Vadym/obsidian
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
obsidian/wiki/infrastructure/server-box-cli.md
Vadym Samoilenko 99f80bd220 vault backup: 2026-04-24 11:19:08
2026-04-24 11:19:08 +01:00

2.7 KiB
Raw Permalink Blame History

tags updated
infrastructure
server
gcp
ford
loreal
file-processing
2026-04-24

box-cli — Ford / L'Oréal File Processing Server

SSH alias: box-clivadym.samoilenko@10.220.176.3:22 Key: ~/.ssh/id_rsa_vadym

Overview

Dedicated server for hotfolder-based file processing workflows. Handles Ford QC Box integration and L'Oréal deliverables syncing. Older CentOS 7 server with NFS-mounted production filestore.

  • Hostname: box-cli-01
  • Platform: GCP
  • OS: CentOS Linux 7 (Core) — ⚠ EOL since June 2024
  • IP: 10.220.176.3
  • Web server: None (no Apache/Nginx)
  • Disk:
    • /dev/sda2: 128 GB / 79 GB used (62%)
    • /data (NFS): 1 TB / 502 GB used (49%) — 172.22.113.5:/prod-filestore

Running Services (Key)

Service Purpose
ford-asset-pack-report.service Ford Asset Pack SFTP upload reporting
ford-asset-pack-sftp.service Ford Asset Pack SFTP transfer daemon
ford-qc-hotfolder-PROD.service Ford QC Box hotfolder (PROD)
ford-qc-hotfolder.service Ford QC Box hotfolder (DEV/staging)
loreal-deliverables.service L'Oréal deliverables Airtable sync
json-processor.service JSON workflow processor
webmin.service Webmin admin panel
xrdp.service Remote desktop (RDP)
fail2ban.service Brute-force protection
zerotier-one.service ZeroTier VPN overlay
falcon-sensor.service CrowdStrike Falcon EDR
libvirtd.service KVM virtualization (libvirt)

/opt/ Contents

Dir Purpose
chef Chef configuration management
CrowdStrike Falcon sensor
containerd Container runtime

Key Architecture

The server watches specific "hotfolder" directories on the NFS mount (/data). When files appear:

  1. ford-qc-hotfolder — picks up assets, applies QC checks via Box API, uploads approved files
  2. ford-asset-pack-sftp — transfers asset packs to SFTP endpoints
  3. loreal-deliverables — syncs deliverable metadata to Airtable

Ports

No public HTTP — only SSH (22) and ZeroTier VPN.

Key Takeaways

  • CentOS 7 is EOL — migration to RHEL 8/9 or Rocky Linux should be planned
  • NFS /data is 49% full on 1TB — file retention policy important
  • box-cli alias name comes from Box.com integration (not the CLI tool)
  • Ford QC has TWO services: one for PROD (ford-qc-hotfolder-PROD) and one for DEV
  • Webmin on port 10000 (internal), xrdp for remote desktop access
  • CrowdStrike Falcon monitored by EDR
  • libvirtd suggests possible local VMs running (check with virsh list)

Related