It would be nice to have a managed application load balancer like the one provided by GCP or AWS where you can direct subpaths to different services, rewrite urls, add/remove headers, etc.

This can then be expanded to support the WAF feature request for rate limiting, DDoS protection.