Skip to main content

Introduction

Welcome aboard! This document provides a quick overview of our server infrastructure to help you get started.

Overview

Our server environment is Docker-first, designed for flexibility, scalability, and observability. Every service runs in its own container, with Nginx acting as a reverse proxy to route traffic to the correct internal service.

We use CrowdSec to monitor traffic and provide real-time protection against abusive behavior.

Key Services Running on Docker

Here's a summary of critical services deployed:

Monitoring & Logging Stack

  • Loki: Log aggregation system built for Prometheus-style labeling.
  • Prometheus: Metrics collection and alerting toolkit.
  • Promtail: Collects logs and ships them to Loki.
  • Grafana: Visualization platform for logs and metrics.
  • Logstash: Server-side data processing pipeline.
  • Elasticsearch: Distributed search and analytics engine.
  • Kibana: Frontend dashboard for Elasticsearch data.

DevOps & CI/CD

  • Jenkins: Automation server for CI/CD.
  • Jenkins Agents: Isolated build executors for distributed builds.
  • Nexus Repository Manager: Manages build artifacts and acts as a private package registry.
  • Gerrit: Web-based code review and Git repository management.
  • Keycloak: Identity and access management with support for SSO, OAuth2, and LDAP.

Databases & Tools

  • MySQL: Relational database engine for structured data.
  • phpMyAdmin: Web-based UI for managing MySQL databases.
  • Redis: In-memory key-value store used for caching and queuing.
  • RedisInsight: GUI tool to analyze and debug Redis data.

Reverse Proxy (Nginx)

All services are routed securely via Nginx, which handles:

  • Port forwarding to internal containers
  • SSL termination (using Certbot)
  • Domain-based routing for external access

Security

We use CrowdSec to detect and mitigate brute-force attempts, port scans, and other malicious behavior. It works as a collaborative intrusion prevention system, integrated with the system firewall.

This server is the backbone of our development and operations. Please refer to the other documentation sections for details on accessing, using, or modifying any service.