Production Deployment

Best practices and considerations for deploying NCN Network in production.

Production Checklist

Security

Infrastructure

Monitoring

Operations

TLS Configuration

Generate Certificates

Configure Gateway TLS

Certificate Renewal

High Availability

Gateway HA

HAProxy Configuration

Security Hardening

Firewall Rules

Rate Limiting (NGINX)

Key Management

Development:

  • Environment variables (acceptable)

Staging:

  • Secrets manager (AWS Secrets Manager, HashiCorp Vault)

Production:

  • Hardware Security Module (HSM)

  • Key Management Service (AWS KMS, GCP KMS)

Monitoring Setup

Prometheus Configuration

Key Metrics to Monitor

Metric
Alert Threshold

Request latency p99

> 5s

Error rate

> 5%

CPU usage

> 80%

Memory usage

> 85%

Disk usage

> 90%

Active connections

> 1000

Alerting Rules

Backup Strategy

What to Backup

Data
Frequency
Retention

Configuration files

Daily

30 days

Registry DHT data

Every 6 hours

7 days

Logs

Daily

90 days

Wallet keys

Once (secure offsite)

Forever

Backup Script

Disaster Recovery

Recovery Time Objective (RTO)

Component
RTO

Gateway

5 minutes

Registry

15 minutes

Compute

30 minutes

Recovery Procedures

Gateway Failure:

  1. Health check detects failure

  2. Load balancer removes from pool

  3. Alert sent to ops team

  4. Auto-restart or manual intervention

  5. Verify health, add back to pool

Registry Failure:

  1. P2P network continues with remaining nodes

  2. Failed node restarts automatically

  3. DHT data syncs from peers

  4. Verify consensus capability

Full Cluster Recovery:

Performance Tuning

System Limits

Kernel Parameters

Application Tuning

Update Procedures

Rolling Update

Rollback Procedure

Compliance Considerations

Data Handling

  • Minimize data retention

  • Encrypt data at rest

  • Log access to sensitive data

  • GDPR compliance for EU users

Audit Logging

Next Steps

PreviousKubernetes DeploymentNextOperator Guide

Last updated