OpenClaw Jetson
Secure OpenClaw + Ollama devcontainer setup for NVIDIA Jetson Orin Nano Super.
Features
- Local LLM inference via Ollama with GPU acceleration
- Clawdstrike security - policy-based access control for AI agents
- Cloudflare Tunnel - zero-trust remote access (optional)
- Hardened containers - non-root, capability-dropped, memory-limited
Quick Start
- Clone this repo into your workspace
- Open in VS Code
- Click "Reopen in Container" when prompted
- Wait for setup to complete
- Run
openclawin terminal
Requirements
- NVIDIA Jetson Orin Nano Super (8GB)
- JetPack 6.x (L4T r36.x)
- Docker with NVIDIA runtime
- VS Code with Dev Containers extension
Architecture
āāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāā
ā Bridge Network ā
ā āāāāāāāāāāāāāāā āāāāāāāāāāāāāāā āāāāāāāāāāāāāāā ā
ā ā openclaw ā ā ollama ā ā cloudflared ā ā
ā ā (Node.js) āāāā (LLM GPU) ā ā (tunnel) ā ā
ā ā Port 18789 ā ā 127.0.0.1 ā ā optional ā ā
ā āāāāāāāāāāāāāāā āāāāāāāāāāāāāāā āāāāāāāāāāāāāāā ā
āāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāā
Security
Container Hardening
| Measure | Implementation |
|---------|---------------|
| Non-root user | openclaw (UID 1000) |
| Network isolation | Internal bridge network |
| Ollama binding | 127.0.0.1 only |
| Privilege escalation | no-new-privileges:true |
| Capabilities | All dropped |
| Temp filesystem | tmpfs with noexec |
Clawdstrike Policy
Policy file: .devcontainer/policy.yaml
- Egress allowlist: localhost, ollama, github.com, pypi.org, npm
- Forbidden paths: ~/.ssh, ~/.aws, ~/.gnupg, .env, *.pem, *.key, /proc, /sys