Docs / Admin Guide / Platform Overview

Platform Overview

Privycs is a self-hosted, multi-protocol VPN management platform. One central gateway orchestrates lightweight agents across every site — together they form your Privycs Server.

A Server = one Gateway (web UI, REST API, WebSocket hub, PostgreSQL) + one or more Agents running on your VPN sites. The gateway pushes configuration down an encrypted TLS WebSocket; agents enforce it locally and stream metrics back up.

What you can run

Manage WireGuard, AmneziaWG, OpenVPN and IPSec/IKEv2 side by side from a single dashboard, with multi-hop privacy overlay routing, built-in CrowdSec + Suricata threat detection, zero-trust device posture and browser-based access.

Architecture at a glance

  • Central Gateway — Web UI · REST API · WebSocket hub · PostgreSQL
  • Encrypted Control Channel — TLS WebSocket · auto-reconnect · config ↓ / metrics ↑
  • Lightweight Site Agents — single Go binary per site, manage services locally
  • Local Network & Security — WireGuard, OpenVPN, IPSec, iptables, CoreDNS, CrowdSec, Suricata

Continue with Installation to bring up your first gateway, then enroll an agent in the Agent Guide.

curl -sSL https://get.privycs.io | sh