Hetzner

Metric	Target
RPO	n/a (backups either not possible or configuration stored in git)
RTO	4 hours

Hetzner is a Cloud/IaaS provider. We host some of our internal infrastructure there.

Hetzner has:

1. Jenkins (master and slaves).

2. The VPN (Wireguard).

3. The main Prometheus server.

4. HashiCorp Vault.

5. The Web server

6. cratedb Development Cluster

7. Jenkins dynamic Runners

Access

We use a single account to access Hetzner (sysadmin@crate.io). The credentials, including 2FA token, are in Bitwarden.

VPN

See main article: Wireguard VPN.

Prometheus

See main article: Prometheus.

Jenkins

See main article: Jenkins.

The Web Server

See main article: The Web Server.