Modern, Open Source, Self-Hosted Alternative to Tailscale for Teams and Workloads
Octelium is Free and Open Source Software
A Unified Zero Trust Access Platform
A Unified Zero Trust Access Platform that can Operate as a a Scalable Remote Access VPN, Comprehensive ZTNA/BeyondCorp Platform, an API/AI/MCP Gateway, an ngrok Alternative, a PaaS-like Platform for Secure as well as Anonymous Access
A Unified Architecture for Client-based and Clientless Access
A Unified Scalable Architecture on top of Kubernetes to Provide both Zero-Config Client-based Access over WireGuard/QUIC with Centralized Private DNS as well as Public Clientless BeyondCorp and even Anonymous Access
Secretless Access to APIs, SSH and Databases
Provide Dynamic Secretless Access to HTTP-based Resources without sharing API Keys and Access Tokens, PostgreSQL and MySQL Databases without sharing Passwords, SSH Servers without Managing Keys and Certificates, Kubernetes Clusters without sharing Kubeconfigs
A Platform for Deployment, not just Access
A PaaS-like Platform to Effortlessly Deploy, Scale and Secure Access to Containerized Applications of any Kind.
Application-layer Aware Access Control
Access Control at the Application-layer (L7) (e.g. HTTP paths and methods, Kubernetes namespaces and verbs, PostgreSQL queries, etc...) using Identity-aware Proxies (IAPs) via Context-aware Policy-as-Code via CEL and OPA
Secretless Access your SaaS, not just Internal Resources
Seamlessly Provide Secure Secretless Access for Humans and Workloads to your SaaS APIs without sharing API keys, Access Tokens or OAuth2 Credentials, as well as to Public SaaS PostgreSQL and MysQL-based Databases without Sharing Passwords
Built for Scalability and Availability
A Scalable Platform Built on top of Kubernetes for Automatic Horizontal Scalability and Availability
Centralized, Declarative and Programmable Management
Designed to be Administered like Kubernetes via DevOps/GitOps-friendly Centralized and Declarative Way. The Cluster is furthermore fully Programmable over gRPC.
Integrate your OIDC/SAML SSO Providers
Seamlessly integrate any OpenID Connect or SAML 2.0 SSO Provider as well as GitHub OAuth2. Force Strong MFA via FIDO2 Phishing Resistant Authenticators into Access Control to Sensitive Resources.
OpenTelemetry-native Real-time Visibility
OpenTelemetry-ready Layer-7 Aware, Real-Time Visibility and Auditing to Your Log Management and SIEM Providers
Eliminate VPN Problems
Eliminate Traditional VPN Problems: Use a Single Stable Route instead of Injecting Countless Routes into Your Users' Clients. Effortless Dual-Stack Networking Regardless of the Support at the Upstream. Seamless, Unified, Automatic Private DNS.
Octelium is Free and Open Source Software