📊
Real-time Metrics
CPU, memory, RX/TX, and disk I/O with live sparklines and per-CPU detail.
cella
Container Management TUI
A terminal-native control center for LXD/LXC and Docker — real-time metrics, dual-mode syscall monitoring, HTTPS interception, and inference observability.
Go · 14K+ lines
LXD + Docker
20 TUI Panels
MITM Interception
Inference Stats
cella — bolan (ssh)
📡 cella 5/6 running CPU Σ12.3% MEM Σ4.1GB 🕐 15:04:05 sort:[name] 🔬 tracing:1
┌─ Containers ◆──────────────────┬─ 📋 API Audit Log ◆ (intercept :9081 +MITM🔓) ──────────────────────────────┐
│ │ Total: 8 │ ✅ 6 │ 👤 1 │ ⛔ 0 │ 🔓 8 │ Domains: 2 │
│ 0 ● juju-634dd5-0 1% 1.2G │ Top: api.business.githubcopilot.com(6) │ api.github.com(2) │
│ 1 ● juju-76edad-0 0% 964M │ │
│ 2 ● juju-1923fb-2 0% 297M │ 15:04:02 ✅🔓 juju-76edad-0 POST → api.business.githubcopilot.com (5.3s) │
│ 3 ● oc-agent-test 0% 128M │ 15:03:58 ✅🔓 juju-76edad-0 POST → api.business.githubcopilot.com (4.9s) │
│ 4 ○ oc-policy-test stopped │ 15:03:41 ✅🔓 juju-76edad-0 GET → api.github.com (146ms) │
│ │ │
│ [?] help │ │
└────────────────────────────────┴───────────────────────────────────────────────────────────────────────────┘
API AUDIT │ p: setup proxy │ u: undo │ /: filter │ f: status │ S: export │ c: clear │ Esc: back
14K+
Lines of Go
20
TUI Panels
~13MB
Single Binary
2
Runtimes
Core Capabilities
From lifecycle operations to deep security observability.
🔬
Dual-mode Syscall Monitoring
Passive bpftrace visibility + active LXD BPF blocking with operator approval.
🔐
HTTPS Interception
Transparent MITM via nftables REDIRECT, HTTP/2 aware, with CA auto-injection.
💰
Inference Stats
RPM/TPM/tokens/cost across 27+ models (OpenAI, Anthropic, Gemini, Copilot).
🔀
Inference Routing
Route APIs to local/alternative backends (OpenAI → Ollama, Copilot → NVIDIA).
🛡️
Security Policy Engine
Seccomp, AppArmor, egress controls, DNS monitor, plus policy export/import.
Documentation Hub
Pick the doc type by your current need.
📖 Tutorials
Learn cella step by step
🔧 How-to Guides
Solve specific problems
📚 Reference
Look up technical details
💡 Explanation
Understand how things work
Quick Install
Single binary, SSH-ready workflow.
1
Download
Fetch the latest release binary.
curl -Lo cella https://github.com/fourdollars/cella/releases/download/latest/cella_linux_amd64 && chmod +x cella2
Run
Use sudo (or appropriate runtime group permissions).
sudo ./cella3
Enable HTTPS interception (optional)
Inside TUI: open Audit panel, then setup proxy.
# In cella TUI: A → p4
Build from source
Requires Go 1.20+.
git clone https://github.com/fourdollars/cella && cd cella && go build -o cella ./cmd/main.goTUI Panels
Compact key map for daily workflow.
default
Dashboard
CPU/MEM/NET/DISK sparklines
e
Exec
Run commands / interactive shell
l
Logs
Streaming logs + follow mode
w
Network
RX/TX + ports + connections
r
Resources
CPU/MEM limits + per-CPU bars
n
Snapshots
Create/restore/clone with size
t
Syscall Trace
bpftrace passive monitor
G
Seccomp Generator
Generate OCI seccomp JSON
auto
Syscall Approval
Approve/deny overlay
P
Policy
Seccomp + AppArmor + egress
Z
Syscall Block
Toggle LXD BPF deny
D
DNS Monitor
DNS traffic + allow/deny
A
Audit
HTTP proxy audit + approvals
M
Inference Stats
RPM/TPM/cost per model
R
Routing
Redirect AI APIs
V
Events
LXD event log
+
Create
Container creation wizard
E / I
Export/Import
Container config JSON
⚠️ Work In Progress
cella is actively evolving. Core features are solid; proxy/inference paths are still being tuned.