Foundation¶

The TAPPaaS Foundation consists of essential modules that must be installed sequentially to establish a functioning system. These modules provide the core infrastructure upon which all other services run.

Installation Order¶

Sequential Installation Required

The foundation modules must be installed in the numbered order shown below. Each module depends on the previous ones being properly configured.

Foundation Modules¶

Order	Module	Description
1	Proxmox Node	Initial hypervisor installation
2	Firewall	OPNsense firewall deployment
3	Additional Nodes	Expand cluster with more nodes
4	NixOS Template	VM template creation
5	CICD Mothership	Central management VM
6	Backup	Proxmox Backup Server
7	Identity	Secrets and authentication
8	Security	System hardening

Architecture Overview¶

graph TB
    subgraph "Foundation Layer"
        PVE[Proxmox VE Cluster]
        FW[OPNsense Firewall]
        CICD[TAPPaaS CICD]
        PBS[Backup Server]
        ID[Identity Management]
    end

    subgraph "Network"
        WAN[Internet]
        LAN[Internal Network]
    end

    WAN --> FW
    FW --> LAN
    LAN --> PVE
    PVE --> CICD
    PVE --> PBS
    PVE --> ID

Configuration File¶

A central configuration.json file stores your deployment settings. This file is created during the initial Proxmox node setup and stored at /root/tappaas/configuration.json on the CICD mothership VM.

The repository includes a template (configuration.json.orig) that should be copied and customized for your environment.

Quick Start¶

Start with Proxmox Node installation on your first server
Complete Firewall setup before adding more nodes
Follow remaining modules in order

Time Estimate¶

Module	Estimated Time
Proxmox Node	30-60 minutes
Firewall	60-90 minutes
Additional Nodes	30 minutes each
NixOS Template	30 minutes
CICD Mothership	45-60 minutes
Backup	30 minutes
Identity	45 minutes
Security	30 minutes

Total: Approximately 4-6 hours for a complete foundation setup.

Next Steps¶

Begin with Proxmox Node installation.