Skip to main content
Phala Cloud gives you automatic HTTPS endpoints for your containers. Deploy your service and get a secure public URL — no TLS or proxy configuration needed.

What You Get

Every container you deploy gets:
  • Public HTTPS endpoints that just work
  • Automatic TLS certificates (no Let’s Encrypt setup)
  • Full internet access with any protocol
  • Built-in load balancing
Your application URL looks like this: 
https://<app-id>-<port>.dstack-prod5.phala.network
Deploy on port 8080? Your URL is https://appid-8080.dstack-prod5.phala.network. Deploy on port 3000? It’s https://appid-3000.dstack-prod5.phala.network. Simple.

Zero Configuration Required

Just define your service in docker-compose.yml: 
services:
  web:
    image: nginx:alpine
    ports:
      - "8000:80"
Deploy it and you’re done. No reverse proxy setup needed. No certificate management required. No firewall rules to configure.

Use Your Own Domain

Want api.mycompany.com instead of the default URL? Add the dstack-ingress container to your deployment. It handles DNS setup and SSL certificates automatically through your DNS provider (Cloudflare, Linode, or Namecheap).

Beyond HTTP

Phala Cloud handles more than just web services: Databases: Expose PostgreSQL or MySQL with automatic TLS encryption. Your database connections are secure by default. gRPC Services: Full HTTP/2 support. Access gRPC endpoints by appending g to your URL (e.g., appid-8080g.dstack-prod5.phala.network). TCP Services: Any TCP protocol works - Redis, custom game servers, message queues. All get automatic TLS wrapping. SSH Access: Debug your containers with SSH access (development mode only).

What’s Next?

Ready to deploy something? The quickstart gets you running in 5 minutes. Need to do something specific? Check our guides: Want the technical details? See our architecture deep dive. Questions about security? Check our security model.