π Welcome to Defguard 2.0 Alpha 1 π
First of all, this is an actual alpha, not meant for production, but a technology preview of whatβs to come, hopefully in a month, when the stable release should be ready.
2.0 is a major overhaul, featuring a completely redesigned UI/UX, secure reverse Core-to-Gateway communication with a built-in SSL certificate authority, automated deployment and session management, and initial high-availability support, laying a solid foundation for easier, safer, and more manageable on-premise deployments.
π οΈ We highly recommend that you get familiar with a detailed technical overview of all changes and a comprehensive showcase of all features in this blog post.
πHere you can find a quick tutorial on how to quickly launch 2.0Ξ± with Docker Compose.
We want to get as much feedback as possible, so we encourage you to:
π¬ open a GitHub discussion
πͺ² report any missing features or bugs as issues
What's Changed
- Release 1.5 merger by @wojcik91 in #211
- Fixes pentest issue DG25-29 from 2025-09-02 by @j-chmielewski in #212
- Merge main into dev after 1.5.1 release by @j-chmielewski in #215
- Create SBOM files by @j-chmielewski in #216
- CI: scan code with trivy by @j-chmielewski in #217
- Periodic sbom regeneration by @j-chmielewski in #218
- Merge SBOM CI pipelines into main by @j-chmielewski in #219
- Health check rename by @jakub-tldr in #221
- APT uploading/signing workflow by @jakub-tldr in #223
- List whole directory by @jakub-tldr in #224
- Merge main into dev before 1.6 release by @j-chmielewski in #228
- Reverse gRPC communication by @moubctez in #233
- Limit connections to one Core by @moubctez in #241
- Enable use of fwmark by @moubctez in #242
- Disable APT repository signing/upload by @jakub-tldr in #244
- Core certificate authority, part 2: Gateway by @t-aleksander in #250
- Install missing build dependencies by @t-aleksander in #254
- Install missing dependencies, take 2 by @t-aleksander in #255
- MTU and FwMark are not optional by @moubctez in #256
- Gateway wizard by @t-aleksander in #257
- Update OPNsense plugin: add ACL, fix service by @moubctez in #259
- fix binary build by @wojcik91 in #266
Full Changelog: v1.5.1...v2.0.0-alpha1