Nginx Proxy Manager, a popular web-based and user-friendly reverse proxy management interface for Nginx, has just released version 2.13.6. Although this is only a patch release to a minor version, it actually delivers some fairly significant improvements.
The most notable change is the addition of TOTP-based two-factor authentication, allowing administrators to protect access to the web interface with time-based one-time passwords, bringing a long-requested security feature to Nginx Proxy Manager.
Certificate management has also been expanded. When creating new certificates, users can now explicitly choose between RSA and ECDSA key types, offering greater flexibility depending on compatibility or performance requirements.
There’s a pile of reverse proxies out there, NPM is one that’s built on nginx’s reverse proxy mechanism that’s a little opaque to configure if you aren’t much for text configuration files. I do like it for quick and easy LetsEncrypt SSL cert management, and it’s integration with Certbot, especially when you have LE moving to very short SSL lifetimes. This can all be done manually with cronjobs etc, but NPM is pretty low effort and works well.
Other reverse proxies that use their own engines are Traefik, Caddy and HAProxy. They each have their use cases, such as docker integration or high availability. None are as easy to use as NPM in my opinion.
Caddy has been pretty straightforward for me tbh, Let’s Encrypt built in, cloudlfare integration with a mature plugin, everything else is configured with a Caddyfile that has sane defaults. Normally, exposing a service is just a few lines to add to that file. I find the lack of a web ui a positive rather than a missing feature.