Skip to main content

WTG Case Study

WTG

End-to-end platform engineering transformation with Kubernetes, GitOps, and on-premise infrastructure modernization.

Project Overview

WTG required modernization of its legacy container platform and infrastructure. The solution involved migrating from Docker Swarm to Kubernetes, designing a multi-cluster on-premise architecture, and implementing a full DevOps platform including CI/CD, GitOps, observability, and security.

Industry

Enterprise Platform Engineering
On-Prem Infrastructure
Cloud-Native Transformation
DevOps & GitOps

Context and Challenges

Legacy Docker Swarm architecture limiting scalability
Lack of centralized CI/CD and deployment strategy
No standardized Kubernetes platform
Limited observability and monitoring
Security and policy enforcement gaps

Client Requirements

Modern Kubernetes-based platform

Multi-environment clusters (Dev, QA, UAT, Prod)

Automated CI/CD and GitOps workflows

On-premise infrastructure design

Observability and monitoring stack

Security and policy enforcement

My Role

Architected and implemented a complete on-premise Kubernetes platform, including infrastructure design, CI/CD pipelines, GitOps deployment model, and security frameworks.

Strategy and Solution

01

Migrated workloads from Docker Swarm to Kubernetes (RKE2)

02

Designed multi-cluster architecture using Rancher

03

Implemented CI/CD using GitHub Actions

04

Enabled GitOps deployment using ArgoCD

05

Integrated observability, security, and storage solutions

Architecture Highlights

Rancher RKE2 multi-cluster Kubernetes setup
Proxmox-based virtualization infrastructure
HAProxy and Cloudflare for traffic management
MetalLB for load balancing
Traefik as ingress controller
Tailscale VPN for secure connectivity

Platform Implementation

CI/CD pipelines using GitHub Actions
ArgoCD for GitOps continuous delivery
Prometheus & Grafana for monitoring
ELK / Loki stack for logging
Jaeger & Kiali for tracing
Keycloak for identity and access management

Security and Governance

Keycloak for IAM
Trivy for container security scanning
OPA Gatekeeper for policy enforcement
Vault for secrets management

Storage and Data

Rook (Ceph) for distributed storage
Longhorn for block storage
Backup and restore strategies implemented

Architecture

On-prem Kubernetes platform with Rancher, GitOps, service mesh, and observability stack.

Technologies and Tools

Infrastructure

  • Proxmox
  • On-Prem Servers

Container Platform

  • Kubernetes (RKE2)
  • Rancher

CI/CD & GitOps

  • GitHub Actions
  • ArgoCD

Networking

  • HAProxy
  • Cloudflare
  • MetalLB
  • Traefik

Security

  • Keycloak
  • Vault
  • OPA Gatekeeper
  • Trivy

Observability

  • Prometheus
  • Grafana
  • ELK / Loki
  • Jaeger

Highlights

Migrated from Docker Swarm to Kubernetes
Built multi-cluster on-prem platform
Implemented GitOps deployment model
Full observability and monitoring stack
Enterprise-grade security and governance

Outcome

Modernized infrastructure with Kubernetes
Improved scalability and reliability
Reduced deployment complexity
Enabled platform-level automation

Benefits

Business

Faster delivery of applications

Reliable and scalable infrastructure

Reduced operational risks

Technical

Cloud-native platform architecture

Automated CI/CD and GitOps workflows

Secure and observable infrastructure