Remote Access
Accessing OpenClaw from anywhere.
Overview
Access your OpenClaw instance remotely:
- SSH tunneling
- Tailscale VPN
- Reverse proxy
SSH Tunnel
Simple and secure:
bash
# On remote machine
ssh -L 3000:localhost:3000 user@your-serverThen access http://localhost:3000 on your local machine.
Tailscale
Using Tailscale for secure access:
- Install Tailscale on both machines
- Access via Tailscale IP
bash
# Access via Tailscale
http://100.x.x.x:3000Reverse Proxy
Nginx Example
nginx
server {
listen 443 ssl;
server_name openclaw.yourdomain.com;
ssl_certificate /path/to/cert.pem;
ssl_certificate_key /path/to/key.pem;
location / {
proxy_pass http://127.0.0.1:3000;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_set_header Host $host;
}
}Caddy Example
openclaw.yourdomain.com {
reverse_proxy localhost:3000
}Security Considerations
When exposing remotely:
- Always use HTTPS
- Enable authentication
- Consider IP whitelisting
- Use strong passwords/keys
Configuration
json5
{
gateway: {
host: "0.0.0.0", // Listen on all interfaces
auth: {
enabled: true,
apiKey: "your-key"
}
}
}