0

Whats New ✨

Managed DNS System (Linux)
New ACLs System

What's Fixed/Improved 🛠

Metrics Data

Known Issues 🐞

Stale Peer On The Interface, When Forced Removed From Multiple Networks At Once.

Assets 15

28 Aug 09:48

v0.25.0

Netclient v0.25.0

Whats New ✨

What's Fixed/Improved 🛠

Scalability Improvements
Fixed MQ Decrypt Error Due To Config Corruption
Netclient Push Command Fix For Static Endpoint
Handled Inernet gw issues in Dual Stack Networks

Known Issues 🐞

Erratic Traffic Data In Metrics
Stale Peer On The Interface, When Forced Removed From Multiple Networks At Once.

Assets 19