Networking & Edge

Secure edge, automatic HTTPS

A smart reverse proxy handles automatic HTTPS, a built-in WAF, load balancing, and gRPC — so every service is exposed safely on your own domain.

Coswarmcoswarm · request path Live

TLS

Certificates on autopilot

The smart proxy provisions and renews free Let’s Encrypt certificates, redirects HTTP to HTTPS, and serves TLS 1.3 + HTTP/2 — or bring your own cert.

  • Free Let’s Encrypt certs
  • Automatic renewal
  • Custom cert upload
  • TLS 1.3 & HTTP/2
Certificates on autopilot
  • Free Let’s Encrypt certs
  • Automatic renewal
  • Custom cert upload
  • TLS 1.3 & HTTP/2

WAF

Block attacks at the edge

A built-in web application firewall (Coraza + the OWASP Core Rule Set) filters malicious traffic before it ever reaches your service.

  • OWASP Core Rule Set
  • SQLi / XSS / RCE protection
  • Per-domain rule groups
  • Scanner detection
Block attacks at the edge
  • OWASP Core Rule Set
  • SQLi / XSS / RCE protection
  • Per-domain rule groups
  • Scanner detection

Routing

Route exactly how you want

Expose HTTP or gRPC services, gate them with IP rules or Basic Auth, and map wildcard domains — with Cloudflare-aware real client IPs.

  • IP allow / deny lists
  • HTTP Basic Auth
  • gRPC upstreams
  • Wildcard domains
Route exactly how you want
  • IP allow / deny lists
  • HTTP Basic Auth
  • gRPC upstreams
  • Wildcard domains

Visibility

Every request, logged

The proxy streams every inbound request back to the control plane with full context, so you can see exactly what is hitting your services.

  • Inbound HTTP & gRPC logs
  • Status, path & client IP
  • Upstream & route mode
Every request, logged
  • Inbound HTTP & gRPC logs
  • Status, path & client IP
  • Upstream & route mode
Coswarm

Your own PaaS is one command away

Install Coswarm on your server and deploy your first container in minutes — free, self-hosted, and yours to keep.

bash install.sh
$ curl -fsSL https://coswarm.dev/install.sh | bash