v1.6.30 — Najnovije stabilno izdanje

Memorijski siguran
Edge server
Napisan u Rustu

Modularni reverse proxy, cache, load balancer i statički host napisan u Rustu. Siguran po zadanim postavkama uz TLS, ACME, compression, edge policy, dynamic upstream discovery i siguran traffic mirroring.

Download v1.6.30 View on GitHub Quick Start →
Rust Fluxheim core EUPL-1.2 x86_64 Linux ARM64 Linux macOS razvoj Rootless containeri
/etc/fluxheim/fluxheim.toml 
include_conf_d = false

[server]
listen = ["0.0.0.0:80"]
tls_listen = ["0.0.0.0:443"]
default_vhost = "fluxheim.eu"

[tls]
enabled = true
backend = "rustls"
profile = "intermediate"
min_protocol = "tls1.2"
alpn = "http1-and-http2"
curve_preferences = ["X25519", "CurveP256", "CurveP384"]

[[vhosts]]
name = "fluxheim.eu"
hosts = ["fluxheim.eu"]

[vhosts.tls]
enabled = true

[vhosts.tls.certificate]
cert_path = "/etc/fluxheim/tls/fluxheim.eu/fullchain.pem"
key_path = "/etc/fluxheim/tls/fluxheim.eu/privkey.pem"

[vhosts.web]
root = "/srv/sites/fluxheim.eu"
index_files = ["index.html"]

Sve što trebaš na edge sloju

Fluxheim se isporučuje kao fokusirane, modularne build verzije: koristi samo ono što tvojem deploymentu treba.

Memorijski siguran po dizajnu

Napisan u Rustu s fiksiranim stabilnim toolchainom. Bez buffer overflow, use-after-free ili data race problema po konstrukciji.

Fluxheim HTTP core

Rust-native edge runtime s connection pooling, upstream retry, aktivnim health check, HTTP/2, WebSocket upgrade i gRPC pass-through.

Load balancer control plane

Fokusirani load-balancer 1.5 binary i image s advanced selection, lokalnom perzistencijom, health/ejection policy, bounded code i runtime member controls.

Modularni build profili

Kompiliraj samo ono što trebaš. Fokusirani profili za statički site, edge cache, reverse proxy, load balancing, TCP stream proxying, PHP-FPM, GeoIP, traffic mirroring i production bundle s compression.

TLS i upravljani ACME

rustls-first pristup s OpenSSL i FIPS/ISO build putovima, client certificate auth, upstream mTLS, automatskim ACME izdavanjem i multi-cert SNI.

Napredni cache sustav

Memory, disk, tiered i encrypted cache backendi s cache-safe gzip, Zstandard i Brotli compression te range caching za velike objekte.

Container-native

Rootless Podman image za Wolfi, Alpine, SUSE Micro i Debian. Systemd/RPM za native deployment. Bez vanjskih asseta pri pokretanju.

Prometheus i OpenTelemetry

Opt-in Prometheus metrics listener, OTLP metrics export, trace context propagation i OTLP trace export za potpunu observability.

GeoIP / Geo-kontekst

Opcijski lokalni MMDB lookup za country i ASN policy s MaxMind GeoIP2/GeoLite2 ili CIRCL Geo Open datasetom. Nema remote lookup ni downloadera u request path.

TCP stream proxy

Raw L4 TCP servisi s namjenskim stream route, stvarnim idle/lifetime/byte cap, upstream TLS/mTLS kontrolama, weighted/drain/backup policy i lokalnim PROXY protocol na route razini.

PHP-FPM podrška

Opt-in PHP-FPM FastCGI bridge za front-controller aplikacije poput WordPressa. Stroga script resolution i bounded request handling.

Edge policy kontrole

Trusted-proxy-aware ACL, rate limit, auth subrequest, traffic mirroring, regex rewrite, bounded code, stroga config validation i hardened request handling.

Pokreni za nekoliko minuta

Download a pre-built binary, drop in a config file, and start serving. Native systemd units and container images included.

bash 
# Preuzmi i raspakiraj puni build
curl -L https://github.com/valkyoth/fluxheim/releases/download/v1.6.30/fluxheim-1.6.30-full-x86_64-linux.tar.gz \
  | tar xz

# Premjesti binary u system path
sudo mv fluxheim /usr/local/bin/

# Validiraj config prije pokretanja
fluxheim --check-config --config /etc/fluxheim/fluxheim.toml

# Pokreni sa systemd (unit file uključen)
sudo systemctl enable --now fluxheim
bash 
# Preuzmi iz GHCR ili Quay
podman pull ghcr.io/valkyoth/fluxheim:v1.6.30
podman pull quay.io/valkyoth/fluxheim:v1.6.30

# Pokreni rootless s mountanim config
podman run -d \
  --name fluxheim \
  -p 8080:8080 -p 8443:8443 \
  -v /srv/sites:/srv/sites:ro \
  -v ./fluxheim.toml:/etc/fluxheim/fluxheim.toml:ro \
  ghcr.io/valkyoth/fluxheim:v1.6.30

# Dostupne image varijante: full, load-balancer, cache, proxy, php
bash 
# Kloniraj i kompajliraj default profile
git clone https://github.com/valkyoth/fluxheim
cd fluxheim

# Zadani build (proxy + web + cache + tls-rustls + security)
cargo build --release

# Ili kompajliraj fokusirani profile
cargo build --release --no-default-features \
  --features profile-proxy-edge,acme-client

# Validiraj config i pokreni
cargo run --release -- \
  --check-config --config examples/fluxheim.toml
Full installation guide →

Zašto Fluxheim?

Stvoren za operatore koji žele moderan, auditabilan stack bez skrivenog legacy ponašanja.

Bez skrivenog legacy fallbacka

Config validation je stroga. Dvosmislene ili nesigurne opcije odbijaju se, ne prihvaćaju se tiho.

Cargo.lock uključen

Ponovljivi buildovi. Svaka dependency je fiksirana. cargo audit and cargo deny run in CI.

Rootless-first containeri

Pokreći bez root. Interni portovi 8080/8443 po zadanim postavkama. Eksplicitne runtime image za različite operativne policy.

EUPL-1.2 open source

Copyleft licenca kompatibilna s mnogim OSS licencama. EU podrijetlo, pravno jasna za državnu i enterprise uporabu.

Pregled

Kratak pogled na Fluxheim u production deploymentu.

Pregled Fluxheim arhitekture

Počni

Installation, quick start, and your first config.

Pročitaj vodič →

Konfiguracija

Osnovni TOML config s praktičnim primjerima.

Pregledaj reference →

Matrica funkcija

Svi moduli, build profili i TLS backendi.

Vidi sve funkcije →
Bosanski
English (EU) English (UK) English (US) Deutsch Français Svenska Norsk Nederlands Suomi Íslenska Dansk Español Português Eesti Latviešu Ελληνικά Italiano Lietuvių Hrvatski Čeština Bosanski Български Deutsch (Schweiz) Română Polski Русский 日本語 한국어 Magyar