<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Clouds on DevOps Engineer &amp; CloudAdmin</title><link>https://ru-admin.github.io/posts/clouds/</link><description>Recent content in Clouds on DevOps Engineer &amp; CloudAdmin</description><generator>Hugo -- gohugo.io</generator><language>en-US</language><atom:link href="https://ru-admin.github.io/posts/clouds/index.xml" rel="self" type="application/rss+xml"/><item><title>AWS → Another Cloud Migration</title><link>https://ru-admin.github.io/posts/clouds/migration-from-aws/</link><pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate><guid>https://ru-admin.github.io/posts/clouds/migration-from-aws/</guid><description>&lt;h2 id="cloud-infrastructure-migration-from-aws-to-a-cost-optimized-private-cloud"&gt;Cloud Infrastructure Migration from AWS to a Cost-Optimized Private Cloud&lt;/h2&gt;
&lt;hr&gt;
&lt;h4 id="client"&gt;Client&lt;/h4&gt;
&lt;p&gt;Confidential&lt;/p&gt;
&lt;hr&gt;
&lt;h4 id="challenge"&gt;Challenge&lt;/h4&gt;
&lt;p&gt;The client needed to migrate their entire AWS infrastructure to an alternative cloud provider to reduce costs and eliminate vendor lock-in. The key requirements were minimal downtime, zero functionality loss, and a reliable rollback strategy.&lt;/p&gt;
&lt;hr&gt;
&lt;h4 id="solution"&gt;Solution&lt;/h4&gt;
&lt;h6 id="1-audit--planning"&gt;1. Audit &amp;amp; Planning&lt;/h6&gt;
&lt;ul&gt;
&lt;li&gt;Full inventory of AWS resources (EC2, RDS, S3, VPC)&lt;/li&gt;
&lt;li&gt;Service mapping: AWS → target cloud equivalents&lt;/li&gt;
&lt;li&gt;Phased migration plan with clear milestones&lt;/li&gt;
&lt;li&gt;Rollback strategy for each stage&lt;/li&gt;
&lt;/ul&gt;
&lt;h6 id="2-infrastructure-preparation"&gt;2. Infrastructure Preparation&lt;/h6&gt;
&lt;ul&gt;
&lt;li&gt;Terraform for IaC on the target platform&lt;/li&gt;
&lt;li&gt;VPC, subnets, and security groups configuration&lt;/li&gt;
&lt;li&gt;Managed PostgreSQL and Redis deployment&lt;/li&gt;
&lt;li&gt;Object Storage setup (S3-compatible)&lt;/li&gt;
&lt;/ul&gt;
&lt;h6 id="3-data-migration"&gt;3. Data Migration&lt;/h6&gt;
&lt;ul&gt;
&lt;li&gt;Database replication via DMS&lt;/li&gt;
&lt;li&gt;S3 → Object Storage sync&lt;/li&gt;
&lt;li&gt;Docker image transfer to private Container Registry&lt;/li&gt;
&lt;li&gt;Full validation on staging environment&lt;/li&gt;
&lt;/ul&gt;
&lt;h6 id="4-production-cutover"&gt;4. Production Cutover&lt;/h6&gt;
&lt;ul&gt;
&lt;li&gt;DNS failover for gradual traffic switching&lt;/li&gt;
&lt;li&gt;Real-time metrics monitoring during cutover&lt;/li&gt;
&lt;li&gt;AWS kept on standby for emergency rollback&lt;/li&gt;
&lt;li&gt;Final cutover completed in 2 hours&lt;/li&gt;
&lt;/ul&gt;
&lt;hr&gt;
&lt;h4 id="technologies"&gt;Technologies&lt;/h4&gt;
&lt;div class="row"&gt;
&lt;div class="col-4 col-lg-2 pt-2" style="text-align: center;"&gt;&lt;img src="https://ru-admin.github.io/icons/aws.svg" alt="AWS"&gt;&lt;div&gt;AWS&lt;/div&gt;&lt;/div&gt;
&lt;div class="col-4 col-lg-2 pt-2" style="text-align: center;"&gt;&lt;img src="https://ru-admin.github.io/icons/terraform-original.svg" alt="Terraform"&gt;&lt;div&gt;Terraform&lt;/div&gt;&lt;/div&gt;
&lt;div class="col-4 col-lg-2 pt-2" style="text-align: center;"&gt;&lt;img src="https://ru-admin.github.io/icons/prometheus-original.svg" alt="Prometheus"&gt;&lt;div&gt;Prometheus&lt;/div&gt;&lt;/div&gt;
&lt;div class="col-4 col-lg-2 pt-2" style="text-align: center;"&gt;&lt;img src="https://ru-admin.github.io/icons/grafana-original.svg" alt="Grafana"&gt;&lt;div&gt;Grafana&lt;/div&gt;&lt;/div&gt;
&lt;div class="col-4 col-lg-2 pt-2" style="text-align: center;"&gt;&lt;img src="https://ru-admin.github.io/icons/gitlab-original.svg" alt="GitLab CI"&gt;&lt;div&gt;GitLab CI&lt;/div&gt;&lt;/div&gt;
&lt;/div&gt;
&lt;hr&gt;
&lt;h4 id="results"&gt;Results&lt;/h4&gt;
&lt;p&gt;✅ &lt;strong&gt;Cost reduction:&lt;/strong&gt; 40% savings (from $15k to $9k/month)&lt;br&gt;
✅ &lt;strong&gt;Downtime:&lt;/strong&gt; only 2 hours vs. 8 hours planned&lt;br&gt;
✅ &lt;strong&gt;Vendor independence:&lt;/strong&gt; full exit from AWS with no functionality loss&lt;br&gt;
✅ &lt;strong&gt;Performance:&lt;/strong&gt; maintained at the same level post-migration&lt;br&gt;
✅ &lt;strong&gt;Compliance:&lt;/strong&gt; data residency and security requirements met&lt;/p&gt;</description></item><item><title>Migration and DevOps for a CS-Cart Marketplace</title><link>https://ru-admin.github.io/posts/clouds/cscart/</link><pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate><guid>https://ru-admin.github.io/posts/clouds/cscart/</guid><description>&lt;h2 id="infrastructure-and-deployment-of-a-multi-vendor-cs-cart-marketplace"&gt;Infrastructure and Deployment of a Multi-Vendor CS-Cart Marketplace&lt;/h2&gt;
&lt;hr&gt;
&lt;h4 id="client"&gt;Client&lt;/h4&gt;
&lt;p&gt;Multi-vendor marketplace&lt;/p&gt;
&lt;hr&gt;
&lt;h4 id="challenge"&gt;Challenge&lt;/h4&gt;
&lt;p&gt;Revive a legacy marketplace project and migrate it from standard shared hosting to a modern cloud environment. Ensure high availability, build CI/CD infrastructure, set up test environments, integrate third-party delivery services, and automate routine operations with AI. At the final stage, prepare an on-premise server (NAS) on the client side for cold repository storage.&lt;/p&gt;
&lt;hr&gt;
&lt;h4 id="solution"&gt;Solution&lt;/h4&gt;
&lt;h6 id="1-infrastructure-in-yandex-cloud-terraform"&gt;1. Infrastructure in Yandex Cloud (Terraform)&lt;/h6&gt;
&lt;ul&gt;
&lt;li&gt;Built IaC configuration (Terraform) to provision Yandex Cloud infrastructure (virtual networks, VMs).&lt;/li&gt;
&lt;li&gt;Configured separate virtual machines for production and development environments.&lt;/li&gt;
&lt;li&gt;Attached and partitioned additional disks, deployed automated backups for databases and files to Yandex Object Storage (S3).&lt;/li&gt;
&lt;li&gt;Used Yandex Cloud Postbox for reliable service email delivery (domain, SPF, DKIM configured).&lt;/li&gt;
&lt;/ul&gt;
&lt;h6 id="2-containerization-and-microservices"&gt;2. Containerization and Microservices&lt;/h6&gt;
&lt;ul&gt;
&lt;li&gt;Migrated the marketplace from classic hosting to a Docker-based VPS environment.&lt;/li&gt;
&lt;li&gt;Built a custom &lt;code&gt;Dockerfile&lt;/code&gt; for CS-Cart and a &lt;code&gt;docker-compose&lt;/code&gt; stack with a microservice-oriented web server architecture.&lt;/li&gt;
&lt;li&gt;Established full-featured dev and prod environments.&lt;/li&gt;
&lt;li&gt;Configured deployment pipelines via a local Git server (Forgejo).&lt;/li&gt;
&lt;/ul&gt;
&lt;h6 id="3-marketplace-platform-cs-cart"&gt;3. Marketplace Platform (CS-Cart)&lt;/h6&gt;
&lt;ul&gt;
&lt;li&gt;Upgraded the CS-Cart core and optimized the database by removing obsolete, unused plugins.&lt;/li&gt;
&lt;li&gt;Deployed a clean platform installation with a new commercial theme.&lt;/li&gt;
&lt;li&gt;Configured multi-vendor business logic: role separation and seller dashboards.&lt;/li&gt;
&lt;li&gt;Integrated and configured modules: dynamic product loading, AI capabilities, smart live search, and SEO module.&lt;/li&gt;
&lt;li&gt;Integrated shipping (CDEK) and payment systems. Launched automated data exchange with 1C accounting systems.&lt;/li&gt;
&lt;/ul&gt;
&lt;h6 id="4-automation-and-n8n"&gt;4. Automation and n8n&lt;/h6&gt;
&lt;ul&gt;
&lt;li&gt;Deployed n8n process orchestration.&lt;/li&gt;
&lt;li&gt;Integrated ChatGPT API to automate repetitive operations such as content generation and normalization.&lt;/li&gt;
&lt;li&gt;Configured workers and triggers for store business workflows.&lt;/li&gt;
&lt;/ul&gt;
&lt;h6 id="5-security-and-cloudflare"&gt;5. Security and Cloudflare&lt;/h6&gt;
&lt;ul&gt;
&lt;li&gt;Configured Cloudflare Proxy DNS.&lt;/li&gt;
&lt;li&gt;Implemented Cloudflare Turnstile to reduce spam during sign-up and checkout flows.&lt;/li&gt;
&lt;li&gt;Added bot protection: disabled direct registrations, configured strict caching, and filtered low-quality traffic.&lt;/li&gt;
&lt;li&gt;Installed SSL certificates and configured proper redirects.&lt;/li&gt;
&lt;/ul&gt;
&lt;h6 id="6-on-premise-infrastructure-and-documentation"&gt;6. On-Premise Infrastructure and Documentation&lt;/h6&gt;
&lt;ul&gt;
&lt;li&gt;Set up a dedicated subdomain with a wiki engine for technical and user documentation.&lt;/li&gt;
&lt;li&gt;Implemented local infrastructure in the client’s office based on Synology NAS: Docker, S3 buckets, and backups.&lt;/li&gt;
&lt;li&gt;Deployed a local Git server (Forgejo) with a CI/CD runner for version control and long-term preservation of project assets.&lt;/li&gt;
&lt;li&gt;Collected a complete backup of Terraform states, passwords, codebases, and configurations.&lt;/li&gt;
&lt;/ul&gt;
&lt;h6 id="7-project-archival-and-repositories"&gt;7. Project Archival and Repositories&lt;/h6&gt;
&lt;ul&gt;
&lt;li&gt;Migrated the production site to backup hosting for archival mode and disabled active synchronizations.&lt;/li&gt;
&lt;li&gt;Procured and configured Synology NAS in the office: external access, Docker, S3 buckets.&lt;/li&gt;
&lt;li&gt;Deployed Forgejo with a runner under the &lt;code&gt;git.*&lt;/code&gt; domain.&lt;/li&gt;
&lt;li&gt;Repositories included: website source code, theme and add-ons, documentation, n8n workflows, Telegram bots, DB backups, terraform-yandex, terraform-cloudflare, and password vault.&lt;/li&gt;
&lt;/ul&gt;
&lt;hr&gt;
&lt;h4 id="technologies"&gt;Technologies&lt;/h4&gt;
&lt;div class="row"&gt;
&lt;div class="col-4 col-lg-2 pt-2" style="text-align: center;"&gt;&lt;img src="https://ru-admin.github.io/icons/docker-original.svg" alt="Docker"&gt;&lt;div&gt;Docker&lt;/div&gt;&lt;/div&gt;
&lt;div class="col-4 col-lg-2 pt-2" style="text-align: center;"&gt;&lt;img src="https://ru-admin.github.io/icons/terraform-original.svg" alt="Terraform"&gt;&lt;div&gt;Terraform&lt;/div&gt;&lt;/div&gt;
&lt;div class="col-4 col-lg-2 pt-2" style="text-align: center;"&gt;&lt;img src="https://ru-admin.github.io/icons/yandex.svg" alt="Yandex Cloud"&gt;&lt;div&gt;Yandex Cloud&lt;/div&gt;&lt;/div&gt;
&lt;div class="col-4 col-lg-2 pt-2" style="text-align: center;"&gt;&lt;img src="https://ru-admin.github.io/icons/nginx.svg" alt="Nginx"&gt;&lt;div&gt;Nginx&lt;/div&gt;&lt;/div&gt;
&lt;div class="col-4 col-lg-2 pt-2" style="text-align: center;"&gt;&lt;img src="https://ru-admin.github.io/icons/forgejo-original.svg" alt="Forgejo"&gt;&lt;div&gt;Forgejo&lt;/div&gt;&lt;/div&gt;
&lt;div class="col-4 col-lg-2 pt-2" style="text-align: center;"&gt;&lt;img src="https://ru-admin.github.io/icons/linux-original.svg" alt="Linux"&gt;&lt;div&gt;Linux&lt;/div&gt;&lt;/div&gt;
&lt;/div&gt;
&lt;hr&gt;
&lt;h4 id="results"&gt;Results&lt;/h4&gt;
&lt;p&gt;✅ &lt;strong&gt;Infrastructure:&lt;/strong&gt; shared hosting → VPS in Yandex Cloud via Terraform, fully containerized with Docker&lt;br&gt;
✅ &lt;strong&gt;Platform:&lt;/strong&gt; clean CS-Cart Multi-Vendor installation replaced a heavily modified legacy core&lt;br&gt;
✅ &lt;strong&gt;Theme and modules:&lt;/strong&gt; commercial theme, live search, UX/UI improvements, SMS authentication, AJAX catalog&lt;br&gt;
✅ &lt;strong&gt;Integrations:&lt;/strong&gt; CDEK, Boxberry, Russian Post, Faster Payments System (SBP), and dual-environment 1C exchange&lt;br&gt;
✅ &lt;strong&gt;Documentation:&lt;/strong&gt; wiki on &lt;code&gt;docs.*&lt;/code&gt; subdomain with a complete project structure&lt;br&gt;
✅ &lt;strong&gt;Automation:&lt;/strong&gt; n8n + ChatGPT API for routine operations&lt;br&gt;
✅ &lt;strong&gt;Backups:&lt;/strong&gt; Yandex Object Storage + mirrored copy on office Synology NAS&lt;br&gt;
✅ &lt;strong&gt;Git:&lt;/strong&gt; self-hosted Forgejo on NAS with runner and full project repositories&lt;br&gt;
✅ &lt;strong&gt;Archival handover:&lt;/strong&gt; project fully transferred to the client’s on-premise Synology NAS, including a private Forgejo Git server.&lt;/p&gt;</description></item></channel></rss>