Our core mission is driving the future of distributed cloud computing. The infrastructure of the internet is siloed and byzantine. We can do better.

GRAVITL

I noted that the prereqs want netmaker deployed in a "dedicated networking environment". How hard a requirement is that? Would it be ok if I had two subnets behind a firewall? Say subnetA on a 10.x cidr that would contain some netclients, and netmaker itself sitting in subnetB on say a 172.x cidr?

The main thing is that Netmaker should have a dedicated public ip

As long as you forward the required ports and force the outgoing IP to the intentional address you should be ok.   1:1 nat reminds me of pfSense or OPNSense where you would force the advanced outbound NAT to the static public IP