VeilNet
DownloadLogin

Private Plane

Introduction to VeilNet Private Plane.

Private Plane

A Private Plane is your own dedicated VeilNet overlay — isolated, encrypted, and fully controlled by you or your organisation.
Unlike the shared Community Plane, a Private Plane gives you your own post-quantum secure network, accessible only by the devices and Conflux nodes you authorise.

Private Planes are ideal for:

  • companies deploying secure multi-cloud or multi-region infrastructure
  • dev teams needing full-stack private networking
  • self-hosters who want total control and zero external dependency
  • organisations requiring strict segmentation between environments
  • high-security workloads needing post-quantum protection

Because Private Planes run on top of VeilNet’s decentralized backbone, you gain the security and scalability of a global overlay — without relying on any central coordinator or mesh architecture.

How Private Plane compares to Tailscale & NetBird

Private Planes are VeilNet's answer to enterprise VPNs like Tailscale, NetBird, and ZeroTier — but with a fundamentally different architecture.

Below are the key differences.

No Mesh. No ACL Spaghetti.

Tailscale and NetBird require a full mesh topology.
This means:

  • every node must know every other node
  • every node must maintain WireGuard peer lists
  • ACL management becomes a spreadsheet nightmare
  • the network collapses as devices scale
  • multi-region infra becomes brittle
  • onboarding thousands of devices is practically impossible

VeilNet Private Plane is non-mesh and multi-hop by design.

Each device only forms ephemeral links to the next node on the chosen path — never to the whole network.

Benefits:

  • unlimited scalability
  • no peer lists
  • no ACL explosion
  • no performance collapse
  • no central bottleneck
  • no need for sub-routers or exit nodes manually configured

Private Plane = zero-config, zero-mesh, linearly scalable network.

Post-Quantum Identity & Authentication

Tailscale and NetBird use WireGuard, which relies on:

  • static public keys
  • plaintext VPN metadata
  • linkable long-term identifiers
  • predictable tunnels detectable by firewalls
  • single-session key exchange without PQ protection

VeilNet Private Plane uses:

  • Kyber KEM (post-quantum key exchange)
  • Dilithium DSA (PQC identity & signature)
  • Packet-Level Authentication (PLA)
  • no plaintext headers
  • no static pub/priv keys
  • no VPN fingerprint
  • no exposed ports

Result:

Your network becomes unobservable, undetectable, and quantum-safe.

Full Layer-3 Access Without Sub-Routers

Tailscale & NetBird require:

  • subnet routers
  • exit nodes
  • special daemons
  • manual forwarding setup

VeilNet Private Plane has native L3 support, meaning:

  • every Conflux node automatically forwards all networks attached to the host
  • VXLAN, containers, on-prem LAN, VPCs — all reachable
  • no extra setup
  • no routing tables polluted
  • no magic “exit node” role

Private Plane behaves like a software-defined backbone, not a traditional VPN.

Multi-Hop, Multi-Path by Default

Tailscale and NetBird create single-hop tunnels between peers.
If that link breaks, performance drops or the connection fails.

VeilNet creates:

  • multiple concurrent encrypted paths
  • dynamic rerouting
  • RL-optimised route selection
  • automatic self-healing
  • aggregated bandwidth across multiple channels

The result is:

  • higher reliability
  • faster global connectivity
  • lower latency for distributed workloads
  • resilience against network instability

VeilNet behaves more like an AI-powered SDN, not a VPN.

Zero Exposure. Zero Attack Surface.

Tailscale and NetBird expose:

  • a fixed WireGuard port
  • static keys that can be enumerated
  • nodes that appear on Shodan
  • predictable traffic patterns

VeilNet Private Plane exposes nothing:

  • tunnels are ephemeral
  • WebRTC channels blend into normal traffic
  • no fixed ports
  • no peer scanning
  • no identifiable VPN behavior

Your private overlay is effectively unblockable and untraceable.

Why Private Plane exists

Private Planes are built for users and organisations who need:

  • total control over their network
  • post-quantum guarantees
  • scalable multi-cloud networking
  • high-security communication
  • microservice / AI workload interconnects
  • enterprise access control
  • auditability without logs
  • long-term privacy and survivability

With a Private Plane, your team gains a dedicated, unobservable, self-healing, post-quantum secure network capable of connecting everything — from laptops to Kubernetes clusters to industrial sensors.

Community Plane

Introduction to VeilNet Community Plane.

Quickstart Guide

Learn how to connect your first device with a single command