Pangolin

Overview

Identity-aware VPN and proxy for remote access to anything, anywhere. Zero trust access to all your infrastructure, self-hosted applications, and SaaS tools. Easy to deploy and scale. Better than your existing VPN. Website

|

Documentation

|

Contact Us

The project has 20K+ GitHub stars and is licensed under NOASSERTION.

Key Features

Source: GitHub README

• Connect remote networks with sitesPangolin’s lightweight site connectors create secure tunnels from remote networks without requiring public IP addresses or open ports. Sites make any network anywhere available for authorized access.
• Browser-based reverse proxy accessExpose web applications through identity and context-aware tunneled reverse proxies. Pangolin handles routing, load balancing, health checking, and automatic SSL certificates without exposing your network directly to the internet. Users access applications through any web browser with authentication and granular access control.
• Client-based private resource accessAccess private resources like SSH servers, databases, RDP, and entire network ranges through Pangolin clients. Intelligent NAT traversal enables connections even through restrictive firewalls, while DNS aliases provide friendly names and fast connections to resources across all your sites.
• Zero-trust granular accessGrant users access to specific resources, not entire networks. Unlike traditional VPNs that expose full network access, Pangolin’s zero-trust model ensures users can only reach the applications and services you explicitly define, reducing security risk and attack surface.

Getting Started

Source: GitHub README

• Check out the quick install guide for how to install and set up Pangolin.
• Install from the DigitalOcean marketplace for a one-click pre-configured installer.

Normalized Features

Source: tool-features-normalized.json

docker.