frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Rayfish, Peer-to-peer mesh VPN with no server to trust

https://rayfish.xyz/blog/01-introducing-rayfish
1•captain_dfx•1h ago

Comments

captain_dfx•1h ago
Hi HN, we built Rayfish, a peer-to-peer mesh VPN written in Rust on top of iroh.

The core idea: every node has a keypair, and its identity on the network is that public key. From the key we derive a stable IPv4 in 100.64.0.0/10 and a stable IPv6 in 200::/7, similar in spirit to yggdrasil. Those addresses are yours for as long as you hold the key, and they don't change when you move networks or your physical IP changes. You still reach peers by IP or by a name.ray DNS name, the difference is that the address comes from the identity rather than from where you happen to be.

"No server to trust" is the part we care about most. There is no central control plane that brokers your traffic or holds the keys to your network. Peers find each other and connect directly over iroh's QUIC stack, with NAT traversal, hole punching, and relay fallback handled underneath. Relays, when used, only forward encrypted packets and never see your keys or decide who is in your network. Membership and trust live with the peers, not with us.

How it works in practice:

- Networks are closed by default. You join with a one-time invite, a reusable key for fleets of servers, or live approval from a member already inside. The room id is only for discovery, it is never an admission credential. - Any member can be granted the network key and act as a coordinator, so admitting new peers keeps working even if the original creator is offline. - There is a per-device firewall, directional and scoped by port and protocol, plus Magic DNS so you can reach nodes at name.ray (or just name, no need for the .ray suffix). - A "ray connect" flow links two people directly with no shared room, like a friend request between keys. - No ACLs. Networks are logical partitions. Firewall is per-host. You can combine both to have custom ACLs.

It is a single binary with a daemon and a CLI. `ray up`, then `ray create` or `ray join <invite>`, and you have a private network.

Honest limitations: it is early. The mesh protocol is gated at the transport layer, so we break compatibility between releases when we need to. There has been no third-party security audit yet. Mobile is not there. It runs on Linux and macOS today.

Code: https://github.com/rayfish/rayfish

Happy to get into the addressing scheme, the iroh transport, the admission and coordinator model, or anything else.

someonebaggy•1h ago
I don't know why your post was autoflagged but what makes your product unique from the rest?

AI Sped Up Coding Faster Than It Sped Up Delivery

https://www.builder.io/blog/ai-sped-up-coding-faster-than-it-sped-up-delivery
1•jamdesk•42s ago•0 comments

Cloudflare to block cynical search-and-scrape bots from ad-supported web pages

https://www.theregister.com/ai-and-ml/2026/07/01/cloudflare-to-block-cynical-search-and-scrape-bo...
1•hedora•1m ago•1 comments

Why AI agents get canceled (and the 5 places they fail quietly)

https://www.brimtech.co/notes/why-agents-get-canceled/
1•semalba•2m ago•0 comments

For First Time, a Cell Built from Scratch Grows and Divides

https://www.quantamagazine.org/for-the-first-time-a-cell-built-from-scratch-grows-and-divides-202...
1•defrost•3m ago•0 comments

Heading OS – Run a company (as the CEO) from Claude Code, with data kept private

https://github.com/mishahanin/heading-os
1•mishahanin•5m ago•0 comments

Physical Disc Production to End for New Games Releasing on PlayStation Consoles

https://www.ign.com/articles/sony-just-killed-discs-physical-disc-production-to-end-january-2028-...
1•alanfranz•5m ago•0 comments

Soatok's Informal Guide to Threat Models

https://soatok.blog/2026/06/30/soatoks-informal-guide-to-threat-models/
1•birdculture•5m ago•0 comments

The Case for Sustainability Metrics (Or Don't Be Kennan Frost)

https://pawelbrodzinski.substack.com/p/the-case-for-sustainability-metrics
1•flail•6m ago•0 comments

They Don't Know How It Works

https://moai.studio/blog/posts/they-dont-know-how-it-works.html
1•ionwake•7m ago•0 comments

Abundance of Intelligence

https://magzimof.com/abundance-of-intelligence/
1•shaimagz•8m ago•0 comments

Mark Zuckerberg says a Meta cloud computing business 'definitely on the table'

https://www.cnbc.com/2026/05/27/mark-zuckerberg-says-meta-starting-cloud-business-on-the-table.html
1•BiraIgnacio•8m ago•0 comments

Watching for File Changes on macOS

https://alexwlchan.net/2026/watch-files-on-macos/
1•surprisetalk•9m ago•0 comments

CNN Weather

https://www.cnn.com/interactive/new_business/weather_app/index.html
1•ChaseRensberger•9m ago•0 comments

Monlite: The complete back end for AI agents – in one file

https://github.com/qataruts/monlite
2•emadjumaah•12m ago•0 comments

Meta looks to turn excess AI compute into cash

https://techcrunch.com/2026/07/01/meta-like-spacex-looks-to-turn-excess-ai-compute-into-cash/
2•bogdiyan•12m ago•0 comments

Show HN: Pinch-to-zoom tree navigation

https://www.delopsu.com/pinch-to-zoom-tree-navigation
3•delopsu•13m ago•1 comments

Mageia 10 keeps the 32-bit Linux flame alive

https://www.theregister.com/os-platforms/2026/06/29/mageia-10-keeps-the-32-bit-linux-flame-alive/...
1•Qem•13m ago•0 comments

FFmpeg 9.1's new AAC encoder

https://news.ycombinator.com/
2•ledoge•13m ago•3 comments

Prevented Mortality and Greenhouse Gas Emissions from Nuclear Power [pdf]

https://www.giss.nasa.gov/pubs/docs/2013/2013_Kharecha_kh05000e.pdf
1•rbanffy•15m ago•0 comments

Show HN: Osiris JSON generate private infrastructure snapshot without AI or SaaS

https://github.com/osirisjson/osiris-producers
1•skhell•16m ago•0 comments

Show HN: Loma – a self-hosted shared AI layer for your whole company

https://github.com/plotlinelabs/loma
1•tadarsh•16m ago•0 comments

This Cell Feeds, Grows and Reproduces. and It's Manmade

https://www.nytimes.com/interactive/2026/07/01/science/spudcells-synthetic-cell.html
3•quux•17m ago•1 comments

Cory Doctorow: There are reasons to be optimistic about the AI bubble bursting [video]

https://www.youtube.com/watch?v=r03DPWGIxfY
2•dgellow•18m ago•0 comments

Creator Left Furious After Man Uses AI to Turn Her Book Idea into Content

https://thenerdstash.com/colorado-creator-left-furious-after-man-uses-ai-to-turn-her-book-idea-in...
4•dentemple•20m ago•1 comments

Discovering Concept-Editing Algorithms with LLM Agents

https://dmodel.ai/concept-erasure/
3•mattmarcus•21m ago•0 comments

Despite its best efforts, Iran won't be able to toll the Strait of Hormuz

https://theconversation.com/despite-its-best-efforts-iran-wont-be-able-to-toll-the-strait-of-horm...
2•thisislife2•21m ago•1 comments

The C to Rust migration book

https://mainmatter.com/c-to-rust-migration-book/
2•LukeMathWalker•23m ago•0 comments

I Like Small Keyboards

https://samsm.ch/small-keyboards/
1•surprisetalk•23m ago•0 comments

Your Site, Your Rules

https://blog.cloudflare.com/content-independence-day-ai-options/
2•soheilpro•23m ago•0 comments

Trust your compiler: Modern C++

https://categorica.io/blog/2026.06.29_trust_your_compiler/
2•foxhill•24m ago•0 comments