Sold by: Tailscale
Deployed on AWS
Free Trial
AWS Free Tier
Tailscale is a programmable networking software built on the WireGuard® protocol that ensures seamless connectivity, control, and end-to-end security between any resource on any infrastructure.
4.7
Overview
Tailscale is a programmable networking software built on the WireGuard® protocol that ensures seamless connectivity, control, and end-to-end security between any resource on any infrastructure. With Tailscale, you can easily deliver secure remote access, replace legacy VPNs, and power ZTNA and SASE initiatives by simplifying software-defined networking and security operations.
Deploy a zero-config VPN, securely access resources on any infrastructure, unlock site-to-site networking, and modernize Enterprise networking at scale. Tailscale features 100+ technology integrations, works with dozens of leading identity providers, and is available on a wide range of operating system platforms, including Apple iOS & tvOS, Android, Windows, and Linux.
The service handles complex network configurations on your behalf so that you do not have to. Network connections between devices allow for direct connections without the need to manually configure port forwarding. It allows for connection migration so that existing connections stay alive even when switching between different networks (e.g., wired, cellular, Wi-Fi, etc). With MagicDNS, you do not have to deal with IP addresses - you can SSH or FTP into your device, transfer files between devices, or access a web server or database by just using a memorable hostname.
With Tailscale, you gain turnkey transformation by instantly pivoting from a legacy hub and spoke connectivity model to a modern, lightweight, and responsive mesh networking architecture that eliminates single points of failure and delivers better performance, scalability, and security for your end users, devices, and remote resources.
Tailscale brings identity to the network layer, so that you can control access based on user identity, not only IP address. This enables you to intuitively and flexibly define which users should have access to which services based on existing user identities, as well as groups, services, and subnet ranges.
Tailscale is cloud and hardware-agnostic - so you can make decisions about your infrastructure independently from decisions about your network. Tailscale creates an overlay network, using your existing network, which means it can be incrementally deployed. You do not need to buy new network switches or edge devices to use Tailscale, or to change your network architecture.
Tailscale is simple and effortless networking for the cloud era.
For custom pricing, custom EULA, or private contract, please contact aws-marketplace@tailscale.com for a private offer.
Highlights
- Zero-config Business VPN - Rapidly deploy a modernized VPN solution to connect your users, devices, and shared resources.
- Secure Remote Access - Securely access shared developer resources, including VMs, containers, databases, and more- anywhere in the world.
- Site-to-Site Networking - Easily connect your cross-infrastructure and cloud environments to securely transfer data between private resources.
Details
Sold by
Delivery method
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Free trial
Try this product free according to the free trial terms set by the vendor.
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/month |
|---|---|---|
Per User Premium Plan | For companies who need resource authentication and access controls | $18.00 |
Per User Starter Plan | For teams looking for an easy-to-use, secure, legacy VPN replacement. | $6.00 |
Vendor refund policy
No refunds available.
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By OpenVPN Inc.
By Zscaler, Inc.
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
VPN Protocol
Built on WireGuard protocol for secure network connectivity
Zero Trust Network Access
Identity-based access control at network layer enabling user and group-based resource access policies
Mesh Network Architecture
Direct device-to-device connections with automatic connection migration across different network types
DNS Resolution
MagicDNS functionality enabling hostname-based resource access without manual IP address management
Multi-Platform Support
Compatible with iOS, tvOS, Android, Windows, Linux operating systems with 100+ technology integrations
Zero Trust Network Access
Enforces least-privilege access based on user identity with continuous checks on device identity, device security, and user location
Intrusion Detection and Prevention
Built-in IDS/IPS that automatically filters and blocks malicious traffic based on threat priority or category
DNS-Based Content Filtering
Customizable, pre-emptive DNS filtering to block websites from 43 undesirable or unsafe categories
Application Domain-Based Routing
Routes traffic to applications using application domain names instead of IP addresses, efficiently handling overlapping IP address ranges across distributed private networks
Global Distributed Network Infrastructure
Cloud-delivered service from 30+ worldwide points of presence with full-mesh topology over high-speed internet access for redundancy and reduced latency
Zero Trust Architecture
Cloud-native zero trust platform that applies zero trust principles to eliminate attack surface and prevent lateral movement across users, applications, and infrastructure.
AI-Powered Threat Detection
AI-powered cyberthreat and data loss prevention services that detect and prevent advanced threats, accidental exposure, theft, and ransomware attacks.
Next-Generation Network Access
Next-generation zero trust network access (ZTNA) platform enabling seamless and secure connectivity to private applications, services, and operational technology devices.
Data Loss Prevention
Data protection capabilities preventing data loss from users, SaaS applications, and public cloud infrastructure through comprehensive loss prevention policies.
End-to-End Digital Experience Monitoring
End-user perspective monitoring and visibility across device, ISP, cloud proxy, and application layers to optimize performance and identify application, network, and device issues.
Standard contract
No
No
Customer reviews
Tony C.
Simplifies Global Device Connectivity with Ease
Reviewed on Jan 30, 2026
Review provided by G2
What do you like best about the product?
I really like Tailscale's ability to connect devices peer-to-peer using the WireGuard protocol, regardless of the network situation or device status. It's great that the device doesn't need a public IP for others to connect to it. I use Tailscale with PFSENSE and a few other servers, especially AWS, and it works great in terms of security and ease of use. Its ability to support multi-platforms like Apple TV is a really great feature. The initial setup of Tailscale is very straightforward, and the manual and documentation contain everything that's needed. If I find anything confusing, I can easily refer to YouTube videos to walk me through the setup.
What do you dislike about the product?
I think the thing that Tailscale doesn't work well is the authentication. A lot of times, almost always, you would have to sign in your Google account to authenticate a device. And sometimes if you have not used Tailscale for a long time, it'll prompt you for re-signing in your Google account to log in to your Tailscale account. In some cases where the device is sitting behind a network with strict regulations preventing Google access, like in China, you wouldn't be able to authenticate yourself and thus can't use Tailscale effectively.
What problems is the product solving and how is that benefiting you?
I use Tailscale to connect my network stations globally, solving NAT traversal issues and enabling peer-to-peer device connectivity without needing a public IP.
reviewer2797194
Securing private cloud workflows has protected sensitive AWS resources with fine-grained access
Reviewed on Jan 18, 2026
Review from a verified AWS customer
What is our primary use case?
We have been using Tailscale for about four or five months, and we have been using it from the beginning.
For our main use case, we use Tailscale because it creates a peer-to-peer VPN mesh where we host our AWS infrastructure behind it, so the general web cannot directly access it. It is only accessible from authorized systems, such as the one that I have.
A specific example of how we use Tailscale for this peer-to-peer VPN mesh in my daily work is that the entirety of our AWS infrastructure and systems that we use to build at Flyra are behind a private VPN that is accessible using Tailscale. The general web cannot access it, so we ensure that there is nothing unauthorized accessing our servers. Authorized and recognized systems are only able to access the infrastructure and the resources that we want restricted, and that is where Tailscale comes in.
About my main use case, I am fully aware that it is end-to-end encrypted. We maintain access using ACLs, which allows us to fine-tune the fine-grained rules for who can connect and to what.
What is most valuable?
The best features Tailscale offers are highlighted by the fact that setting up Tailscale was straightforward, at least once you are following the documentation and the guides. The security is valuable, as there are many providers available, but Tailscale fulfills the requirements that we had, allowing us to access and expose internal apps without exposing them to the general internet. The complex site-to-site connections are replaced using VPNs, and we can SSH into our remote desktops or SSH into our EC2 machines in our AWS regions in a secure way.
About the features that make Tailscale stand out for me, with access control lists, we can fine-grain what can be accessed and by whom. It solved our base use case, which is keeping our secured infrastructure behind a private VPN, and that is why we started using it in the first place.
Tailscale has had more positive impacts on my organization regarding security.
What needs improvement?
Regarding how Tailscale can be improved, I think for free users, there are some limited options. However, we have a paid policy, so we pay Tailscale every month. At some point, we may want to host our own coordination servers, which Tailscale does not have right now. However, it is just a general consideration, and I doubt that we will have that problem soon.
Regarding the needed improvements for paid users, I think things are acceptable. The limits could be higher for free users, and that is all.
For how long have I used the solution?
I have been a software developer for about two years, and that represents full-time experience.
What other advice do I have?
My advice to others looking into using Tailscale is that if there is a use case where you want to secure your private EC2 instances, the workflows, your Git repositories, and sensitive data, Docker images, Maven builds, Gradle builds, and so forth, behind and away from the general internet and onto your private cloud, Tailscale can act as that link, allowing you access to that private information from authorized systems while also fine-graining that control. I would rate this product a nine out of ten.
Prajwal S.
Streamlined Local VPN Setup, Needs Better Connectivity
Reviewed on Dec 19, 2025
Review provided by G2
What do you like best about the product?
I really like how Tailscale is simple to use. It’s straightforward with a Mac desktop, where you just plug in your credentials and the client's credentials, and you’re good to go. The software has simple installations and clear guides. The setup was really easy with the documentation provided, and everything went smoothly.
What do you dislike about the product?
Sometimes it might be a blocker, I would say. You might be blocked out every now and then. For example, maybe they have some caches, so they keep your credentials locally for around forty-eight hours or seventy-two hours, so you might be logged out. Network isolation or something needs to be taken care of. That could be improved for better connectivity.
What problems is the product solving and how is that benefiting you?
Tailscale allows me to work locally without the need for commercial VPNs, solving connectivity issues by enabling local setup.
Swet S.
Effortless Remote Access for Home Networks
Reviewed on Dec 08, 2025
Review provided by G2
What do you like best about the product?
Being able to install it on my Mac mini (home server of sorts) and use the subnets to be able to access my routers, and generally act like Im at my house, while away. Also this works for my NAS, I can not remove any exposure to it from the internet, and allow only LAN access, which allows me to access it remotely with TS.
What do you dislike about the product?
Tailscale is good for small “home scale” networks. I find it very cumbersome for large scale networks (eg at production scale networks) where you have to want to do more advanced stuff like DNS routing, granular ACLs, etc. Some of it is technically possible with Tailscale but it is very cumbersome and doesn’t scale well. For personal use, I think netbird and zerotier to be functionally similar and different pros/cons.
What problems is the product solving and how is that benefiting you?
I am not any sort of network guru. I just wanted to be able to access my home Linux box remotely with a laptop or tablet. Getting this set up using ddns and port forwarding through the cable box was getting to be a pain. Maybe I'm just not smart enough. I read about tailscale and a couple of YouTube videos I decided to give it a try. Couldn't have been easier. Now it's two desktops, two Amazon fire tablets, and a Linode instance later...
David S.
Experience using TailScale
Reviewed on Nov 25, 2025
Review provided by G2
What do you like best about the product?
probably that is not that complicated to use, once you get the context its pretty straight forward
What do you dislike about the product?
probably the process of disconnecting, its always turned on and sometimes you do not need the VPN as youll probably be doing other tasks that do not require VPN
What problems is the product solving and how is that benefiting you?
probably the access to the company's systems, with a secure network to make sure that we comply with the security standards