Features
Everything you need to manage
Gateway API at scale
Build, secure, and extend your gateway infrastructure with a platform designed for teams.
Traffic Management
HTTP and gRPC routing, traffic splitting, load balancing, circuit breakers, retries, and rate limiting.
Learn moreSecurity
WAF, SSO/OIDC, external authorization, JWT, mTLS, API keys, and per-client security policies.
Learn moreExtensibility
Lua scripting, WebAssembly modules, header transforms, URL rewriting, and fault injection.
Learn moreUsers, Teams & Governance
User and team management, custom RBAC with permission presets, multi-stage approval workflows, and full audit logging.
Learn moreAI-Powered
AI route generation from natural language, security reviews, and contextual chat for configuration guidance.
Learn moreMulti-Cluster & API
Manage multiple clusters, personal API tokens for automation, and easy integration with your internal developer platform.
Learn more
Capabilities
Built for teams that
take their gateway seriously
Deep-dive into each capability with detailed configuration options
Traffic Management
Route traffic with precision
Configure HTTP and gRPC routing rules through an intuitive interface. Define matching, splitting, mirroring, and resilience policies without writing YAML.
- Path, header, method, and query parameter matching
- gRPC service and method routing
- Traffic splitting for canary and blue-green deployments
- Load balancing (RoundRobin, Random, LeastRequest, ConsistentHash)
- Failover with primary and fallback backends
- Request mirroring for shadow traffic
- Circuit breaker, retries, and timeouts
- Rate limiting with per-client selectors
Security
Defense in depth, built in
Apply layered security policies per domain, per route, or per client. From WAF rules to SSO integration — all managed visually.
- WAF with Coraza (block/detect modes, anomaly scoring)
- SSO/OIDC login with domain and email restrictions
- External authorization (HTTP and gRPC)
- API key and JWT authentication
- mTLS with CA certificates and SAN validation
- IP allowlisting (direct and via clients)
- CORS configuration
- Per-client security policies
Extensibility
Customize every request
Transform requests and responses with built-in policies or write custom logic with Lua and WebAssembly.
- Lua scripting (inline or external reference)
- WebAssembly modules (HTTP or container image)
- Request/response header modification
- URL rewriting and HTTP redirects
- Fault injection for chaos testing
- Compression (Gzip, Brotli, Zstd)
- Response overrides and direct responses
- Request buffering and connection tuning
Users, Teams & Governance
Control at every level
Manage users and teams, organize resources by project, assign custom permission presets, and enforce approval workflows with full audit trails.
- User management with role assignment and enable/disable
- Team management with email invitations
- Custom RBAC with permission presets per team
- Multi-stage approval workflows for routes and clients
- Audit logging with export and retention policies
- Project and domain tagging with custom labels
- SSO/OIDC for team onboarding
Route History & Rollback
Never lose a configuration
Track every change to your routes with full version history. Compare revisions side by side and roll back to any previous version with a single click.
- Full version history for every route change
- Side-by-side revision comparison
- One-click rollback to any previous version
- Change attribution with user and timestamp
- Rollback protection with approval workflow integration
AI-Powered Intelligence
AI that understands your gateway
Generate routes from natural language, get AI-powered security reviews of your configurations, and use contextual chat for guidance.
- AI route generation from natural language
- AI security and configuration review
- Contextual AI chat for route and domain guidance
- Support for major AI providers or self-managed models
- Manifest import with AI-assisted validation
Multi-Cluster & API
Scale across clusters
Manage gateway configurations across multiple Kubernetes clusters from a single interface. Automate through API tokens and integrate with your internal developer platform.
- Manage multiple Kubernetes clusters
- Project-based multi-tenancy
- Personal API tokens with expiration tracking
- Domain templates for reusable gateway configs
- TLS termination, passthrough, and HTTP/3 support
Build Gateway API routes visually
Don't want to deploy the full platform? Use our free Route Builder to design Kubernetes Gateway API resources through a visual interface and export valid YAML — no installation, no sign-up.
- Build HTTPRoute, Gateway, and GatewayClass resources visually
- Configure path matching, header routing, and traffic splitting
- Export ready-to-apply YAML for any Gateway API implementation
apiVersion: gateway.networking.k8s.io/v1kind: HTTPRoutemetadata: name: my-routeGet Started
Up and running in minutes
Deploy FastGateway to your Kubernetes cluster with Helm. Requires Kubernetes 1.24+ and Envoy Gateway.
helm repo add fastgateway https://charts.fastgateway.dev
helm repo update
helm install fastgateway fastgateway/fastgateway \
-n fastgateway-system \
--create-namespace
kubectl port-forward svc/fastgateway-frontend 3001:3001 \
-n fastgateway-system
# Open http://localhost:3001
# Default username: admin