Circuit-Forge/turnstone
5
0
Fork 0
Code Issues 11 Pull requests 1 Projects Releases 6 Packages Wiki Activity Actions

docs: air-gapped deployment guide #47

New issue
Closed
opened 2026-05-26 23:05:26 -07:00 by pyr0ball · 1 comment
pyr0ball commented 2026-05-26 23:05:26 -07:00
Owner
Copy link

Document how to deploy Turnstone in environments with no outbound internet access (air-gapped networks, compliance-audited environments, enterprise DMZs).

Guide must cover:

  • Pre-downloading all required container images and Python packages
  • Pre-fetching HuggingFace model weights and transferring via USB / secure file drop
  • Environment variables for offline mode (HF_HUB_OFFLINE, TRANSFORMERS_OFFLINE, TURNSTONE_OFFLINE_MODE)
  • Container image export/import workflow (docker save / docker load or Podman equivalent)
  • SQLite data volume backup and restore
  • Log source configuration for environments without SSH to external nodes
  • Security checklist: what network ports Turnstone uses, what it does and does not phone home

Format: Markdown in docs/deployment/air-gapped.md, referenced from the main README.

Document how to deploy Turnstone in environments with no outbound internet access (air-gapped networks, compliance-audited environments, enterprise DMZs). **Guide must cover:** - Pre-downloading all required container images and Python packages - Pre-fetching HuggingFace model weights and transferring via USB / secure file drop - Environment variables for offline mode (`HF_HUB_OFFLINE`, `TRANSFORMERS_OFFLINE`, `TURNSTONE_OFFLINE_MODE`) - Container image export/import workflow (`docker save` / `docker load` or Podman equivalent) - SQLite data volume backup and restore - Log source configuration for environments without SSH to external nodes - Security checklist: what network ports Turnstone uses, what it does and does not phone home **Format:** Markdown in `docs/deployment/air-gapped.md`, referenced from the main README.
pyr0ball added this to the Enterprise POC Deliverable milestone 2026-05-26 23:05:26 -07:00
pyr0ball added the
deployment
docs
compliance
 labels 2026-05-26 23:05:26 -07:00
pyr0ball commented 2026-05-28 08:50:28 -07:00
Author
Owner
Copy link

Air-gapped deployment guide written at docs/air-gapped-deployment.md.

Covers: which components download from HF, model pre-download commands, context DB pre-population, TURNSTONE_OFFLINE_MODE=1 config, local LLM setup, runtime verification with ss -tp, full deployment checklist, and troubleshooting for the three common failure modes.

Linked from .env.example.

Air-gapped deployment guide written at `docs/air-gapped-deployment.md`. Covers: which components download from HF, model pre-download commands, context DB pre-population, `TURNSTONE_OFFLINE_MODE=1` config, local LLM setup, runtime verification with `ss -tp`, full deployment checklist, and troubleshooting for the three common failure modes. Linked from `.env.example`.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
feat/42-50-postgres-multitenant
feat/32-domain-view
feat/15-hybrid-rag
feat/41-hybrid-bert-shim
feat/60-incidents-db
feat/pipeline-cleanup
feat/29-multi-agent-diagnose
feat/ssh-remote-glean
feat/live-watch
feat/llm-reasoning
feat/frictionless-capture
v0.7.0
v0.6.2
v0.6.1
v0.6.0
v0.5.0
v0.4.0
v0.3.0
v0.2.0
v0.1.0
Labels
Clear labels   
compliance

   
demo

   
deployment

   
docs

   
enhancement

   
parser

   
patterns

   
performance

   
security

   
ux
No labels
compliance
demo
deployment
docs
enhancement
parser
patterns
performance
security
ux
Milestone
Clear milestone
No items
No milestone
Enterprise POC Deliverable
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: Circuit-Forge/turnstone#47
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?