VPN
This page provides an overview of the VPN solutions available for securely connecting to your Kubernetes cluster and AWS VPC. We offer two options: Wireguard and Tailscale. While we recommend using Tailscale as a full-fledged solution, we also provide Wireguard as a simple, cheaper and self-managed alternative.
Comparison
| Feature | WireGuard (wg-easy) | Tailscale |
|---|---|---|
| Cost | Free / Self-hosted | Paid / Managed service |
| Management UI | wg-easy web interface | Tailscale admin console |
| User management | Manual via wg-easy UI | SSO/Identity provider integration |
| ACLs | N/A | Fine-grained (Tailscale ACLs) |
| Audit logging | N/A | Full audit log in Tailscale UI |
| Multi-factor auth | N/A | Via identity provider |
| Multi-cluster | N/A | Connect to multiple environments simultaneously |
| Best for | Cost-conscious, simple setups | Teams needing SSO, ACLs, ease of use |
More details can be found on the how-to pages for WireGuard and Tailscale.
Last updated on