diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-0-01.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-0-01.png
new file mode 100644
index 00000000..6734cd7e
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-0-01.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-0-02.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-0-02.png
new file mode 100644
index 00000000..57ebcc9d
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-0-02.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-0-03.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-0-03.png
new file mode 100644
index 00000000..7feb9db2
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-0-03.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-01.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-01.png
new file mode 100644
index 00000000..09762bc8
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-01.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-02.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-02.png
new file mode 100644
index 00000000..87e8570d
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-02.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-03.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-03.png
new file mode 100644
index 00000000..458627c3
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-03.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-04.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-04.png
new file mode 100644
index 00000000..f4a635fb
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-04.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-05.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-05.png
new file mode 100644
index 00000000..0b3a3959
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-05.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-06.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-06.png
new file mode 100644
index 00000000..d2a286d9
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-06.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-07.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-07.png
new file mode 100644
index 00000000..23bda329
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-07.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-08.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-08.png
new file mode 100644
index 00000000..8f2ec42b
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-08.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-09.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-09.png
new file mode 100644
index 00000000..fac46fa2
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-09.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-10.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-10.png
new file mode 100644
index 00000000..609495a4
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-10.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-11.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-11.png
new file mode 100644
index 00000000..e92f2b61
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-11.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-12.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-12.png
new file mode 100644
index 00000000..8984a62b
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-12.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-13.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-13.png
new file mode 100644
index 00000000..50f14e68
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-13.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-14.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-14.png
new file mode 100644
index 00000000..1ad1858e
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-14.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-15.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-15.png
new file mode 100644
index 00000000..f7df3fcc
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-15.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-16.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-16.png
new file mode 100644
index 00000000..0818e062
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-16.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-17.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-17.png
new file mode 100644
index 00000000..d39cd91f
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-17.png differ
diff --git a/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-18.png b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-18.png
new file mode 100644
index 00000000..2ba7e316
Binary files /dev/null and b/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-18.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-01.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-01.png
new file mode 100644
index 00000000..c1ff1d79
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-01.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-02.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-02.png
new file mode 100644
index 00000000..c14a5fc7
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-02.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-03.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-03.png
new file mode 100644
index 00000000..1a73db78
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-03.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-04.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-04.png
new file mode 100644
index 00000000..86f725a8
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-04.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-05.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-05.png
new file mode 100644
index 00000000..814d132c
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-05.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-06.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-06.png
new file mode 100644
index 00000000..aac19a7e
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-06.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-07.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-07.png
new file mode 100644
index 00000000..08e2c750
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-07.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-08.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-08.png
new file mode 100644
index 00000000..6989f3cf
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-08.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-09.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-09.png
new file mode 100644
index 00000000..9dd80d62
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-09.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-10.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-10.png
new file mode 100644
index 00000000..ff57cf25
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-10.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-11.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-11.png
new file mode 100644
index 00000000..4dab3ec8
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-11.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-12.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-12.png
new file mode 100644
index 00000000..72747a01
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-12.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-13.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-13.png
new file mode 100644
index 00000000..1b3b65d8
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-13.png differ
diff --git a/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-14.png b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-14.png
new file mode 100644
index 00000000..4948f742
Binary files /dev/null and b/public/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-14.png differ
diff --git a/src/components/NavigationDocs.jsx b/src/components/NavigationDocs.jsx
index 8a44e3ab..a6bededb 100644
--- a/src/components/NavigationDocs.jsx
+++ b/src/components/NavigationDocs.jsx
@@ -60,6 +60,10 @@ export const docsNavigation = [
                              title: 'Add Servers to the Network',
                              href: '/how-to/setup-keys-add-servers-to-network'
                          },
+                         {
+                            title: 'Access from Kubernetes',
+                            href: '/how-to/access-internal-resources-from-autoscaled-environments'
+                        },
                      ]
                  },
                  {
diff --git a/src/pages/how-to/access-internal-resources-from-autoscaled-environments.mdx b/src/pages/how-to/access-internal-resources-from-autoscaled-environments.mdx
new file mode 100644
index 00000000..d17f0d6b
--- /dev/null
+++ b/src/pages/how-to/access-internal-resources-from-autoscaled-environments.mdx
@@ -0,0 +1,331 @@
+# Access Internal Resources From Autoscaled Environments
+
+For DevOps teams managing dynamic, scalable infrastructures, maintaining secure access to internal resources as environments scale up and down is challenging. Traditional network access methods often struggle to keep pace with the rapid changes in autoscaled environments, leading to security vulnerabilities, inefficient resource utilization, and complex management overhead.
+
+Key challenges in managing network access for autoscaled environments like Kubernetes include:
+
+* **Dynamic Resource Management**: As pods or containers scale up and down, maintaining consistent and secure network access becomes increasingly complex.
+* **Security Concerns**: Ensuring that only authorized resources have access to internal networks, especially in rapidly changing environments, is crucial but often difficult to manage.
+* **Efficient Resource Utilization**: Balancing network access with resource usage, particularly in autoscaled setups, requires careful planning and execution.
+
+This guide introduces NetBird's solution for seamlessly managing network access in autoscaled Kubernetes environments by:
+
+* **Automating Secure Access**: Demonstrating how NetBird setup keys can automatically provide secure network access to dynamically created resources.
+* **Enhancing Scalability**: Showcasing how NetBird integrates with Kubernetes' Horizontal Pod Autoscaler (HPA) to maintain network integrity during scaling events.
+* **Optimizing Resource Management**: Illustrating how NetBird efficiently manages network peers as resources scale up and down, ensuring optimal resource utilization.
+
+Let's dive into the process of using NetBird to manage network access in an autoscaled Kubernetes environment.
+
+## Prerequisites
+
+To replicate this use case, you'll need:
+
+* A [NetBird account](https://app.netbird.io/)
+* [NetBird](https://docs.netbird.io/how-to/installation) installed on your local machine
+* A Kubernetes cluster (local or cloud-based)
+* `kubectl` installed and configured on your local machine
+* [Kubernetes metrics server](https://github.com/kubernetes-sigs/metrics-server)
+* The [IP address range assigned to the Pods](https://www.howtouselinux.com/post/find-the-ip-address-of-pod-in-kubernetes)
+
+With these prerequisites in place, you'll be prepared to set up a secure network connection for autoscaled resources using NetBird by:
+
+1. Creating a NetBird Setup Key for Kubernetes
+2. Configuring Network Routes for Internal Resource Access
+3. Setting Up Access Policies for Secure Communication
+4. Deploying a Sample Application with NetBird Agent
+5. Configuring Horizontal Pod Autoscaler (HPA)
+6. Observing NetBird's Dynamic Peer Management
+
+This process will demonstrate how NetBird simplifies secure network access in autoscaled Kubernetes environments, automatically managing connections and access controls as resources scale up and down.
+
+## 1. Creating a NetBird Setup Key for Kubernetes
+
+The first step in this process is [creating a NetBird setup key](https://docs.netbird.io/how-to/register-machines-using-setup-keys) for your Kubernetes cluster. This setup key serves as a secure authentication token, allowing your cluster's pods to join your NetBird network seamlessly.
+
+To create an appropriate setup key for this use case:
+
+1. Log in to your NetBird dashboard.
+2. Navigate to the `Setup Keys` section.
+3. Click on `Add Setup Key` to create a new key.
+4. Provide a descriptive name for your key.
+5. Enable the `Reusable` option to allow multiple pods to use the same key.
+6. Activate the `Ephemeral Peers` toggle. This crucial setting automatically removes pods from the NetBird network if they've been offline for over 10 minutes, ensuring efficient resource management.
+7. Createthe new setup key by clicking `Create Setup Key`
+8. Ensure you take note of the generated setup key, you'll need it shortly.
+
+Here's an example:
+
+![NetBird Setup Keys](/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-01.png)
+
+This configuration allows for dynamic management of your Kubernetes pods within the NetBird network. As your cluster scales up, new pods will seamlessly join the network. When pods are terminated or remain offline, they'll be automatically removed, maintaining a clean and efficient network topology.
+
+## 2. Configuring Network Routes for Internal Resource Access
+
+With the setup key in place, the next crucial step is creating a network route to enable access to the Pods within your Kubernetes cluster. For this tutorial, we'll create a straightforward network route that allows access to the Kubernetes cluster from your local machine.
+
+Follow these steps to configure the network route:
+
+In the NetBird dashboard, navigate to the `Network Routes` section and click on `Add Route` to create a new network route.
+
+![NetBird Add Route](/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-02.png)
+
+* In the `Network Range` field, enter the private IP range of your Kubernetes Pods. This is typically something like `10.0.0.0/16` for many Kubernetes clusters, but it may vary depending on your specific setup. If you're unsure, you can check this range in your Kubernetes configuration or consult your cluster administrator.
+* Navigate to the `Peer Group` tab and select your Kubernetes cluster's group as the routing peer. This group should contain all your cluster's nodes and will automatically include all the Pods running on these nodes.
+* In the `Distribution Groups` field, choose the group to which your local machine belongs. 
+* Review your settings to ensure everything is correct. The route you're creating will allow traffic from your local machine (in the distribution group) to reach the Kubernetes Pods (in the peer group) via the specified network range.
+* Once you're satisfied with the configuration, click the `Continue` button.
+
+![NetBird Create a New Route](/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-03.png)
+
+Provide a descriptive name for your route, such as `NetBird K8s Demo`.
+
+![NetBird Route Name](/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-04.png)
+
+This setup creates a secure pathway for your local machine to communicate with the Pods in your Kubernetes cluster through the NetBird network. As new Pods are created or removed due to autoscaling, they'll automatically be included in or excluded from this route, maintaining seamless access without manual intervention.
+
+![NetBird Network Route Created](/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-06.png)
+
+## 3. Setting Up Access Policies for Secure Communication
+
+NetBird's default access control policy automatically assigns all peers to the `All` group, enabling unrestricted bidirectional access between devices and users. While this default configuration allows immediate connectivity between your Kubernetes cluster and local machine, it's crucial to implement more granular access controls for enhanced security.
+
+To create a new access policy:
+
+1. Navigate to the `Access Control > Policies` section in your NetBird dashboard.
+2. Click on `Add Policy`.
+2. Create a new policy specifically for Kubernetes access:
+   - Set the source as your local machine's group (e.g., `Local WS`)
+   - Set the destination as your Kubernetes cluster group (e.g., `Kubernetes Cluster`)
+   - Specify the protocols and ports required for your application if needed.
+
+Your access policy must look similar to this:
+
+![NetBird Access Policy](/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-07.png)
+
+
+Click `Continue` and name your policy:
+
+![NetBird Access Policy Name](/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-08.png)
+
+Once you save your policy, it is a good practice to disable or modify the default `All` group policy to prevent unrestricted access.
+
+![NetBird Access Policies](/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-09.png)
+
+This tailored access policy ensures that only authorized devices (your local machine) can communicate with the Kubernetes cluster, significantly improving your network's security posture. As your environment scales, this policy will automatically apply to new pods, maintaining consistent access control.
+
+For more detailed information on configuring access policies, refer to the [NetBird Access Policies documentation](https://docs.netbird.io/how-to/manage-network-access).
+
+## 4. Deploying a Sample Application with NetBird Agent
+
+With NetBird configured, it's time to deploy your application in Kubernetes. This process involves creating a dedicated namespace, securely storing the NetBird setup key, and deploying your application alongside the NetBird agent. Let's walk through each step:
+
+Create a dedicated namespace to keep your NetBird-related resources organized and isolated:
+
+```bash
+kubectl create namespace netbird
+```
+
+Create a Kubernetes secret for the NetBird setup key:
+
+```bash
+kubectl create secret generic netbird-setup-key -n netbird --from-literal=setup-key=YOUR_SETUP_KEY
+```
+
+Remember to replace `YOUR_SETUP_KEY` with the actual setup key you created earlier. This method securely stores your key within Kubernetes.
+
+Next, deploy your application. For this tutorial we'll use a [sample app](https://github.com/datawire/quote) that generates random quotes:
+
+```yaml
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: quote
+  namespace: netbird
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: quote
+  template:
+    metadata:
+      labels:
+        app: quote
+    spec:
+      containers:
+        - name: quote
+          image: docker.io/datawire/quote:latest
+          ports:
+            - name: http
+              containerPort: 8080
+          resources:
+            requests:
+              cpu: 100m
+              memory: 50Mi
+            limits:
+              cpu: 200m
+              memory: 100Mi
+        - name: netbird-agent
+          image: netbirdio/netbird:latest
+          env:
+            - name: NB_SETUP_KEY
+              valueFrom:
+                secretKeyRef:
+                  name: netbird-setup-key
+                  key: setup-key
+            - name: NB_HOSTNAME
+              valueFrom:
+                fieldRef:
+                  fieldPath: metadata.name
+          resources:
+            requests:
+              cpu: 50m
+              memory: 64Mi
+            limits:
+              cpu: 100m
+              memory: 128Mi
+          securityContext:
+            privileged: true
+
+---
+
+apiVersion: v1
+kind: Service
+metadata:
+  name: quote
+  namespace: netbird
+spec:
+  ports:
+    - name: http
+      port: 80
+      targetPort: 8080
+  selector:
+    app: quote
+```
+
+This deployment creates a pod running both the `quote` app and the NetBird agent as a sidecar. The agent uses the setup key to automatically connect the pod to your NetBird network, enabling secure communication as defined by your routes and access policies.
+
+Deploy the app by running the following:
+
+```bash
+kubectl apply -f quote-app.yaml
+```
+
+After a few seconds, the app will appear in NetBird's `Peers` dashboard. If you hover over the `Assigned Groups`, you'll notice the app automatically joined the group `Kubernetes Cluster` as expected.
+
+![NetBird App Joined NetBird](/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-10.png)
+
+## 5. Configuring Horizontal Pod Autoscaler (HPA)
+
+To enable dynamic scaling of our application, we'll configure a [Horizontal Pod Autoscaler (HPA)](https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale). This YAML configuration sets up an HPA that scales based on CPU utilization:
+
+```yaml
+apiVersion: autoscaling/v2
+kind: HorizontalPodAutoscaler
+metadata:
+  name: quote-hpa
+  namespace: netbird
+spec:
+  scaleTargetRef:
+    apiVersion: apps/v1
+    kind: Deployment
+    name: quote
+  behavior:
+    scaleDown:
+      stabilizationWindowSeconds: 60
+  minReplicas: 1
+  maxReplicas: 3
+  metrics:
+    - type: Resource
+      resource:
+        name: cpu
+        target:
+          type: Utilization
+          averageUtilization: 20
+```
+
+Key points:
+
+* We've set `minReplicas: 1` and `maxReplicas: 3` to limit scaling range.
+* `averageUtilization: 20` triggers scaling at 20% CPU usage, lower than the default for quicker demonstration.
+* `stabilizationWindowSeconds: 60` reduces the cool-down period for faster downscaling.
+
+Apply this configuration with:
+
+```bash
+kubectl apply -f quote-hpa.yaml
+```
+
+Verify the resource was created by running:
+
+```bash
+kubectl get hpa -n netbird          
+```
+
+The output should be similar to:
+
+```bash
+NAME        REFERENCE          TARGETS       MINPODS   MAXPODS   REPLICAS   AGE
+quote-hpa   Deployment/quote   cpu: 1%/20%   1         3         1          21m
+```
+
+These settings accelerate scaling for tutorial purposes. In production, adjust these values based on your application's specific requirements and performance characteristics.
+
+## 6. Observing NetBird's Dynamic Peer Management
+
+Now that we've set up our application with NetBird integration and configured the HPA, we can observe how NetBird dynamically manages peers as the application scales. We'll use a simple load generator to trigger the autoscaling and monitor the results.
+
+Open a new terminal window and run the following command to generate load:
+
+```bash
+kubectl run -i --tty load-generator \
+    --rm \
+    --image=busybox \
+    --restart=Never \
+    -n netbird \
+    -- /bin/sh -c "while sleep 0.001; do wget -q -O- http://quote; done" > /dev/null 2>&1
+```
+
+This command creates a temporary pod that continuously sends requests to our application.
+
+Now, in another terminal window, monitor the HPA's activity:
+
+```bash
+kubectl get hpa -n netbird -w
+```
+
+The `-w` flag enables watch mode, providing real-time updates on the HPA's status. The output should be similar to this:
+
+```bash
+NAME        REFERENCE          TARGETS       MINPODS   MAXPODS   REPLICAS   AGE
+quote-hpa   Deployment/quote   cpu: 2%/20%    1         3         1          23m
+quote-hpa   Deployment/quote   cpu: 26%/20%   1         3         1          24m
+quote-hpa   Deployment/quote   cpu: 29%/20%   1         3         2          24m
+quote-hpa   Deployment/quote   cpu: 41%/20%   1         3         2          24m
+quote-hpa   Deployment/quote   cpu: 63%/20%   1         3         3          25m
+quote-hpa   Deployment/quote   cpu: 38%/20%   1         3         3          25m
+quote-hpa   Deployment/quote   cpu: 17%/20%   1         3         3          25m
+quote-hpa   Deployment/quote   cpu: 1%/20%    1         3         2          30m
+quote-hpa   Deployment/quote   cpu: 1%/20%    1         3         1          31m
+quote-hpa   Deployment/quote   cpu: 1%/20%    1         3         1          32m
+```
+
+If you go to NetBird `Peers` dashboard, you will see new peers automatically joining the network as pods scale up.
+
+![NetBird Two Peers](/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-11.png)
+
+As you can see, all peers join the same group, meaning all share the same access policy you defined.
+
+![NetBird Three Peers](/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-12.png)
+
+Conversely, when scaling down, peers are removed from the group and then terminated.
+
+![NetBird Scaling Down Peers](/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-13.png)
+
+When ready, stop the load generator by pressing `Ctrl+C` in its terminal window; eventually, you will see only one app peer in the dashboard.
+
+![NetBird Initial State](/docs-static/img/how-to-guides/setup-keys-access-internal-resources-autoscaled-env/autoscaled-14.png)
+
+This demonstration showcases NetBird's powerful capabilities in seamlessly managing network connections within a dynamic, autoscaling Kubernetes environment. NetBird automatically adapts to your cluster's changing topology without any manual intervention, ensuring secure and efficient connectivity as pods scale up or down. This automation saves significant time and effort in network management and enhances your environment's security posture. By integrating NetBird, you're implementing a robust, scalable networking solution that keeps pace with your application's demands while maintaining strict access controls.
+
+
+
diff --git a/src/pages/how-to/peer-approval-for-remote-worker-access.mdx b/src/pages/how-to/peer-approval-for-remote-worker-access.mdx
new file mode 100644
index 00000000..6870e8e9
--- /dev/null
+++ b/src/pages/how-to/peer-approval-for-remote-worker-access.mdx
@@ -0,0 +1,144 @@
+# Peer Approval for Remote Worker Access with NetBird
+
+For organizations embracing remote work, ensuring secure network access for distributed teams is a paramount challenge. Traditionally, VPNs and remote desktop solutions have been the standard for granting access to company resources. However, these methods often fall short in today's dynamic work environment, especially when dealing with freelancers and temporary workers.
+
+The conventional approach to remote worker access presents several security and operational challenges:
+
+* **Increased Security Risks**: Granting blanket access to network resources can expose sensitive data to potential breaches, especially when dealing with external collaborators.
+* **Device Management Complexity**: Ensuring that only authorized and secure devices connect to the network becomes increasingly difficult as the number of remote workers grows.
+* **Lack of Granular Control**: Traditional solutions often lack the flexibility to implement fine-grained access policies based on user roles and device trust levels.
+* **Scalability Issues**: As teams expand and contract, managing access for a fluctuating workforce can become a time-consuming and error-prone process.
+
+This guide introduces NetBird's Peer Approval as a robust solution for secure remote worker access by:
+
+* **Implementing Zero-Trust Principles**: Ensuring that every device and user is verified before granting network access, regardless of their location.
+* **Simplifying Device Trust Management**: Providing a streamlined process for approving and managing trusted devices within the network.
+* **Enhancing Access Control**: Offering granular control over network resources, allowing organizations to tailor access based on user roles and device status.
+* **Improving Scalability**: Facilitating easy onboarding and offboarding of remote workers, including freelancers, without compromising network security.
+
+Let's explore the step-by-step process of implementing [Peer Approval with NetBird](https://docs.netbird.io/how-to/approve-peers) to ensure that only trusted devices can access your network.
+
+## Prerequisites
+
+To replicate this use case, you'll need the following prerequisites:
+
+* An main [NetBird account](https://app.netbird.io/) with administrative privileges.
+* A secondary email address not linked to any NetBird account to simulate the freelancer's email.
+* [NetBird installed](https://docs.netbird.io/how-to/installation) on the main device.
+
+With these prerequisites in place, you're ready to simulate granting network access to a temporary remote worker using NetBird's Peer Approval feature by:
+
+1. Setting up NetBird's access control policies for enhanced security
+2. Enabling peer approval
+3. Inviting users to join your network
+4. Installing NetBird on the remote worker device
+5. Approving peers
+6. Automating peer approval with EDR integration (optional)
+
+## 1. Setting Up NetBird's Access Control Policies For Enhanced Security
+
+Before onboarding remote workers, ensure your organization has appropriate [access control policies](https://docs.netbird.io/how-to/manage-network-access) in place. Adhering to zero-trust principles, create or modify policies to grant new users access only to necessary resources. 
+
+Navigate to `Access Control > Policies` in the NetBird admin console, then click `Add Policy` or edit an existing one to define these restrictions. Here's a sample policy that grant any member of the `Freelancers` group access to the resources in the group `On-Premise-DB`.
+
+![NetBird Freelancer Access Control Policy](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-0-01.png)
+
+If necessary, you can also set [posture checks](https://docs.netbird.io/how-to/manage-posture-checks) for this policy.
+
+![NetBird Freelancer Posture Check](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-0-02.png)
+
+Moreover, it is a best practice to disable the `Default` policy to enforce only restrictive, custom-defined access controls.
+
+![NetBird Access Policy View](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-0-03.png)
+
+With appropriate access policies in place, you're ready to enable NetBird's Peer Approval feature.
+
+## 2. Enabling Peer Approval
+
+To enable peer approval, go to `Settings > Authentication` and activate the `Peer approval` toggle, then click `Save Changes`.
+
+![NetBird Freelancer Device Dashboard](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-02.png)
+
+With `Peer Approval` activated, new members will see an `Approval required` message when joining. Administrators must grant access, ensuring only vetted users enter the NetBird network, thus enhancing overall security.
+
+## 3. Inviting Users to Join Your Network
+
+To invite a new user to join your NetBird network, go to `Team > Users` and click the `Invite User` button.
+
+![NetBird Invite Users](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-03.png)
+
+A pop-up window appears for new user registration. Enter the user's name, email address, and select the `Freelancers` group from the dropdown menu. NetBird's auto-assignment feature instantly links the new user to the `Freelancers` group upon network entry, automatically applying the associated access policy you just created.
+
+![NetBird Invite User Pop Up](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-04.png)
+
+After clicking `Send Invitation`, you'll return to the `Users` dashboard. Here, the new user appears with a `Pending` status, awaiting their acceptance of the invitation and any required approvals.
+
+![NetBird New User Pending](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-05.png)
+
+## 4. Installing NetBird On The Remote Worker Device
+
+Access the secondary email account used to mimic the freelancer. In the inbox, locate the invitation email from NetBird. This email contains a secure link to join your organization's NetBird network, initiating the freelancer's onboarding process.
+
+![Email NetBird Invitation](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-06.png)
+
+After clicking the invitation link, you'll be directed to NetBird's secure account creation page. Follow the on-screen instructions to create a new password. 
+
+![NetBird Login](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-07.png)
+
+Upon logging in, you'll arrive at NetBird's Peers dashboard. Locate and click the `Add Peer` button to initiate the [Getting Started](https://docs.netbird.io/how-to/getting-started) Wizard, which guides you through the process of adding a new device to the network.
+
+![NetBird Freelancer Peers Dashboard](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-08.png)
+
+The wizard will detect your operating system and provide detailed step-by-step instructions on how to [install NetBird](https://docs.netbird.io/how-to/installation).
+
+![NetBird Freelancer Install Client](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-09.png)
+
+During your initial connection to NetBird, a system dialog will appear requesting authorization. This prompt asks for permission to access your profile and email information, which is necessary for NetBird to establish your account and network access.
+
+![NetBird Authorize App](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-10.png)
+
+After completing the installation, your device will appear in the Peers dashboard. Hover over the `+1` in the `Assigned Groups` column to confirm the device has automaticaclly assigned to the `Freelancers` group as expected.
+
+![NetBird Freelancer Peers Listed](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-11.png)
+
+## 5. Approving Peers
+
+Back to your primary account, you'll notice the newly added user's status is now displayed as `Active` in the `Users` dashboard. This status update confirms that the device has successfully added to the NetBird network and is ready for secure communication.
+
+![NetBird Peers Dashboard](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-12.png)
+
+However, your approval is required before the user's device can fully connect to the NetBird network. To grant network access:
+
+* Navigate to the `Peers` dashboard
+* Locate the newly added device
+* Click the `Approve` button next to the device
+* Confirm the action when prompted
+
+![NetBird Approve New Peer](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-13.png)
+
+After approval, the device is granted full access to network resources allocated to the `Freelancers` group. The freelancer can now view all accessible network resources in their `Peers` dashboard:
+
+![NetBird Freelancer Peers View](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-16.png)
+
+Likewise, as an administrator, you can click on the user's device to see which resources and peers the freelancer has access to.
+
+![NetBird Main Account Peers View](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-17.png)
+
+## 6. Automating Peer Approval with EDR Integration (optional)
+
+NetBird's EDR (Endpoint Detection and Response) integration enhances network security by restricting access to devices managed by your organization's IT department. This feature synchronizes the list of devices managed by the EDR platform via API and verifies the presence of the EDR agent on each device. If the agent is not installed, access to the network is blocked.
+
+Key aspects of NetBird's EDR integration:
+
+* Supports [CrowdStrike Falcon](https://www.crowdstrike.com/products)
+* Allows selective application of EDR checks to specific device groups
+* Automates peer approval process for trusted devices
+* Available only in the cloud version of NetBird
+
+To activate this feature, navigate to `Integrations > EDR` and activate the CrowdStrike integration toggle.
+
+![NetBird EDR Integration](/public/docs-static/img/how-to-guides/peer-approval-for-remote-worker-access/peer-a-18.png)
+
+For more information regarding NetBird's EDR integration, refer to the [documentation](https://docs.netbird.io/how-to/endpoint-detection-and-response)
+
+