Name: Private Connect
Author: Private Connect

Question 1

What is Private Connect?

Accepted Answer

Private Connect lets you reach your database or private services by name from anywhere. It's an open-source alternative to ngrok and Tailscale for service-level connectivity. Grant your AI read-only access for 5 minutes, share your environment with a code, and access services by name instead of IPs — all with end-to-end encryption for agent-to-agent connections. No VPN, no open ports. No signup is required for temporary tunnels.

Question 2

How is Private Connect different from ngrok?

Accepted Answer

Unlike ngrok, Private Connect offers: (1) No signup required — npx private-connect tunnel 3000 works instantly, (2) End-to-end encryption for agent-to-agent connections (X25519 + AES-256-GCM) where the hub relays opaque ciphertext it cannot read, (3) Built-in dev environment sharing — connect share generates a code, connect join gives a teammate identical access in seconds, (4) AI agent access — connect grant claude --db postgres --ttl 5m gives an AI agent a scoped, time-limited token to query your database over HTTP, (5) Self-hostable — run your own hub with docker compose up. Full stack is source-available under FSL-1.1-MIT.

Question 3

How do I expose localhost to the internet?

Accepted Answer

Run 'npx private-connect tunnel 3000' to instantly get a public URL for your local server. No signup, no account needed. For a stable subdomain, add --slug myapp (e.g. https://myapp.privateconnect.co). For longer sessions, add --ttl in minutes, up to 1440 (24 hours). Supports HTTP by default; known database ports (PostgreSQL, MySQL, Redis, etc.) are automatically tunneled over TCP. Pass --tcp or --udp to override.

Question 4

How do I share my dev environment with a teammate?

Accepted Answer

Run 'connect share' to get a share code, then have your teammate run 'connect join <code>'. They get the same services, same ports — done. No VPN client, no SSH keys, no firewall rules. You can also share without signup using 'npx private-connect up 3000 5432 6379' which generates a join code for your teammate. Shares are time-limited and revocable.

Question 5

Can AI agents access my private database through Private Connect?

Accepted Answer

Yes. Run 'connect grant claude --db postgres --ttl 5m' to give an AI agent a scoped, time-limited token to query your database over HTTP. Read-only grants block mutations, access auto-expires, and every query is logged. This is Private Connect's unique feature — no other tunneling tool offers built-in AI agent access.

Question 6

Is Private Connect free?

Accepted Answer

Temporary tunnels and share-by-code are available without an account. 'npx private-connect tunnel <port>' requires no signup, no credit card. Sessions last up to 24 hours (configurable via --ttl), support HTTP, TCP, and UDP, and you can get a stable subdomain with --slug. Named services, reach by name, team sharing, AI grants, and MCP integration require a free workspace signup.

Question 7

Can I self-host Private Connect?

Accepted Answer

Yes. Clone the repo from github.com/treadiehq/private-connect and run 'docker compose up'. Then point your agents to your hub with 'connect up --hub https://hub.yourcompany.com'. The full stack is available under the FSL-1.1-MIT (Functional Source License) which converts to MIT after two years.

Secure access to databases
for developers and AI agents.

Every open port is now a target for autonomous agents scanning at scale. Private Connect makes your services unreachable until you say otherwise.

Quick Start

How it works

Access by name

Stable ports

Encrypted

Works everywhere

Team sharing

No port forwarding

Connects to different tools

Trusted by developers

Frequently asked questions

Make every service feel local

Secure access to databases for developers and AI agents.