A Modern, Open Source, Unified Zero Trust Alternative to Business/Remote Access VPN
A Modern Alternative to Remote Access VPNs
A Unified Architecture for both Humans and Workloads to Access any Private/Internal Resource behind NAT from Anywhere as well as Protected Public Resources such as SaaS APIs and Databases
A True Zero Trust Architecture
Access Control at the Application-layer (L7) using Identity-aware Proxies (IAPs) via context-aware Policy-as-Code with CEL and Open Policy Agent (OPA)
Zero Config ZTNA
Lightweight, Private access using VPN-like Zero-Config Client-based ZTNA over WireGuard/QUIC Tunnels with Automatic Private DNS for Teams as well as for Workloads such as Containers and AI agents.
Secret-less Access to SSH, APIs and Databases
Provide Dynamic Secret-less Access to HTTP-based Resources without sharing API Keys, PostgreSQL and MySQL Databases without sharing Passwords, SSH Servers without Managing Keys and Certificates
Unified, Scalable BeyondCorp Architecture
Public client-less BeyondCorp access for both Human via their Browsers and Workload Users via Standard OAuth2 Client Credentials Flow
Built for Scalability and Availability
A Scalable Platform Built on top of Kubernetes for Automatic Horizontal Scalability and Availability
Centralized, Declarative and Programmable Management
Designed to be Administered like Kubernetes via DevOps/GitOps-friendly Centralized and Declarative Way. The Cluster is furthermore fully Programmable over gRPC.
Eliminate VPN Problems
Eliminate Traditional VPN Problems: Use a Single Stable Route instead of Injecting Countless Routes into Your Users' Clients. Effortless Dual-Stack Networking Regardless of the Support at the Upstream. Seamless, Unified, Automatic Private DNS.
Octelium is Free and Open Source Software