Deployment

Sentinel is designed for flexible deployment across environments—from single-binary development setups to distributed Kubernetes clusters.

Deployment Philosophy

Sentinel follows a separation of concerns model:

ComponentResponsibility
Sentinel proxyRoute traffic, call agents, circuit breaking
AgentsSecurity logic, custom processing
Process supervisorLifecycle management (systemd, Docker, K8s)

Sentinel intentionally does not manage agent lifecycles. Process supervision is a solved problem—systemd, Docker, and Kubernetes do it better than we could. This keeps the proxy lean and focused.

Deployment Tiers

┌─────────────────────────────────────────────────────────────────┐
│                     DEPLOYMENT OPTIONS                          │
├─────────────────────────────────────────────────────────────────┤
│                                                                 │
│  Development:        sentinel-stack                             │
│                      └── Single command, spawns everything      │
│                                                                 │
│  Production (VMs):   systemd with socket activation             │
│                      └── Independent services, proper isolation │
│                                                                 │
│  Cloud-native:       Kubernetes / Docker Compose                │
│                      └── Containers, sidecars, service mesh     │
│                                                                 │
└─────────────────────────────────────────────────────────────────┘

Quick Comparison

DeploymentBest ForAgentsComplexity
sentinel-stackDevelopment, simple setupsChild processesMinimal
systemdProduction VMs, bare metalSocket-activated servicesLow
Docker ComposeLocal development, small prodSidecar containersMedium
KubernetesCloud-native, scale-outPods, service meshHigher

Agent Connectivity

Regardless of deployment model, agents connect via:

  • Unix sockets — Local agents, lowest latency (~50-100µs)
  • gRPC — Remote agents, scalable, polyglot (~100-500µs)

See Agent Transports for protocol details.

Documentation

PageDescription
ArchitectureDeployment philosophy and agent lifecycle
sentinel-stackAll-in-one launcher for development
systemdProduction deployment with systemd
Docker ComposeContainer-based local/small deployments
KubernetesCloud-native deployment patterns
Service MeshIstio, Linkerd, and Consul Connect integration
MonitoringObservability and health checks