ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Pritunl Zero

    Scheduled Pinned Locked Moved IT Discussion
    19 Posts 7 Posters 1.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • DustinB3403D
      DustinB3403
      last edited by

      It looks a lot like a proxy. In that you manage all of your public facing services to it, and let it manage the connects back into your network.

      Not really sure how it works specifically besides that.

      1 Reply Last reply Reply Quote 0
      • DustinB3403D
        DustinB3403
        last edited by

        Going to their Gitlab website : gitlab.pritunl.com

        lol. . uh didn't they say NO VPN?!

        0_1539261185281_chrome_2018-10-11_08-33-01.png

        coliverC 1 Reply Last reply Reply Quote 0
        • coliverC
          coliver @DustinB3403
          last edited by

          @dustinb3403 said in Pritunl Zero:

          Going to their Gitlab website : gitlab.pritunl.com

          lol. . uh didn't they say NO VPN?!

          0_1539261185281_chrome_2018-10-11_08-33-01.png

          Right, I'm curious how this is supposed to work.

          1 Reply Last reply Reply Quote 0
          • DustinB3403D
            DustinB3403
            last edited by

            Looking at the demo, they are managing the connections by passing everything through this service. The client devices than need to be setup with a certificate or 2FA device to allow you to login.

            At least that's what it seems like to my coffee lacking brain.

            coliverC 1 Reply Last reply Reply Quote 0
            • coliverC
              coliver @DustinB3403
              last edited by

              @dustinb3403 said in Pritunl Zero:

              Looking at the demo, they are managing the connections by passing everything through this service. The client devices than need to be setup with a certificate or 2FA device to allow you to login.

              At least that's what it seems like to my coffee lacking brain.

              Ok that's what I was thinking. Not necessarily a bad thing but not altogether revolutionary.

              1 Reply Last reply Reply Quote 1
              • A
                Alex Sage
                last edited by

                My understanding is that a user visits a webpage, logs in, and they are able to reach internal web services.

                At least that's what I am getting by looking at this:

                https://docs.pritunl.com/docs/pritunl-zero-service

                You can use it for SSH as well, too.

                coliverC 1 Reply Last reply Reply Quote 0
                • coliverC
                  coliver @Alex Sage
                  last edited by

                  @aaronstuder said in Pritunl Zero:

                  My understanding is that a user visits a webpage, logs in, and they are able to reach internal web services.

                  At least that's what I am getting by looking at this:

                  https://docs.pritunl.com/docs/pritunl-zero-service

                  You can use it for SSH as well, too.

                  So it's a secure proxy with a landing page? Interesting. If you could tie 2FA into this I think that could an interesting tool.

                  A stacksofplatesS 3 Replies Last reply Reply Quote 0
                  • A
                    Alex Sage @coliver
                    last edited by

                    @coliver That's my understanding but I could be completely wrong.

                    0_1539263340118_791eb3ee-879f-4500-b5a3-1b375391ddf1-image.png

                    1 Reply Last reply Reply Quote 0
                    • A
                      Alex Sage @coliver
                      last edited by

                      @coliver Sadly, that's only available in the paid editions:

                      0_1539263417300_780bb61d-88cd-4661-b8a5-a1f8cb0dbe9f-image.png

                      1 Reply Last reply Reply Quote 0
                      • A
                        Alex Sage
                        last edited by

                        It's a open source (free?) alternative to CloudFlare Access.

                        https://www.cloudflare.com/products/cloudflare-access/

                        scottalanmillerS 1 Reply Last reply Reply Quote 0
                        • scottalanmillerS
                          scottalanmiller @Alex Sage
                          last edited by

                          @aaronstuder said in Pritunl Zero:

                          It's a open source (free?) alternative to CloudFlare Access.

                          https://www.cloudflare.com/products/cloudflare-access/

                          I wasn't aware of that product, either.

                          1 Reply Last reply Reply Quote 0
                          • stacksofplatesS
                            stacksofplates
                            last edited by

                            It looks like Vault or CloudFlare Access but less functionality.

                            1 Reply Last reply Reply Quote 0
                            • stacksofplatesS
                              stacksofplates @coliver
                              last edited by stacksofplates

                              @coliver said in Pritunl Zero:

                              @aaronstuder said in Pritunl Zero:

                              My understanding is that a user visits a webpage, logs in, and they are able to reach internal web services.

                              At least that's what I am getting by looking at this:

                              https://docs.pritunl.com/docs/pritunl-zero-service

                              You can use it for SSH as well, too.

                              So it's a secure proxy with a landing page? Interesting. If you could tie 2FA into this I think that could an interesting tool.

                              I don't believe that's what this is. From their guide it sounds like this works similarly to Vault. Instead of pushing out individual keys to servers you use this CAs pub key on each server. Users thrn request a cert from the CA that they use to log in.

                              Ah my bad. I thought he was saying that's how it works for SSH.

                              1 Reply Last reply Reply Quote 0
                              • 1 / 1
                              • First post
                                Last post