Warpgate
Transparent SSH, HTTPS & database bastion without client software
GitHub
Repository →
6,846
Stars
Apache-2.0 v0.23.2 Apr 22, 2026
Since Feb 2022 190
open issues
AI Summary
Warpgate is an intelligent bastion host that transparently forwards SSH, HTTPS, Kubernetes, MySQL and PostgreSQL connections without requiring special client software. Written in Rust, the tool offers native 2FA and SSO support, full session recording and an integrated admin web interface. Ideal for DevOps teams that need secure, auditable access to infrastructure resources.
✓ Pros
- + No additional client software required - completely transparent
- + Comprehensive session recording with replay function via web UI
- + Native 2FA and SSO support out-of-the-box
- + Single binary in 100% safe Rust without dependencies
✗ Cons
- − Requires initial setup configuration and deployment on bastion host
- − Still a relatively young project compared to established enterprise solutions
Use Cases
- → Secure access to servers and databases in the DMZ with full audit trail
- → Session recording and live monitoring of SSH and database connections
- → Centralized access management with 2FA and SSO for Kubernetes clusters
- → Granular permission assignment between users and services without VPN overhead
Who is it for?
DevOps teams and system administrators who need secure, auditable access to infrastructure resources without complex VPN or jump host setups.
