README
¶
Sentinel
Sentinel is a tsnet-embedded Tailscale observer. It tracks tailnet netmap changes, detects meaningful diffs, and sends notifications through configurable sinks.
Features
- Realtime observation via Tailscale IPNBus (
source.mode: realtime) - Optional polling mode (
source.mode: poll) - Presence event detection (
peer.online,peer.offline) - Route-based notifier pipeline with multiple sinks
- Always-on local JSON sink (
stdout-debug) for visibility - Webhook delivery with retries and structured success/failure logging
- Structured logging with stable
log_sourceattribution (sentinel,tailscale,sink)
Quick Start
Validate config:
go run ./cmd/sentinel validate-config --config ./config.example.yaml
Send a synthetic notification:
REQUESTBIN_WEBHOOK_URL="https://your-endpoint" \
go run ./cmd/sentinel test-notify --config ./config.example.yaml
Run Sentinel:
REQUESTBIN_WEBHOOK_URL="https://your-endpoint" \
go run ./cmd/sentinel run --config ./config.example.yaml
Compose-based local run:
cp .env.example .env
docker compose -f docker-compose.yml -f docker-compose.local.yml up --build
Configuration
- Example config:
config.example.yaml - Supports YAML/JSON with
SENTINEL_environment overrides - Supports
${VAR_NAME}interpolation in sink URLs
Commands
runstatusdiffdump-netmaptest-notifyvalidate-config
Use go run ./cmd/sentinel --help for full command and flag details.
Documentation
Operator docs live under docs/ and are structured for Docsify.
- Getting Started
- Configuration Reference
- Docker Compose and Railway
- Sinks and Routing
- Troubleshooting
- Command Reference
To preview with Docsify:
docsify serve docs
Development
Run tests:
go test ./...
Run with debug logs:
go run ./cmd/sentinel run --config ./config.example.yaml --log-level debug
Directories
Click to show internal directories.
Click to hide internal directories.