Is Pritunl Zero or Pritunl VPN the correct choice in what I want to setup?

macsire · March 20, 2026, 6:01am

Hey @zach, loving Pritunl VPN of Wireguard. I’m looking to setup my developers access to the following services:

Gitlab server
Grafana
ArgoCD
SSH into EC2 instances
Access to RDS instances
Other internal servers via HTTP/HTTPS

I’ve used OpenVPN/Wireguard as a VPN and Pritunl as the manager before. However, I have heard of zero-trust security and the ones that I have come across are Pritunl Zero and OpenZiti. Of course there are the paid versions for this but is Pritunl Zero or Pritunl VPN the right choice? I’m torn between the 2 (as well as OpenZiti).

We have 4 VPCs:

dev
stage
production
corp (aka internal)

I have setup AWS Transit Gateway for CORP to communicate between all VPCs so it’s a matter of testing this out in these VPCs where the VPN/zero trust would be hosted in CORP.

zach · March 20, 2026, 11:38am

Pritunl Zero is best for web applications to add a layer of authentication similar to an authenticated load balancer and to manage SSH authentication. For most configurations there should first be a privileged network that is accessed through a VPN then zero trust layers for internal services on that network where it is needed. Pritunl Zero doesn’t provide any of the VPN functionality available in the Pritunl VPN server, these are two different codebases and use cases.