Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum

Apps | Demo | Docs | Install
  1. Cloudron Forum
  2. App Wishlist
  3. Pangolin on Cloudron - Your own tunneled reverse proxy with authentication (Cloudflare Tunnel replacement)

Pangolin on Cloudron - Your own tunneled reverse proxy with authentication (Cloudflare Tunnel replacement)

Scheduled Pinned Locked Moved App Wishlist
9 Posts 6 Posters 388 Views 8 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • H Offline
    H Offline
    hakunamatata
    wrote last edited by hakunamatata
    #1
    • Main Page: https://fossorial.io/
    • Git: https://github.com/fosrl/pangolin
    • Licence: AGPL-3
    • Docker: Yes
    • Demo:

    • Summary:
      Pangolin is a self-hosted tunneled reverse proxy management server with identity and access management, designed to securely expose private resources through encrypted WireGuard tunnels running in user space. With Pangolin, you retain full control over your infrastructure while providing a user-friendly and feature-rich solution for managing proxies, authentication, and access, and simplifying complex network setups, all with a clean and simple dashboard web UI.

    • Notes: Self-hosted alternative to Cloudflare Tunnels. Allows you to securely expose services in your homelab without opening ports on your firewall.

    • Alternative to link: https://alternativeto.net/software/fossorial-pangolin/
    L 1 Reply Last reply
    14
    • robiR Offline
      robiR Offline
      robi
      wrote last edited by
      #2

      Node app using SQLite as DB. Yay.

      Conscious tech

      1 Reply Last reply
      1
      • visampV Offline
        visampV Offline
        visamp
        wrote last edited by
        #3

        I would really like to see this as well. The reason I don't use Cloudflare tunnels is privacy policy enables them to review all content that you use via a tunnel. That's really unfortunate.

        Pangolin also recently received a grant from FUTO as well. I'd really like to see this one.

        1 Reply Last reply
        3
        • J Offline
          J Offline
          johannesjom
          wrote last edited by
          #4

          that would be awesome
          !

          1 Reply Last reply
          0
          • H hakunamatata
            • Main Page: https://fossorial.io/
            • Git: https://github.com/fosrl/pangolin
            • Licence: AGPL-3
            • Docker: Yes
            • Demo:

            • Summary:
              Pangolin is a self-hosted tunneled reverse proxy management server with identity and access management, designed to securely expose private resources through encrypted WireGuard tunnels running in user space. With Pangolin, you retain full control over your infrastructure while providing a user-friendly and feature-rich solution for managing proxies, authentication, and access, and simplifying complex network setups, all with a clean and simple dashboard web UI.

            • Notes: Self-hosted alternative to Cloudflare Tunnels. Allows you to securely expose services in your homelab without opening ports on your firewall.

            • Alternative to link: https://alternativeto.net/software/fossorial-pangolin/
            L Offline
            L Offline
            LoudLemur
            wrote last edited by
            #5

            @hakunamatata https://forum.cloudron.io/topic/12472/please-use-this-template-to-make-an-app-wishlist-request

            H 1 Reply Last reply
            0
            • L LoudLemur

              @hakunamatata https://forum.cloudron.io/topic/12472/please-use-this-template-to-make-an-app-wishlist-request

              H Offline
              H Offline
              hakunamatata
              wrote last edited by
              #6

              @LoudLemur Original post has been updated.

              1 Reply Last reply
              1
              • msproutM Offline
                msproutM Offline
                msprout
                wrote last edited by msprout
                #7

                I would love for this one to be available.

                As it stands, I actually have rolled my own reverse proxy w/ authentication by leveraging Tailscale, and Cloudron's "Relay" app/feature. As long as my Cloudron machine is on the same tailnet, I just set the relay to point to the Tailscale address and port.

                Tailscale has a neat web interface that helpfully exposes every process listening to which ports, so you'll also know if it can be accessible to other machines on the tailnet.

                Finally, with the relay app, Cloudron offers the option to have apps only be available to certain users; I have found that this works well for identity management too. Whatever Cloudron uses for its universal login tech got the thumbs up of approval from my buddy in InfoSec. 😄

                I really like how Pangolin offers so much more flexibility — what I have is super rigid in the sense that you have two choices for authentication: allow everyone or allow just local Cloudron users. I would like to be able to set some to be the browser-native password prompt, have some only allow certain IPs in, etc. That would be sweet.

                visampV 1 Reply Last reply
                3
                • msproutM msprout

                  I would love for this one to be available.

                  As it stands, I actually have rolled my own reverse proxy w/ authentication by leveraging Tailscale, and Cloudron's "Relay" app/feature. As long as my Cloudron machine is on the same tailnet, I just set the relay to point to the Tailscale address and port.

                  Tailscale has a neat web interface that helpfully exposes every process listening to which ports, so you'll also know if it can be accessible to other machines on the tailnet.

                  Finally, with the relay app, Cloudron offers the option to have apps only be available to certain users; I have found that this works well for identity management too. Whatever Cloudron uses for its universal login tech got the thumbs up of approval from my buddy in InfoSec. 😄

                  I really like how Pangolin offers so much more flexibility — what I have is super rigid in the sense that you have two choices for authentication: allow everyone or allow just local Cloudron users. I would like to be able to set some to be the browser-native password prompt, have some only allow certain IPs in, etc. That would be sweet.

                  visampV Offline
                  visampV Offline
                  visamp
                  wrote last edited by
                  #8

                  @msprout That sounds very interesting. Did you happen to tunnel to TrueNAS by chance? I'd like to do the same with my TrueNAS setup at home.

                  1 Reply Last reply
                  0
                  • visampV Offline
                    visampV Offline
                    visamp
                    wrote last edited by
                    #9

                    When I say tunnel, I mean Tailscale.

                    1 Reply Last reply
                    0
                    Reply
                    • Reply as topic
                    Log in to reply
                    • Oldest to Newest
                    • Newest to Oldest
                    • Most Votes


                    • Login

                    • Don't have an account? Register

                    • Login or register to search.
                    • First post
                      Last post
                    0
                    • Categories
                    • Recent
                    • Tags
                    • Popular
                    • Bookmarks
                    • Search