fosrl/docs
1
0
Fork 0
mirror of https://github.com/fosrl/docs.git synced 2025-05-19 08:27:56 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
docs/packages/docusaurus/docs/05-Gerbil/03-system-architecture-documentation.md

3.4 KiB
Raw Blame History

System Architecture Documentation for the Gerbil Project

This document outlines the system architecture of the Gerbil project, a Go application designed for managing WireGuard tunnels. It includes a high-level overview, component interactions, data flow diagrams, design decisions and rationale, as well as system constraints and limitations.

1. High-Level Overview

The Gerbil project is structured around a central application that interacts with the WireGuard VPN service to create, manage, and configure tunnels. The application is built using Go and leverages various libraries for logging, networking, and configuration management.

Key Features:

  • WireGuard Management: Create and manage WireGuard interfaces and peers.
  • Logging: Centralized logging functionality to track application behavior.
  • Configuration: JSON-based configuration management for easy setup and modification.

2. Component Interactions

The main components of the Gerbil project include:

  • Main Application (main.go): The entry point that initializes the application, sets up logging, and handles command-line arguments.
  • Logger (logger/): A dedicated package for logging messages at various levels (DEBUG, INFO, WARN, ERROR, FATAL).
  • Configuration (config_example.json): Provides an example of how to configure the application with necessary parameters for WireGuard.
  • Dockerfile: Defines how to build and run the application in a containerized environment.

Interaction Flow:

  1. The main application starts and initializes the logger.
  2. It reads configuration from config_example.json or an equivalent file or a remote http api hosted in Pangolin.
  3. Based on the configuration, it interacts with the WireGuard API using the wgctrl library and netlink to set up tunnels and peers.
  4. Logs are generated throughout the process for monitoring and debugging.

3. Data Flow Diagrams

High-Level Data Flow Diagram

+-------------------+
|                   |
|   Configuration   |
|                   |
+---------+---------+
          |
          v
+---------+---------+
|                   |
|    Application    |
|                   |
+---------+---------+
          |
          v
+---------+---------+
|                   |
|   WireGuard API   |
|                   |
+-------------------+

Description:

  • Configuration: The application reads from a configuration file that specifies settings like private keys, listen ports, and peers.
  • Main Application: Orchestrates the flow by initializing components and executing commands based on user input.
  • Logger: Captures events during execution for later review.
  • WireGuard API: Interacts with the underlying WireGuard service to manage VPN tunnels.

4. Design Decisions and Rationale

Key Design Decisions:

  • Use of Go: Chosen for its performance, concurrency support, and ease of deployment.
  • JSON Configuration: Provides a human-readable format that is easy to modify without requiring recompilation.
  • Modular Logging: Encapsulated logging functionality allows for consistent logging practices across different parts of the application.

5. System Constraints and Limitations

Constraints:

  • Platform Dependency: The application relies on Linux-based systems due to its use of netlink sockets for network management.
  • Privileged Operations: Requires elevated permissions to create network interfaces and modify routing tables.