Back to Projects

EKS + OpenVPN Integration

Deployed a secure OpenVPN gateway in AWS to allow private, authenticated access to Kubernetes API servers.

Overview

Developers needed secure remote kubectl access without exposing the API server publicly.

Infrastructure

OpenVPN server in a private subnet with autoscaling group, backed by an Application Load Balancer for HA. Client certificates issued via EasyRSA.

Kubernetes RBAC

Configured AWS IAM authenticator for client identity, mapped VPN user groups to Kubernetes roles for fine-grained access control.

User Onboarding

Developed a self-service portal in Node.js for users to request VPN certificates and automatically deliver their .ovpn profile.

Outcomes

Zero public API exposure. On-demand, auditable access. 100% compliance with security guidelines and faster developer onboarding.

Technologies

OpenVPN • AWS VPC & ELB • Kubernetes RBAC • EasyRSA • Node.js

Interested in Similar Solutions?

Let's discuss how I can help optimize your infrastructure

Get in TouchView More Projects