Pangolin

When I first started my homelab I as using Nginx Proxy Manager as my reverse proxy because it let me have fun and cool subdomains for all the apps I was spinning up. Along with providing valid ssl certs so I didn't have that annoying invalid https:// causing issues and looking ugly.

The only issue is the standard configuration requires you to open the https port 443 on your firewall which can be a security risk. You also have to point your domain at you IP which on a residential line normally means its not static. So you have to set up some kind of DDns and it also means you telling everyone what your home IP is. Which is also not great when it comes to security not to mention most ISP's have limited DDos protection.

So I started looking elsewhere for a reverse proxy and I first played around with cloudflare's zero trust tunnels which work great for the most part. The issue long term with proxy tunnels is cloudflare's TOS is limited. 

"If you are on a Free, Pro, or Business Plan and your application appears to be serving videos or a disproportionate amount of large files without using the appropriate paid service as described below, Cloudflare may redirect your content or take other actions to protect quality of service. When this happens, you will receive an email notification regarding Cloudflare's actions and your options." Cloudflare TOS

Also the tunnels only support https traffic nothing else. So if you want to host game server for instance you need to upgrade to one of their paid plans that allow different port mapping.

Thats when I rediscovered Pangolin. I say received because a couple months prior to my search I had heard about it when looking up ways to protect my pterodactyl set.