Add some new docs

2026-02-20 20:06:44 +00:00 · 2025-08-24 16:49:14 -07:00
parent b8856662e0
commit d4f8b325c7
9 changed files with 388 additions and 51 deletions
--- a/manage/resources/client-resources.mdx
+++ b/manage/resources/client-resources.mdx
@@ -0,0 +1,79 @@
+---
+title: "Client Resources"
+description: "Configure resources for Olm clients to access on a Newt site"
+---
+
+## Overview
+
+Site resources in Pangolin allow you to define specific ports and a destination that can be accessed through the VPN tunnel when using [Olm clients](../clients/add-client.mdx). This is useful for exposing internal services to your remote clients securely.
+
+<Note>
+Site resources are only for exposing services on a Newt site to Olm clients running remotely and do not get proxied.
+</Note>
+
+## Internal Exposure with Clients
+
+Internal exposure resources are only accessible when connected via an Olm client. This approach is perfect for secure access to services without exposing them to the public internet.
+
+When you run Newt with `--accept-clients`, it operates fully in user space without creating a virtual network interface on the host. This means:
+
+- **No special permissions required** for the container or binary
+- **No virtual network interface** created on the host
+- **Client-only access** through Pangolin's tunnel
+- **Secure internal routing** to your services
+
+## Configuring Site Resources
+
+To configure site resources:
+
+<Steps>
+    <Step title="Navigate to Resources">
+        Navigate to the **Resources** section in the Pangolin dashboard.
+    </Step>
+    <Step title="Select Site Resources">
+        In the toggle at the top of the table, select "Site Resources".
+    </Step>
+    <Step title="Add Resource">
+        Click **Add Resource**.
+    </Step>
+    <Step title="Choose Resource Type">
+        Choose the resource type (TCP or UDP).
+    </Step>
+    <Step title="Configure Port and Target">
+        Specify the local port and the target address.
+    </Step>
+</Steps>
+
+## Accessing Site Resources
+
+Once configured, you can access these resources from your remote clients using the Olm tunnel. 
+
+### Example: SSH Access
+
+Here's how to set up SSH access to your server when connected with a client:
+
+<Steps>
+<Step title="Create the resource">
+  In the Pangolin dashboard, create a new client resource and set the port to `2022` (or any available port).
+
+<Frame>
+  <img src="/images/client_resource.png" width="400" centered/>
+</Frame>
+</Step>
+
+<Step title="Connect and access">
+  When connected with a Olm client, you can SSH to your server using `<site-address>:2022`.
+
+```bash
+ssh user@100.90.128.0 -p 22
+```
+<Note>
+When accessing a site resource, you use the IP of the site found in the dashboard and the local port you configured for the resource.
+</Note>
+</Step>
+</Steps>
+
+<Note>
+This approach is ideal for secure remote access without exposing SSH directly to the internet.
+</Note>
+
--- a/manage/resources/targets.mdx
+++ b/manage/resources/targets.mdx
@@ -0,0 +1,82 @@
+---
+title: "Targets"
+description: "Configure destination endpoints for resource routing and load balancing"
+---
+
+## Overview
+
+When you create a resource in Pangolin, you define different targets that specify where traffic should be routed within your network. Each target represents a specific destination that the resource can proxy to when handling incoming requests.
+
+<Note>
+Targets are created on the Newt tunnel, enabling traffic to reach destinations on the remote network without requiring additional routing configuration.
+</Note>
+
+## How Targets Work
+
+### Target Routing
+
+Targets function as destination endpoints for your resources:
+
+1. **Resource Creation**: When you create a resource, you configure one or more targets
+2. **Traffic Routing**: Incoming traffic is routed to the appropriate target based on your configuration
+3. **Network Access**: Newt proxy routes traffic to the local network through the tunnel
+4. **Direct Connection**: No additional routing is necessary on the remote network
+
+## Multi-Site Targets (v1.9.0+)
+
+With the introduction of update 1.9.0, targets now have sites associated with them. This enhancement provides significant benefits for reliability and load distribution.
+
+### Site-Distributed Resources
+
+You can now configure targets across different sites for the same resource:
+
+<Card title="High Availability">
+  Distribute your resources across multiple sites so that if one site goes down, traffic automatically continues to be served from other available sites.
+</Card>
+
+<Card title="Load Balancing">
+  Set up load balancing across sites to distribute traffic in a round-robin fashion between all available targets.
+</Card>
+
+### Load Balancing Requirements
+
+<Warning>
+Load balancing between different targets only works when sites are connected to the same node. In managed Pangolin instances with multiple nodes, ensure load balancing occurs on the same node.
+</Warning>
+
+To ensure effective load balancing in multi-node environments:
+
+```bash
+newt --prefer-endpoint <specific-endpoint> <other-args>
+```
+
+<Note>
+Pangolin currently does not load balance between nodes, only between targets on the same node.
+</Note>
+
+## Configuring Targets
+
+<Steps>
+<Step title="Navigate to Resources">
+  In the Pangolin dashboard, go to the **Resources** section.
+</Step>
+
+<Step title="Create or Edit Resource">
+  Either create a new resource or select an existing resource to edit.
+</Step>
+
+<Step title="Add Target">
+  Click **Add Target** to configure a new destination.
+</Step>
+
+<Step title="Configure Target Details">
+  Specify the target configuration:
+  - **Address**: IP address or hostname of the target service
+  - **Port**: Port number where the service is listening
+  - **Site**: Select the site where this target is located
+</Step>
+</Steps>
+
+<Note>
+Pangolin uses round-robin load balancing by default, distributing traffic evenly across all targets.
+</Note>
--- a/manage/resources/tcp-udp-resources.mdx
+++ b/manage/resources/tcp-udp-resources.mdx
@@ -80,37 +80,4 @@ Proxied resources require extra configuration to expose on the Pangolin server.

 <Note>
 In this example, we expose port 1602 for TCP and port 1704 for UDP. You can use any available ports on your VPS.
-</Note>
-
-## Internal Exposure with Clients
-
-Internal exposure resources are only accessible when connected via an Olm client. This approach is perfect for secure access to services without exposing them to the public internet.
-
-When you run Newt with `--accept-clients`, it operates fully in user space without creating a virtual network interface on the host. This means:
-
- **No special permissions required** for the container or binary
- **No virtual network interface** created on the host
- **Client-only access** through Pangolin's tunnel
- **Secure internal routing** to your services
-
-### Example: SSH Access
-
-Here's how to set up SSH access to your server when connected with a client:
-
-<Steps>
-<Step title="Create the resource">
-  In the Pangolin dashboard, create a new Raw TCP/UDP resource and set the port to `2022` (or any available port).
-</Step>
-
-<Step title="Add the target">
-  Configure the resource to target `localhost:22` (your SSH service).
-</Step>
-
-<Step title="Connect and access">
-  When connected with a Newt client, you can SSH to your server using `<site-address>:2022`.
-</Step>
-</Steps>
-
-<Note>
-This approach is ideal for secure remote access without exposing SSH directly to the internet.
-</Note>
+</Note>