|
| 1 | +--- |
| 2 | +draft: false |
| 3 | +title: Pangolin fully managed open source service | OctaByte.io |
| 4 | +meta: |
| 5 | + cover: /images/development/identity-and-access-management/pangolin/screenshot-1.png |
| 6 | + description: Pangolin is a powerful, self-hosted reverse proxy and access gateway that uses encrypted WireGuard tunnels to securely expose private resources without opening ports—perfect for distributed networks and zero-trust environments. |
| 7 | + keywords: pangolin reverse proxy, self-hosted reverse proxy, WireGuard tunnel proxy, secure access gateway, firewall punching, remote access without port forwarding, identity access control reverse proxy, docker reverse proxy, encrypted tunnel proxy, zero-trust network access |
| 8 | + breadcrumb: |
| 9 | + - name: Home |
| 10 | + url: / |
| 11 | + - name: Software Catalog |
| 12 | + url: /fully-managed-open-source-services |
| 13 | + - name: Development |
| 14 | + url: /fully-managed-open-source-services/development |
| 15 | + - name: Identity and access management |
| 16 | + url: /fully-managed-open-source-services/development/identity-and-access-management |
| 17 | + - name: Pangolin |
| 18 | + url: /fully-managed-open-source-services/development/identity-and-access-management/pangolin |
| 19 | +content: |
| 20 | + id: pangolin |
| 21 | + name: Pangolin |
| 22 | + title: Secure Self-Hosted Reverse Proxy with Identity and Access Control |
| 23 | + logo: /images/development/identity-and-access-management/pangolin/logo.png |
| 24 | + website: https://fossorial.io/ |
| 25 | + iframe_website: /website/development/identity-and-access-management/pangolin |
| 26 | + screenshots: |
| 27 | + - /images/development/identity-and-access-management/pangolin/screenshot-1.png |
| 28 | + - /images/development/identity-and-access-management/pangolin/screenshot-2.png |
| 29 | +--- |
| 30 | + |
| 31 | +## Overview |
| 32 | + |
| 33 | +Pangolin is a security-focused, self-hosted reverse proxy system that connects isolated and firewalled networks via encrypted WireGuard tunnels. It simplifies secure access to private services by eliminating the need for port forwarding, while offering centralized user management, detailed access control, and seamless deployment on any infrastructure. Designed with both simplicity and scalability in mind, Pangolin empowers teams to securely manage distributed services with modern identity-first principles. |
| 34 | + |
| 35 | +## Features |
| 36 | + |
| 37 | +- ### WireGuard Tunnel-Based Reverse Proxy |
| 38 | + |
| 39 | + Expose internal services securely without opening ports using encrypted WireGuard tunnels. Supports raw TCP/UDP and HTTP/HTTPS protocols, with built-in load balancing. |
| 40 | + |
| 41 | +- ### Custom User-Space WireGuard Client – Newt |
| 42 | + |
| 43 | + Enjoy simplified and optimized site-to-site connectivity with Newt, Pangolin’s custom WireGuard client, or connect using any standard WireGuard client. |
| 44 | + |
| 45 | +- ### Automated SSL with Let’s Encrypt |
| 46 | + |
| 47 | + Ensure all exposed services are protected with HTTPS using automated SSL certificate provisioning via Let’s Encrypt. |
| 48 | + |
| 49 | +- ### Centralized Identity & Access Management |
| 50 | + |
| 51 | + Leverage platform SSO for seamless authentication, two-factor support (TOTP), and role-based access control with scoped API keys and fine-grained permissions. |
| 52 | + |
| 53 | +- ### Modern Dashboard UI |
| 54 | + |
| 55 | + Easily manage users, roles, and remote sites through a responsive dashboard with light/dark themes and mobile compatibility. Monitor site connectivity and activity in real-time. |
| 56 | + |
| 57 | +- ### Easy, Scalable Deployment |
| 58 | + |
| 59 | + Deploy Pangolin effortlessly using Docker Compose. Install it on any cloud provider or on-premises system. Extend functionality via REST API and automate tasks with comprehensive documentation. |
0 commit comments