Flomesh MCP Remote

Flomesh MCP Remote is a Zero Trust runtime for securely connecting AI agents to remote Model Context Protocol (MCP) servers. It uses lightweight ZTM Agents running on edge, mobile, IoT, or desktop devices to form an encrypted mesh network that enables real-time access to tools and services across firewalls and NAT without requiring VPNs or SDKs. Designed for AI-powered applications, it provides mTLS-based authentication, fine-grained access control, threat detection, and a developer-friendly RESTful API.

0 AWS reviews

View purchase options

Try for free

Overview

Flomesh MCP Remote brings Zero Trust security and dynamic orchestration to AI agent-tool interaction using the Model Context Protocol (MCP). Unlike traditional platforms that rely on fixed infrastructure or SDKs, MCP Remote leverages ZTM Agents, lightweight mesh nodes deployed across desktops, servers, mobile, and IoT devices, to create a decentralized, secure runtime fabric for real-time MCP communication.

Much like Cloudflare Workers and Durable Objects form a programmable edge layer, ZTM acts as the orchestration backbone, handling mTLS-based authentication, routing, observability, and access control across all endpoints. Developers can interact with remote MCP tools via local RESTful APIs on localhost:7777, while agents tunnel encrypted traffic through NAT and firewalls without any special network configuration.

Key Features:

Zero Trust Mesh for MCP Enforces mTLS-based authentication and least-privilege access for all MCP interactions, no VPNs or static IPs required.
Distributed Orchestration with ZTM Agents ZTM Agents run on edge, user, mobile, and IoT devices to form a programmable mesh, similar in role to Cloudflare Workers.
Seamless Connectivity Across NAT/Firewalls Enables secure access to MCP servers across any network boundary without manual port forwarding or tunneling setup.
No SDK Required Connect to remote MCP tools or services without modifying or rebuilding them using any SDK.
Developer-Friendly Local API Access tools via RESTful API , ideal for rapid testing, IDE integration, and debugging.
Tool Poisoning & Threat Mitigation Built-in semantic validation, runtime monitoring, and strict access policies prevent tampering and misuse.
Cross-Platform & Lightweight Runs on Windows, macOS, Linux, iOS, Android, OpenWrt, and embedded Linux, making it ideal for hybrid cloud-edge use cases.
Full Auditability & Enterprise Compliance Logs every interaction with cryptographic guarantees to meet audit, security, and regulatory requirements.

Highlights

- Zero Trust Security for AI and MCP Enforces mTLS, certificate-based identity, and least-privilege access to protect AI agents interacting with MCP tools and services.
- Decentralized Mesh with ZTM Agents Deploy lightweight agents on edge, mobile, desktop, or IoT devices to securely connect to MCP servers across any network.
- Developer-Friendly and SDK-Free Securely build and test AI-powered applications using a local RESTful API, no SDK or VPN required.

Details

Sold by

Flomesh

Unlock automation with AI agent solutions

Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.

Explore AI agent solutions

Features and programs

Financing for AWS Marketplace purchases

AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.

View financing details

Pricing

Free trial

Try for free

Try this product free for 7 days according to the free trial terms set by the vendor. Usage-based pricing is in effect for usage beyond the free trial terms. Your free trial gets automatically converted to a paid subscription when the trial ends, but may be canceled any time before that.

Flomesh MCP Remote

Info

View purchase options

Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.

Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.

Usage costs (3)

Info

Dimension	Cost/hour
t3.medium Recommended	$0.01
t3.micro AWS Free Tier	$0.01
t3.small	$0.01

Vendor refund policy

Follow AWS Refund policy

How can we make this page better?

We'd like to hear your feedback and ideas on how to improve this page.

Legal

Vendor terms and conditions

Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

Content disclaimer

Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

Usage information

Info

Delivery details

64-bit (x86) Amazon Machine Image (AMI)

Amazon Machine Image (AMI)

An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.

Version release notes

Implement user and user group management
Add system proxy switch, commercialize proxy rules, achieve user group granularity
optimize chat display
provide enterprise authentication
optimize tunneling function
configurable i18n

Additional details

Usage instructions

Launch Flomesh MCP Remote AMI

Select the Flomesh MCP Remote listing in the AWS Marketplace and launch it.
Configure the software with a 64-bit AMI, the latest version of Flomesh MCP Remote, and choose your desired region.
Select your preferred instance type.
Use the predefined access settings for ports and protocols in the security group.
Choose a key pair for securely connecting to your instance (or create a new one if necessary).
Launch your instance.

Connect to Your New AMI

After launching your new AMI, follow these steps to connect:

SSH into the console using an SSH client software and the private key pair you used or created earlier.
Use the instance username ubuntu.
Connect with the following command: ssh -i /path/to/key-pair-name.pem ubuntu@instance-public-ipv4-address

Retrieve ZTM Root User Permit

Upon the first boot of your EC2 instance, a new permit file named ztm-permit.json will be generated and placed in the /root/.ztm directory.

Setting Up ZTM Endpoints

After setting up the ZTM hub server and obtaining the ztm-permit.json file, you are ready to install ZTM agent and set up the ZTM mesh on your own machines.

For detailed instructions on setting up ZTM endpoint on your personal machine, follow the Quick Start guide Setup Endpoints .

Resources

Vendor resources

User Guide

Support

Vendor support

As a paid AMI, ZTM includes priority technical support from Flomesh. For assistance, contact us via Slack or email at support@flomesh.io .

AWS infrastructure support

AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

Get support

Similar products

ZTM HomeConnect

By Flomesh

ZTM HomeConnect, powered by the open-source ZTM project, enables you to securely connect to your personal files, media, and devices without any geographical or network restrictions. Whether you're accessing your home network remotely or reaching into devices on the go from home, ZTM HomeConnect provides seamless, bidirectional connectivity. Stay in control, wherever you are, with the reliable access that ZTM HomeConnect delivers.

View product

ZTM Tunnel

By Flomesh

ZTM Tunnel is designed for organizations seeking a streamlined, cost-efficient way to securely access internal applications remotely. Positioned as a more focused alternative to Cloudflare Tunnel and Akamai EAA, ZTM Tunnel delivers core functionality without the overhead or complexity of its larger competitors. While Cloudflare Tunnel and Akamai EAA offer extensive features, ZTM Tunnel hones in on delivering essential security and connectivity, making it an ideal choice for businesses that don't need the full spectrum of enterprise-level services. By eliminating the reliance on traditional VPNs, ZTM Tunnel provides a straightforward and effective solution for ensuring secure remote access. Choose ZTM Tunnel for a no-frills approach to safeguarding and accessing your internal network, tailored to meet your needs without unnecessary complexity or costs.

View product

ZTM HomeConnect on arm64

By Flomesh

This product has charges associated with it for seller support. ZTM HomeConnect, powered by the open-source ZTM project, enables you to securely connect to your personal files, media, and devices without any geographical or network restrictions. Whether you're accessing your home network remotely or reaching into devices on the go from home, ZTM HomeConnect provides seamless, bidirectional connectivity. Stay in control, wherever you are, with the reliable access that ZTM HomeConnect delivers.

View product

Customer reviews

Leave a review

Ratings and reviews

Info

0 ratings

5 star

4 star

3 star

2 star

1 star

0 AWS reviews

No customer reviews yet

Be the first to review this product . We've partnered with PeerSpot to gather customer feedback. You can share your experience by writing or recording a review, or scheduling a call with a PeerSpot analyst.