Section 5: Deployment Topology
Infrastructure Overview
The platform uses a hybrid deployment model with control plane services running in Kubernetes and agents deployed on customer-managed hardware.
Control Plane (Kubernetes)
Hosted on Talos Linux Kubernetes cluster:
- - All microservices containerized
- - PostgreSQL databases (one per service)
- - RabbitMQ message broker
- - Redis for caching/sessions
- - YARP Gateway as single entry point
Edge Layer
| Component | Provider | Purpose |
|---|---|---|
| WAF/DDoS | Cloudflare | Protection at edge |
| CDN | Cloudflare | Static asset delivery |
| DNS | Cloudflare | DNS management |
Agent Deployment
Agents run on customer hardware (colo, cloud VMs, on-premises) and connect outbound to the
control plane. No inbound firewall rules required on customer side.