NO CLOUD NEEDED

Your Rules.
The Cloud is now in your box.

URLs point directly to your code, hosted on your terms. We handle failover, DNS, HTTPS, WAF, DDoS protection for your self-hosted compute—so you don't have to.

A PaaS that lets you self-host.

Run everything on us, or move all—or parts—to your own hardware. Same config either way.

☁️
Fully Hosted
We run it all
🔀
Hybrid
Mix and match
🏠
Self-Hosted
Your hardware
Get Started

Built For You

Whether you're shipping side projects or scaling to millions, Setip adapts to your needs.

Ship faster. Debug easier. Own your stack.

localhost → production in seconds

Get a public HTTPS URL for any local port. Share with teammates, test webhooks, demo to clients—without deploying anywhere.

Test like it's production

Route real production traffic to your dev machine. Debug that edge case with actual user requests. No more "works on my machine."

One config, everywhere

Your entire infrastructure—DNS, routing, certs, auth—in one JSON file. Version it, diff it, deploy it. Infrastructure as actual code.

API-first, MCP-ready

150+ REST endpoints for everything. Automate with scripts, integrate with CI/CD, or let AI agents manage your infra through MCP.

🚀
You're now a DevOps expert

No nginx configs, no Terraform, no YAML hell. Setip handles DNS, certs, routing, and deployments—so you can ship without waiting on ops.

See what you can automate →

"I went from 'how do I expose this locally' to 'it's live' in under a minute. No ngrok tokens, no Cloudflare tunnels, no BS."

Complexity? Gone. One API for everything.

URL → Bucket in one operation

Create a domain, point it to a bucket, get HTTPS—one API call. No separate DNS config, no cert provisioning, no nginx reload. It just works.

One JSON. One API. One Place.

DNS, routing, certs, VPN, WAF—all in one coherent config. No more 5 dashboards, 3 CLIs, and a prayer. Version control your entire infrastructure.

No nginx configs. No Traefik labels.

Add a routing rule via API or UI. Path rewriting, basic auth, IP restrictions—all declarative. No config file syntax to remember.

Auto HTTPS everywhere

Let's Encrypt provisioned automatically. DNS-01 challenges handled. Wildcard certs supported. Zero manual intervention.

Git push → Live in seconds

Webhook deployments to buckets. Rolling updates with zero downtime. Rollback to any previous version. Built-in, not bolted-on.

MCP for AI-driven ops

Let Claude or GPT manage your infrastructure via Model Context Protocol. "Add a subdomain for staging" becomes a one-shot prompt.

Traditional DevOps
With Setip.io
Edit DNS zone → Wait propagation → Configure nginx → Get cert → Reload
One API call
Terraform + Ansible + Docker + Traefik + Certbot
One JSON config
3 hours of YAML debugging
3 minutes in the console

"We collapsed dozens of manual steps into single actions. Infrastructure should be invisible—and now it is."

Your hardware. Your data. Finally possible.

The missing piece for self-hosted PaaS

Coolify, CapRover, Dokku, Cloudron—they all assume you have a public IP, open ports, and DNS configured. That's why most people still rent a VPS instead of using hardware they already own.

Any machine becomes reachable

Our distributed edge mesh makes any device publicly accessible—Pi behind your router, NUC under your desk, laptop in a closet. No static IP, no NAT config, no exposed home network.

Your data never touches us

Traffic is encrypted end-to-end from user to your hardware. True data residency—your apps and databases run on equipment you control, in a jurisdiction you choose.

Compliance by architecture

GDPR, HIPAA, data sovereignty—not a nice-to-have, but the difference between compliance and violation. Your data physically stays where you put it.

Works with hardware you already own:

Raspberry Pi Intel NUC Old laptop Mac Mini Synology NAS Any x86/ARM

"Setip doesn't replace these PaaS tools; it's the missing layer that finally makes them usable outside a datacenter."

Move fast. Stay lean. Scale when ready.

$0 infrastructure to start

Use that spare MacBook as your first server. When you get traction, scale to dedicated hardware or hybrid cloud—same config, same API.

Multi-tenant from day one

Each customer gets isolated POC (Proof of Concept) config. Separate DNS, separate routing, separate everything. White-label ready.

Enterprise features, startup budget

WAF, DDoS protection, automatic HTTPS, load balancing—included. Not "contact sales for pricing."

No vendor lock-in

Everything is JSON files on disk. Export anytime. Run self-hosted if you outgrow us. Your data, your choice.

Traditional Stack
With Setip.io
AWS/GCP + Route53 + CloudFlare + Let's Encrypt
One platform, one bill
$500-2000/mo minimum
Start free, pay as you grow
3 dashboards, 5 configs, 2 consultants
One console, one JSON, zero DevOps hire

"We launched on a $200 mini PC. Now we serve 50K users on the same setup. Our infra cost is still under $50/month."

Hyperscale architecture. Zero cloud dependency.

Kubernetes in-house, publicly reachable

Run K8s clusters on your hardware—full passthrough mode. Internet traffic routes to your pods without cloud vendor involvement. Your cluster, your rules.

Hybrid mesh topology

Combine on-prem datacenters, edge locations, and Setip-hosted nodes. Automatic failover across all. One unified control plane.

True data sovereignty

Traffic never leaves your infrastructure. End-to-end encryption from user to your hardware. Audit logs for every request.

Compliance-ready architecture

GDPR, HIPAA, SOC2, PCI-DSS—data residency requirements met by design. Your data, your jurisdiction, your audit trail.

API-driven everything

Integrate with existing CI/CD, Terraform, Ansible, Helm. Or use our MCP interface for AI-driven infrastructure management.

Cost arbitrage at scale

Hybrid mode: use Setip edge for internet presence, route compute to your on-prem or NAT-behind cloud for massive savings on CPU, storage, bandwidth.

99.99% Uptime SLA available
<10ms Edge latency
170+ Tbps Tier 1 backbone

"Infrastructure-for-infrastructure. We're not competing with AWS—we're what makes your private cloud work like a public one."

Running critical infrastructure? Let's talk architecture.

↑ Back to top

Three Deployment Models

Full passthrough. Fully managed. Or hybrid. Your data, your rules.

Crowd-Pooled DNS Defense
🌐 Customer A
🌐 Customer B
🌐 Customer C
🌐 You
All customers pool DNS servers together → DDoS resistant, no centralized bottleneck
1

Full Passthrough

Your machines. Zero data on our infrastructure.

🌐 Internet
Setip.io Edge
passthrough only
🏠 Your Hardware
all data here

Traffic passes through our public IP to your privately-owned machines—behind NAT, in your office, anywhere. No data rests on Setip infrastructure.

  • Run Kubernetes, Docker, Coolify, CapRover in-house
  • Full data sovereignty—your jurisdiction, your control
  • Cloud vendors never touch your data
2

Fully Managed

We run it. 99.99% uptime. No hardware needed.

🌐 Internet
☁️ Setip.io Managed
24/7 • 99.99% SLA
🏠 Optional
sensitive apps only

Let Setip.io manage your internet-facing stack—always online, always protected. Bring no hardware, or route specific sensitive applications in-house.

  • No servers to maintain—we handle it all
  • 24/7 monitoring with automatic failover
  • Optional in-house routing for security-critical apps
3

Hybrid

Best of both. Save costs. Meet compliance.

🌐 Internet
☁️ Setip.io Edge
public frontend
🏠 Your Resources
compute + storage

Setip.io handles internet presence while your on-prem or NAT-behind cloud resources handle compute, storage, and bandwidth—saving costs and meeting data residency requirements.

  • Save on CPU cycles, storage, bandwidth costs
  • GDPR/HIPAA data residency compliance
  • Scale compute behind NAT on any cloud or on-prem
📦
One .tar file = Your entire cloud

DNS zones, routing rules, certs, buckets, configs. Restore anywhere a public IP exists. Move between models anytime.

🔄
Switch models anytime

Move from managed to passthrough to hybrid—dynamically, while staying online. Zero vendor lock-in.

🌐
Your own DNS server

Each customer gets dedicated DNS. Exist anywhere a public IP is available. No shared bottlenecks.

🛡️
Crowd-Pooled Defense

All customer DNS servers pool together. DDoS hits one? Others absorb. Customers protect customers.

📦
Portable infrastructure

Backup to one tar file. Restore to new hardware in minutes. Your cloud, truly yours.

↑ Back to top

UIManagement Console

Visual interface for operators. No CLI required. Point, click, deploy.

POC Dashboard

Switch tenants instantly, see everything at a glance

Visual tenant cards with status
One-click POC switching
Search & filter across POCs
Overview tab with quick stats
Tabbed management interface
Dark theme, responsive design

DNS Zone Editor

Visual DNS management, no zone file syntax

Sortable records table
Inline record editing
Add A, CNAME, MX, TXT visually
SOA configuration panel
Record validation on save
Bulk record operations

Proxy Rules Builder

Create routing rules without config files

Visual rule builder form
Sortable rules table
One-click enable/disable
Path rewrite selector
Basic auth toggle per rule
Target validation

Bucket Manager

Drag, drop, deploy. That simple.

Visual bucket cards
Drag-drop file upload
ZIP upload & auto-extract
Bucket info modal (size, files)
Download bucket as ZIP
Maintenance mode toggle

WireGuard Panel

VPN peers without terminal commands

QR code for iOS/Android
One-click peer creation
Sortable peers table
.conf file download button
Server status widget
Peer description editing

SSL & Security

Certificate status at a glance

Cert status indicator
Expiry warnings
WAF rule toggles
IP whitelist management
Bypass health dashboard
Real-time log viewer
↑ Back to top

APIREST API

Full automation via REST. 150+ endpoints. OpenAPI documented.

POC Management

Tenant CRUD, export/import, migrations

GET /api/pocs - List all tenants
POST /api/pocs - Create tenant
PATCH /api/pocs/:id - Update config
DELETE /api/pocs/:id - Remove tenant
POST /api/pocs/export - Bulk export
POST /api/pocs/import - Bulk import

DNS API

Full zone control, ACME automation

GET /dns - Full zone data
POST /dns/a - Create A record
POST /dns/cname - Create CNAME
POST /dns/mx - Create MX record
POST /dns/txt - Create TXT record
POST /dns/acme/add - DNS-01 challenge

Routing API

Proxy rules, path rewriting, auth

GET /rules - List routing rules
POST /rules - Create rule
PATCH /rules/:id - Update rule
pathRewrite: strip/preserve
auth: basic auth per-rule
ipsource: IP restrictions

Bucket API

Deployments, webhooks, quotas

POST /bucket/create - New bucket
POST /bucket/upload - Deploy files
POST /bucket/webhook - Git hooks
POST /bucket/rollback - Version restore
POST /bucket/rolling-update
POST /bucket/quota - Disk limits

WireGuard API

Tunnel management, NAT traversal

POST /wg/server/init - Setup server
POST /wg/peers - Create peer
GET /wg/peers/:id/config - Get .conf
AllowedIPs for split tunnel
PersistentKeepalive config
Works behind NAT/CGNAT

Auth API

OAuth, magic links, device tokens

POST /auth/initiate - Magic link
POST /auth/verify - Confirm code
GET /oauth/google - Google flow
GET /oauth/github - GitHub flow
POST /auth/device-token - Bind device
GET /auth/profile - User data
↑ Back to top

RTCode Runtimes

Deploy any stack. Your code runs on YOUR infrastructure. Not on someone else's cloud.

Node.js

Express, Fastify, Next.js, Nest

Auto npm/yarn install
PM2 process management
Cluster mode (multi-instance)
Environment variables
Custom entrypoint
Health check endpoint

Python

Flask, FastAPI, Django, ML models

Auto pip install
Gunicorn/Uvicorn WSGI
Virtual environment isolation
Worker count config
requirements.txt support
GPU passthrough (AI/ML)

PHP

Laravel, WordPress, Symfony

PHP-FPM managed
Composer auto-install
PHP 8.x versions
Document root config
OPcache enabled
Session handling

Docker

Any image, any language, any stack

Pull from any registry
docker-compose support
Volume mounts
Port mapping automatic
Resource limits (CPU/RAM)
Health checks

WebAssembly

Edge-native, microsecond cold starts

WasmEdge runtime
Rust, Go, C++ compiled
Sandboxed by design
Near-native performance
WASI support
Tiny container size

Static + SPA

HTML, React, Vue, Svelte builds

Instant CDN-like serving
Gzip/Brotli compression
Cache headers automatic
SPA fallback routing
Custom 404 pages
Zero cold start
150+API Endpoints
6Runtime Types
1Console UI
0External Dependencies
↑ Back to top

Request Early Access

Join the beta. We'll get you set up.