Skip to Content

Projects

Production infrastructure I build and maintain. These are not lab exercises — they run real services for real users.

Kubernetes Cluster

K3s · 3 nodes · Longhorn · Traefik

Three-node K3s cluster hosting 10+ production services including Gitea, Immich (photo management), Calibre (ebook library), Matrix (chat), Paperless-ngx (document management), and this website. Longhorn provides replicated storage across all nodes. Traefik handles ingress with automated Let's Encrypt certificates.

  • 3 nodes
  • 10+ services
  • 3-replica storage
  • Automated TLS

Monitoring & Alerting

Prometheus · Grafana · Alertmanager

Full observability stack monitoring all servers and services. Prometheus collects metrics from 11 scrape targets including node exporters, Postfix exporter, and Kubernetes metrics. Grafana serves 5 dashboards. Alertmanager routes 7 alert rules to email and push notifications.

  • 11 scrape targets
  • 5 dashboards
  • 7 alert rules
  • Multi-channel notifications

Self-Hosted DNS

PowerDNS · Primary + 2 Secondaries · API-driven

Authoritative DNS with PowerDNS. One primary server with API access and two secondaries for redundancy. Branded nameservers for all domains. Migrated from HE.net to gain full control over zone management and automation.

  • 4 domains
  • 3 nameservers
  • API-driven management
  • Branded NS records

Mail Infrastructure

Postfix · Dovecot · OpenDKIM · Sieve

Production mail system serving 3 domains across 2 mail servers with relay. Features include DKIM signing, full-text search (fts-flatcurve), Dovecot zlib compression, Sieve filtering with automated monthly archiving, and server-side search across 37,000+ messages.

  • 3 domains
  • 37K+ messages
  • Full-text search
  • Automated archiving

AI Tooling & Operations

Claude Code · whisper.cpp · Matryoshka RLM · OpenRouter

AI operations environment with daily Claude Code usage, whisper.cpp for voicemail transcription (automated IMAP polling and push notification pipeline), Matryoshka RLM for processing documents exceeding LLM context windows, and OpenRouter CLI with access to 26 free models.

  • 1,000+ AI conversations archived
  • Automated transcription pipeline
  • Multi-model CLI access
  • MCP server integration

Backup Infrastructure

Borg · Automated · Cross-datacenter

Automated Borg backup system covering 6 servers with daily and weekly schedules. Encrypted, deduplicated backups stored on dedicated backup targets across multiple datacenters. Push notifications on completion via ntfy.

  • 6 servers
  • Daily + weekly schedules
  • Encrypted & deduplicated
  • Push notifications