Pangolin - An all-in-one proxy

I am drooling but do I need it. It's a lot more than just a proxy.

Pangolin is a self-hosted tunneled reverse proxy server with identity and access control, designed to securely expose private resources on distributed networks. Acting as a central hub, it connects isolated networks — even those behind restrictive firewalls — through encrypted tunnels, enabling easy access to remote services without opening ports.

XDA Article that has distracted me again

I don’t use Tailscale or Nginx to access my home lab remotely, here’s what I use instead

I’ve found a self-hosted alternative to Tailscale that I simply can’t live without.

XDAJoe Rice-Jones

GitHub reference

GitHub - fosrl/pangolin: Tunneled Mesh Reverse Proxy Server with Identity and Access Control and Dashboard UI

Tunneled Mesh Reverse Proxy Server with Identity and Access Control and Dashboard UI - fosrl/pangolin

GitHubfosrl

Pangolin overview documentation

Fossorial Docs

Pangolin uses Traefik under the hood to do the actual HTTP proxying. A plugin, Badger, provides a way to authenticate every request with Pangolin. A second service, Gerbil, provides a WireGuard management server that Pangolin can use to create peers for connectivity. And finally, there is Newt, a CLI tool and Docker container that connects back to Newt and Gerbil with WireGuard fully in user space and proxies your local resources. This means that you do not need to run a privileged process or container in order to expose your services!

I'll put it in the list. Shared because if you have a lab, you will know that this is extremely useful.

#enoughsaid