Skip to main content

Infrastructure Overview

The Ulmexa platform is hosted on a private cloud environment, designed to provide scalability, high availability, and complete tenant isolation. The infrastructure is the backbone that supports all platform services, from hosting microservices to running ML models and managing mail services.

🧱 Infrastructure Stack

Ulmexa leverages the following core components:

  • OpenStack: Powers our private cloud environment for managing compute, network, and storage resources.
  • Kubernetes: Orchestrates containerized workloads and enables seamless scaling and fault tolerance.
  • Docker: Provides lightweight containerization for all platform services.
  • Ceph (via OpenStack): Distributed storage backend for block, object, and file storage.
  • Keycloak: Identity and access management integrated across infrastructure and SaaS layers.
  • RabbitMQ: Message broker for handling asynchronous tasks and background jobs.
  • Prometheus + Grafana: Monitoring and alerting stack to track infrastructure health and application metrics.

🔐 Isolation & Multi-Tenancy

The infrastructure is designed with multi-tenancy in mind:

  • Each user operates in a dedicated OpenStack project (tenant).
  • Kubernetes namespaces ensure workload separation.
  • Networking is isolated per tenant using OpenStack Neutron.

🌐 Network & Access

  • Floating IPs enable public access to instances.
  • Internal networks are managed through OpenStack routers.
  • Reverse proxies (e.g., NGINX) are used to route traffic to backend services securely.

🔄 Automation & CI/CD

  • Terraform and Ansible are used for provisioning and managing infrastructure as code (IaC).
  • CI/CD pipelines handle container builds, testing, and deployment to Kubernetes clusters.

🧠 ML & Mailing Integration

The infrastructure is designed to integrate tightly with:

  • Mailcow for custom domain and mailbox management.
  • ML models served on demand via containerized pipelines.