Edge
Traefik handles routing, middleware, and HTTPS termination.
Architecture
How the platform is wired
Designed for local/prod parity with clear service boundaries and reproducible deployment.
Platform overview
CloudflareDNS + edge protection
↓
TraefikRouting + middleware + TLS
↓
Next.js FrontendPortfolio UI + server routes
FastAPI BackendStatus + lightweight APIs
OCI VMDocker Compose runtime
↓
GitHub ActionsBuild + deploy pipeline
Frontend
Next.js app renders portfolio views and server routes for health checks.
Backend
FastAPI exposes lightweight API endpoints and service status.
Delivery
GitHub Actions builds + deploys Docker images to OCI VM.
Request flow
- Client request enters via domain and TLS at Traefik.
- Traefik forwards traffic to frontend or backend service by host rule.
- Frontend can proxy API checks through Next route handlers.
- Deploy workflow updates images and recreates services with minimal downtime.
Homelab infrastructure
Alongside the production deployment, I maintain a homelab environment used for experimentation, infrastructure automation, monitoring, and platform engineering projects.
Virtualization
Proxmox cluster runs virtual machines and containers that host services, monitoring, and development environments.
Container Platform
Docker and Docker Compose power internal services, automation tools, and testing environments across multiple VMs.
Observability
Grafana dashboards visualize infrastructure metrics and service health across the homelab environment.
Security Monitoring
Wazuh provides host-based intrusion detection, log aggregation, and security monitoring for systems on the network.
Network Services
Pi-hole provides DNS filtering and internal DNS resolution for devices and services across the lab network.
Automation & Development
The homelab serves as a sandbox for infrastructure automation, CI/CD experimentation, container orchestration, and platform engineering projects.