Quickstart

Get Started with AIEGES

AIEGES (AI-Enhanced Gateway & Endpoint Security) is a transparent security layer for AI tool calls. Two components — the Smart Gateway (transparent proxy) and Sentinel (local endpoint agent) — give you full visibility and control over every MCP request.

Prerequisites

  • Docker or Rust toolchain (for native build)
  • Node.js 20+ for configuration tooling
  • macOS, Linux, or Windows (WSL2)

01Install Smart Gateway (Transparent Proxy)

The Gateway sits between your AI clients and MCP servers, intercepting every tool call for inspection and policy enforcement.

# Clone the Aieges repository
git clone https://github.com/RJS-SOFTWARE-LABS/aieges.git
cd aieges

# Option A: Docker (recommended)
docker compose up gateway -d

# Option B: Native build
cargo build --release --bin aieges-gateway
./target/release/aieges-gateway --config gateway.toml

The Gateway listens on localhost:9090 by default and proxies to your upstream MCP servers transparently.

02Install Sentinel (Local Security Agent)

Sentinel runs on the host and monitors filesystem, process, and network activity triggered by AI agents.

# Option A: Docker
docker compose up sentinel -d

# Option B: Native build
cargo build --release --bin aieges-sentinel
./target/release/aieges-sentinel --tier developer

Choose a protection tier: shield (minimal), developer (balanced), or sentinel (maximum).

03Configure Security Policies

Define which MCP tool calls are allowed, denied, or flagged for review.

# gateway.toml — example policy
[[policies]]
name = "block-dangerous-writes"
match = "tools/call"
action = "deny"
when = { tool_name = "filesystem_write", path = "/etc/*" }

[[policies]]
name = "audit-memory-ops"
match = "tools/call"
action = "audit"
when = { tool_name = "memory_*" }

04Verify Installation

Run the built-in health check to confirm both components are operational.

# Check Gateway health
curl http://localhost:9090/health

# Check Sentinel status
./target/release/aieges-sentinel status

# Run integration test
cargo test --test integration

Next Steps

  • Tutorial — configure Gateway policies and Sentinel protection tiers in depth.
  • Smart Gateway — deep-dive into the MCP intercept layer.
  • MNEMON — contextual memory engine with three-tier architecture.