← All repositories

syncthingsyncthing

0
GitHub
80,036 stars4,933 forksGompl-2.01 view
syncthing.net

Syncthing

Syncthing is a decentralized file synchronization engine that maintains consistent data states across multiple devices through peer-to-peer mesh networking. It operates as a background daemon that automatically replicates file creations, modifications, and deletions between trusted nodes without requiring central servers. By utilizing content-addressable block indexing and block-level delta synchronization, the system identifies and transfers only the modified segments of files, ensuring efficient data propagation across heterogeneous environments.

The project distinguishes itself through a security-first architecture that relies on mutual TLS authentication to verify device identity, ensuring that all connections are cryptographically bound to trusted certificate fingerprints. It supports flexible synchronization modes, including bidirectional replication, unidirectional mirroring for backups, and reference-based enforcement. For added privacy, the system provides folder-level encryption for untrusted devices and allows for granular control over network traffic, including the ability to restrict operations to local networks or utilize relay infrastructure for NAT traversal.

Beyond its core replication capabilities, the platform offers comprehensive management tools, including a web-based dashboard for monitoring connection status and throughput, as well as a command-line interface for advanced configuration. It includes robust versioning strategies to protect against data loss and supports complex deployment scenarios through native service integration and observability metrics. The software is designed for cross-platform compatibility and can be installed via standard package managers or containerized environments.

Features

  • File Synchronization ServicesSyncthing replicates file creations, modifications, and deletions automatically across multiple devices as soon as they are simultaneously online.
  • Distributed File SynchronizationMaintaining consistent file states across multiple devices and platforms through automated, peer-to-peer replication and conflict resolution.
  • Bidirectional Folder SynchronizationSyncthing propagates changes between devices to ensure that modifications made on any connected peer are reflected across the entire cluster.
  • Block-Level Delta Synchronization"Divides files into fixed-size blocks and computes hashes to transfer only modified segments between peers."
  • Block-Level SynchronizationSyncthing divides files into fixed-size blocks and computes hashes to identify, compare, and transfer only the modified portions between devices.
  • Content-Addressable Block Indexing"Tracks file state using a global index of block hashes to identify differences and resolve conflicts between devices."
  • Secure Data ReplicationEnsuring private and encrypted file transfers between trusted peers while maintaining granular control over access and versioning.
  • Private Peer-to-Peer NetworksEstablishing direct, secure communication channels between distributed systems without relying on centralized cloud storage or third-party intermediaries.
  • Peer-to-Peer Synchronization EnginesA decentralized service that replicates files across multiple devices by tracking block-level changes and maintaining consistent state without central servers.
  • File Change DetectionSyncthing identifies file modifications using filesystem watchers and periodic full scans to update block lists for synchronization.
  • Peer-to-Peer Networking"Maintains a decentralized cluster where devices discover and synchronize directly with each other without central servers."
  • Conflict Resolution StrategiesSyncthing handles simultaneous modifications by renaming older or lower-priority files to conflict-marked copies that propagate across all devices.
  • Event-Driven State Reconciliation"Monitors filesystem changes via native watchers and periodic scans to trigger incremental synchronization across the cluster."
  • File Versioning StrategiesSyncthing maintains historical file versions using staggered time intervals and automatic pruning to balance history retention against storage limits.
  • Global DiscoverySyncthing announces device availability to global discovery servers via encrypted TLS queries to enable connections across different networks.
  • Untrusted Device EncryptionSyncthing protects data during synchronization with untrusted peers by setting folder passwords and specifying the folder type as encrypted.
  • Cross-Device Data AvailabilityKeeping personal or professional files accessible and synchronized across diverse hardware environments, including local networks and remote locations.
  • Distributed File ReplicationA mechanism for synchronizing data across heterogeneous environments by propagating modifications bidirectionally or unidirectionally between trusted network peers.
  • Simple Versioning StrategiesSyncthing moves deleted or replaced files to a dedicated directory while maintaining a fixed number of historical versions for each file.
  • Read-Only Synchronization ModesSyncthing enforces a local file state by ignoring all incoming changes from other devices and manually overriding the cluster configuration.
  • Synchronization ConfigurationsSyncthing manages local data replication by defining folder paths, synchronization types, versioning policies, and filesystem watcher behavior.
  • Unidirectional Replication ToolsSyncthing creates mirrors or backup destinations by applying all incoming cluster changes while preventing local modifications from being distributed elsewhere.
  • Versioned Backup SolutionsA storage management approach that preserves historical file states through configurable retention policies to protect against accidental deletion or corruption.
  • Local Network DiscoverySyncthing broadcasts device availability on the local network using IPv4 and IPv6 packets to allow automatic discovery of nearby peers.
  • Sync Device ConfigurationsSyncthing establishes secure peer-to-peer relationships by defining remote device identities, connection addresses, and compression settings.
  • Background DaemonsA persistent system process that operates autonomously across various operating systems to maintain continuous data availability and synchronization.
  • Secure Data Transport ProtocolsA communication layer that establishes encrypted, authenticated connections between remote nodes to ensure private and verifiable file transfers.
  • Encryption ManagementSyncthing unlocks encrypted folders by providing destination paths, folder IDs, and passwords, while verifying data integrity without committing decrypted files to the local disk.
  • Device Identity ProtectionSyncthing secures TLS keys and configuration files to protect device identity and data, revoking access for any lost or compromised hardware.
  • Management Interface SecuritySyncthing secures the web-based management interface by defining network bindings, TLS enforcement, authentication credentials, and API access keys.
  • Global Application SettingsSyncthing defines application-wide behavior including network announcement settings, bandwidth limits, relay usage, and automatic upgrade intervals.
  • Discovery ServersSyncthing facilitates peer discovery for distributed systems by running a server that supports custom certificate authentication and persistent address tracking.
  • Mutual TLS Authentication"Secures all peer connections using mutual TLS authentication, where device identity is cryptographically bound to certificate fingerprints."
  • Daemon WrappersSyncthing allows embedding background synchronization processes into native applications to provide tray icons, status indicators, and simplified user interfaces.
  • LDAP AuthenticationSyncthing delegates user login verification to directory services by configuring bind patterns and transport security settings.
  • Atomic File UpdatesSyncthing writes changes to temporary files before moving them to the destination to ensure atomic updates and provide recovery data during interruptions.
  • Atomic File Operations"Writes incoming data to temporary files before renaming them to the destination to ensure consistency during interruptions."
  • Package DistributionsSyncthing supports installation using native package managers or containerized environments to ensure automated setup and consistent maintenance.
  • Introducer Peer DiscoverySyncthing automates cluster expansion by configuring a remote device to propagate and add new peers based on shared folder connections.
  • Network Access ControlsSyncthing enhances privacy by restricting traffic to local networks and disabling relaying, NAT traversal, global discovery, and usage reporting.
  • Throughput TuningSyncthing adjusts concurrency limits, disables progress updates, and enables filesystem notifications to maximize throughput in resource-rich environments.
  • Device Connection MonitoringSyncthing tracks connection states, transfer rates, and data throughput for all local and remote devices within the network.
  • System MetricsSyncthing tracks performance and internal state using Prometheus-compatible metrics covering filesystem operations, folder synchronization, protocol traffic, and scanner activity.
  • Read-Only SynchronizationSyncthing enables synchronization from read-only filesystems by specifying existing files or directories as health indicators.
  • Automated BackupsCreating reliable, versioned, and unidirectional mirrors of critical data to protect against loss while managing storage retention policies.
  • File Versioning SystemsSyncthing moves deleted or replaced files to a trash directory with optional automatic cleanup for files older than a specified duration.
  • REST APIsSyncthing connects synchronization services to external systems using REST API bindings, configuration management tools, and automated conflict resolution scripts.
  • Ignore PatternsSyncthing controls which files and directories are excluded from synchronization by defining rules using glob patterns, character ranges, and escape sequences.
  • Crash ReportersSyncthing transmits technical thread traces and version information to developers following a crash while automatically filtering out sensitive user data.
  • Router NetworkingSyncthing improves direct device connectivity and synchronization performance by configuring port forwarding on NAT routers or assigning static IP addresses.
  • Management Interface NetworkingSyncthing controls network access to the management interface by specifying listen addresses, ports, HTTPS settings, or Unix sockets.