Peer-to-peer mesh VPN to connect your devices directly, no central servers
About this app
Anywherelan (awl) is a mesh VPN that lets you connect to any of your devices at the IP level, wherever they are. It works similarly to tinc, direct WireGuard or Tailscale, but fully peer-to-peer — there are no central coordination servers to trust or set up. Your traffic goes directly between your devices.
You can also route traffic through a remote device — either per-app as a SOCKS5 proxy, or all of your device's traffic at once as a full-tunnel VPN gateway (exit node).
Some use cases
• Connect to your home or work laptop over RDP/VNC/SSH even when it sits behind NAT, without configuring port forwarding.
• Reach self-hosted services like Nextcloud, Home Assistant or Bitwarden without exposing them to the internet.
• Access websites from another country by using a remote device as a SOCKS5 proxy.
• Route all of your traffic through a remote device as a full-tunnel VPN gateway (exit node), like a classic VPN.
• Gaming: local multiplayer as if everyone were on the same LAN.
• Share a development server with a colleague on another device, as an alternative to ngrok.
• Use an old Android phone remotely with scrcpy to run Android-only apps without an emulator.
Features
• Fully peer-to-peer. No third-party coordination servers — your traffic stays between your devices.
• Route traffic through a remote device like a SOCKS5 proxy.
• Full-tunnel VPN gateway: route all of your device's traffic through a remote exit node.
• Easy to use: install the app, scan the QR code of another device, and you are connected.
• Built-in NAT traversal.
• If both devices are behind NAT and direct P2P is not possible, encrypted traffic is relayed through community relays.
• TLS 1.3 encryption for all transports (QUIC and TCP).
• ed25519 peer authentication — a peer id is the device's public key.
• Cross-platform: Android, Windows, Linux, macOS.
How it works
Awl is built on top of libp2p for peer-to-peer networking and a TUN virtual interface for IP routing. QUIC or TCP with TLS is used as a transport, and a DHT is used to discover peers. On first launch, the app connects to community bootstrap nodes, registers itself, and then looks up the addresses of the peers you want to reach.
Source code, desktop builds and more documentation: https://github.com/anywherelan/awl
Licensed under MPL-2.0, by Anywherelan.
What's New in v0.18.0
Imported from the F-Droid repository index.
- New: VPN gateway (full-tunnel exit node).
- Route all of your device's traffic through one of your remote devices at the IP layer, like a classic VPN — not just per-app like the SOCKS5 proxy. Pick an exit node and turn it on or off without restarting the app.
- Note: the exit node must be a Linux device (Android can use a gateway, but not serve as one). Only IPv4 traffic is routed.
Version history
Jul 1, 2026 · 63 MB · Android API 24–33 · code 18000
Imported from the F-Droid repository index.
- New: VPN gateway (full-tunnel exit node).
- Route all of your device's traffic through one of your remote devices at the IP layer, like a classic VPN — not just per-app like the SOCKS5 proxy. Pick an exit node and turn it on or off without restarting the app.
- Note: the exit node must be a Linux device (Android can use a gateway, but not serve as one). Only IPv4 traffic is routed.
SHA-256 3b5689996953200f18d1a653f49299a286cba5fead2e866175265a2c1a3fd6ab
Will it run on your device?
87%
- Runs on a broad range of modern Android versions.
- Multiple CPU architectures are covered.
Installation Guide
Open Settings on your Android device
Go to Security → Unknown sources (or Install unknown apps)
Enable "Allow from this source" for your browser or file manager
Open the downloaded APK file from your Downloads folder
Tap "Install" and wait for installation to complete
Launch the app from your home screen
Make sure to re-enable Unknown Sources restrictions after installation for security.
How to install this safely
How to verify the file you downloaded
Before you install anything, confirm the file is the one described here. On a computer, run shasum -a 256 your-download.apk (macOS or Linux) or certutil -hashfile your-download.apk SHA256 (Windows), then compare the output character-for-character with the SHA-256 on this page. If a single character differs, the file is not the build we recorded — delete it.
What the signing certificate proves
Every Android app is signed with a private key that only its developer holds. The fingerprint on this page is a hash of the matching public certificate, and it proves continuity rather than identity: it tells you a build came from whoever signed the earlier ones. Android enforces this at install time — if a package claiming to be com.anywherelan.awl is signed with a different key, the system will refuse to install it over your existing copy. A fingerprint that changes between releases is worth pausing on, because a repackaged app that has been modified by someone else cannot keep the original signature.
How to roll back to an earlier version
No earlier build is on record for Anywherelan, so there is nothing to roll back to yet. When a second version is published, this section will explain how to move between them safely.
Why we list sources instead of hosting everything
The official store channel is almost always the right choice: it updates automatically and carries the publisher's own distribution guarantees. A direct APK is useful when a device has no store access, when a rollout has not reached your region, or when you need a specific version — and only when the publisher has authorized that copy. APKBrowse does not list pirated, cracked, or unauthorized rebuilds of Anywherelan, and a listing is removed when the evidence for it stops holding up.
Get Anywherelan
Every source we list for com.anywherelan.awl is legality-reviewed. Pirated or cracked builds are never offered.
Other sources
F-Droid listing
officialF-Droid builds this app from source and signs it. This is its official listing, with older builds and full release notes.
Source code
verified publisherThe upstream repository this build is compiled from.
We check legality and signature continuity, but device behaviour still varies. Install at your own discretion.
App Information
Security Verification
We record provenance; we do not run malware scans. Verify the hash yourself before installing.
SHA-256 Hash
3b5689996953200f18d1a653f49299a286cba5fead2e866175265a2c1a3fd6ab
Signing certificate
74dd8b2638f7f0ef61431317588f96141baaea8715825b2858d0dfce0c07b177
Permissions Required
Previous Versions
No earlier build is on record — this is the first release we have listed.
The signing certificate fingerprint for this release is on record, so a build that does not match it did not come from this publisher.
Report a problem with this listing
A listing is only as good as its corrections. If a source is broken, a signature looks wrong, or this app should not be here, tell the moderation team.