Comparison of LAN tunneling tools
Many tools exist to create end-to-end encrypted tunnels between hosts, or share other superficial similarities with Vula, but to our knowledge, none of them achieves Vula’s design goal of fully automatating end-to-end encryption of local area network traffic. Our comparison of the advantages and disadvantages of these tools is summarized in the table at the end of this topic.
Vula’s unique properties include:
- No special infrastructure is required.
- Operation is fully automatic: LAN traffic between hosts with Vula installed is protected without any configuration whatsoever.
- Offline network protocols are supported, for example, RFC 3927 link-local addressing on Ethernet, ad-hoc Wi-Fi, and Thunderbolt.
- Existing IP addresses are used (whether DHCP-assigned, link-local, or manually configured), so applications do not need to be reconfigured.
- Transitional post-quantum encryption offers resistance to future cryptanalysis threats.
Projects such as Tailscale, Headscale, and innernet are similar to Vula in that they can be used to encrypt traffic between hosts on a LAN using WireGuard tunnels, but they differ in some important respects:
- All create tunnels between hosts that are logged into the same account on a centralized coordination server. Tailscale outsources this centralized component to Amazon AWS, a surveillance actor. Headscale and innernet provide free software implementations that can be self-hosted, but remain a single point of failure.
- All use different IP ranges inside and outside of the encrypted tunnels, requiring LAN-based applications to be reconfigured.
- All lack post-quantum protection.
With the exception of TCPcrypt and IPsec OE, the other projects listed below are all designed to protect traffic between hosts which are configured as part of a single organization, whereas Vula provides automatic encryption between all locally-reachable hosts that are running the software.
TCPcrypt is an outlier, in that it does provide opportunistic encryption between hosts without any configuration; however, it only protects TCP traffic, does not provide secure names, and its key verification system requires application-specific support. These and other deployment impediments have prevented its adoption.
IPsec OE also is designed to provide opportunistic encryption, but has numerous shortcomings and has failed to gain adoption.
| zero configuration | encrypts | works offline | required infrastructure | post-quantum | protects traffic using existing IPs | secure hostnames | free software | encrypted transport | |
|---|---|---|---|---|---|---|---|---|---|
| Tailscale | ❌ | all traffic to specific IP addresses | ❌ | coordination server (Amazon-hosted) | ❌ | ❌ | ✔️ | client ✔️ , server❌ | WireGuard |
| Headscale | ❌ | all traffic to specific IP addresses | ❌ | coordination server (self-hosted) | ❌ | ❌ | ✔️ | ✔️ | WireGuard |
| innernet | ❌ | all traffic to specific IP addresses | ❌ | coordination server | ❌ | ❌ | ✔️ | ✔️ | WireGuard |
| Nebula | ❌ | all traffic to specific IP addresses | ❌ | certificate authority | ❌ | ❌ | ✔️ | ✔️ | custom protocol |
| MACsec | ❌ | Ethernet traffic between host and switch (not e2ee) | ✔️ | RADIUS server | ❌ | ✔️ | ❌ | host ✔️ , switch❌ | MACsec |
| TCPcrypt | ✔️ | TCP traffic between any participating hosts | ✔️ | none | ❌ | ✔️ | ❌ | ✔️ | TCPCrypt |
| IPsec OE | ❌ | all WAN and LAN traffic between participating hosts | ✔️ | DNS+DNSSEC for authentication with static records and/or third party CA | ❌ | not by default | ❌ | ✔️ | IPSec’s peer-wise common cipher-suite |
| PQWireGuard | ❌ | all WAN and LAN traffic between participating hosts | ✔️ | manual key exchange out of band | ✔️ | not by default | ❌ | ✔️ | PQWireGuard |
| Vula | ✔️ | all traffic between participating hosts on the same LAN | ✔️ | none | transitional (passive) | ✔️ | ✔️ | ✔️ | WireGuard |
Additional projects to analyze?
Please feel free to send us a request to analyze your favorite software and we will add it to the above table.