Fossorial Pangolin icon
Fossorial Pangolin icon

Fossorial Pangolin

Pangolin is a self-hosted tunneled reverse proxy server with identity and access control, designed to securely expose private resources on distributed networks. Acting as a central hub, it connects isolated networks — even those behind restrictive firewalls — through encrypted...

Fossorial Pangolin screenshot 1

Cost / License

  • Free
  • Open Source

Application type

Platforms

  • Self-Hosted
  • Docker
  • Linux
Fossorial Pangolin screenshot 1
Alternatives  
-
No reviews
7likes
2comments
12alternatives
1news article

Features

Suggest and vote on features

Properties

  1.  Privacy focused

Features

  1.  Access Control
  2.  Reverse Proxy
  3.  Two-factor Authentication
  4.  Supports SSL Certificates
  5.  No Tracking
  6.  Ad-free
  7.  Time-based One-time Password
  8.  Dark Mode
  9.  WireGuard
  10.  TCP Proxy
  11.  SSL
  12.  Mesh network
  13.  Load balancing

 Tags

Fossorial Pangolin News & Activities

Highlights All activities

Recent News

Show more news

Recent activities

  • wesapone reviewed Fossorial Pangolin  

    Extremely reliable and very easy to set up!

  • wesapone, PredatorQ and braky liked Fossorial Pangolin
  • NPMplus icon
    K0RR added Fossorial Pangolin as alternative to NPMplus
  • pcar and Sitric liked Fossorial Pangolin
  • youlk1234 added Two-factor Authentication as a feature to Fossorial Pangolin
  • youlk1234 reviewed Fossorial Pangolin  

    So i have a homelab, but i cannot access it from school computers with tools like Tailscale. Cloudflare requires a domain. This does not. Not only does it have free tunnels, subdomains and HTTPS certificates, and it delivers it in a simple interface. Supports auth by PIN code or SSO (supports LDAP, oAuth etc). Even with the internet tracking thing in Australia, this is amazing for easy access of private resources.

  • youlk1234 liked Fossorial Pangolin
Show all activities

Fossorial Pangolin information

  • Developed by

    AU flagFossorial

  • Licensing

    Open Source and Free product.

  • Written in

  • Alternatives

    12 alternatives listed

  • Supported Languages

    • English

AlternativeTo Categories

Network & AdminSecurity & PrivacyDevelopment

GitHub repository

  •  17,666 Stars
  •  520 Forks
  •  68 Open Issues
  •   Updated  
View on GitHub

Popular alternatives

View all

Our users have written 2 comments and reviews about Fossorial Pangolin, and it has gotten 7 likes

Fossorial Pangolin was added to AlternativeTo by Paul on and this page was last updated .

Comments and Reviews

   
 Post comment/review
Top Positive Comment
youlk1234
1

So i have a homelab, but i cannot access it from school computers with tools like Tailscale. Cloudflare requires a domain. This does not. Not only does it have free tunnels, subdomains and HTTPS certificates, and it delivers it in a simple interface. Supports auth by PIN code or SSO (supports LDAP, oAuth etc). Even with the internet tracking thing in Australia, this is amazing for easy access of private resources.

wesapone
0

Extremely reliable and very easy to set up!

Review by a new / low-activity user.

What is Fossorial Pangolin?

Pangolin is a self-hosted tunneled reverse proxy server with identity and access control, designed to securely expose private resources on distributed networks. Acting as a central hub, it connects isolated networks — even those behind restrictive firewalls — through encrypted tunnels, enabling easy access to remote services without opening ports.

Key Features:

Reverse Proxy Through WireGuard Tunnel:

  • Expose private resources on your network without opening ports (firewall punching).
  • Secure and easy to configure site-to-site connectivity via a custom user space WireGuard client, Newt.
  • Built-in support for any WireGuard client.
  • Automated SSL certificates (https) via LetsEncrypt.
  • Support for HTTP/HTTPS and raw TCP/UDP services.
  • Load balancing.

Identity & Access Management:

  • Centralized authentication system using platform SSO. Users will only have to manage one login.
  • Define access control rules for IPs, IP ranges, and URL paths per resource.
  • TOTP with backup codes for two-factor authentication.
  • Create organizations, each with multiple sites, users, and roles.
  • Role-based access control to manage resource access permissions.
  • Additional authentication options include:
  • Email whitelisting with one-time passcodes.
  • Temporary, self-destructing share links.
  • Resource specific pin codes.
  • Resource specific passwords.

Simple Dashboard UI:

  • Manage sites, users, and roles with a clean and intuitive UI.
  • Monitor site usage and connectivity.
  • Light and dark mode options.
  • Mobile friendly.

Easy Deployment:

  • Run on any cloud provider or on-premises.
  • Docker Compose based setup for simplified deployment.
  • Future-proof installation script for streamlined setup and feature additions.
  • Use any WireGuard client to connect, or use Newt, our custom user space client for the best experience.

Modular Design:

  • Extend functionality with existing Traefik plugins, such as CrowdSec and Geoblock.
  • Automatically install and configure Crowdsec via Pangolin's installer script.
  • Attach as many sites to the central server as you wish.

Official Links

AppStores & Other Links