Some of the best KubeCon conversations happen long after the expo floor closes.
AβDAM Tower, After Hours
Last night, up in the AβDAM Tower, I had a fantastic chat with Albert from DUO about the evolving landscape of secure internal networking.
We got onto the topic of NetBird, and it was great to see his excitement about it. If you have not looked into it yet, NetBird is an open-source, European-built network overlay based on WireGuard. It is completely changing the game for securely connecting internal resources and services without the traditional enterprise VPN headaches.
Why Traditional VPNs Are Breaking
Enterprise VPNs were designed for a different era β when most resources lived in a single data center and remote access was the exception. Todayβs reality:
- Multi-cloud and hybrid infrastructure β resources spread across AWS, Azure, GCP, on-premises, and edge locations
- Microservices connectivity β hundreds of services need to communicate securely across environments
- Remote-first teams β every developer needs access to internal resources from anywhere
- Zero trust requirements β perimeter-based security is no longer sufficient
Traditional VPNs add latency (all traffic routes through a central gateway), create single points of failure, and require complex configuration that does not scale with cloud native architectures.
The NetBird Approach
NetBird takes a fundamentally different approach:
- WireGuard-based β uses the modern, high-performance WireGuard protocol for encrypted peer-to-peer connections
- Peer-to-peer mesh β direct connections between nodes without routing through a central gateway
- Zero configuration networking β agents auto-discover peers and establish connections
- European-built β developed with data sovereignty in mind
- Open source β full transparency into how your networking layer operates
For organizations running Kubernetes at scale, this means secure service-to-service connectivity across clusters, clouds, and environments without the operational overhead of maintaining VPN infrastructure.
Real-World Adoption at Scale
What really stood out to me is seeing engineers from large, impactful organizations like DUO actively exploring and championing modern, open-source networking solutions to streamline their internal infrastructure. It proves that secure, at-scale networking does not have to be overly complex or tied down by heavy licensing.
This aligns with the broader trend I have been seeing at KubeCon: enterprises are moving away from proprietary networking stacks and toward open, composable solutions. The same pattern we saw with container orchestration (Kubernetes won over proprietary alternatives) is now playing out in the networking layer.
Learn More
If you are dealing with complex internal networking and want a cleaner, secure-by-design approach: netbird.io
Related Posts
- Pepijn Oomen: Building Europeβs Sovereign Cloud
- echo.ai: Making Container Security Boring
- AI on Kubernetes: The First 90 Days
- Stack8s: Unified Control Plane Across 15+ Clouds
About the Author
I am Luca Berton, AI and Cloud Advisor. I help enterprises build secure, modern infrastructure without unnecessary complexity. Book a consultation.
