_____ _ _ _ _____ _ / ____| | | | | __ \ | | | (___ | |__ ___| | | |__) |___ __ _ ___| |__ \___ \| '_ \ / _ \ | | _ // _ \/ _` |/ __| '_ \ ____) | | | | __/ | | | \ \ __/ (_| | (__| | | | |_____/|_| |_|\___|_| |_| \_\___|\__,_|\___|_| |_|
ShellReach is a Linux-native remote access layer built on top of Nebula Networking, currently under development. It wraps Nebula’s secure overlay network with a simplified, shell-focused workflow to provide identity-based access to Linux devices without port forwarding or VPNs — optimized for ARM, embedded systems, and headless environments.
ShellReach is designed for scenarios where traditional SSH access becomes fragile or risky: devices behind CGNAT, mobile networks, intermittent connectivity, and large fleets of unattended nodes. It builds directly on Nebula’s secure mesh networking model, adding opinionated defaults, lifecycle management, and a shell-first user experience.
ShellReach does not replace Nebula; it orchestrates and streamlines it.
Secure-by-default configuration for keys, ACLs, and connectivity.
Connect to devices the same way every time, regardless of network topology.
First-class support for Armbian and other embedded Linux distributions.
Reliable access to devices deployed outside the datacenter or corporate network.
A simplified control layer over Nebula for real-world operations.
ShellReach is currently in the design and early prototyping phase. Core architecture decisions are being validated, and implementation work has started.
Public source code, documentation, and early builds will be announced once the foundational components are stable.