Netbox

Infrastructure resource modelling and documentation tool

Netbox is an infrastructure resource modelling (IRM) application for documenting and managing networks, IP addresses, equipment, and connections. It serves as a source of truth for network infrastructure documentation.

ArgoCD Resource

PropertyValue
KindApplication
Namenetbox
Namespaceargocd
Destination Namespacenetbox
Projectinfra-services
Source TypeKustomize
File Pathk8s/infra-services/argocd/overlays/infra-platform-cluster/apps/netbox.yaml

Application Definition

apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
  name: netbox
  labels:
    cluster: 'infra-platform-mgmt'
    environment: 'prod'
  finalizers:
    - resources-finalizer.argocd.argoproj.io
  annotations:
    notifications.argoproj.io/subscribe.on-app-synced.slack: platform-infra-notifications
    notifications.argoproj.io/subscribe.on-app-outofsync.slack: platform-infra-notifications
    notifications.argoproj.io/subscribe.on-app-sync-failed.slack: platform-infra-notifications
    notifications.argoproj.io/subscribe.on-app-degraded.slack: platform-infra-notifications
spec:
  syncPolicy:
    automated:
      prune: true
  destination:
    namespace: argocd
    server: https://kubernetes.default.svc
  project: infra-services
  source:
    path: k8s/infra-services/netbox
    repoURL: https://github.com/Titanbay/infra-services
    targetRevision: 'main'

Manifest Organisation

The Netbox manifests use a simple Kustomize structure with a base directory:

k8s/infra-services/netbox/
├── kustomization.yaml              # Top-level kustomization (sets namespace: netbox)
└── base/
    ├── kustomization.yaml          # Base resources
    ├── netbox-deployment.yaml      # Main Netbox deployment and service
    ├── netbox-redis.yaml           # Redis deployment for caching
    ├── configmap.yaml              # Netbox configuration
    ├── netbox-secret.yaml          # ExternalSecret for credentials
    ├── netbox-service-account.yaml # Service account
    └── secret-store.yaml           # GCP Secret Manager SecretStore

Key Components

ResourcePurpose
DeploymentNetbox application container
RedisSession caching and queuing
ConfigMapDatabase and Redis connection settings
ExternalSecretCredentials from GCP Secret Manager
SecretStoreGCP Secret Manager integration

How to Update

Modifying Configuration

  1. Edit the appropriate file in k8s/infra-services/netbox/base/
  2. Commit and push to main
  3. ArgoCD auto-syncs the changes

Updating Netbox Version

  1. Update the container image in base/netbox-deployment.yaml
  2. Review the Netbox changelog
  3. Commit and push to main

Secrets Management

Netbox credentials are managed via External Secrets:

SecretSource
Database credentialsGCP Secret Manager
Secret keyGCP Secret Manager

The SecretStore in base/secret-store.yaml configures access to GCP Secret Manager.

Notifications

The Application sends Slack notifications to #platform-infra-notifications for:

  • Sync success
  • Out of sync detection
  • Sync failures
  • Degraded health
Last modified January 19, 2026: docs: add ArgoCD managed services (#1932) (2efa8f20)