navigate open Esc close

Technology

Building Reliable Infrastructure

A practical argument for boring infrastructure: fewer moving parts, clear ownership, tested backups, useful logs, and systems that can be repaired.

7 min read 1,457 words
By Dhruv Chaturvedi

Most infrastructure failures are not caused by one dramatic mistake. They are caused by small decisions that looked harmless when they were made.

A service gets added without a backup plan. A dashboard exists but nobody checks the alert. A database runs for months without a restore test. A reverse proxy rule is changed casually. A new tool is introduced because it is interesting, not because the old tool failed.

Reliability is not magic. It is maintenance, ownership, and restraint.

This is how I think about building reliable infrastructure, whether it is a self-hosted service, a homelab, a personal site, or a larger system. The scale changes. The principles do not.

Start with boring technology#

The best infrastructure is usually boring.

That does not mean outdated. It means understood. A boring tool has documentation, failure modes, community knowledge, predictable upgrades, and enough people using it that the weird edge cases have already been found.

For most systems, the boring choice is obvious:

  • PostgreSQL for a relational database.
  • Docker Compose for small service stacks.
  • S3-compatible storage for objects and backups.
  • Nginx, Caddy, Traefik, or Zoraxy for reverse proxying, depending on the environment.
  • Prometheus-style metrics if the system needs serious monitoring.

The exact tool matters less than the discipline behind it. The wrong question is “what is the most powerful thing I can deploy?” The right question is “what is the simplest thing I can still operate when something breaks?”

Infrastructure should earn its complexity.

Complexity is a cost, not a badge#

Technical people like powerful systems. That is understandable. Kubernetes is powerful. Distributed storage is powerful. Service meshes are powerful. Multi-cloud failover is powerful.

Power is not free.

Every new layer creates a new place for failure to hide. It adds logs to read, versions to track, permissions to understand, upgrade paths to manage, and mental state to carry. Complexity is not automatically bad, but it must be justified by a real requirement.

If one machine, Docker, a reverse proxy, and backups solve the problem, that is not amateur infrastructure. That is appropriate infrastructure.

The goal is not to impress other engineers. The goal is to keep the system running, understandable, and repairable.

Own the data first#

The first serious question for any system is not “what does it run on?” It is “where does the data live?”

Services can be recreated. Containers can be pulled again. Config files can be rewritten if necessary. Data is different. If the data is gone, the system is gone.

Before adding more services, I want clear answers to five questions:

  1. Where is the data stored?
  2. Is it inside a named volume, a bind mount, a database, or object storage?
  3. How is it backed up?
  4. How is it restored?
  5. Has the restore actually been tested?

Backups that have never been restored are not backups. They are hopes with timestamps.

This is where ownership becomes practical. Owning infrastructure means knowing where the important state lives and being able to recover it without guessing.

Design for restart#

A reliable system is not a system that never stops. It is a system that can stop and come back cleanly.

That means restart behaviour matters:

  • Containers should restart when they crash.
  • Services should handle dependency startup order without falling apart.
  • Databases should shut down cleanly.
  • Jobs should be safe to retry.
  • External calls should have timeouts.
  • Deployments should be reversible.

This is why Docker and Compose are still useful for many real systems. A compose file makes restart policy, volumes, networks, and dependencies visible. It is not a complete reliability strategy, but it creates a readable operating surface.

If a system only works because everything started in the perfect order once, it is fragile.

Keep the network legible#

Networking is where simple systems often become dangerous.

The rule I prefer is: expose as little as possible. Public services should pass through a deliberate edge: a reverse proxy, HTTPS, known hostnames, and clear routing. Internal services should stay internal.

This sounds obvious, but it is easy to violate. A dashboard needs quick access, so a port gets opened. A database needs testing, so it binds to all interfaces. A temporary rule becomes permanent because nobody comes back to clean it up.

The network should tell a story:

  • What is public?
  • What is private?
  • What talks to what?
  • Where does TLS terminate?
  • Which port is exposed to the internet?
  • Which services should never have a public route?

If that story is unclear, the system is already harder to secure and debug.

Logs are not observability#

Logs are useful, but logs alone are not observability.

A reliable system should answer basic questions quickly:

  • Is the service up?
  • Is it serving requests successfully?
  • What changed recently?
  • Is the database healthy?
  • Is disk space running out?
  • Are backups completing?
  • Are error rates rising?

For a small system, this does not need to become an enterprise observability stack. Start with the basics: health checks, uptime monitoring, logs you can search, disk alerts, backup alerts, and a dashboard for the few metrics that matter.

The most important alert is not the clever one. It is the one that tells you about a real problem before a user does.

Documentation is part of the system#

Documentation is not separate from infrastructure. It is part of the operating model.

Every system should have a short note that explains:

  • What it does.
  • Where it runs.
  • Where the data lives.
  • How it starts and stops.
  • How it is backed up.
  • How it is restored.
  • What depends on it.
  • What to check when it breaks.

This does not need to be beautiful. It needs to exist. Future you is a different person with less context and less patience.

The best documentation is written while the system is being built. After the system has been running for six months, you will remember the outcome but forget the reasons.

Do not automate what you do not understand#

Automation is valuable, but it can also hide ignorance.

There is a difference between automating a known process and wrapping a confusing process in a script. The first reduces toil. The second creates a black box.

I like automation when it makes the system more repeatable:

  • Backups on a schedule.
  • Certificate renewal.
  • Container updates with review.
  • Deployment scripts.
  • Health checks.
  • Log rotation.

I do not like automation that makes people forget how the system works. If a script fails and nobody understands the manual path, the system is not mature. It is just hidden complexity.

Automation should compress knowledge, not replace it.

Test failure before failure tests you#

Every important assumption should be tested.

Can the service restart? Can the database restore? Can the server reboot cleanly? Can the reverse proxy recover? Can the site be rebuilt? Can a fresh machine run the stack from the documented files?

These tests do not need to be dramatic. For a personal or self-hosted system, even a simple quarterly check is better than blind trust.

The useful tests are boring:

  1. Restore a backup to a temporary location.
  2. Reboot the server and check what comes back.
  3. Stop a container and verify the restart policy.
  4. Fill a test disk or simulate low space.
  5. Rebuild a service from the compose file.

Failure practice changes the psychology of infrastructure. The system becomes less mysterious because you have seen it break in controlled conditions.

Maintenance beats innovation#

Infrastructure rewards maintenance more than novelty.

Security updates, backups, disk checks, dependency upgrades, certificate renewal, log review, and documentation updates are not exciting. They are the work.

The industry likes to talk about innovation because innovation is easy to sell. Maintenance is harder to market, but it is what keeps systems alive.

This applies at every scale. A country needs maintained roads, ports, grids, and institutions. A software system needs maintained databases, networks, backups, and runbooks. The pattern is the same: durable systems survive because somebody keeps doing the unglamorous work.

What this means#

Reliable infrastructure is not built by choosing the fanciest tool. It is built by making small conservative decisions repeatedly.

Use boring technology. Keep the network legible. Own the data. Test restores. Watch the few metrics that matter. Document the system. Automate the parts you understand. Add complexity only when the current system has reached a real limit.

That is not a glamorous philosophy, but it works.

The best infrastructure is the infrastructure you can understand, repair, and trust when something breaks.

Related

More in Technology →