Guides
Practical walkthroughs — security at the edge, public URLs for localhost, and more.
Getting started
- Get a public URL for localhost
Install the CLI, authenticate, and expose your dev server in one command.
Security
- How to protect a tunnel with an IP allowlist
Restrict tunnel access to your office, VPN, or home IP. Create an IP security policy in the dashboard and attach it with --policy or ngsrv.yml.
- How to protect a tunnel with geo restrictions
Allow or block countries at the edge. Useful when your app should only be reachable from specific regions.
- How to protect a tunnel with header authentication
Require a secret header before traffic reaches your app. Perfect for client previews and webhook hardening.
- How to protect a tunnel with mTLS
Require client certificates for machine-to-machine access. Available on Pay as you go and Enterprise.
- How to protect a tunnel with rate limiting
Throttle abusive clients at the edge with per-IP or global rate limits.
- How to protect a tunnel with time-based access
Only allow tunnel traffic during business hours or maintenance windows. Enforced at the edge.
- How to protect a tunnel with WAF rules
Block common attack patterns at the edge before they hit your local app.
- Security at the edge — on every plan
ngsrv ships real edge security policies on the free tier: IP allowlist, geo, header auth, rate limits, WAF, and time windows. No enterprise sales call required.