# ngrok MCP

> ngrok MCP gives you full command over your ingress infrastructure right from your AI agent. List active endpoints, check custom reserved domains, and audit security policies—all without leaving your chat window or terminal. Manage API keys and IP restrictions to secure network access and simplify complex tunneling setups.

## Overview
- **Category:** loved-by-devs
- **Price:** Free
- **Tags:** tunneling, ingress, api-gateway, network-security, remote-access

## Description

Connecting ngrok to any AI client lets you take full control of your entire ingress infrastructure using natural conversation. Instead of navigating separate dashboards, your agent handles the heavy lifting. You can ask it to list all active public URLs—whether they're temporary tunnels or advanced edge routes. Need to check if a specific IP address is restricted? Ask about the current policies and restrictions. You also get visibility into reserved domains and API keys across your account vault. It’s like getting a complete, real-time view of every tunnel and security setting without ever leaving your chat interface. This capability fits right in with Vinkius, making it easier to manage network complexity alongside all the other tools you rely on.

## Tools

### list_api_keys
Retrieves a list of ngrok API keys used for authentication across the account.

### list_endpoints
Gets a comprehensive list of all active public URLs (tunnels) configured in the system.

### list_https_edges
Lists advanced HTTPS edge configurations and their associated routing rules.

### list_ip_policies
Shows all IP policies currently configured, detailing access controls by IP range.

### list_ip_restrictions
Lists specific IP restrictions applied to the account dashboard and API access.

### list_reserved_domains
Retrieves all custom domains that have been reserved for future use in applications.

### list_vaults
Lists the secure vaults used to store sensitive values and credentials.

## Prompt Examples

**Prompt:** 
```
List all active ngrok endpoints.
```

**Response:** 
```
I've retrieved your active endpoints. You have 2 active tunnels: 'https://myapp.ngrok-free.app' (ID: ep_123) and 'https://api.example.com' (ID: ep_456).
```

**Prompt:** 
```
Show me the reserved domains in my account.
```

**Response:** 
```
Fetching reserved domains... I found 3 domains: 'dev.local', 'staging.myapp.com', and 'prod.myapp.com'. All are currently active.
```

**Prompt:** 
```
What IP policies are currently configured?
```

**Response:** 
```
I found 1 IP policy: 'Office-Only-Access' (ID: ipp_789) which restricts access to the corporate CIDR range.
```

## Capabilities

### Check active public URLs
List temporary tunnels and permanent edge routes used by your application.

### Audit security rules
Review current IP policies and restrictions applied to your ngrok account.

### View custom domain names
Retrieve a list of all reserved, custom domains associated with your applications.

### Manage authentication credentials
List and manage the API keys used to authenticate access to your infrastructure.

## Use Cases

### Debugging an intermittent public connection
A developer notices a service is intermittently failing in production. They ask their agent, 'What are the active endpoints and current IP restrictions?' The MCP immediately lists all tunnels and confirms that no external IPs are currently restricted, pointing them to a firewall issue.

### Preparing for an environment migration
A DevOps engineer is moving from staging to production. They prompt the agent to 'List reserved domains' to confirm all necessary custom names are secured, followed by checking 'list_api_keys' to ensure credentials haven't expired.

### Onboarding a new security team member
A security analyst needs to understand the current threat surface. They ask the agent to check both 'list_ip_policies' and 'list_vaults' simultaneously, getting an immediate overview of all access rules and stored secrets.

### Verifying a new service setup
A backend developer has finished building a local microservice. They ask the MCP to list HTTPS edges and check for available reserved domains, allowing them to provision a secure public URL without manual steps.

## Benefits

- Audit endpoints and policies instantly. Instead of logging into separate consoles to check active public URLs or IP restrictions, you ask your AI client directly for the status.
- Keep track of custom domains easily. If you need to confirm if 'api.myapp.com' is reserved for a new project, just prompt the MCP instead of digging through domain management panels.
- Centralize credential checks. You can list all necessary API keys and check secure vaults from one place, reducing the risk of using outdated or forgotten credentials.
- Understand edge routing configurations. This tool lets you inspect detailed HTTPS edges, which is critical for advanced microservice deployments that require specific URL handling.
- Secure access control review. Quickly verify IP policies and restrictions to ensure your network maintains compliance before a deployment goes live.

## How It Works

The bottom line is that you get full visibility into your complex tunneling setup through simple chat prompts.

1. Subscribe to this MCP and enter your ngrok API Key.
2. Talk naturally with your AI client, telling it what network information you need (e.g., 'Show me all active endpoints').
3. Your agent executes the necessary commands and returns a clean summary of your infrastructure status.

## Frequently Asked Questions

**How do I use ngrok MCP to check my active tunnels?**
Use the `list_endpoints` tool through your agent. It pulls a real-time list of all public URLs, letting you see which tunnels are currently running and visible.

**Can I use ngrok MCP to check if my custom domain is reserved?**
Yes, prompt the agent about 'reserved domains.' It uses `list_reserved_domains` to show all custom names you've set aside for future projects.

**What does ngrok MCP use to manage credentials?**
The MCP interacts with your account vault, allowing you to list and audit API keys using the `list_api_keys` tool. This keeps sensitive values managed and visible to your agent.

**Is ngrok MCP only for checking endpoints?**
No. It handles security too. You can use `list_ip_policies` and `list_ip_restrictions` to verify access controls, not just the public URLs themselves.

**Does ngrok MCP help with HTTPS edge configurations?**
Yes. You can specifically ask about advanced routing using the `list_https_edges` tool, giving you insight into complex URL handling rules.