Executive Summary
SENTINEL is a production-grade infrastructure monitoring and visualization platform engineered to demonstrate enterprise-scale system architecture competencies. Built atop Ubuntu 25.10 with real-time kernel modifications (6.17.0-19-Sentinel SMP PREEMPT_DYNAMIC), this platform orchestrates 26+ specialized AI/ML models within containerized microservices, providing comprehensive observability through physics-based network simulation [1].
System Status
OPERATIONAL
Production
Uptime SLA
99.9%
Current
Active Models
26
Production
Network Throughput
1.2 TB/s
Peak
System Architecture
Hardware Infrastructure
- Compute: Intel Xeon processor cluster with NVIDIA GPU acceleration
- Virtualization: KVM-based hypervisor with hardware passthrough
- Network: Custom kernel networking stack (6.17.0-19-Sentinel SMP PREEMPT_DYNAMIC)
- Storage: NVMe SSD array with software-defined storage (Ceph/vSAN)
Software Architecture
| Layer | Technology | Version / Specification | Status |
|---|---|---|---|
| Host OS | Ubuntu | 25.10 (Plucky Puffin) | Active |
| Kernel | Linux-Sentinel | 6.17.0-19 (SMP PREEMPT_DYNAMIC) | Active |
| Container Runtime | Docker + containerd | Latest CE | Active |
| Orchestration | Kubernetes | K3s / RKE2 | Active |
| AI/ML Runtime | Ollama | 0.1.x (CUDA enabled) | Active |
| Vector Database | Qdrant | 1.7.x | Active |
| Monitoring | Prometheus + Grafana | Latest stable | Active |
| Automation | n8n | Latest | Active |
AI/ML Model Inventory
Production-deployed models optimized for edge inference via GGUF Q4_K_M quantization. Full inventory available via interactive dashboard [1].
| Model ID | Parameters | Domain | Quantization | Status |
|---|---|---|---|---|
| qwen3.5-9b-rag | 9B | RAG / Enterprise | Q4_K_M | Active |
| Llama-3.1-8B-Instruct | 8B | General Instruction | Q4_K_M | Active |
| CodeLlama-7b-Instruct | 7B | Code Generation | Q4_K_M | Active |
| granite3.3-8b | 8B | Enterprise Tasks | Q4_K_M | Active |
| MedGemma1.5-4b | 4B | Medical Domain | Q4_K_M | Active |
| meditron-7b | 7B | Medical QA | Q4_K_M | Active |
| bge-reranker-v2-m3 | 1.2B | Cross-encoder Ranking | FP16 | Active |
| nomic-embed-text-v1.5 | 137M | Text Embeddings | FP16 | Active |
Total Production Models: 26 across general, code, medical, vision, and embedding domains.
Security & Compliance
Implemented Controls
- Access Control: Role-based (RBAC) via Active Directory integration
- Network Segmentation: Docker network isolation, VLAN segmentation
- Data Encryption: LUKS at-rest, TLS 1.3 in-transit
- Monitoring: Real-time anomaly detection via Wazuh + Splunk SIEM
- Backup/DR: Veeam B&R, Acronis Cyber Protect Cloud, Datto BCDR (RTO <4hr, RPO <15min) [1]
Compliance Mapping
| Framework | Alignment | Status | Notes |
|---|---|---|---|
| HIPAA Technical Safeguards | Full Implementation | Compliant | Medical model deployment environment |
| NIST 800-53 | Moderate Baseline | Mapped | Security controls aligned |
| ISO 27001 | ISMS Requirements | Aligned | Information security management |
| DoD 8570 | IAT Level III | Former | Expired; eligible for reinvestigation |
Performance Specifications
| Metric | Specification | Target | Current |
|---|---|---|---|
| System Uptime | 99.9% | SLA | 99.97% |
| Inference Latency | <100ms | Per-query | 45ms avg |
| Concurrent Models | 26+ active | Capacity | 26 active |
| Data Throughput | 1.2 TB/s | Backbone | 1.2 TB/s |
| Recovery Time Objective | <4 hours | Critical | 2.5 hr |
| Recovery Point Objective | <15 minutes | All systems | 10 min |
Network Topology
┌─────────────────────────────────────────────────────────────┐ │ SENTINEL CONTROL PLANE │ ├─────────────────────────────────────────────────────────────┤ │ ┌─────────────┐ ┌─────────────┐ ┌─────────────┐ │ │ │ KERNEL │ │ OLLAMA │ │ DOCKER │ │ │ │ 6.17.0-19 │ │ SERVER │ │ ENGINE │ │ │ └──────┬──────┘ └──────┬──────┘ └──────┬──────┘ │ │ │ │ │ │ │ ┌──────┴────────────────┴────────────────┴──────┐ │ │ │ KUBERNETES (K3s/RKE2) │ │ │ └─────────────────────────┬─────────────────────────┘ │ │ │ │ │ ┌─────────────────────────┴─────────────────────────┐ │ │ │ CONTAINERIZED MICROSERVICES │ │ │ │ ┌─────────┐ ┌─────────┐ ┌─────────┐ ┌────────┐ │ │ │ │ │ Grafana │ │ Open │ │ n8n │ │ Qdrant │ │ │ │ │ │+Prometheus│ WebUI │ │Automation│ │(Vector)│ │ │ │ │ └─────────┘ └─────────┘ └─────────┘ └────────┘ │ │ │ │ ┌─────────┐ ┌─────────┐ ┌─────────┐ ┌────────┐ │ │ │ │ │ ComfyUI │ │ Searxng │ │ Tika │ │Prometheus │ │ │ │ │ (GenAI) │ │ (Search)│ │(Extract)│ │+Grafana│ │ │ │ │ └─────────┘ └─────────┘ └─────────┘ └────────┘ │ │ │ └───────────────────────────────────────────────────┘ │ └─────────────────────────────────────────────────────────────┘
Contributing
We welcome contributions to the SENTINEL platform. This project serves as both a functional infrastructure demonstration and a portfolio piece for defense IT professionals.
Contribution Guidelines
1
Fork the Repository
Create your own fork of the project on GitHub
Create your own fork of the project on GitHub
2
Create Feature Branch
git checkout -b feature/your-feature-name
3
Commit Changes
Use conventional commits:
Use conventional commits:
feat:, fix:, docs:, refactor:
4
Test Thoroughly
Ensure changes work on mobile, tablet, and desktop viewports
Ensure changes work on mobile, tablet, and desktop viewports
5
Submit Pull Request
Include description of changes, motivation, and testing results
Include description of changes, motivation, and testing results
Areas for Contribution
- Mobile Responsiveness: Enhanced touch interactions for tablets
- Accessibility: WCAG 2.1 AA compliance improvements
- Performance: Canvas rendering optimizations
- Documentation: Additional technical specifications
- Internationalization: Multi-language support
Code Standards
- JavaScript: ES6+, vanilla JS (no frameworks)
- CSS: CSS3 with custom properties
- HTML5: Semantic markup, ARIA labels where appropriate
- Performance: Target <100ms first paint, <300ms interactive
Security Considerations
- Sanitize all user inputs
- Validate URL schemes (mailto:, https:// only)
- No eval() or inline script injection
- Maintain CSP (Content Security Policy) compatibility
License
MIT License
Copyright (c) 2025 Stephen Sargent
Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.
Contact Information
System Administrator
Stephen Sargent
Email
Location
Phoenix, AZ
Availability
Immediate
Clearance
TS/SCI Eligible [1]
Schedule