Architecture Views

CloudNexus is built on a hyper-converged, software-defined architecture. Switch between views to explore how components interact across global edge, regional zones, and the control plane.

Global Edge Network (300+ PoPs) • AnyCast • DDoS Shield • SSL Termination US-EAST-1 API Gateway / Load Balancer Compute Nodes (x64) Managed DB Cluster Object Storage Tier EU-WEST-1 API Gateway / Load Balancer Compute Nodes (x48) Managed DB Cluster Object Storage Tier Control Plane (Multi-Region Active-Active) • Orchestration • Billing • Monitoring • IAM Sync Replication
Availability Zone A Primary Compute Primary Storage Cache Layer (Redis) Ingress Controller Cross-AZ Failover Link Active-Active Failover • Raft Consensus • Sub-50ms Cutover
👤 Edge Firewall WAF • Rate Limit • SSL API Gateway Auth • Routing • Logging Compute Cluster K8s • Autoscaling • LB End-to-end request path: ~8-12ms avg latency

Control Plane

The control plane orchestrates all user-facing resources. It is deployed as an active-active cluster across three geographic regions, ensuring zero single points of failure for management operations.

🧠
Orchestration Engine
Handles resource provisioning, scaling policies, and deployment manifests using a Raft-backed consensus cluster.
ConsensusRaft / Multi-Raft
Failover Time< 3s
API Throughput50k req/s
🔑
IAM & Auth Service
Centralized identity management with OIDC, SAML, and fine-grained RBAC. Supports just-in-time access and hardware key integration.
ProtocolsOIDC / SAML 2.0
MFA SupportTOTP / WebAuthn / FIDO2
Audit LogsImmutable / S3-Compatible

Compute Fabric

Our compute layer runs on custom-optimized hypervisors with hardware passthrough for GPU and NVMe workloads. Containers and VMs are scheduled using a custom scheduler built on Kubernetes primitives.

Virtualization Stack
KVM-based isolation with firecracker microVMs for serverless. Live migration supported across AZs without downtime.
IsolationKVM / Firecracker
Live MigrateYes (<200ms pause)
Max Density4000 cores/blade
📦
Auto-Scaling Mesh
Predictive scaling using ML-driven traffic forecasting. Scales to zero or thousands of instances in under 5 seconds.
Cold Start< 150ms (container)
Max Scale100k instances/region
MetricsPrometheus + Custom Signals

Request Lifecycle

Understanding how a single API call traverses the CloudNexus infrastructure from edge to storage and back.

01

Edge Ingestion

Traffic hits the nearest PoP. DNS resolves via anycast. WAF inspects packets, validates TLS, and applies rate limits.

02

Routing & Auth

API Gateway validates JWT/API-Key, routes to the appropriate regional cluster based on weight and latency.

03

Compute Execution

Request is dispatched to a healthy pod/VM. If cache miss, payload is fetched from the storage tier via internal RDMA network.

04

Response & Telemetry

Response is buffered, optionally cached at edge, and streamed back. Metrics are pushed to the control plane for billing and scaling decisions.

Resiliency & SLA Matrix

CloudNexus is engineered for catastrophic failure scenarios. Every critical path has redundant failover mechanisms.

Component Redundancy Model Failover Mechanism Target RTO/RPO Status
Control Plane Active-Active (3 Regions) Leader Election / Traffic Shifting < 3s / 0s Operational
Compute Nodes Multi-AZ Pooling Health Check + Auto-Replace < 10s / 0s Operational
Managed Databases Synchronous Replication Automatic Primary Failover < 5s / 0s Operational
Object Storage ECC + Erasure Coding Background Reconstruction Infrequent / 0s Operational
Global DNS Anycast + BGP Flowspec Geographic Routing Fallback < 1s / 0s Operational

API & SDK Integration

Every architectural component is exposed via a consistent RESTful API and gRPC endpoints. The infrastructure is infrastructure-as-code first.

1import { CloudNexus } from '@cloudnexus/sdk';
2
3const client = new CloudNexus({
4 region: 'eu-west-1',
5 // Uses IAM roles or API keys automatically
6});
7
8const cluster = await client.compute.createCluster({
9 name: 'production-api',
10 nodes: 'auto-scale',
11 redundancy: 'multi-az'
12});