zrok

Share local HTTP service publicly

$ zrok share public localhost:[port]

$ zrok reserve public localhost:[port] --unique-name [subdomain]

$ zrok share private localhost:[port]

$ zrok access private [share_token]

$ zrok copy [file] [share_token]:[remote_path]

zrok command [options]

zrok is a next-generation sharing platform built on OpenZiti, providing secure tunneling for HTTP services, files, and arbitrary TCP/UDP traffic.
Public shares create internet-accessible URLs pointing to local services. Private shares require an access token and go through encrypted Ziti network overlay, providing zero-trust security.
zrok can share:
- HTTP/HTTPS services (web apps, APIs)
- Static files (file server mode)
- Raw TCP/UDP endpoints
Unlike simple tunnels, zrok's private shares never expose traffic to the public internet - all traffic stays within the zero-trust overlay network.

enable

Enable zrok environment

Share local resource

Create reserved share

Release reserved share

Access shared resource

Copy files to/from shares

Show environment status

Disable zrok environment

public

Publicly accessible share

Share accessible only with token

Backend type (proxy, web, files)

Reserve specific subdomain

Run without terminal UI

Public shares expose your local service to the internet. Ensure appropriate authentication/security.
Free tier has usage limits. Heavy usage may require a paid account or self-hosted infrastructure.
Reserved names persist but shares don't - you must re-run share commands after restart.
zrok account required. Run zrok invite to get started.

ngrok(1), cloudflared(1), tailscale(8)