// GLOSSARY -- MCP & TOOL INFRASTRUCTURE

What is an MCP Proxy?

2 min read Updated

An MCP proxy is a transparent intermediary placed in the connection between an MCP client and one or more MCP servers. It speaks the protocol on both sides, so it can observe, modify or block JSON-RPC traffic — enforcing policy, logging calls or injecting credentials — without requiring changes to either endpoint.

WHY IT MATTERS

The Model Context Protocol is JSON-RPC over a transport (stdio or Streamable HTTP), which makes it straightforward to interpose: a proxy presents itself as a server to the client and as a client to the upstream server, relaying messages in between. Because every tool invocation flows through it as a structured tools/call request, the proxy is a natural enforcement and observation point.

Both classic proxy patterns appear in MCP deployments. A forward proxy sits on the client side — for example, a local process declared in the client's MCP configuration that relays to the real server, governing what that client may do. A reverse proxy sits in front of a server, terminating inbound connections and applying controls before traffic reaches it.

What a proxy can enforce or add, since it sees the full message stream:

  • Policy — allow, deny or require approval per tool, argument or caller.
  • Logging and audit — capture requests, responses and decisions into an audit trail.
  • Credential injection — hold upstream secrets itself and attach them per request, so clients never see raw API keys.
  • Transport bridging — expose a local stdio interface for a remote Streamable HTTP server, or vice versa.
  • Filtering — hide specific tools from tools/list responses.

A proxy fronting many upstream servers with shared auth, policy and audit is usually called an MCP gateway.

See mcp proxy working in your own stack — route your MCP servers through PolicyLayer and every tool call is checked against policy before it runs.

GOVERN YOUR MCP SERVERS →

Enforced before the call runs. Nothing to install.

HOW POLICYLAYER USES THIS

PolicyLayer's gateway is a reverse-proxy data plane for MCP traffic. Clients route their MCP connections through it; the gateway evaluates each tools/call against the team's deterministic policies before forwarding it upstream, injects the right upstream credentials, and records every decision for audit.

Browse the MCP server catalogue →

FREQUENTLY ASKED QUESTIONS

Does an MCP proxy require changes to the client or server?
No. The proxy speaks standard MCP on both sides, so clients and servers operate unmodified — only the connection configuration points at the proxy instead of the server directly.
What is the difference between a forward and reverse MCP proxy?
A forward proxy sits with the client and governs its outbound MCP traffic; a reverse proxy sits in front of a server and controls inbound traffic before it reaches that server.
Can a proxy hide tools from a client?
Yes. Because tools/list responses pass through it, a proxy can filter the advertised tool list so the client and model never see tools they are not permitted to call.

FURTHER READING

Let agents act without letting them run wild.

Route your MCP servers through PolicyLayer and every tool call is checked against your policy before it runs — allow, deny, or require approval. Per-identity grants. Full audit log. Live in minutes.

GOVERN YOUR MCP SERVERS →

Free to start. No card required.

43,000+ MCP servers and 220,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.