LIVE PRODUCTION CLUSTER · 6 NODES · v1.34.1

Exit the Cloud.
Own Your Infrastructure.

Production-ready Kubernetes platform built entirely on CNCF open-source. 50+ components, zero vendor lock-in. Designed to help tech companies take back control from the hyperscalers.

VIEW ARCHITECTURE EXPLORE 50+ TOOLS CLOUD → CNCF CONVERTER

Nodes

6

3 CP + 3 Workers + 1 DGX

Namespaces

27

Active workloads

Components

47+

CNCF + AI components

Kubernetes

v1.34.1

Latest stable

Operating System

Talos

v1.12.2

Domain

*.edgeprime.io

Wildcard TLS

Platform Architecture

From bare metal to production workloads — every layer fully open-source.

graph TD
  INTERNET["☁ INTERNET"]:::internet
  DNS["CoreDNS Wildcard
*.apps.edgeprime.io
→ 192.168.0.200"]:::dns
  GW["Cilium Gateway
HTTP:80 → HTTPS:443
TLS: Let's Encrypt"]:::gateway
  INTERNET --> DNS --> GW
  GW --> S1["grafana :80
argocd :80
backstage :7007"]:::services
  GW --> S2["vault :8200
keycloak :80
supabase :3000"]:::services
  GW --> S3["harbor :80
n8n :5678
+14 more"]:::services

  classDef internet fill:#1e3a5f,stroke:#60a5fa,color:#93c5fd,stroke-width:2px
  classDef dns fill:#14332a,stroke:#4ade80,color:#86efac,stroke-width:2px
  classDef gateway fill:#2e1a47,stroke:#a78bfa,color:#c4b5fd,stroke-width:2px
  classDef services fill:#1e293b,stroke:#f97316,color:#fdba74,stroke-width:1px

The Stack

50 production components across 9 categories.

🏗️

Infrastructure & OS

3 components

The bare-metal foundation: immutable OS, container runtime, and cluster orchestration.

Talos LinuxcontainerdKubernetes
🌐

Networking & Service Mesh

6 components

eBPF-powered networking, Gateway API ingress, service mesh, and DNS resolution.

CiliumHubbleGateway APIAPISIX +2
🛡️

Security & Identity

8 components

Zero-trust security: SSO, secrets management, policy enforcement, runtime detection, and certificate automation.

KeycloakHashiCorp VaultExternal Secrets Operatorcert-manager +4
📊

Observability

8 components

Full-spectrum observability: metrics, logs, traces, profiles, and cost monitoring in a unified stack.

PrometheusGrafanaMimirLoki +4
🔄

GitOps & CI/CD

4 components

Git-driven deployment pipelines with progressive delivery and infrastructure-as-code.

Argo CDTerraformOneDevKargo
💾

Storage & Registry

4 components

Distributed block storage, S3-compatible object storage, and secure container registry.

LonghornHarborGarageVelero
🗄️

Databases & Messaging

6 components

Managed PostgreSQL, Redis-compatible cache, distributed KV store, Kafka streaming, and multi-model databases.

CloudNativePGDragonflyStrimzi (Apache Kafka)TiKV +2
🚀

Application Platform

7 components

Developer portal, BaaS, workflow automation, analytics, and self-service tools.

BackstageSupabasen8nMatomo +3
🤖

AI & Machine Learning

4 components

Edge AI inference on NVIDIA DGX Spark with Blackwell GPU — LLM model serving via AIBrix and vLLM on bare-metal Kubernetes.

NVIDIA DGX SparkAIBrixvLLMNVIDIA GPU Operator

Why Exit the Cloud?

The hyperscalers made it easy to start — and expensive to stay. There's a better way.

Cost Control

Predictable costs on your own hardware. No surprise egress fees, no per-service markups. The same workloads on bare metal cost a fraction of hyperscaler pricing.

Vendor Independence

Every component is CNCF open-source. No proprietary APIs, no lock-in. Move between clouds, on-prem, or hybrid — your infrastructure speaks Kubernetes.

Data Sovereignty

Your data stays where you put it. Full control over compliance, residency, and privacy. No shared tenancy, no third-party access, no jurisdictional surprises.

Everything You Need

Not a list of tools — a cohesive system where every component works together.

GitOps Everything

ArgoCD App-of-Apps pattern manages 40+ applications. Push to Git, reconcile to cluster. No kubectl apply.

SSO Everywhere

Keycloak OIDC integrated across every service — Vault, Harbor, Grafana, ArgoCD, OneDev. One login.

Full Observability

Metrics (Mimir), Logs (Loki), Traces (Tempo), Profiles (Pyroscope) — all four pillars in Grafana.

Automated TLS

Self-service certificate portal via Backstage. DNS-01 challenges, auto-renewal, Vault-backed storage.

Zero-Trust Security

Falco runtime detection, Kyverno policy enforcement, Kubescape scanning. Defense in depth.

eBPF Networking

Cilium replaces kube-proxy with kernel-level performance. Gateway API ingress, Hubble flow observability.

 
$ kubectl get nodes
NAME              STATUS   ROLES           VERSION
controlplane-100  Ready    control-plane   v1.34.1
controlplane-101  Ready    control-plane   v1.34.1
controlplane-102  Ready    control-plane   v1.34.1
worker-103        Ready    <none>          v1.34.1
worker-104        Ready    <none>          v1.34.1

Ready to Exit the Cloud?

Explore the architecture behind a production Kubernetes platform that replaces every managed cloud service with open-source.

DEEP DIVE → AI: DGX SPARK + AIBRIX