--- tags: [infrastructure, server, gcp, ford, loreal, file-processing] updated: 2026-04-24 --- # box-cli — Ford / L'Oréal File Processing Server > SSH alias: `box-cli` → `vadym.samoilenko@10.220.176.3:22` > Key: `~/.ssh/id_rsa_vadym` ## Overview Dedicated server for hotfolder-based file processing workflows. Handles Ford QC Box integration and L'Oréal deliverables syncing. Older CentOS 7 server with NFS-mounted production filestore. - **Hostname**: box-cli-01 - **Platform**: GCP - **OS**: CentOS Linux 7 (Core) — ⚠ EOL since June 2024 - **IP**: 10.220.176.3 - **Web server**: None (no Apache/Nginx) - **Disk**: - `/dev/sda2`: 128 GB / 79 GB used (62%) - `/data` (NFS): 1 TB / 502 GB used (49%) — `172.22.113.5:/prod-filestore` ## Running Services (Key) | Service | Purpose | |---------|---------| | ford-asset-pack-report.service | Ford Asset Pack SFTP upload reporting | | ford-asset-pack-sftp.service | Ford Asset Pack SFTP transfer daemon | | ford-qc-hotfolder-PROD.service | Ford QC Box hotfolder (PROD) | | ford-qc-hotfolder.service | Ford QC Box hotfolder (DEV/staging) | | loreal-deliverables.service | L'Oréal deliverables Airtable sync | | json-processor.service | JSON workflow processor | | webmin.service | Webmin admin panel | | xrdp.service | Remote desktop (RDP) | | fail2ban.service | Brute-force protection | | zerotier-one.service | ZeroTier VPN overlay | | falcon-sensor.service | CrowdStrike Falcon EDR | | libvirtd.service | KVM virtualization (libvirt) | ## /opt/ Contents | Dir | Purpose | |-----|---------| | chef | Chef configuration management | | CrowdStrike | Falcon sensor | | containerd | Container runtime | ## Key Architecture The server watches specific "hotfolder" directories on the NFS mount (`/data`). When files appear: 1. **ford-qc-hotfolder** — picks up assets, applies QC checks via Box API, uploads approved files 2. **ford-asset-pack-sftp** — transfers asset packs to SFTP endpoints 3. **loreal-deliverables** — syncs deliverable metadata to Airtable ## Ports No public HTTP — only SSH (22) and ZeroTier VPN. ## Key Takeaways - **CentOS 7 is EOL** — migration to RHEL 8/9 or Rocky Linux should be planned - NFS `/data` is 49% full on 1TB — file retention policy important - `box-cli` alias name comes from Box.com integration (not the CLI tool) - Ford QC has TWO services: one for PROD (`ford-qc-hotfolder-PROD`) and one for DEV - Webmin on port 10000 (internal), xrdp for remote desktop access - CrowdStrike Falcon monitored by EDR - libvirtd suggests possible local VMs running (check with `virsh list`) ## Related - [[wiki/infrastructure/ssh-aliases|ssh-aliases]] - [[wiki/client-knowledge/_index|client-knowledge]] - [[wiki/tech-patterns/_index|tech-patterns]]