N NodeKeeper
中文 Sign In Try Free

Complete Feature Matrix

From single-box hosting to cluster CDN. 5 tiers cover everything from solo dev to enterprise.

Hosting Databases Security Observability Cluster Custom
All plans

Hosting / Reverse Proxy / Runtimes

Nginx / Apache / HAProxy — pick one, one-click site setup, bind domain, auto SSL. Multi-version PHP, isolated PHP-FPM pools per user, plus Java / Python / Node.js side-by-side.

  • Nginx + WAF integrated config
  • Apache multi-version (httpd 2.2 / 2.4) for PHP 5.2~8.5
  • HAProxy nginx-mode + L4/L7 health checks
  • PHP-FPM pools isolated per user/site
  • SSL auto-issue + renewal (via NK relay API)
Sites
Microservice
Personal+

Microservice (Rust Reverse Proxy + Cache)

A Rust-rewritten high-performance reverse proxy with built-in memory + disk dual-tier cache, range slice fetching, QUIC/HTTP3. Lighter than Nginx, more controllable than Cloudflare.

  • HTTP/1.1 + H2 + HTTP/3 (QUIC) stack
  • Memory + disk two-tier cache with hot threshold
  • Range slice fetch, optimized for video
  • JA3 / JA4 fingerprint block + push rules
  • Embedded WAF (ModSecurity FFI in progress)
All plans (replication Business+)

Databases / Cache — Multi-instance

Run multiple MySQL / PG / Mongo / Redis instances on one box, each with its own port, user, and data dir. User-level isolation: deleting one doesn't affect others.

  • MySQL 5.7 / 8.0 / 8.4 + MariaDB 11.4
  • PostgreSQL multi-instance (initdb pwfile)
  • MongoDB multi-instance (auth bootstrap)
  • Redis / Memcached multi-instance
  • Replication: MySQL MASTER_SSL / PG sslmode / Mongo tlsMode end-to-end encrypted
  • Xtrabackup physical backup + off-site DR
DB replication
WAF / JA3 / JA4
JA3/JA4 Personal+

WAF + Anti-Tamper · Defense in Depth

ModSecurity OWASP CRS is free, JA3 / JA4 TLS fingerprint blocking, file-level eBPF LSM anti-overwrite. From app layer to kernel — full-stack coverage.

  • OWASP CRS 4.x rule set
  • JA3 / JA4 fingerprint DB pushable to subnodes
  • IP / CIDR / GeoIP allow-deny
  • eBPF LSM blocks WebShell overwrites
  • User isolation (sys_user) + PHP-FPM sandbox
  • 2FA TOTP + step-up for sensitive ops
Personal+

Observability / Monitoring / Self-Heal

Dashboard for traffic, CPU, mem, disk, reachability; log aggregation per site/service; site monitor auto-restart on outage; access analytics for PV/UV/referrers.

  • Realtime dashboard (CPU/IO/Net/Disk)
  • Connectivity test (batch IP-range probing)
  • Site monitor self-heal (auto STOP/START on issues)
  • Website analytics (PV/UV/Referrer/UA)
  • Log mgmt + per-day rotation + full-text search
  • Heartbeat alerts (SMTP / WeCom bot)
Analytics
Sync groups CDN
Business+ (Virt Team+)

Cluster Sync + Self-CDN + Virtualization

Sync groups push IP / GeoIP / JA3 rules to all nodes in one click. Combined with Microservice = self-hosted CDN. KVM/Docker virtualization uses dockur images to run Windows / Linux VMs.

  • Sync groups: rules / IP sets / JA3 blocklist push
  • Self-CDN (Microservice + sync groups combo)
  • One-click deploy NK to any Linux subnode (SSH)
  • KVM virtualization (dockur wrapper, ISO pool)
  • Docker orchestration + noVNC remote desktop
  • PDNS private DNS (PowerDNS one-click)
Custom only

Custom Exclusive: ZeroSSL + Billing Admin

Custom edition lets you plug in your own ZeroSSL API key to issue wildcard certs directly — fully owned, no relay through us. Complete billing back-office: orders, payments, plans, licenses, tickets.

  • Bring-your-own ZeroSSL key (wildcard + ECC)
  • Cert API mgmt + API call logs
  • Billing: orders / payments / plan settings
  • Open API: sync NK orders/licenses to your own finance/CRM, e.g. WHMCS (read-only + webhook push)
  • Customer support: ticket system
  • Private deployment + custom dev support
Talk to Sales for Custom
Billing admin
In Development · Custom plan, built on demand

Extension Modules — We Can Do These Too

These modules are in active development / prototype. Custom plan customers can request them in their order — we prioritize delivery against the order pipeline + ship privately. Standard product roadmap is unaffected.

Kubernetes integration In Dev

Attach NodeKeeper to a K8s cluster — manage nodes, pods, services, ingress in one panel. Unified rollout + canary.

Ceph distributed storage In Dev

Form a Ceph cluster across nodes — NK manages OSD / MON / MGR. Block + filesystem + object, no single point of failure.

MinIO object storage In Dev

Self-hosted S3-compatible object storage. One-click MinIO cluster + buckets / policies / replication. Backup destination or CDN origin.

Mesh VPN In Dev

Zero-config multi-region mesh (Tailscale-like) with our own control plane + DERP. P2P across clouds — no public-internet detour.

Mail server In Dev

Postfix + Dovecot + Webmail + DKIM/SPF/DMARC + anti-spam. Mailboxes on customer-owned domains. A must-have for overseas hosting.

Reseller hierarchy In Dev

Three-tier: super-admin → reseller → end-user. Independent quotas, billing, branding. WHMCS-compatible module — auto create / suspend / terminate.

App 1-click install In Dev

App marketplace — WordPress / Joomla / Magento / Ghost / Nextcloud one-click. Auto-creates site + DB + PHP pool + SSL + config. Zero-ops site launch.

Need any of these? Contact Sales

Pick a Plan and Get Started

Free is forever. Paid is per-node — save 17% annually.

See Pricing Talk to Sales