GitHub Repository

Distributed AI Agent Orchestration Control any machine, from anywhere — secure terminals, AI agents, and live telemetry via Zero-Trust gRPC tunnels.

2 starsGo

DAAO – Deploy AI agents to your servers via Zero-Trust tunnels

Name: DAAO – Deploy AI agents to your servers via Zero-Trust tunnels
Availability: InStock
Author: dan3093

by dan3093·Mar 14, 2026·1 point·0 comments

Visit Project View on HN

AI Analysis

●●SolidWizardryNiche Gem

Outbound-only mTLS tunnels beat Teleport for zero-inbound-port server access.

Strengths

•Asciicast v2 session recordings with playback, pause, scrub, and speed control.
•Single <20MB Go binary works on Windows, Linux, macOS with zero host dependencies.
•Sessions survive browser disconnects with suspend, resume, and attach lifecycle.

Weaknesses

•AI Agent Forge feels tacked onto solid remote access infrastructure.
•Zero forks and stars suggests very early stage despite polished README.

Post Description

A month ago I wanted one thing: to start a coding session on my desktop and pick it up from anywhere — my phone, my couch, another machine — without setting up a VPN or leaving SSH ports open.

I built that. Then I kept going.

DAAO (Distributed AI Agent Orchestration) — but it started a lot simpler than that name suggests.

It deploys a single Go binary to any server (Windows, Linux, macOS). It opens an outbound-only mTLS gRPC tunnel back to a central control plane. No inbound ports. No VPN. No SSH. From a web Cockpit you get live terminal sessions that survive browser disconnects, full session recordings with playback, real-time CPU/memory/disk telemetry, and an Agent Forge for deploying AI agents to your servers.

The agent piece is where it got interesting. You deploy an infrastructure discovery agent from the UI, it auto-provisions its runtime on the server, runs, and streams its output back live. I watched it map my own homelab — AMD Ryzen 7 9800X3D, 64GB RAM, RTX 4090, 12 containers running, all listening ports, drift from the last scan. In real time. Through a browser. On a machine that has no inbound ports.

That's when I realized this was more than a personal tool.

I built all of this in the last month. I work a 9-5. I have a family depending on me. I used AI agents heavily to move fast — and I won't pretend I fully understand every piece I shipped. But it works, it's tested, the CI is green, and I'm proud of it.

What's in the community edition (free, BSL 1.1): - Cross-platform satellite daemon (Windows ConPTY, Linux/macOS POSIX PTY) - Live terminal sessions with ring buffer, reattach, multi-pane dashboard - Session recordings (asciicast v2, full playback controls) - Real-time satellite telemetry - Agent Forge with 3 built-in agents (Log Analyzer, Security Scanner, Infrastructure Discovery) - Auto-provisioned agent runtime — nothing to install on the server - Multi-user auth, RBAC, OIDC - Audit logging, push notifications

What's enterprise (coming): - Human-in-the-loop command interception - Autonomous discovery / CMDB population - SIEM connectors - HA clustering

I'm not trying to get rich. I'm trying to build something real that supports my family. If this solves a problem for you — or if you have feedback — I genuinely want to hear it.