# fosrl/pangolin

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/fosrl-pangolin).**

19,105 stars · 572 forks · TypeScript · other

## Links

- GitHub: https://github.com/fosrl/pangolin
- Homepage: https://pangolin.net
- awesome-repositories: https://awesome-repositories.com/repository/fosrl-pangolin.md

## Topics

`crowdsec` `docker` `home-lab` `identity-management` `iot` `letsencrypt` `oidc` `proxy` `reverse-proxy` `self-hosted` `single-sign-on` `traefik` `vpn` `wireguard` `zero-trust` `zero-trust-network-access` `ztna`

## Description

Pangolin is a zero-trust remote access platform designed to provide secure, identity-aware connectivity to private network resources. It functions as a cloud-native network controller that orchestrates encrypted tunnels, traffic routing, and access policies across distributed environments. By leveraging WireGuard for secure data transport, the platform enables authenticated access to internal web applications, terminal sessions, and remote desktops without exposing services to the public internet.

The platform distinguishes itself through a declarative infrastructure model that synchronizes network state using version-controlled manifests. It supports complex connectivity requirements through peer-to-peer NAT traversal, which facilitates direct encrypted connections between nodes, with automatic fallback to server-based relaying when necessary. Additionally, it provides browser-based access to remote resources, eliminating the need for local client software for many common administrative and service-access tasks.

Beyond its core tunneling capabilities, the platform includes a comprehensive suite of tools for traffic management, security, and observability. It features granular access control policies based on user identity, geolocation, and network attributes, alongside automated certificate management and multi-factor authentication. The system also provides extensive monitoring, audit logging, and alerting capabilities to track infrastructure health and security events across multi-site deployments.

Pangolin is designed for containerized and multi-site environments, offering flexible deployment options through standard packaging and automated reconciliation workflows.

## Tags

### Networking & Communication

- [WireGuard Management](https://awesome-repositories.com/f/networking-communication/vpn-infrastructure/wireguard-management.md) — Provides a centralized control plane for deploying and managing encrypted WireGuard tunnels across distributed sites.
- [Tunnel Managers](https://awesome-repositories.com/f/networking-communication/network-tunnels/tunnel-managers.md) — Orchestrates WireGuard-based tunneling parameters including subnets and exit node configurations. ([source](https://docs.pangolin.net/self-host/advanced/config-file.md))
- [Identity-Aware Web Exposure](https://awesome-repositories.com/f/networking-communication/service-exposure/identity-aware-web-exposure.md) — Publishes internal web services with automatic SSL certificates and identity-aware access controls including SSO and MFA. ([source](https://docs.pangolin.net/about/pangolin-vs-reverse-proxy-vs-vpn.md))
- [NAT Traversal Mechanisms](https://awesome-repositories.com/f/networking-communication/nat-traversal-mechanisms.md) — Coordinates direct encrypted connections between nodes by discovering and punching through restrictive firewall configurations.
- [Network Tunnels](https://awesome-repositories.com/f/networking-communication/network-tunnels.md) — Establishes secure, persistent point-to-point connections between geographically dispersed sites using WireGuard.
- [Remote Access](https://awesome-repositories.com/f/networking-communication/remote-access.md) — Delivers terminal, desktop, and display sessions through a web interface with integrated authentication. ([source](https://docs.pangolin.net/manage/resources/understanding-resources.md))
- [Remote Access Clients](https://awesome-repositories.com/f/networking-communication/remote-access-clients.md) — Provides browser-based access to internal services and remote desktops without requiring local client software. ([source](https://docs.pangolin.net/about/how-pangolin-works.md))
- [Service Exposure](https://awesome-repositories.com/f/networking-communication/service-exposure.md) — Maps private network services to public subdomains through secure tunnels for authenticated access. ([source](https://docs.pangolin.net/self-host/community-guides/homeassistant.md))
- [Authenticated Proxy Exposure](https://awesome-repositories.com/f/networking-communication/service-exposure/authenticated-proxy-exposure.md) — Proxies web traffic to internal services via domain names while enforcing authentication and access policies directly within the browser. ([source](https://docs.pangolin.net/manage/resources/understanding-resources.md))
- [Traffic Routing](https://awesome-repositories.com/f/networking-communication/traffic-routing.md) — Routes traffic to specific internal hosts and subnets over encrypted tunnels while enforcing granular access policies. ([source](https://docs.pangolin.net/about/pangolin-vs-reverse-proxy-vs-vpn.md))
- [Traffic Routing Controllers](https://awesome-repositories.com/f/networking-communication/traffic-routing-controllers.md) — Orchestrates traffic routing and site-to-server tunnels using integrated reverse proxies and Kubernetes-native controllers. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/overview.md))
- [Peer-to-Peer Networking](https://awesome-repositories.com/f/networking-communication/peer-to-peer-networking.md) — Coordinates network address discovery to create direct tunnels that bypass central servers. ([source](https://docs.pangolin.net/manage/clients/nat-traversal.md))
- [Private Networks](https://awesome-repositories.com/f/networking-communication/private-networks.md) — Routes traffic from connected clients to specific machines on a remote network using secure tunnels. ([source](https://docs.pangolin.net/manage/resources/private/host.md))
- [Remote Desktop Clients](https://awesome-repositories.com/f/networking-communication/remote-access-control/remote-desktop-clients.md) — Renders an interactive VNC client directly in the browser for remote display control. ([source](https://docs.pangolin.net/manage/resources/public/vnc.md))
- [Subnet Routing](https://awesome-repositories.com/f/networking-communication/subnet-routing.md) — Assigns non-conflicting private IP ranges to sites and clients to prevent network address collisions. ([source](https://docs.pangolin.net/self-host/dns-and-networking.md))
- [Traffic Routing Policies](https://awesome-repositories.com/f/networking-communication/traffic-routing-policies.md) — Manages traffic routing and security rules for web services through a visual interface. ([source](https://docs.pangolin.net/self-host/community-guides/middlewaremanager.md))
- [DNS Resolution](https://awesome-repositories.com/f/networking-communication/dns-resolution.md) — Directs DNS queries through secure tunnels to upstream servers for internal name resolution. ([source](https://docs.pangolin.net/manage/resources/private/alias.md))
- [Load Balancers](https://awesome-repositories.com/f/networking-communication/load-balancers.md) — Distributes incoming requests across multiple upstream targets and sites to ensure high availability. ([source](https://docs.pangolin.net/manage/resources/public/http-https.md))
- [Network Addressing](https://awesome-repositories.com/f/networking-communication/network-addressing.md) — Maps conflicting IP addresses or hostnames to specific sites using aliases to ensure unambiguous routing. ([source](https://docs.pangolin.net/manage/resources/private/destinations.md))
- [Failover Proxies](https://awesome-repositories.com/f/networking-communication/network-infrastructure-routing/network-proxying-tools/network-proxies/failover-proxies.md) — Configures multiple site connectors for a single IP range to enable automatic path selection and failover. ([source](https://docs.pangolin.net/manage/resources/private/cidr.md))
- [Automated Traffic Routing](https://awesome-repositories.com/f/networking-communication/network-infrastructure-routing/network-routing-traffic-management/network-traffic-management/automated-traffic-routing.md) — Distributes network traffic across multiple available site connectors to ensure resilient access and automatic failover. ([source](https://docs.pangolin.net/manage/resources/private/host.md))
- [Connection and Session Management](https://awesome-repositories.com/f/networking-communication/network-reliability-diagnostics/connection-session-management.md) — Records TCP and UDP traffic details including user identity and connection volume for auditing. ([source](https://docs.pangolin.net/manage/analytics/connection.md))
- [Custom Domains](https://awesome-repositories.com/f/networking-communication/networking/custom-domains.md) — Maps custom domains and subdomains to internal network resources to simplify service access and resolution. ([source](https://docs.pangolin.net/manage/domains.md))
- [Secure Tunnels](https://awesome-repositories.com/f/networking-communication/secure-tunnels.md) — Configures network tunnels using domain names and port ranges for encrypted communication. ([source](https://docs.pangolin.net/manage/remote-node/config-file.md))
- [Traffic Tunneling](https://awesome-repositories.com/f/networking-communication/traffic-tunneling.md) — Routes network traffic through central nodes when direct peer-to-peer connections are unavailable. ([source](https://docs.pangolin.net/manage/clients/nat-traversal.md))
- [Remote Access Proxies](https://awesome-repositories.com/f/networking-communication/local-reverse-proxies/remote-access-proxies.md) — Exposes local applications to remote users via secure reverse proxy tunnels. ([source](https://docs.pangolin.net/development/system-architecture.md))
- [Network Port Configuration](https://awesome-repositories.com/f/networking-communication/network-port-configuration.md) — Opens specific communication channels for web traffic, SSL verification, and encrypted tunnels. ([source](https://docs.pangolin.net/self-host/dns-and-networking.md))
- [Proxy Integrations](https://awesome-repositories.com/f/networking-communication/proxy-integrations.md) — Integrates with third-party proxy services to route traffic while maintaining secure SSL/TLS connections and client identity. ([source](https://docs.pangolin.net/self-host/advanced/cloudflare-proxy.md))
- [Proxy Routing Services](https://awesome-repositories.com/f/networking-communication/proxy-routing-services.md) — Connects internal containerized applications and host-based services to the remote access platform using internal hostnames. ([source](https://docs.pangolin.net/self-host/dns-and-networking.md))
- [Subdomain Routing Gateways](https://awesome-repositories.com/f/networking-communication/proxy-servers/subdomain-routing-gateways.md) — Routes all hostnames under a specific subdomain through a single tunnel for centralized management. ([source](https://docs.pangolin.net/manage/resources/public/wildcard-resources.md))
- [Client Configuration Settings](https://awesome-repositories.com/f/networking-communication/remote-access-control/client-configuration-settings.md) — Distributes standardized client-side connection settings and behavior overrides to ensure consistent network access across devices. ([source](https://docs.pangolin.net/manage/clients/configure-client.md))
- [Traffic Proxying](https://awesome-repositories.com/f/networking-communication/traffic-proxying.md) — Routes traffic for specific hostnames through remote sites to enable egress from controlled network locations. ([source](https://docs.pangolin.net/manage/resources/private/destinations.md))
- [Traffic Distribution](https://awesome-repositories.com/f/networking-communication/traffic-shaping/scaling/traffic-distribution.md) — Distributes traffic across multiple geographically dispersed nodes to reduce latency and improve throughput. ([source](https://docs.pangolin.net/manage/remote-node/understanding-nodes.md))

### Security & Cryptography

- [Private Network Security](https://awesome-repositories.com/f/security-cryptography/private-network-security.md) — Provides secure, zero-trust access to internal network resources via managed tunnels. ([source](https://docs.pangolin.net/about/how-pangolin-works.md))
- [Secure Remote Access](https://awesome-repositories.com/f/security-cryptography/secure-remote-access.md) — Connects remote devices and automated systems to private network resources through secure VPN tunnels. ([source](https://docs.pangolin.net/manage/clients/understanding-clients.md))
- [Zero Trust Access](https://awesome-repositories.com/f/security-cryptography/zero-trust-access.md) — Provides secure, identity-aware access to private network resources without exposing them to the public internet.
- [Resource Access Control Layers](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/policy-enforcement-engines/resource-access-control-layers.md) — Intercepts incoming requests to verify user identity and permissions before granting access to protected services. ([source](https://docs.pangolin.net/development/system-architecture.md))
- [Identity and Access Management Servers](https://awesome-repositories.com/f/security-cryptography/identity-and-access-management-servers.md) — Manages user identities, access policies, and system configuration through a centralized dashboard and programmatic interface. ([source](https://docs.pangolin.net/development/system-architecture.md))
- [Identity-Aware Proxies](https://awesome-repositories.com/f/security-cryptography/identity-aware-proxies.md) — Acts as a secure proxy enforcing authentication and access policies for internal services with automated TLS management.
- [Identity Providers](https://awesome-repositories.com/f/security-cryptography/identity-providers.md) — Verifies user identity through internal or external providers to control access to network resources. ([source](https://docs.pangolin.net/manage/resources/public/authentication.md))
- [Policy-Based Access Control](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control.md) — Applies identity-based authentication and context-aware rules to control user access to network resources. ([source](https://docs.pangolin.net/manage/resources/public/rdp.md))
- [Private Network Tunnels](https://awesome-repositories.com/f/security-cryptography/private-network-tunnels.md) — Creates zero-trust connections that route traffic to specific hosts or subnets after user authentication. ([source](https://docs.pangolin.net/manage/resources/understanding-resources.md))
- [Secure Proxy Exposure](https://awesome-repositories.com/f/security-cryptography/reverse-proxy-security/secure-proxy-exposure.md) — Publishes internal web applications and APIs to the public internet via an authenticated reverse proxy with automated TLS certificate management. ([source](https://docs.pangolin.net/manage/resources/public/http-https.md))
- [Device Posture Validation](https://awesome-repositories.com/f/security-cryptography/device-posture-validation.md) — Evaluates device configuration and security posture to ensure compliance before granting access. ([source](https://docs.pangolin.net/manage/clients/fingerprinting.md))
- [Network Access Control](https://awesome-repositories.com/f/security-cryptography/network-access-control.md) — Manages WireGuard tunnel connectivity and ingress routing through integrated controller support. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/pangolin/configuration.md))
- [OIDC Identity Integrations](https://awesome-repositories.com/f/security-cryptography/oidc-identity-integrations.md) — Integrates external identity providers using OpenID Connect to verify user credentials and manage access. ([source](https://docs.pangolin.net/manage/identity-providers/openid-connect.md))
- [Secure SSH Access](https://awesome-repositories.com/f/security-cryptography/secure-ssh-access.md) — Connects users to remote hosts via terminal over a private tunnel using friendly aliases. ([source](https://docs.pangolin.net/manage/resources/private/ssh.md))
- [Secure Tunneling](https://awesome-repositories.com/f/security-cryptography/secure-tunneling.md) — Establishes and maintains encrypted connections between edge networks and the central server using cryptographic protocols. ([source](https://docs.pangolin.net/development/system-architecture.md))
- [Ephemeral Credential Issuers](https://awesome-repositories.com/f/security-cryptography/cryptographic-key-management/ephemeral-credential-issuers.md) — Generates short-lived cryptographic keys for secure access to remote resources, eliminating long-term credential management.
- [Device Access Policies](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/device-connection-authorization/device-access-policies.md) — Revokes network permissions for specific devices identified as compromised or lost. ([source](https://docs.pangolin.net/manage/clients/archiving-blocking.md))
- [Mutual TLS Authentication](https://awesome-repositories.com/f/security-cryptography/identity-access-management/authentication-strategies/machine-and-protocol-identity/specialized-authentication-protocols/mutual-tls-authentication.md) — Establishes secure connections using mutual TLS for identity verification. ([source](https://docs.pangolin.net/manage/sites/configure-site.md))
- [Resource Access Policies](https://awesome-repositories.com/f/security-cryptography/identity-and-access-management/resource-access-policies.md) — Manages granular access policies for applications, hosts, and network ranges to ensure authorized service reachability. ([source](https://docs.pangolin.net/about/how-pangolin-works.md))
- [Identity Provider Integrations](https://awesome-repositories.com/f/security-cryptography/identity-provider-integrations.md) — Integrates with Microsoft identity services for organizational credential-based authentication. ([source](https://docs.pangolin.net/manage/identity-providers/azure.md))
- [Multi-Factor Authentication](https://awesome-repositories.com/f/security-cryptography/multi-factor-authentication.md) — Mandates secondary identity verification during login to enhance organizational account security. ([source](https://docs.pangolin.net/manage/access-control/mfa.md))
- [Google OAuth Providers](https://awesome-repositories.com/f/security-cryptography/oauth-authentication/google-oauth-providers.md) — Integrates Google as an identity provider for secure access to network resources. ([source](https://docs.pangolin.net/manage/identity-providers/google.md))
- [Remote Service Authentication](https://awesome-repositories.com/f/security-cryptography/remote-service-authentication.md) — Registers and verifies remote nodes with a central server using unique identifiers and secrets. ([source](https://docs.pangolin.net/manage/remote-node/config-file.md))
- [Certificate Authority Management](https://awesome-repositories.com/f/security-cryptography/certificate-authority-management.md) — Manages organization-specific certificate authority keys for secure communication. ([source](https://docs.pangolin.net/self-host/advanced/container-cli-tool.md))
- [Device Approval Workflows](https://awesome-repositories.com/f/security-cryptography/device-approval-workflows.md) — Requires administrative review and approval for new devices before granting network access. ([source](https://docs.pangolin.net/manage/access-control/approvals.md))
- [Identity Provider Group Mappings](https://awesome-repositories.com/f/security-cryptography/identity-provider-group-mappings.md) — Automates organization assignment based on identity provider group memberships and email domains. ([source](https://docs.pangolin.net/manage/identity-providers/auto-provisioning.md))
- [Network Access Controls](https://awesome-repositories.com/f/security-cryptography/network-infrastructure-security/web-network-security/network-security/network-routing-access-control/network-access-controls.md) — Applies ranked policies to permit or deny traffic based on IP, geolocation, or URL paths. ([source](https://docs.pangolin.net/manage/resources/public/authentication.md))
- [Role-Based Access Control](https://awesome-repositories.com/f/security-cryptography/role-based-access-control.md) — Groups users into custom roles to manage permissions and control access to network resources based on organizational requirements. ([source](https://docs.pangolin.net/manage/access-control/create-user.md))
- [SSH Key Management](https://awesome-repositories.com/f/security-cryptography/ssh-key-management.md) — Generates and signs short-lived cryptographic keys for auditable, passwordless access to network resources. ([source](https://docs.pangolin.net/manage/ssh.md))
- [Wildcard Certificate Management](https://awesome-repositories.com/f/security-cryptography/wildcard-certificate-management.md) — Automates wildcard TLS certificate provisioning using DNS-01 challenges. ([source](https://docs.pangolin.net/self-host/advanced/wild-card-domains.md))
- [Access Provisioning](https://awesome-repositories.com/f/security-cryptography/access-provisioning.md) — Automates user authentication and identity propagation for private terminal sessions to eliminate manual key distribution. ([source](https://docs.pangolin.net/about/pangolin-vs-reverse-proxy-vs-vpn.md))
- [Bot Blocking](https://awesome-repositories.com/f/security-cryptography/application-and-system-security/browser-security/content-filtering-blocking/bot-blocking.md) — Integrates threat intelligence engines to identify and automatically block abusive IP addresses and bot activity in real time. ([source](https://docs.pangolin.net/self-host/community-guides/overview.md))
- [Audit Logging](https://awesome-repositories.com/f/security-cryptography/audit-logging.md) — Exports system activity records to object storage for long-term retention and compliance. ([source](https://docs.pangolin.net/manage/analytics/streaming/s3.md))
- [Authentication Security](https://awesome-repositories.com/f/security-cryptography/authentication-security.md) — Supports passwordless login using physical security keys to improve authentication security. ([source](https://docs.pangolin.net/manage/access-control/security-keys.md))
- [Automated Secret Rotation](https://awesome-repositories.com/f/security-cryptography/automated-secret-rotation.md) — Updates master encryption keys by re-encrypting stored sensitive data and configuration values. ([source](https://docs.pangolin.net/self-host/advanced/container-cli-tool.md))
- [Security Infrastructure](https://awesome-repositories.com/f/security-cryptography/governance-policy-frameworks/security-infrastructure.md) — Extends traffic filtering to system-level services by integrating firewall bouncers with detection engines. ([source](https://docs.pangolin.net/self-host/community-guides/crowdsec.md))
- [API Key Scopes](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/data-resource-permissions/api-key-scopes.md) — Limits the scope of API keys to specific actions and resources to enforce least privilege. ([source](https://docs.pangolin.net/manage/integration-api.md))
- [Customizable Login Interfaces](https://awesome-repositories.com/f/security-cryptography/identity-access-management/authentication-strategies/user-facing-login-methods/customizable-login-interfaces.md) — Provides branded login portals for users to select identity providers. ([source](https://docs.pangolin.net/manage/identity-providers/add-an-idp.md))
- [Identity Provider Role Mapping](https://awesome-repositories.com/f/security-cryptography/identity-provider-role-mapping.md) — Assigns internal roles to users based on identity provider attributes using fixed assignments or custom logic. ([source](https://docs.pangolin.net/manage/identity-providers/auto-provisioning.md))
- [Intrusion Detection Systems](https://awesome-repositories.com/f/security-cryptography/intrusion-detection-systems.md) — Analyzes incoming traffic patterns using a collaborative detection engine to identify and block potential security threats. ([source](https://docs.pangolin.net/self-host/community-guides/crowdsec.md))
- [Network Access Restrictions](https://awesome-repositories.com/f/security-cryptography/network-access-restrictions.md) — Filters network traffic based on the physical location of the request origin. ([source](https://docs.pangolin.net/manage/access-control/rules.md))
- [Autonomous System Restrictions](https://awesome-repositories.com/f/security-cryptography/network-access-restrictions/autonomous-system-restrictions.md) — Blocks or permits network traffic based on the visitor's Autonomous System Number. ([source](https://docs.pangolin.net/manage/asnblocking.md))
- [Path-Based Access Rules](https://awesome-repositories.com/f/security-cryptography/network-infrastructure-security/web-network-security/network-security/network-routing-access-control/network-access-controls/path-based-access-rules.md) — Matches URL patterns using wildcards to apply access rules to specific endpoints. ([source](https://docs.pangolin.net/manage/access-control/rules.md))
- [Network Security Policies](https://awesome-repositories.com/f/security-cryptography/network-security-policies.md) — Enforces communication boundaries between internal components using managed network policies. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/prerequisites.md))
- [Identity Header Injections](https://awesome-repositories.com/f/security-cryptography/user-identity-management/identity-header-injections.md) — Injects authenticated user metadata into HTTP headers for seamless backend integration. ([source](https://docs.pangolin.net/manage/access-control/forwarded-headers.md))

### Software Engineering & Architecture

- [Control Planes](https://awesome-repositories.com/f/software-engineering-architecture/control-planes.md) — Provides a centralized control plane for managing global configuration, authentication, and telemetry across distributed network sites.
- [Hostname Aliasing](https://awesome-repositories.com/f/software-engineering-architecture/resource-addressing-utilities/hostname-aliasing.md) — The platform maps raw destination IP addresses to human-readable hostnames to simplify user connections and resolve overlapping network conflicts. ([source](https://docs.pangolin.net/manage/resources/private/host.md))
- [Failover Strategies](https://awesome-repositories.com/f/software-engineering-architecture/failover-strategies.md) — Maintains service connectivity during site-wide outages by routing traffic to backup targets in distinct network sites. ([source](https://docs.pangolin.net/manage/resources/public/healthchecks-failover.md))
- [Authentication Requirements](https://awesome-repositories.com/f/software-engineering-architecture/naming-conventions/reserved-names/access-restrictions/authentication-requirements.md) — Enforces additional security checks like PINs or one-time passwords before accessing protected resources. ([source](https://docs.pangolin.net/manage/resources/public/authentication.md))
- [Configuration Manifests](https://awesome-repositories.com/f/software-engineering-architecture/configuration-manifests.md) — Applies environment-specific patches and overlays to rendered manifests to manage infrastructure configurations. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/kustomize.md))
- [Custom Middleware Implementations](https://awesome-repositories.com/f/software-engineering-architecture/middleware/custom-middleware-implementations.md) — Injects custom processing logic into the request pipeline to modify or secure traffic for specific network resources. ([source](https://docs.pangolin.net/self-host/community-guides/overview.md))

### DevOps & Infrastructure

- [Network Controllers](https://awesome-repositories.com/f/devops-infrastructure/cloud-native-orchestration/network-controllers.md) — Orchestrates secure connectivity, traffic routing, and access policies as a cloud-native network controller.
- [Declarative Infrastructure Reconciliation](https://awesome-repositories.com/f/devops-infrastructure/declarative-infrastructure-reconciliation.md) — Synchronizes network state and access policies using a declarative infrastructure model with continuous reconciliation.
- [GitOps Controllers](https://awesome-repositories.com/f/devops-infrastructure/gitops-controllers.md) — Synchronizes infrastructure state by reconciling cluster resources from a repository to ensure the cluster matches desired configuration. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/gitops/argocd.md))
- [Infrastructure Reconciliation Controllers](https://awesome-repositories.com/f/devops-infrastructure/infrastructure-reconciliation-controllers.md) — The platform manages cluster resources through a controller that supports both namespace-scoped and cluster-wide operation with configurable access permissions. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/prerequisites.md))
- [Infrastructure as Code](https://awesome-repositories.com/f/devops-infrastructure/infrastructure/infrastructure-as-code.md) — Manages network resources and access policies through version-controlled configuration files for repeatable, declarative infrastructure deployments. ([source](https://docs.pangolin.net/manage/blueprints.md))
- [Ingress Controllers](https://awesome-repositories.com/f/devops-infrastructure/ingress-controllers.md) — Directs incoming traffic to internal services by dynamically mapping domain names and paths to healthy backend endpoints.
- [Multi-Cluster Deployment Managers](https://awesome-repositories.com/f/devops-infrastructure/kubernetes-cluster-management/multi-cluster-deployment-managers.md) — Coordinates the installation and lifecycle of services across multiple clusters to maintain consistent network policies. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/gitops/flux.md))
- [Kubernetes Application Deployments](https://awesome-repositories.com/f/devops-infrastructure/kubernetes-deployments/kubernetes-application-deployments.md) — Orchestrates application releases and configurations through declarative workflows for simplified cluster installations. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/helmfile.md))
- [High Availability Clusters](https://awesome-repositories.com/f/devops-infrastructure/high-availability-clusters.md) — Deploys multiple server nodes to enable horizontal scaling and high availability through automatic traffic failover. ([source](https://docs.pangolin.net/self-host/advanced/clustering.md))
- [Infrastructure as Code](https://awesome-repositories.com/f/devops-infrastructure/infrastructure-as-code.md) — Automates network access component configuration and lifecycle management using version-controlled manifests.
- [Infrastructure Deployment](https://awesome-repositories.com/f/devops-infrastructure/infrastructure-deployment.md) — Installs and configures network bridge software on local infrastructure to establish secure tunnels. ([source](https://docs.pangolin.net/manage/sites/install-site.md))
- [Network Coordination Planes](https://awesome-repositories.com/f/devops-infrastructure/network-coordination-planes.md) — Centralizes configuration, authentication, and connection management across distributed sites. ([source](https://docs.pangolin.net/about/how-pangolin-works.md))
- [Platform Settings](https://awesome-repositories.com/f/devops-infrastructure/platform-settings.md) — Configures core operational settings including dashboard URLs, logging levels, and telemetry for the platform instance. ([source](https://docs.pangolin.net/self-host/advanced/config-file.md))
- [Automated Deployment Pipelines](https://awesome-repositories.com/f/devops-infrastructure/automated-deployment-pipelines.md) — Synchronizes network access components with version control repositories to ensure consistent, version-controlled deployments. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/gitops/overview.md))
- [Rolling Update Controllers](https://awesome-repositories.com/f/devops-infrastructure/container-orchestration/workload-scheduling-scaling/rolling-update-controllers.md) — Manages the gradual replacement of old application instances with new versions to ensure zero-downtime updates. ([source](https://docs.pangolin.net/self-host/advanced/clustering.md))
- [Control Plane Deployment Tools](https://awesome-repositories.com/f/devops-infrastructure/control-plane-deployment-tools.md) — Installs core application, API, and authentication services within a cluster to manage remote access infrastructure. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/pangolin/helm.md))
- [Helm Chart Management](https://awesome-repositories.com/f/devops-infrastructure/helm-chart-management.md) — Deploys and updates platform components using standardized Helm package templates. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/gitops/flux.md))
- [Release Lifecycle Management](https://awesome-repositories.com/f/devops-infrastructure/release-lifecycle-management.md) — Supports version upgrades, release history tracking, and automated rollbacks to ensure cluster stability. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/pangolin/helm.md))
- [Gateway Deployment](https://awesome-repositories.com/f/devops-infrastructure/remote-management-gateways/gateway-deployment.md) — Hosts private network gateways on local infrastructure to manage traffic and tunnel connections. ([source](https://docs.pangolin.net/manage/remote-node/understanding-nodes.md))
- [Resource Definitions](https://awesome-repositories.com/f/devops-infrastructure/resource-definitions.md) — Configures access to remote services by specifying destinations via IP addresses, CIDR ranges, or domain names. ([source](https://docs.pangolin.net/manage/resources/private/destinations.md))
- [SSL Termination Proxies](https://awesome-repositories.com/f/devops-infrastructure/sidecar-proxies/ssl-termination-proxies.md) — Handles HTTPS certificate management and encryption at the edge to secure traffic before backend routing. ([source](https://docs.pangolin.net/development/system-architecture.md))
- [Docker Socket Orchestrators](https://awesome-repositories.com/f/devops-infrastructure/container-orchestration/container-runtimes/runtime-configuration-interfaces/docker-socket-orchestrators.md) — Queries container metadata and network configurations from the Docker socket for service visibility. ([source](https://docs.pangolin.net/manage/sites/configure-site.md))
- [Containerized Deployments](https://awesome-repositories.com/f/devops-infrastructure/containerized-deployments.md) — Runs network connectivity agents within isolated container environments with necessary host-level permissions. ([source](https://docs.pangolin.net/manage/clients/install-client.md))
- [Deployment Automation](https://awesome-repositories.com/f/devops-infrastructure/deployment-management-strategies/automation-and-tooling/deployment-automation.md) — Supports standard package-based installations and automated reconciliation workflows for consistent environment management. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/overview.md))
- [Native Installers](https://awesome-repositories.com/f/devops-infrastructure/distribution-packaging/software-distribution/native-installers.md) — Deploys native graphical or command-line software to user devices to establish secure, authenticated connections. ([source](https://docs.pangolin.net/manage/clients/install-client.md))
- [Git-Based Deployment Automations](https://awesome-repositories.com/f/devops-infrastructure/git-based-deployment-automations.md) — Integrates with continuous delivery controllers to reconcile infrastructure state directly from version control. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/helmfile.md))
- [Production Cluster Deployers](https://awesome-repositories.com/f/devops-infrastructure/infrastructure/infrastructure-as-code/management/infrastructure-orchestration/production-cluster-deployers.md) — Configures and installs platform components into a cluster using standard packaging tools. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/pangolin/configuration.md))
- [Manifest-Based Deployments](https://awesome-repositories.com/f/devops-infrastructure/manifest-based-deployments.md) — Manages infrastructure configurations by rendering manifests from templates and applying environment-specific patches. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/newt/kustomize.md))
- [Service Deployment](https://awesome-repositories.com/f/devops-infrastructure/service-deployment.md) — Automates the setup and exposure of common applications using predefined resource labels and configuration structures. ([source](https://docs.pangolin.net/manage/community-blueprints-repo.md))

### Development Tools & Productivity

- [Network Access Connectors](https://awesome-repositories.com/f/development-tools-productivity/deployment-templates/network-access-connectors.md) — Configures and deploys network access connectors within clusters using automated reconciliation tools. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/newt/configuration.md))
- [Domain Configuration Tools](https://awesome-repositories.com/f/development-tools-productivity/domain-configuration-tools.md) — Maps wildcard subdomains and root domains to central server addresses to enable routing for remote network resources. ([source](https://docs.pangolin.net/self-host/dns-and-networking.md))
- [Network Request Loggers](https://awesome-repositories.com/f/development-tools-productivity/debugging-profiling-testing/debugging-diagnostics/execution-trace-log-analyzers/network-request-loggers.md) — Records detailed metadata for HTTP requests to provide visibility into network activity. ([source](https://docs.pangolin.net/manage/analytics/request.md))
- [Multi-Environment Configuration Systems](https://awesome-repositories.com/f/development-tools-productivity/multi-environment-configuration-systems.md) — Defines environment-specific settings and resource scaling within a unified configuration to streamline deployment stages. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/helmfile.md))

### System Administration & Monitoring

- [Remote Desktop Environments](https://awesome-repositories.com/f/system-administration-monitoring/remote-desktop-environments.md) — Renders interactive desktop sessions directly in a web browser by proxying traffic to a host. ([source](https://docs.pangolin.net/manage/resources/public/rdp.md))
- [System Audit Trails](https://awesome-repositories.com/f/system-administration-monitoring/system-audit-trails.md) — Maintains a comprehensive audit trail of all configuration changes and management operations. ([source](https://docs.pangolin.net/manage/analytics/action.md))
- [Health Monitoring](https://awesome-repositories.com/f/system-administration-monitoring/health-monitoring.md) — Monitors the health of network targets and automatically excludes unresponsive endpoints from routing. ([source](https://docs.pangolin.net/manage/resources/public/healthchecks-failover.md))
- [Service Uptime Monitors](https://awesome-repositories.com/f/system-administration-monitoring/monitoring-and-observability/observability-platforms/availability-uptime-trackers/service-uptime-monitors.md) — Probes network targets to verify availability and automatically remove unreachable endpoints from traffic rotation. ([source](https://docs.pangolin.net/manage/alerting/health-checks.md))
- [Real-Time Monitoring Dashboards](https://awesome-repositories.com/f/system-administration-monitoring/real-time-monitoring-dashboards.md) — Provides centralized dashboards for visualizing real-time request metrics and server performance. ([source](https://docs.pangolin.net/self-host/community-guides/traefiklogsdashboard.md))
- [System Activity Monitoring](https://awesome-repositories.com/f/system-administration-monitoring/system-activity-monitoring.md) — Records successful and failed access attempts by users and API keys for security auditing. ([source](https://docs.pangolin.net/manage/analytics/access.md))

### Business & Productivity Software

- [Persistent Tunnel Services](https://awesome-repositories.com/f/business-productivity-software/background-services/persistent-tunnel-services.md) — Configures persistent network tunnels as system services to ensure continuous access without manual intervention. ([source](https://docs.pangolin.net/manage/clients/install-client.md))
- [Enterprise Licensing](https://awesome-repositories.com/f/business-productivity-software/enterprise-licensing.md) — Enables enterprise-grade features and advanced capabilities through license key activation and container deployment. ([source](https://docs.pangolin.net/self-host/enterprise-edition.md))

### Data & Databases

- [Persistent Storage Management](https://awesome-repositories.com/f/data-databases/persistent-storage-management.md) — Manages persistent storage configurations to support both lightweight development and scalable production database backends. ([source](https://docs.pangolin.net/self-host/advanced/database-options.md))
- [Storage Backend Adapters](https://awesome-repositories.com/f/data-databases/storage-backend-adapters.md) — Supports multiple database backends including PostgreSQL and SQLite for flexible storage configuration. ([source](https://docs.pangolin.net/self-host/manual/kubernetes/pangolin/configuration.md))

### Web Development

- [Path-Based Routers](https://awesome-repositories.com/f/web-development/route-path-aliasing/path-based-routers.md) — Directs traffic to different backend services based on URL path prefixes. ([source](https://docs.pangolin.net/manage/resources/public/targets.md))