74 lines
2.7 KiB
Markdown
74 lines
2.7 KiB
Markdown
---
|
|
tags: [infrastructure, server, gcp, ford, loreal, file-processing]
|
|
updated: 2026-04-24
|
|
---
|
|
|
|
# box-cli — Ford / L'Oréal File Processing Server
|
|
|
|
> SSH alias: `box-cli` → `vadym.samoilenko@10.220.176.3:22`
|
|
> Key: `~/.ssh/id_rsa_vadym`
|
|
|
|
## Overview
|
|
|
|
Dedicated server for hotfolder-based file processing workflows. Handles Ford QC Box integration and L'Oréal deliverables syncing. Older CentOS 7 server with NFS-mounted production filestore.
|
|
|
|
- **Hostname**: box-cli-01
|
|
- **Platform**: GCP
|
|
- **OS**: CentOS Linux 7 (Core) — ⚠ EOL since June 2024
|
|
- **IP**: 10.220.176.3
|
|
- **Web server**: None (no Apache/Nginx)
|
|
- **Disk**:
|
|
- `/dev/sda2`: 128 GB / 79 GB used (62%)
|
|
- `/data` (NFS): 1 TB / 502 GB used (49%) — `172.22.113.5:/prod-filestore`
|
|
|
|
## Running Services (Key)
|
|
|
|
| Service | Purpose |
|
|
|---------|---------|
|
|
| ford-asset-pack-report.service | Ford Asset Pack SFTP upload reporting |
|
|
| ford-asset-pack-sftp.service | Ford Asset Pack SFTP transfer daemon |
|
|
| ford-qc-hotfolder-PROD.service | Ford QC Box hotfolder (PROD) |
|
|
| ford-qc-hotfolder.service | Ford QC Box hotfolder (DEV/staging) |
|
|
| loreal-deliverables.service | L'Oréal deliverables Airtable sync |
|
|
| json-processor.service | JSON workflow processor |
|
|
| webmin.service | Webmin admin panel |
|
|
| xrdp.service | Remote desktop (RDP) |
|
|
| fail2ban.service | Brute-force protection |
|
|
| zerotier-one.service | ZeroTier VPN overlay |
|
|
| falcon-sensor.service | CrowdStrike Falcon EDR |
|
|
| libvirtd.service | KVM virtualization (libvirt) |
|
|
|
|
## /opt/ Contents
|
|
|
|
| Dir | Purpose |
|
|
|-----|---------|
|
|
| chef | Chef configuration management |
|
|
| CrowdStrike | Falcon sensor |
|
|
| containerd | Container runtime |
|
|
|
|
## Key Architecture
|
|
|
|
The server watches specific "hotfolder" directories on the NFS mount (`/data`). When files appear:
|
|
1. **ford-qc-hotfolder** — picks up assets, applies QC checks via Box API, uploads approved files
|
|
2. **ford-asset-pack-sftp** — transfers asset packs to SFTP endpoints
|
|
3. **loreal-deliverables** — syncs deliverable metadata to Airtable
|
|
|
|
## Ports
|
|
|
|
No public HTTP — only SSH (22) and ZeroTier VPN.
|
|
|
|
## Key Takeaways
|
|
|
|
- **CentOS 7 is EOL** — migration to RHEL 8/9 or Rocky Linux should be planned
|
|
- NFS `/data` is 49% full on 1TB — file retention policy important
|
|
- `box-cli` alias name comes from Box.com integration (not the CLI tool)
|
|
- Ford QC has TWO services: one for PROD (`ford-qc-hotfolder-PROD`) and one for DEV
|
|
- Webmin on port 10000 (internal), xrdp for remote desktop access
|
|
- CrowdStrike Falcon monitored by EDR
|
|
- libvirtd suggests possible local VMs running (check with `virsh list`)
|
|
|
|
## Related
|
|
|
|
- [[wiki/infrastructure/ssh-aliases|ssh-aliases]]
|
|
- [[wiki/client-knowledge/_index|client-knowledge]]
|
|
- [[wiki/tech-patterns/_index|tech-patterns]]
|