Blog

Pound reverse proxy: SSL termination, CORS header forwarding, and backend pool selection for APIs

Pound is lightweight—configure `HeadRemove` and `AddHeader` carefully so CORS headers are not duplicated or stripped.

Published: 2028-05-14Updated: 2028-05-161 min read

poundreverse-proxycors

Session persistence

Cookie-based persistence may conflict with CORS credentialed requests if domains differ.

Timeouts should exceed longest preflight chain in your stack.

Dual-stack listeners can split traffic—ensure CORS policies match both A and AAAA frontends.