reverse-proxy
Smart Auto Start/Stop for Proxmox Containers via Traefik.
Wake-LXC is a smart proxy service that automatically starts and stops Proxmox LXC containers based on incoming traffic, saving resources while maintaining seamless user access.
MCP OAuth Proxy incl. dynamic client registration (DCR), MCP prompt analytics and MCP firewall to build enterprise grade MCP servers.
Jetski is an Open Source MCP Analytics and Authentication Platform - part of HyprMCP. It solves the three biggest problems teams face when developing MCP servers with zero code changes:
Varnish Cache is a web application accelerator also known as a caching HTTP reverse proxy. You install it in front of any server that speaks HTTP and configure it to cache the contents. Varnish Cache is really, really fast. It typically speeds up delivery with a factor of 300 - 1000x, depending on your architecture. A high level overview of what Varnish does can be seen in this video.
A Cloudflare alternative for local and cloud use, can be used ontop of cloudflare for cloudflares paid features, but for free!
NetGoat is a blazing-fast, self-hostable reverse proxy and traffic manager designed for developers, homelabbers, and teams who want Cloudflare-like features without the cost.
A free and open source tunneling tool.
Tunnelmole is a simple tool to give your locally running HTTP(s) servers a public URL.
Related contents:
A lightweight proxy manager built on Tailscale's tsnet library that enables multiple HTTPS services on a Tailnet
ProxyAuth secures backend APIs through a fast authentication gateway. It encrypts tokens using ChaCha20 + HMAC-SHA256, with config-defined secrets. It features built-in rate limiting (on proxy and auth routes) and uses Argon2 with auto-generated salts for secure password hashing. The service is extremely fast, handling 100,000+ requests per second under load.
Related contents:
nginx ("engine x") is an HTTP web server, reverse proxy, content cache, load balancer, TCP/UDP proxy server, and mail proxy server. Originally written by Igor Sysoev and distributed under the 2-clause BSD License.
Related contents:
🔌 Command-line reverse proxy for forwarding HTTP requests through an outbound proxy.
prxy is a command-line reverse proxy written in Go for forwarding HTTP requests through an outbound proxy, while automatically rewriting the Host header for you.
Related contents:
A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.
OAuth2-Proxy is a flexible, open-source tool that can act as either a standalone reverse proxy or a middleware component integrated into existing reverse proxy or load balancer setups. It provides a simple and secure way to protect your web applications with OAuth2 / OIDC authentication. As a reverse proxy, it intercepts requests to your application and redirects users to an OAuth2 provider for authentication. As a middleware, it can be seamlessly integrated into your existing infrastructure to handle authentication for multiple applications.
Related contents:
Simple yet powerful Traefik manager, enhanced with advanced features.
Mantræ is a user-friendly web interface designed to simplify the management of Traefik's dynamic configurations. Similar to Nginx Proxy Manager (NPM), this application allows you to manage your dynamic Traefik configuration from the comfort of a simple web ui.
Mantrae provides an intuitive UI for managing Traefik routers, middlewares, and DNS entries, making setup and configuration straightforward.
Nginx webserver and reverse proxy with php support and a built-in Certbot (Let's Encrypt) client. It also contains fail2ban for intrusion prevention.
Related contents:
Automatically optimize files uploaded to Immich in order to save storage space.
Immich Upload Optimizer is a proxy designed to be placed in front of the Immich server. It intercepts file uploads and uses an external CLI program (by default JPEG-XL, Caesium and HandBrake) to optimize, resize, or compress images and videos before they are stored on the Immich server. This helps save storage space on the Immich server by reducing the size of uploaded files.
Tunneled Reverse Proxy Management Server with Identity and Access Control and Dashboard UI.
Pangolin is a self-hosted tunneled reverse proxy management server with identity and access management, designed to securely expose private resources through use with the Traefik reverse proxy and WireGuard tunnel clients like Newt. With Pangolin, you retain full control over your infrastructure while providing a user-friendly and feature-rich solution for managing proxies, authentication, and access, and simplifying complex network setups, all with a clean and simple UI.
Related contents:
- Pangolin: Your Own Self-Hosted Cloudflare Tunnel Alternative @ DB Tech's YouTube.
- Pangolin Middleware Manager @ GitHub.
- Getting Started with Pangolin @ Lawrence Systems' YouTube.
- Pangolin - Self hosted Tunneling to secure access to your home services and local network. @ Awesome Open Source's YouTube.
- I Put Jellyfin Behind Pangolin on Unraid… WOW @ Ibracorp.
Dynamic Dashboard for Nginx Proxy.
Dashly is a lightweight, real-time dashboard for users of Nginx Proxy Manager. It simplifies how you monitor and organize your services by automatically syncing with your NPM database. This means you never have to manually edit dashboard configuration files like YAML—it dynamically tracks and displays all your services based on their domain configurations in NPM.
Caddy Config Generator.
A user-friendly interface for generating Caddy server configurations. Create and manage reverse proxy and file server configurations with support for SSL, compression, security headers, and more.
Very simple proxy with Tailscale. Fast, simple and easy for virtual services in Tailscale.
TsDProxy simplifies the process of securely exposing services and Docker containers to your Tailscale network by automatically creating Tailscale machines for each tagged container. This allows services to be accessible via unique, secure URLs without the need for complex configurations or additional Tailscale containers.
Related contents:
Ultra performant API Gateway with middlewares. A project hosted at The Linux Foundation.
An open framework to assemble ultra performance API Gateways with middlewares; formerly known as KrakenD framework, and core service of the KrakenD API Gateway. An extendable, simple and stateless high-performance API Gateway framework designed for both cloud-native and on-prem setups.
Lura is an API Gateway builder and proxy generator that sits between the client and all the source servers, adding a new layer that removes all the complexity to the clients, providing them only the information that the UI needs. Lura acts as an aggregator of many sources into single endpoints and allows you to group, wrap, transform and shrink responses. Additionally it supports a myriad of middlewares and plugins that allow you to extend the functionality, such as adding Oauth authorization or security layers.
PipeGate is a lightweight, self-hosted proxy built with FastAPI, designed as a "poor man's ngrok." It allows you to expose your local servers to the internet, providing a simple way to create tunnels from your local machine to the external world.
E2EE aware proxy daemon for matrix clients.
Pantalaimon is an end-to-end encryption aware Matrix reverse proxy daemon. Pantalaimon acts as a good man in the middle that handles the encryption for you. Messages are transparently encrypted and decrypted for clients inside of pantalaimon.
A set of Otoroshi plugins to interact with LLMs.
Connect, setup, secure and seamlessly manage LLM models using an Universal/OpenAI compatible API.
API management on top of a reverse proxy.
Otoroshi is a layer of lightweight api management on top of a modern http reverse proxy written in Scala and developped by the MAIF OSS team. Otoroshi is designed to handle all the calls to and between your microservices without service locator and let you change configuration dynamicaly at runtime.
Easy to use reverse proxy with docker integration.
A lightweight, easy-to-use, and performant reverse proxy with a Web UI and dashboard.
Bye bye localhost, hello world.
LocalXpose is a reverse proxy that enables you to expose your localhost to the internet.
the Best WAF for Webmaster. Secure Everything on Your Web Applications.A simple, lightweight, self-hosted WAF that protects your website from cyber attacks.
serve as a reverse proxy to protect your web services from attacks and exploits.
Related contents:
nginx-proxy sets up a container running nginx and docker-gen. docker-gen generates reverse proxy configs for nginx and reloads nginx when containers are started and stopped.
A fully automated HTTPS server powered by Nginx, Let's Encrypt and Docker.
HTTPS-PORTAL is a fully automated HTTPS server powered by Nginx, Let's Encrypt and Docker. By using it, you can run any existing web application over HTTPS, with only one extra line of configuration.
Cloud-native high-performance edge/middle/service proxy. Envoy is an open source edge and service proxy, designed for cloud-native applications.
Speed application development and boost developer productivity. Ambassador is redefining how APIs are developed from design to production.
Emissary-Ingress is an open-source Kubernetes-native API Gateway + Layer 7 load balancer + Kubernetes Ingress built on Envoy Proxy. Emissary-ingress is a CNCF incubation project (and was formerly known as Ambassador API Gateway).
Open Source HTTP Reverse Proxy built in Rust for Immutable Infrastructures.
Sōzu HTTP reverse proxy, configurable at runtime, fast and safe, built in Rust. It is awesome! Sozu can receive configuration changes at runtime through secure unix sockets without having to reload.
The Platform Powering the API World. 🦍 The Cloud-Native API Gateway.
Kong or Kong API Gateway is a cloud-native, platform-agnostic, scalable API Gateway distinguished for its high performance and extensibility via plugins.
By providing functionality for proxying, routing, load balancing, health checking, authentication (and more), Kong serves as the central layer for orchestrating microservices or conventional API traffic with ease.
🌸 HTTP REST API caching middleware, to be used between load balancers and REST API workers.
Expose your services easily and securely.
This project comes as a pre-built docker image that enables you to easily forward to your websites running at home or otherwise, including free SSL, without having to know too much about Nginx or Letsencrypt.
Related contents:
Traefik is an open-source Edge Router that makes publishing your services a fun and easy experience. It receives requests on behalf of your system and finds out which components are responsible for handling them.
frp is a fast reverse proxy that allows you to expose a local server located behind a NAT or firewall to the Internet. It currently supports TCP and UDP, as well as HTTP and HTTPS protocols, enabling requests to be forwarded to internal services via domain name.
mitmproxy is a console tool that allows interactive examination and modification of HTTP traffic. It differs from mitmdump in that all flows are kept in memory, which means that it's intended for taking and manipulating small-ish samples. Use the ? shortcut key to view, context-sensitive documentation from any mitmproxy screen.
GateJS is a javascript based reverse & forward proxy with high performance & capability.
Combine internet connections, increase your download speed .
A SOCKS5/HTTP proxy that balances traffic between multiple internet connections.
High Performance non-blocking event based network loop using EPool on Linux, select on other OSes use of cheap co-routine to handle clients connections automatically adding threads to handle load peaks (threads are forking the redirectors programs) internal use of sockets as message parsing technique with the threads internal non-blocking DNS resolver (UDP and TCP messages integrated in the main loop) optional local DNS caching of records
Vulture est une solution Web-SSO basée sur une technologie de proxy inverse implémentée sur le socle Apache. Vulture implémente également des fonctionnalités de firewall applicatif.
This is the homepage of frox. It is a transparent ftp proxy which is released under the GPL. It optionally supports caching (either through an external http cache (eg. squid), or by maintaining a cache locally), and/or running a virus scanner, on downloaded files. It is written with security in mind, and in the default setup it runs as a non root user in a chroot jail.