OpenClaw

基础设施总览

三层基础设施架构:本地 (Mac + NAS) + 私有云 (K8s on Proxmox) + 公有云 (OCI + Cloudflare)。

架构图

Internet
  │
  ├── Cloudflare (10 域名, 6 Tunnels)
  │     ├── *.yldm.tech  → K8s Traefik (192.168.88.221)
  │     ├── *.yldm.ai    → K8s Traefik
  │     ├── *.xiaomo.info → OCI (129.150.55.22)
  │     └── nas.xiaomo.info → NAS DSM
  │
  ├── K8s Cluster (K3s on Proxmox VE)
  │     ├── 3 Master (88.101-103)
  │     ├── 4 Worker (88.111-114)
  │     ├── Traefik Ingress @ 192.168.88.221 (MetalLB)
  │     └── GitOps: ArgoCD + Flux
  │
  ├── NAS (DS920+, 192.168.88.88)
  │     ├── 8 卷, ~23T 总容量
  │     ├── Plex + Jellyfin + Emby
  │     └── Docker (cloudflared 等)
  │
  ├── OCI (129.150.55.22)
  │     └── 40+ Docker 容器 (Portainer 管理)
  │
  └── Mac mini (本地)
        ├── OpenClaw Gateway (端口 18789)
        ├── OpenClaw Node Host
        └── Cloudflare Tunnel (gmail-hook)

网络拓扑

| 网段 | 用途 | |------|------| | 192.168.88.1 | 路由器 (DNS) | | 192.168.88.88 | NAS | | 192.168.88.99 | K8s API | | 192.168.88.101-103 | K8s Master | | 192.168.88.111-114 | K8s Worker | | 192.168.88.221 | Traefik LB (MetalLB) | | 129.150.55.22 | OCI 服务器 |

关键服务

数据层

PostgreSQL, MongoDB, Redis, RabbitMQ, NATS, MeiliSearch, Consul

安全层

Vault, Kyverno, Cert-Manager, Dex (SSO), External-Secrets

存储层

NFS Provisioner, MinIO, Velero (备份)

CI/CD

ArgoCD (GitOps), Argo Events/Workflows, GitHub Actions Runners (ARC)

应用

  • app — aidict, creativestore, kubepocket, magicbox, myetc
  • platform — analytics, auth, commerce, engagement, gateway, management, media, notification, scheduler, social, user
  • game — boardserver, cardserver, pvpserver, rpgserver

详见各子页面:K8s | NAS | Cloudflare | 监控