Say goodbye to your legacy VPNMake the switch to Tailscale
Get started
Login
WireGuard is a registered trademark of Jason A. Donenfeld.
© 2024 Tailscale Inc. All rights reserved. Tailscale is a registered trademark of Tailscale Inc.
Zero Trust Networking icon

Artificial Intelligence (A.I.)

Secure remote access for local LLMs

Private networking to connect users, LLMs, and data across any infrastructure.

Secure your workloads

The right balance of performance and security

Infrastructure agnostic
Fast data transfers
Software defined perimeters

Build reliable AI infrastructure to connect private language and vision models

Kubernetes operator

Connect K8s & K3s with Kubernetes Operator

Connect services (north-south, east-west) across heterogeneous environments, encrypting communications using WireGuard
ACLs

Manage access policies at DevOps speeds

Integrate access control policy management into existing IaC and GitOps workflows and automatically apply changes throughout your tailnet.
Scalability

Achieve Enterprise Scalability

Achieve the high availability, load-balancing, and failover capabilities that your organization requires for a global workforce with regional routing
SSH workflow

Simplify Your SSH Workflow

Provide users and machines with time-bound SSH access with automated key management and session recording
Visibility into your network

Gain visibility into your network activity

Stream configuration audit logs, network flow logs, and SSH sessions into your preferred SIEM and surface potentially anomalous activity faster.

Our WireGuard® based network safeguards your most valuable AI resources

Users Management

SSO & MFA with IdP

Users can authenticate using one of our supported identity providers to access the tailnet.

User & group provisioning (SCIM)

Sync users and group settings from one of our supported IdPs to keep ACLs up-to-date.

On-demand access

Partner integrations allow administrators to provide time-bound, elevated privileges for users.

Devices

Device approval

Require devices to be approved by an administrator before joining the tailnet.

Device Posture

Collect device attributes and use them as part of connectivity rules within your Tailnet to limit access for devices that do not meet security requirements

Policies

Access controls lists (ACLs)

Create RBAC policies to determine which users, roles, or groups can access, which nodes on your tailnet.

ACL tests

Verify ACLs provide sufficient coverage against unnecessary exposure.

GitOps for ACLs

Manage ACLs version control within a CI/CD workflow using GitHub or GitLab.

Tailnet lock

A predetermined trusted node must verify the trusted keys of any nodes attempting to join your tailnet.

Network Access

App Connectors

Secure third-party SaaS applications by restricting access to authorized users.

Kubernetes Operator

Connect services and encrypt communications across heterogeneous environments.

Regional Routing

Increase performance with high availability across complex networks.

Exit nodes

Route all traffic through a designated egress point, similar to a privacy VPN.

End-to-end encryption

Tailscale uses WireGuard protocols for end-to-end encryption.

Logging

Configuration audit logging

Surface what configuration-based actions occurred, by whom, and when.

Network flow logging

Surface what node-to-node interaction occurred, and when.

Log streaming

Natively stream configuration or network flow logs to our SIEM integration partners.

SSH session recording

Store any Tailscale SSH session recording long-term in any S3-compatible service or local disk.

Try Tailscale for free

Schedule a demo
Contact sales
cta phone
mercury
instacart
Retool
duolingo
Hugging Face