# next-terminal/next-terminal **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/next-terminal-next-terminal).** 5,564 stars · 779 forks · TypeScript · Apache-2.0 ## Links - GitHub: https://github.com/next-terminal/next-terminal - Homepage: https://www.next-terminal.com - awesome-repositories: https://awesome-repositories.com/repository/next-terminal-next-terminal.md ## Topics `antd` `antd-design` `docker` `go` `golang` `guacamole` `rdp` `react` `ssh` `vnc` ## Description Next Terminal is an enterprise bastion host platform that brokers and audits remote access to servers and devices. It functions as a centralized gateway unifying access to Windows, Linux, and legacy systems through a single authenticated interface, supporting RDP, SSH, VNC, Telnet, and HTTP protocols. The platform combines certificate management, policy-based access control, reverse tunnel agents, session recording, and web proxy interception into a unified security gateway. It deploys lightweight agents in internal networks that build reverse tunnels to a central site, eliminating per-location routing configuration, while checking user permissions against each requested resource before forwarding traffic. All remote session activity is captured and stored for later playback during security audits and compliance reviews. The system provides a web-based admin interface for configuring access policies and reviewing session logs, with support for concurrent session scaling to handle hundreds of simultaneous connections. It includes credential-based authentication, certificate configuration management supporting self-signed and CA-issued certificates, and web application proxying that routes internal services through the security gateway. ## Tags ### Security & Cryptography - [Bastion Host Deployment](https://awesome-repositories.com/f/security-cryptography/network-security-hardening/bastion-host-deployment.md) — Runs a centralized gateway that brokers and audits remote access to servers via RDP, SSH, VNC, Telnet, and HTTP. ([source](https://docs.next-terminal.typesafe.cn/install/system-requirements.html)) - [Bastion Servers](https://awesome-repositories.com/f/security-cryptography/secure-ssh-access/bastion-servers.md) — An enterprise bastion host that brokers and audits remote access to servers via multiple protocols. - [Access Control Centralization](https://awesome-repositories.com/f/security-cryptography/access-control-centralization.md) — Manages user permissions and access rules for all remote resources from a unified system. ([source](https://docs.next-terminal.typesafe.cn/)) - [Remote Access Permission Managers](https://awesome-repositories.com/f/security-cryptography/access-control-centralization/remote-access-permission-managers.md) — Manages and audits access to servers via RDP, SSH, VNC, Telnet, and HTTP from a single bastion host. ([source](https://cdn.jsdelivr.net/gh/next-terminal/next-terminal@master/README.md)) - [Policy-Based Access Control](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control.md) — Checks user permissions against each requested resource before forwarding traffic. - [Credential Authentications](https://awesome-repositories.com/f/security-cryptography/user-authentication-systems/credential-authentications.md) — Verifies user identity by accepting a username and password to grant system access. ([source](https://docs.next-terminal.typesafe.cn/usage/readme.html)) - [Secure Web Gateways](https://awesome-repositories.com/f/security-cryptography/web-application-security/secure-web-gateways.md) — Routes all requests to internal web services through a security gateway that blocks unauthenticated traffic. - [Multi-Type Certificate Managers](https://awesome-repositories.com/f/security-cryptography/certificate-renewal-managers/multi-type-certificate-managers.md) — Supports self-signed, CA-issued, and imported certificates for securing bastion host connections. - [HTTP Application Proxies](https://awesome-repositories.com/f/security-cryptography/remote-access-proxies/http-application-proxies.md) — Proxies HTTP-based applications through the bastion host for web-based remote access. ([source](https://docs.next-terminal.typesafe.cn)) - [SSH Session Brokers](https://awesome-repositories.com/f/security-cryptography/secure-ssh-access/ssh-session-brokers.md) — Opens secure shell sessions to Linux or Unix servers through the bastion host for command-line access. ([source](https://docs.next-terminal.typesafe.cn)) ### Business & Productivity Software - [User Session Recording](https://awesome-repositories.com/f/business-productivity-software/a-b-testing/user-session-recording.md) — Captures and stores all user activity during remote sessions for later review and audit. ([source](https://docs.next-terminal.typesafe.cn/)) ### Development Tools & Productivity - [Authenticated Web Service Proxies](https://awesome-repositories.com/f/development-tools-productivity/developer-utilities-libraries/workflow-productivity-enhancers/developer-productivity-utilities/developer-utilities/network-traffic-proxies/local-web-service-proxies/authenticated-web-service-proxies.md) — Authenticates users before forwarding requests to internal web services through a security gateway. ([source](https://docs.next-terminal.typesafe.cn/blog/secure-access.html)) - [Remote Session Recorders](https://awesome-repositories.com/f/development-tools-productivity/input-recording-and-playback/remote-session-recorders.md) — Captures keystrokes and screen output during remote sessions for later replay and security audit. ### DevOps & Infrastructure - [Reverse Tunnel Gateway Deployments](https://awesome-repositories.com/f/devops-infrastructure/remote-management-gateways/gateway-deployment/lightweight-gateway-deployments/reverse-tunnel-gateway-deployments.md) — Deploys lightweight agents in each internal network that build reverse tunnels to a central site. ([source](https://docs.next-terminal.typesafe.cn/blog/secure-access.html)) ### Networking & Communication - [Bastion Host Protocol Multiplexers](https://awesome-repositories.com/f/networking-communication/network-transport-protocols/multi-protocol-routing/single-port-protocol-multiplexing/bastion-host-protocol-multiplexers.md) — Routes RDP, SSH, VNC, Telnet, and HTTP through a single bastion host that audits each connection. - [Multi-Protocol Remote Node Connectors](https://awesome-repositories.com/f/networking-communication/remote-access-connectivity/multi-protocol-remote-node-connectors.md) — Connects to servers and devices through RDP, SSH, VNC, Telnet, and HTTP from a single unified interface. ([source](https://docs.next-terminal.typesafe.cn/)) - [Multi-Protocol](https://awesome-repositories.com/f/networking-communication/remote-access-gateways/multi-protocol.md) — A centralized gateway that unifies access to Windows, Linux, and legacy devices through a single authenticated interface. - [Agent-Based](https://awesome-repositories.com/f/networking-communication/reverse-tunnels/agent-based.md) — Deploys lightweight agents in internal networks that build reverse tunnels to a central site. - [Agent-Based Reverse Tunnel Managers](https://awesome-repositories.com/f/networking-communication/reverse-tunnels/agent-based-reverse-tunnel-managers.md) — Deploys lightweight agents in internal networks to build reverse tunnels, eliminating per-location routing configuration. - [Concurrent Remote Session Managers](https://awesome-repositories.com/f/networking-communication/concurrent-remote-session-managers.md) — Allocates CPU and memory resources to support hundreds of simultaneous remote connections from a single gateway. ([source](https://docs.next-terminal.typesafe.cn/install/system-requirements.html)) - [RDP Session Brokers](https://awesome-repositories.com/f/networking-communication/remote-access-connectivity/rdp-session-brokers.md) — Establishes remote desktop connections to Windows machines through the bastion host for centralized access. ([source](https://docs.next-terminal.typesafe.cn)) - [Authenticated Web Traffic Interceptors](https://awesome-repositories.com/f/networking-communication/traffic-interception/authenticated-web-traffic-interceptors.md) — Routes all requests to internal web services through a security gateway that blocks unauthenticated traffic before it reaches the target. ([source](https://docs.next-terminal.typesafe.cn/blog/secure-access.html)) ### System Administration & Monitoring - [Remote Session Audits](https://awesome-repositories.com/f/system-administration-monitoring/remote-session-audits.md) — Captures and stores all keystrokes and screen output during remote sessions for audit review. ([source](https://docs.next-terminal.typesafe.cn)) - [Terminal Session Playback](https://awesome-repositories.com/f/system-administration-monitoring/terminal-session-playback.md) — Captures all remote session activity and allows playback for security auditing and compliance tracking. ([source](https://cdn.jsdelivr.net/gh/next-terminal/next-terminal@master/README.md)) ### Web Development - [Authorized Request Forwarders](https://awesome-repositories.com/f/web-development/request-forwarding-mechanisms/dynamic-request-forwarding/authorized-request-forwarders.md) — Checks user permissions against each requested resource after login and only forwards traffic when authorization succeeds. ([source](https://docs.next-terminal.typesafe.cn/blog/secure-access.html)) - [Admin Interfaces](https://awesome-repositories.com/f/web-development/webmail-clients/admin-interfaces.md) — Provides a web-based management dashboard for configuring access policies and reviewing session logs. ([source](https://docs.next-terminal.typesafe.cn/install/system-requirements.html))