Hello Sysadmins ,
I am looking to deploy Pritunl VPN/Zero Trust on AWS , not sure what …
My use cases are below , could you please elaborate on whats the difference between two and if it would help me achieve the following use cases :
All AWS hosted internal apps and services behind the VPN
feature of log management such as insights
feature like secure gateway to blacklist/whitelist websites
SSO functionality
Backup plan in case VPN is down. How easy will it be to disable/bypass it. Can we whitelist users to bypass on demand
Higher performance need
Ensuring network separation b/w different departments. E.g Ops and Tech networks should be isolated
Thanks in advance !
What are you trying to accomplish?
Those “Zero Trust” programs are similar to a VPN. You often face additional monthly recurring costs with them. They often route traffic through their infrastructure before it hits your infrastructure, but that doesn’t inherently mean they’re worse.
They’re easier to deploy because it’s a SaaS solution, so the vendor owns much of it. But OpenVPN isn’t hard to deoloy either if you have something that can auto deploy it’s certs snd whatnot.
Zero Trust type “VPNs” (they aren’t VPNs, not really) are easier to work with per user policy by some respect. If it’s free/cheap/included with something, there’s no reason not to use it if it works. There’s some strangeness when compared with a VPN though.
Pritunl is just OpenVPN, it’s practically free if done on premise. It will also grant remote access just fine to resources you require.