Case Study: Secure Trade Commerce System with Edge DDoS Protection

graph TB subgraph internet["Internet / Open Commerce Marketplace"] users["👥 Users"] end subgraph captchaCluster["🔐 CAPTCHA Cluster Public Hardened Network"] ipfire["IPFire Box
10Gbit Dedicated
Multi-NIC Load Balancer"] subgraph captchaContainers["Captcha Containers Scaled by Bandwidth"] cap1["Container 1
10Mbit Bandwidth
Node.js Captcha"] cap2["Container 2
10Mbit Bandwidth
Node.js Captcha"] capN["Container N
10Mbit Bandwidth
Node.js Captcha"] end puzzleCache["Pre-Generated Emoji Puzzles
Static Cache
Thousands Flat Files"] redisC1[("Redis Cluster
CAPTCHA
Token Sync")] end subgraph platformCluster["🚀 Platform Cluster Private Network"] tokenVerify{"Token & Signature
Verification
Header Check"} subgraph loginContainers["Login Containers Bandwidth Limited"] login1["Container 1
Login Handler
Max 60min Session"] login2["Container 2
Login Handler
Max 60min Session"] loginN["Container N
Login Handler
Max 60min Session"] end subgraph appServers["Application Layer"] phpFront["PHP Frontend
Web Interface"] nodeAPI["Node.js Backend API"] end subgraph dataLayer["Data Layer"] proxysql["ProxySQL
Connection Pool"] mysql[("MySQL Primary
+ Multi Read
Replicas")] end redisC2[("Redis Cluster
Platform
2 Nodes")] subgraph queueSystem["Queue System"] queue["Write Queue
Products & Transactions"] end subgraph transactionSystem["🔗 Separated Transaction System"] txProcessor["Transaction Processor"] txDB[("Transaction DB")] end end users -->|"Puzzle Request"| ipfire ipfire -->|"Load Balanced"| cap1 ipfire -->|"Load Balanced"| cap2 ipfire -->|"Load Balanced"| capN cap1 -->|"Load Puzzles"| puzzleCache cap2 -->|"Load Puzzles"| puzzleCache capN -->|"Load Puzzles"| puzzleCache cap1 -->|"Sync Token"| redisC1 cap2 -->|"Sync Token"| redisC1 capN -->|"Sync Token"| redisC1 cap1 -->|"Timed Token + Redirect"| tokenVerify cap2 -->|"Timed Token + Redirect"| tokenVerify capN -->|"Timed Token + Redirect"| tokenVerify redisC1 -.->|"Verify Token"| redisC2 tokenVerify -->|"Token Valid?"| login1 tokenVerify -->|"Token Valid?"| login2 tokenVerify -->|"Token Valid?"| loginN login1 -->|"User/Pass Auth"| phpFront login2 -->|"User/Pass Auth"| phpFront loginN -->|"User/Pass Auth"| phpFront phpFront -->|"API Calls"| nodeAPI nodeAPI -->|"Query"| proxysql proxysql -->|"Read/Write"| mysql nodeAPI -->|"Session Cache"| redisC2 phpFront -->|"Session Cache"| redisC2 nodeAPI -->|"Queue Writes"| queue queue -->|"Process"| nodeAPI nodeAPI -->|"Transaction Request"| txProcessor txProcessor -->|"Persist"| txDB txProcessor -->|"Callback"| nodeAPI classDef captchaNet stroke:#f87171,fill:#1e1b4b,color:#cbd5e1; classDef platformNet stroke:#4ade80,fill:#022c22,color:#cbd5e1; classDef container stroke:#38bdf8,fill:#0c4a6e,color:#cbd5e1; classDef cache stroke:#a78bfa,fill:#2e1065,color:#cbd5e1; classDef database stroke:#fb923c,fill:#431407,color:#cbd5e1; classDef process stroke:#2dd4bf,fill:#115e59,color:#cbd5e1; classDef security stroke:#e879f9,fill:#581c87,color:#cbd5e1; class captchaCluster captchaNet; class platformCluster platformNet; class cap1,cap2,capN,login1,login2,loginN container; class puzzleCache,redisC1,redisC2 cache; class mysql,txDB database; class nodeAPI,phpFront,queue,txProcessor process; class tokenVerify security;