projekte/edgeguard-native
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
76 Commits 1 Branch 0 Tags
81a821749316b263b889725390a0ad6959b5da67
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Debian 81a8217493 feat(alerts): Health-Alarme via Webhook + Email-SMTP 
Sidebar → System → Alarme.

Migration 0021: alert_channels (kind=webhook|email, target, settings,
active) + alert_events (kind, severity=info/warning/error/critical,
subject, message, sent_to JSONB).

internal/services/alerts/:
  - Fire(kind, severity, subject, message) — broadcastet an alle
    aktiven Channels + persistiert Event mit per-Channel-Result
    (ok/error) in sent_to.
  - Webhook-Sender: POST JSON {kind, severity, subject, message,
    content, text, fired_at}. Slack/Discord/Teams akzeptieren das
    out-of-the-box ohne Adapter (content + text-Felder gleichzeitig).
  - Email-Sender: net/smtp + STARTTLS optional. Settings (smtp_host,
    smtp_port, username/password, from, use_tls) liegen in
    channel.settings JSONB.

internal/handlers/alerts.go: CRUD + POST /alerts/test + GET
/alerts/events (history).

Scheduler-Trigger:
  - cert.expiring  — TLS-Cert <14 Tage Restzeit (12h-dedupe pro cert)
                     severity warning, <3 Tage → error
  - cert.renew_failed       — Renewer-Cycle hat fails
  - cert.renewer.run_failed — Renewer-Cycle abgebrochen
  - backup.failed  — Scheduled Backup error
  - license.invalid — License-Server liefert valid=false

In-process Dedupe (12h TTL, map[key]time.Time) verhindert dass
identische Alerts in Schleifen feuern.

UI (pages/Alerts): Tabs Channels (CRUD-Tabelle, Add-Modal mit
conditional-Email-Fields) + History (200 letzte Events mit
severity-Tag + per-Channel-Delivery-Status). Header-Button
„Test-Alert" feuert einen Test-Event in alle aktiven Channels.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-13 15:57:05 +02:00
cmd
feat(alerts): Health-Alarme via Webhook + Email-SMTP
2026-05-13 15:57:05 +02:00
deploy
feat(scheduler): Auto-Renewal für Let's Encrypt Certs
2026-05-10 22:50:00 +02:00
docs
feat(configgen): Phase 2 Config-Generator + nginx → HAProxy-only Pivot
2026-05-09 10:59:52 +02:00
internal
feat(alerts): Health-Alarme via Webhook + Email-SMTP
2026-05-13 15:57:05 +02:00
management-ui
feat(alerts): Health-Alarme via Webhook + Email-SMTP
2026-05-13 15:57:05 +02:00
packaging/debian
feat(diagnostics): UI-Tools — ping/traceroute/dig/curl/tcp
2026-05-13 15:30:07 +02:00
scripts
feat: install.sh One-Liner-Bootstrap + System-Adressen-Card auf IP-Page
2026-05-09 16:23:58 +02:00
.gitignore
chore: initial skeleton
2026-05-08 18:45:41 +02:00
agent.md
feat(configgen): Phase 2 Config-Generator + nginx → HAProxy-only Pivot
2026-05-09 10:59:52 +02:00
Agent.md
fix(update): sudo für apt-get update — Banner blieb sonst auf altem Stand
2026-05-11 14:28:37 +02:00
CLAUDE.md
chore(deps): Go 1.25.7 → 1.26.3
2026-05-12 18:25:41 +02:00
go.mod
feat(firewall-log): Phase 2 — HTTP-Tail + WebSocket-Live-Stream
2026-05-12 21:05:39 +02:00
go.sum
feat(firewall-log): Phase 2 — HTTP-Tail + WebSocket-Live-Stream
2026-05-12 21:05:39 +02:00
Makefile
feat: Networks-Members für bridge/bond + System-Rules-Card + Theme-Revert
2026-05-10 16:19:07 +02:00
README.md
feat(configgen): Phase 2 Config-Generator + nginx → HAProxy-only Pivot
2026-05-09 10:59:52 +02:00
VERSION
feat(alerts): Health-Alarme via Webhook + Email-SMTP
2026-05-13 15:57:05 +02:00

README.md

EdgeGuard

Native Reverse-Proxy / Loadbalancer / Forward-Proxy / VPN / Firewall — als signiertes .deb für Debian 13 + Ubuntu 24.04, amd64 + arm64.

Status: v0.x — Neufassung des bisherigen Docker-Stacks, parallel zum Bestand proxy-lb-waf.

Installation

curl -fsSL https://get.edgeguard.netcell-it.de | sudo bash

Unterstützte Plattformen: Debian 13 (Trixie), Ubuntu 24.04 LTS (Noble) — amd64 + arm64.

Architektur in Kürze

  • Daten-Services (v1): HAProxy (TLS-Termination + LB + L7-Routing), Squid, WireGuard, Unbound, nftables — alle nativ via APT, Configs aus PostgreSQL generiert.
  • Control-Plane: edgeguard-api (Go/Gin), management-ui (React/AntD), PostgreSQL 16, KeyDB Active-Active.
  • Cluster: N symmetrische Peers, KeyDB AA für Shared State, PG Streaming Replication, Floating-IP des Hosters statt VRRP.
  • Auslieferung: signierte .deb, Update via apt. Update-Trigger via UI/API.

Volle Architektur: docs/architecture.md.

Build

make build       # Host-Architektur
make deb         # amd64 + arm64 .deb
make publish     # deb + Upload Gitea Package Registry

Repo

  • Lokal: /var/www/edgeguard-native
  • Gitea: https://git.netcell-it.de/projekte/edgeguard-native
Reference in New Issue View Git Blame Copy Permalink
Description
EdgeGuard Native — Reverse-Proxy / Loadbalancer / Forward-Proxy / VPN / Firewall ohne Docker, .deb-Auslieferung fuer Debian 13
Readme 3 MiB
Languages
Go 51.1%
TypeScript 34.4%
CSS 8.4%
Shell 3.8%
Smarty 1.8%
Other 0.4%