Back to Hub

Zero Trust Network (ZTNA) vs VPN Scalability.

DevOps simulation to calculate the latency and hardware costs of forcing a global remote workforce through centralized VPN choke points vs distributed ZTNA edges.

## The 'Trombone' Networking Effect

Traditional enterprise VPNs require all internet traffic to be tunneled (backhauled) to a centralized corporate firewall, inspected, and then sent back out. This is called 'Hairpinning'.

If you live in London and want to access Salesforce (hosted in Europe), but your corporate VPN is in Chicago, your keystrokes travel across the Atlantic Ocean twice for every single action. ZTNA (Zero Trust) solves this by abandoning centralized firewalls in favor of authorizing the identity of the user at the Edge, routing them directly to their destination.