SWAG: Secure reverse proxy with free, automated SSL & security.

SWAG (Secure Web Application Gateway) is a comprehensive Docker container that combines a powerful Nginx webserver and reverse proxy with essential security tools. It is designed to simplify the process of securely exposing your web applications to the internet. The package includes a built-in Certbot client that automates the generation and renewal of free SSL certificates from providers like Let's Encrypt and ZeroSSL, ensuring your connections are always encrypted.

For enhanced security, SWAG comes with Fail2ban for intrusion prevention, which actively monitors logs and blocks suspicious IP addresses. This container is an ideal all-in-one solution for managing and securing your self-hosted services.

Key features include:

Automated SSL: Effortlessly obtain and renew SSL certificates with Certbot.
Reverse Proxy: Easily manage access to multiple services with pre-configured proxy templates for popular apps.
Built-in Security: Protect your applications from brute-force attacks with integrated Fail2ban.
DNS Validation: Supports numerous DNS plugins for obtaining wildcard certificates.
PHP Support: Includes PHP for serving dynamic web pages.
Modern Protocols: Offers support for QUIC (HTTP/3) for faster connections.

Directory Structure

swag

config

.env

docker-compose.yml

services:
  swag:
    image: lscr.io/linuxserver/swag:latest
    container_name: swag
    cap_add:
      - NET_ADMIN
    environment:
      - PUID=1000
      - PGID=1000
      - TZ=Etc/UTC
      - URL=${DOMAIN_NAME}
      - VALIDATION=http
      - SUBDOMAINS=www,
      - CERTPROVIDER=letsencrypt
      - EMAIL=${LETSENCRYPT_EMAIL}
    volumes:
      - ./config:/config
    ports:
      - 443:443
      - 80:80
    restart: unless-stopped

.env

DOMAIN_NAME=yourdomain.com
LETSENCRYPT_EMAIL=your_email@example.com

Categories:

Web Server

GitHub Repository

Stars

3,626

Forks

282

Last commit

2 days ago

Repository age

over 5 years

License

GPL-3.0

View Repository

Auto-fetched 32 minutes ago

Container Image

Pulls

90.0M

Last week pulls

4.0K

Last updated

2 days ago

Image age

over 5 years

Image size

126.62 MB

View on Docker Hub

Auto-fetched 32 minutes ago

Similar to SWAG

View all tools

Traefik

Automate routing & load balancing for microservices.

Web Server

62.2k

3.5B

Dynamically route and load balance your microservices with a modern reverse proxy. Automates service discovery, ingress control, and SSL certificate management.

Static Web Server

High-performance static file serving for any platform.

Web Server

2.2k

4.7M

Run a high-performance static web server with minimal resources. Get HTTP/2, TLS, advanced compression, and cross-platform support in a single 4MB binary.

Pomerium

Zero Trust access for users, services, and AI.

Web Server

4.7k

1.6B

Enable Zero Trust access for every identity. Secure internal apps and APIs with context-aware policies without needing a VPN. Self-hosted for complete control.