Crypto Casino
Torrent Gear
How Casinos Use Containerization (Docker, Kubernetes)
Why casino containerization
Online casinos are dozens of domains (wallet, bets, bonuses, cash desk, KYC/AML, RG, reporting, integration with providers). The containers give:- Quick releases and dependency isolation. One image → the same environment in dev/stage/prod.
- Horizontal scaling. Autoscaling by betting/streaming load.
- Reliability. Self-healing of the hearth, rollout/rollback without downtime.
- Multi-region. Clusters by jurisdiction for data residency and latency.
Supporting architecture
Layers:- Images & Registry: standardized base images (alpine-based), internal registry with signature/scan policies.
- CI/CD: assembly → tests → SAST/DAST → signing → push → warm through GitOps/Helm/Argo CD.
- Orchestration: Kubernetes as a single management plan. Namespaces by domain/environment.
- Service Mesh (optional): mTLS, policy, retries, circuit-breaking (Istio/Linkerd).
- Data Plane: managed databases (Postgres, ClickHouse, Redis), object storage (S3), queues (Kafka/NATS).
- Edge: API gateway/ingress, WAF/bot protection, rate limits, geo filters.
- Observability: Prometheus/Grafana, Loki/ELK, OpenTelemetry traces, алёрты.
Platform Domain Containerization
Wallet/Ledger: fixed CPU/mem, PDB (PodDisruptionBudget), priority classes, 'maxUnavailable = 0' for StatefulSet; strict rollout (blue-green) policy.
Gaming API/Bridge to providers: stateless services, horizontal HPA by RPS/latency, readiness on external dependencies.
Bonus/Promo/Comms: asynchronous workers with queues; scale along the length of the queue.
Cashier/PSP/Crypto-on/off-ramp: separate namespace, network policies, mTLS; mesh timeouts/retrays.
KYC/AML/KYT: segregated PII restricted podes; node pools with disk encryption.
Live/Streaming Edge: WebRTC/LL-HLS gateways; nodes in regional clusters with DSCP/UDP-friendly networks.
Reporting/ETL/DWH: batch jobs in k8s CronJob, resources through 'requests/limits', priority is low.
Images and Dockerfile: Practice
Minimize attack surface: multi-stage build, non-root user, 'distroless '/alpine.
Fix dependency versions and 'CMD '/' ENTRYPOINT' as "contract."
Cache layers (lock files).
Turn on healthcheck (at the k8s level - 'readiness '/' liveness').
Example (Node. js, multi-stage, non-root):dockerfile build
FROM node:20-alpine AS build
WORKDIR /app
COPY package. json./
RUN npm ci --only=production
COPY..
RUN npm run build
run
FROM gcr. io/distroless/nodejs20
WORKDIR /app
COPY --from=build /app/dist./dist
COPY --from=build /app/node_modules./node_modules
USER 10001
ENV NODE_ENV=production
CMD ["dist/server. js"]Kubernetes deploy and safety
Deployment/StatefulSet: two strategies - RollingUpdate (default) for stateless, Blue-Green/Canary for critical services (wallet/ledger).
Probes: 'readiness' checks external dependencies (database/cache/provider), 'liveness' - the process itself.
NetworkPolicy: deny-all by default; Open outgoing/incoming only when necessary.
Secrets: External Secrets + KMS/HSM; key rotation (JWT 'kid'), RBAC access restrictions.
Pod Security: non-root, no privileges, readonly-rootfs, seccomp, AppArmor.
ResourceQuotas/LimitRanges: Guarantee SLO to the core of money, separate "noisy" workers.
OPA/Gatekeeper: "Prohibit Depla" policies without probes/resources/labels.
CI/CD, GitOps and release strategies
Pipeline: build → unit/integration → security scan (SAST/DAST) → SBOM → signing (cosign) → push → Argo CD sync.
Canary/Blue-Green:- Blue-Green for ledger/wallet (switching via ingress/VS).
- Canary for front-end APIs (1-5% of traffic, error/latency metrics as "stop signal").
- Database migrations: shadow tables/expand-migrate-contract, forward-compatible migrations.
- Feature Flags: Feature run by traffic segment/region.
Autoscaling and performance
HPA/VPA: HPA by RPS/latency/CPU, VPA - for ETL and analytics workers.
Cluster-Autoscaler: separate node-pools: CPU-intensive (bridge/API), memory-heavy (ETL), network (WebRTC).
PDB/Pod Priority: Protect critical pods from evicts.
Caching: local sidecar Redis-proxy, shared Redis cluster; invalidate by event.
Cold-start: warm up JIT/connection pools at start (init containers).
Stateful services and data
DB (Postgres/ClickHouse): do not push the prod-DB inside the cluster unless absolutely necessary. Prefer managed services or separate clusters with Patroni/Operator, PV on 'ssd' with encryption.
Transactional core: strict RPO/RTO, synchronous replicas over AZ; physical backups + PITR.
Caches (Redis): cluster mode, saving RDB/AOF only if necessary; for sessions - TTL and sticky-less design.
Queues/buses: Kafka/NATS - operators under k8s with separate disk pools; connection limits and quota arrangements.
Live providers and streaming in containers
WebRTC gateways as DaemonSet/Deployment on stack-optimized nodes (eBPF/UDP tuning).
Edge clusters by region (closer to players) + centralized control via GitOps.
QoS metrics: RTT betting signals, dropped frames, abortion rounds; autoscale by load and degradation FPS/bitrate.
Network policies: UDP ports whitelisting, DSCP, restriction of interregional traffic.
Observability and SRE
SLI/SLO metrics: wallet/bet latency p95, error-rate, round-settle-time, payout-SLA, event queue.
Traces: 'traceId' end-to-end (ingress → API → wallet → provider → webhook).
Logs: structured, correlation by 'playerId/betId/roundId'.
Alerts: error budgets (canary release stops itself), VOID/RET RY growth triggers, HPA degradation.
Runbooks: clear incident instructions (provider dump, ledger out of sync, cascade restarts).
Compliance and isolation
Namespaces by jurisdiction (EU/UK/CA/...); different clusters for data residency.
PII/payment domain segregation: individual VPC/peering, limited egress.
Scan of vulnerabilities: at the level of images and runtime (admission controllers), the policy "only signed images."
Audit logs are immutable (WORM/S3 Object Lock), export of reports to the regulator.
Cost and efficiency
Separate production-core (fixed resources) and elastic workloads (autoscale/spot nodes).
Requests/limits on science: avoid CPU-throttling for latency-critical services.
Right-sizing: VPA recommendations + profiling.
Spot pools for ETL/analytics (only if PDB and interrupt tolerance are correct).
Anti-patterns
Deploy without readiness/liveness and without resource restrictions.
One common namespace and "flat" network without NetworkPolicy.
Catastrophic RollingUpdate of wallet with 'maxUnavailable> 0'.
Storing secrets in environment variables without encryption and rotations.
Mixing OLTP/OLAP on one DB, migrating head-on during peak.
The absence of GitOps: "manual edits" in the prod, the drift of manifestos.
Ignoring'idempotencyKey 'in workers → transaction duplicates in retrays.
Implementation checklist
Basis
- Single base images, signatures, and update policy.
- Private registry + vulnerability scan, signed images only.
- GitOps (Argo CD/Flux), Helm/Kustomize, one source of truth.
Kubernetes
- Namespaces by domain/region; NetworkPolicy "deny-all by default."
- Probes, PDB, priorities, HPA/VPA, Cluster-Autoscaler.
- Minimum required RBAC, PodSecurity/PSA enforced.
Data
- Managed databases or individual clusters with operators; disk encryption, PITR.
- OLTP/OLAP separation, CDC to DWH, object log storage.
Safety and compliance
- mTLS/mesh, KMS/HSM, JWT/key rotation, audit-trail (WORM).
- PII/payment segregation, egress control, geo-isolation.
Observability
- SLI/SLO, alerts, error-budgets; end-to-end traces and correlation.
- Live streaming and betting QoS dashboards.
Releases
- Blue-Green for core money, Canary for API; expand-contract migrations.
- Feature-flags, no downtime rollbacks.
Containerization in iGaming is not only "convenient to deplete." It is a discipline of repeatable images, GitOps, domain isolation, strict networking, observability, and secure releases. With such a casino platform:
- connects providers and payments faster, withstands peaks in live loads, complies with data regulators, and predictably scales without risk to the wallet and ledger.