In this episode of the Elixir Mentor Podcast, I chat with Jamil Bou Kheir, founder of Firezone, a YC-backed open-source zero-trust access platform. Jamil shares his journey from eight years as a Cisco security engineer to building an enterprise VPN replacement using Elixir and Rust.

We explore how Firezone started as a simple WireGuard configuration tool that hit the front page of Hacker News, then evolved into a full zero-trust platform. Jamil explains the architecture decisions behind using Elixir for the control plane and Rust for the data plane, including their custom ICE implementation called Snownet for NAT traversal. The conversation covers practical insights on Phoenix PubSub for real-time signaling, Postgres WAL streaming for change data capture, and running a global Erlang cluster.

Jamil also shares candid advice from the Y Combinator experience, discussing funding, product-market fit, and the challenges of rebuilding a product architecture mid-startup. We dive into the realities of open source licensing, security through transparency, and SOC 2 compliance. The episode touches on AI in development workflows, managing large refactors, and marketing strategies for technical founders.

Whether you're interested in networking protocols, building with Elixir at scale, or the startup journey from side project to funded company, this conversation offers valuable perspective from someone doing it in production.

Resources Mentioned:
- Firezone: https://www.firezone.dev
- WireGuard: https://www.wireguard.com
- Github: https://github.com/firezone/firezone

Connect with Jamil:
- Website: https://www.firezone.dev
- X/Twitter: https://x.com/jamilbk
- LinkedIn: https://www.linkedin.com/in/jamilbk/
- GitHub: https://github.com/jamilbk

Sponsors:
- Paraxial.io: https://paraxial.io
- Jido: https://agentjido.xyz/discord

SUPPORT ELIXIR MENTOR
- Elixir Mentor: https://elixirmentor.com