A modern, container-based router and firewall distribution utilizing Talos Linux as the immutable base operating system with built-in Kubernetes orchestration. This solution provides enterprise-grade networking, security, and monitoring capabilities while maintaining a declarative, infrastructure-as-code approach.
This project aims to develop a network gateway solution with:
- Secure, reliable, and high-performance networking
- Container orchestration for service management
- Modern packet filtering (eBPF, XDP)
- Comprehensive network security
- Integrated monitoring and observability
- Full IPv4 and IPv6 support with advanced features
- Project Scope - Detailed overview of project goals and requirements
- Architecture Components - Technical architecture and design
- Implementation Plan - Step-by-step development plan
- Project Tracker - Status tracking for all components
/
├── docs/ # Documentation files
├── manifests/ # Kubernetes manifests
│ ├── core/ # Core system components
│ ├── network/ # Network services
│ └── security/ # Security services
├── config/ # Configuration templates
├── scripts/ # Utility scripts
└── tests/ # Test framework
Documentation will be added as the project progresses
- Packet routing (IPv4/IPv6)
- NAT/NAPT (including NAT66/NAT64)
- DHCPv4/v6 server and Router Advertisements
- DNS (authoritative, recursive, filtering)
- eBPF-based packet processing
- Static and dynamic routing protocols
- Multiple WAN support with failover
- VLAN support (802.1Q)
- Stateful packet filtering
- IDS/IPS through Suricata
- Network protocol analysis (Zeek)
- VPN services (WireGuard, OpenVPN)
- QoS and traffic management
- Comprehensive monitoring and logging
This project is licensed under the MIT License.