Floatpoint Infrastructure & Security

Access to Floatpoint’s internal infrastructure runs through a Cloudflare-based Zero Trust network. Authentication happens through Google Workspace, which also determines role permissions. Once authenticated, access to the VPN and specific systems is automatically granted based on Workspace roles.

Developers and administrators never have blanket access. Each connection is verified, logged, and restricted to specific scopes. If someone leaves the organization or loses Workspace access, their VPN and infrastructure credentials are immediately revoked.

Every Floatpoint server runs on hardened Linux builds and is managed through our RMM system. Updates and patches are applied automatically using smart scripts that check whether downtime is required. If a reboot is necessary, it’s queued for our maintenance window to avoid disruption.

Weekly maintenance keeps servers healthy, and full reboots occur only once a month. This balance ensures we stay compliant and stable without sacrificing uptime or performance.

Certificates renew automatically through Certbot, ensuring encryption is never outdated. Each production node is protected by an EDR agent that also monitors Docker containers, giving full visibility into customer workloads and isolating any potential threats in real time.

With additional layers like fail2ban and continuous log analysis, we prevent brute force attempts and maintain proactive defense across the platform.

Floatpoint uses PCI DSS compliant payment processors and management software. Root passwords rotate automatically through secure scripts, and privileged access is logged for auditing. This keeps credentials short-lived and traceable.

We also partner with data centers that specialize in advanced DDoS mitigation using technologies like Magic Transit and PATH filtering. These partners ensure our edge network can absorb and neutralize attacks before they impact uptime.

Floatpoint uses globally replicated databases with automatic failover between regions. Cached data like login sessions stays close to users, while persistent data is backed up and synchronized across zones. This slightly increases latency but guarantees seamless recovery in the event of a regional outage.

Every customer’s data is protected through real-time replication and daily snapshots, allowing near-instant recovery while keeping database operations consistent across global nodes.

One of the most impactful systems we built was Floatpoint’s panel re-routing. The system automatically redirects users to the control panel closest to their server’s physical node, reducing latency and improving load times during management operations.

By avoiding centralized routing, users always interact with the closest and fastest region. This also improves resilience, since traffic can failover to another region instantly if a node goes down.