Enterprise Deployment  ·  CI/CD Native

Git Push to
Protected Infrastructure

The OneFirewall F3D Agent is built for enterprise automation. Deploy across hundreds of nodes using CI/CD pipelines, Helm charts for Kubernetes, or Docker Compose — with canary rollout, automated rollback, and full observability.

Speak with OneFirewall Start a PoV
Git-Triggered CI/CD Helm / Kubernetes Canary Rollout Auto Rollback
git push main Build & Test Docker Registry Helm / Compose Live Deploy
GitTriggered deployments
5-10%Canary rollout start
AutoRollback on failure
HelmKubernetes orchestration
K8sOpenShift compatible
FullObservability stack

Deployment Pipeline

🔄

Git Push Triggers Pipeline

Merge to main automatically initiates the CI pipeline. The runner validates the commit, applies security scanning, and requires approval workflows before proceeding.

🛠️

Build, Test & Push

Docker containers are built, unit and integration tests executed, and the validated image pushed to your container registry. The F3D Agent is packaged specifically for Kubernetes and OpenShift environments with dynamic scaling.

🚀

Helm or Docker Compose Deploy

For Kubernetes/OpenShift environments, Helm charts manage the rollout with configurable canary percentage (default 5-10%). For simpler environments, Docker Compose provides equivalent orchestration with a single command.

📈

Canary Monitoring & Promotion

Canary instances receive 5–10% of traffic initially. Metrics from BetterStack and Elastic observability platforms are monitored. On success, the rollout continues automatically; on failure, automated rollback triggers immediately.

CI/CD Pipeline — Helm Deploy
# .github/workflows/deploy.yml
on:
  push:
    branches: [main]

jobs:
  deploy:
    steps:
      - name: Build & Push Docker image
        run: |
          docker build -t app.onefirewall.com/f3d:$SHA .
          docker push app.onefirewall.com/f3d:$SHA

      - name: Helm canary deploy (5%)
        run: |
          helm upgrade f3d-agent ./chart \
            --set image.tag=$SHA \
            --set canary.weight=5

      - name: Promote if healthy
        run: helm upgrade f3d-agent ./chart \
          --set canary.weight=100

✔ Deployed to production

Observability & Monitoring

Full-stack visibility across every deployed F3D Agent instance — metrics, logs, traces, and alerts out of the box.

BetterStack

Uptime monitoring, log ingestion, and incident alerting for every F3D Agent instance across your infrastructure.

Elastic Stack

Comprehensive metrics, distributed tracing, and log aggregation. Kibana dashboards for deployment health visualisation.

Automated Rollback

If canary health checks fail, the pipeline automatically rolls back to the previous stable version — zero manual intervention.

GitOps Workflow

Infrastructure state tracked in git. Every deployment is auditable, reversible, and consistent across all environments.

Automate Your Threat Defence

Deploy OneFirewall F3D Agent across your entire infrastructure with a single git push. Talk to our team for CI/CD configuration templates and Helm chart access.

Speak with OneFirewall Organize a Proof of Value