Platform Infrastructure

Platform Overview

This system is a self-hosted platform engineered to demonstrate production-style DevOps practices on a single VPS.

It implements service isolation, centralized observability, automated backups, and secure reverse proxy routing using containerized infrastructure.

The design prioritizes clarity, modularity, and operational realism over complexity.

Engineering Stack

Dockerized Services Reverse Proxy Gateway Observability Stack Automated Backups Network Isolation Self-Hosted Platform

Live System Status

Metrics refresh every 5 seconds via internal API.

System Architecture

            Internet
            │
            ▼
            Caddy (Reverse Proxy + TLS)
            │
            ├── infra.nubelab.es
            │ ├── Static Dashboard UI
            │ └── /api/metrics → Metrics API
            │
            ├── n8n.nubelab.es → Automation Engine
            └── music.nubelab.es → Media Server

            │
            ▼
            Internal Docker Networks
            ├── proxy_net
            ├── shared_net
            ├── monitoring_net
            └── user_isolation networks

            │
            ▼
            Core Services
            ├── PostgreSQL (shared DB)
            ├── Redis (cache)
            ├── Prometheus (metrics)
            ├── Grafana (visualization)
            └── Loki (logs)
        

Engineering Decisions

Reverse Proxy Strategy

Caddy used for automatic HTTPS, routing, and security headers.

Service Isolation

Docker networks separate public, shared, and monitoring layers.

Observability Model

Prometheus + Grafana + Loki for metrics, dashboards, and logs.

Data Layer

PostgreSQL + Redis shared across services for efficiency.

Security Model

Only ports 80/443 exposed; all services internal by default.

Design Philosophy

Infrastructure treated as modular, composable platform services.