Merideon is an AI-native security platform built from the ground up to govern AI agents, manage network infrastructure, and secure the network edge โ as a single integrated system.
Each appliance owns a distinct layer of your security infrastructure. Together they form a closed loop โ govern, manage, enforce.
Sits between the internet and your internal networks. Handles all ingress/egress traffic, enforces firewall rules, manages WAN failover, and runs Andrew AI for natural language operations.
AI Router detailsThe authoritative registry for every AI agent. Manages the full agent lifecycle โ registration, approval, credentialing, behavioral assessment, and policy definition.
Security Office detailsMaintains live awareness of every IP address, service, and DNS record across your infrastructure. Feeds the router with current DNS state and flags unknown devices automatically.
IPAM detailsEach appliance is useful standalone. Together they form a closed security loop that no component can provide alone.
When an admin authors a policy in the Security Office and clicks Push, it travels directly to Andrew on the AI Router. Andrew applies the rules to nftables in under 2 seconds. Badge revocations trigger immediate enforcement โ revoked agents are blocked at the network edge instantly.
Every significant event Andrew observes or action he takes โ policy applications, traffic anomalies, WAN failovers, autonomous decisions โ is surfaced in the Security Office's Andrew Events feed in real time. The SO sees everything the edge sees.
DNS records managed in IPAM are applied directly to the AI Router's Unbound resolver. When IPAM adds a host, the router knows its name. When a container is removed by Docker sync, its DNS record can be cleaned up automatically.
Every appliance maintains its own immutable audit log with the same principle: every action, attributed to an actor, with timestamp and outcome. Security reviews can trace a complete chain of events across all three appliances โ from agent registration through badge issuance to policy enforcement to network event.
Andrew lives in the AI Router. He monitors the network, responds to natural language commands, enforces policies from the Security Office, and takes autonomous action โ always with your explicit approval before changing anything.
Merideon runs entirely on your hardware. No cloud dependency, no data leaving your network.
Each appliance ships as a Docker Compose application โ backend, nginx, and database in isolated containers. Deploy on any Linux host with Docker installed.
All three appliances serve exclusively over HTTPS. Self-signed certs provided out of the box. Replace with your CA certs for production โ paths are fully configurable.
All data persists on Docker named volumes. Survives container restarts, rebuilds, and updates. PostgreSQL for the Security Office, SQLite for IPAM and AI Router.