|
|
||
|---|---|---|
| .github | ||
| bruno | ||
| cli | ||
| config | ||
| install | ||
| messages | ||
| public | ||
| server | ||
| src | ||
| test | ||
| .dockerignore | ||
| .editorconfig | ||
| .eslintrc.json | ||
| .gitignore | ||
| .nvmrc | ||
| .prettierrc | ||
| blueprint.py | ||
| blueprint.yaml | ||
| components.json | ||
| CONTRIBUTING.md | ||
| crowdin.yml | ||
| docker-compose.drizzle.yml | ||
| docker-compose.example.yml | ||
| docker-compose.pgr.yml | ||
| docker-compose.yml | ||
| Dockerfile | ||
| Dockerfile.dev | ||
| drizzle.pg.config.ts | ||
| drizzle.sqlite.config.ts | ||
| esbuild.mjs | ||
| eslint.config.js | ||
| LICENSE | ||
| Makefile | ||
| next.config.mjs | ||
| package-lock.json | ||
| package.json | ||
| postcss.config.mjs | ||
| README.md | ||
| SECURITY.md | ||
| tsconfig.enterprise.json | ||
| tsconfig.oss.json | ||
| tsconfig.saas.json | ||
Start testing Pangolin at app.pangolin.net
Pangolin is a self-hosted tunneled reverse proxy server with identity and context aware access control, designed to easily expose and protect applications running anywhere. Pangolin acts as a central hub and connects isolated networks — even those behind restrictive firewalls — through encrypted tunnels, enabling easy access to remote services without opening ports or requiring a VPN.
Installation
- Check out the quick install guide for how to install and set up Pangolin.
- Install from the DigitalOcean marketplace for a one-click pre-configured installer.
Deployment Options
| Description | |
|---|---|
| Self-Host: Community Edition | Free, open source, and licensed under AGPL-3. |
| Self-Host: Enterprise Edition | Licensed under Fossorial Commercial License. Free for personal and hobbyist use, and for businesses earning under $100K USD annually. |
| Pangolin Cloud | Fully managed service with instant setup and pay-as-you-go pricing — no infrastructure required. Or, self-host your own remote node and connect to our control plane. |
Key Features
Pangolin packages everything you need for seamless application access and exposure into one cohesive platform.
| Manage applications in one place Pangolin provides a unified dashboard where you can monitor, configure, and secure all of your services regardless of where they are hosted. |
|
| Reverse proxy across networks anywhere Route traffic via tunnels to any private network. Pangolin works like a reverse proxy that spans multiple networks and handles routing, load balancing, health checking, and more to the right services on the other end. |
 |
| Enforce identity and context aware rules Protect your applications with identity and context aware rules such as SSO, OIDC, PIN, password, temporary share links, geolocation, IP, and more. |
 |
| Quickly connect Pangolin sites Pangolin's lightweight Newt client runs in userspace and can run anywhere. Use it as a site connector to route traffic to backends across all of your environments. |
 |
Get Started
Check out the docs
We encourage everyone to read the full documentation first, which is available at docs.pangolin.net. This README provides only a very brief subset of the docs to illustrate some basic ideas.
Sign up and try now
For Pangolin's managed service, you will first need to create an account at app.pangolin.net. We have a generous free tier to get started.
Licensing
Pangolin is dual licensed under the AGPL-3 and the Fossorial Commercial License. For inquiries about commercial licensing, please contact us at contact@pangolin.net.
Contributions
Please see CONTRIBUTING in the repository for guidelines and best practices.
WireGuard® is a registered trademark of Jason A. Donenfeld.