Create your own awesome maps

Even on the go

with our free apps for iPhone, iPad and Android

Get Started

Already have an account?
Log In

Physical Server by Mind Map: Physical Server
0.0 stars - reviews range from 0 to 5

Physical Server

shared folder for SANEi multi-configuration system: /shared

common shm mount point for sharing linux sockets between guests: /shared/run


local and VPN access only (

Container - MySQL (MariaDB)


Container - WWW


a special home point is used to store all websites users: /srv

PHP5-FPM with separate pools for each website, chrooted

nginx (for performance and security)

chrooted SSH server used for SCP only (no shell permissions)

Every container can have individually limited resources (RAM, CPU, HDD and quotas), which means that if there's a memory leak, processing DDoS or another problem in one of the services - the others shouldn't be influenced.


Container - Mail and local users DB (LDAP)

LDAP is used as a database for: email access, OpenVPN, and XMPP

Container - OpenVPN

OpenVPN is used to make secure connections for developers, administrative content that is restricted to local networks only (phpMyAdmin, OpenVZ Web GUI, secure panels and statistics)

We can setup a global iptables firewall on the physical server, so that if we ban somebody, we ban them from all the services simultaneously.


Container - XMPP

XMPP is used for secure communication within the company

Container - Developer (same setup as WWW)

Secure Web GUIs

Internal Bug Tracking (Redmine)

global log analysis (statistics and security measures, eg. active response)







Container - Client Management

Setup documentation by Bazyli Brzóska

Linux Containers


We make regular and incremental backups to remote systems. Each container backup is encrypted with individual GPG private keys. MySQL database is backed up live via XtraBackup.