Enclave

Enclave connects your laptops, phones, servers, cloud instances, containers and IoT devices together in a secure, private network — across any infrastructure, from anywhere.

Install Enclave on the devices that need to talk, define who can reach what through simple policies, and Enclave builds encrypted, peer-to-peer connections between them. No VPN servers, no open firewall ports, no network reconfiguration.

How it works:
- Devices connect directly to each other in encrypted peer-to-peer tunnels
- All connections are outbound-only — no inbound ports need to be opened
- Mutual certificate-based authentication before any connectivity is established
- Policy controls determine exactly which devices and users can communicate
- Works behind NAT, firewalls, and across different networks automatically

Key features:
- Zero Trust network access across on-premise, cloud and remote environments
- Always-on connectivity — no manual connect/disconnect steps
- Works with any protocol and any application
- Identity and policy-driven access control with MFA support
- Micro-segmentation to limit access to only what each user or device needs
- Gateway support for resources that cannot run an agent

This app uses Android's VpnService to create a secure network overlay between your enrolled devices. VpnService is required to route traffic through Enclave's encrypted peer-to-peer tunnels so your devices can communicate privately, regardless of their physical network or location. Enclave does not use VpnService to intercept, redirect or monitor user traffic outside of the Enclave network. No user data is collected or transmitted to third parties through the VPN connection.

Learn more at https://enclave.io