Kong
Cloud-native API gateway
The Lens
Kong is an API gateway that sits between your clients and services, handling authentication, rate limiting, logging, transformations, and load balancing. It sits between your clients and your services and manages traffic, security, and observability in one place.
Kong Gateway (OSS) is free and covers the fundamentals: request routing, load balancing, health checks, and a plugin system with 30+ free plugins (rate limiting, key auth, JWT, CORS, request transformation, logging). It runs on OpenResty/Nginx, so it's fast. Configuration via a REST Admin API or declarative YAML.
Kong Enterprise (Kong Konnect) adds the management UI, developer portal, Vitals analytics, RBAC, OpenID Connect, and a managed control plane. Pricing is custom but typically starts around $15K+/year. Solo: probably overkill. Use a reverse proxy. Small teams: Kong OSS works well for <20 services. Growing teams: evaluate Konnect when you need the dashboard. Large orgs: Kong is industry standard at this tier.
The catch: Kong without the management UI means configuring everything via API calls or YAML. That's fine for a few services but becomes painful at scale. The plugin ecosystem is powerful but writing custom plugins requires Lua knowledge (or Go/Python with newer PDK). If you want a simpler API gateway, APISIX or even Caddy with plugins might be less overhead.
Free vs Self-Hosted vs Paid
open core### Free Tier (Self-Hosted: Kong Gateway OSS)
Full API gateway functionality: routing, load balancing, health checks, circuit breakers. 30+ free plugins including rate limiting, key authentication, JWT, basic auth, CORS, IP restriction, request/response transformation, and logging (TCP, UDP, HTTP, file, syslog). Declarative config via YAML or DB-backed mode with Postgres.
### Self-Hosted Setup
Docker, Kubernetes (Helm chart), or native packages. DB-mode requires Postgres. DB-less mode works with declarative YAML config, simpler for smaller deployments. The gateway itself is lightweight but configuring plugins and routes without a UI takes discipline.
### Paid Tier: Kong Konnect (Enterprise)
- **Custom pricing** (typically $15K-50K+/year depending on scale) - Kong Manager (web UI for configuration) - Developer Portal - Vitals (analytics and monitoring) - RBAC and workspaces - OpenID Connect plugin - Enterprise plugins (GraphQL, gRPC gateway, etc.) - Managed control plane option
### The Math
Self-hosted OSS: $0 + ops time. A VPS for the gateway: $10-40/mo. Enterprise at $15K/year ($1,250/mo) is a big jump, justified only when you need the management plane and enterprise plugins. For everything below that, OSS with declarative config is production-ready.
### Verdict
Kong OSS is a legitimate production API gateway. Pay for Konnect when your team needs the management UI and enterprise compliance features.
OSS is production-grade for most API gateway needs. Enterprise pricing ($15K+/year) is for management UI and compliance.
Similar Tools
About
- Stars
- 43,111
- Forks
- 5,112
Explore Further
More tools in the directory
Get tools like this delivered weekly
The Open Source Drop — the best new open source tools, analyzed. Free.