Deploy to Production
Move your formation from localhost to a production server
Take your local formation to production with TLS, authentication, and proper service management.
What You'll Set Up
graph LR
A[Internet] -->|HTTPS| B[Reverse Proxy]
B -->|HTTP| C[MUXI Server :7890]
C --> D[Formation :8001]
C --> E[Formation :8002]- TLS termination at the reverse proxy
- HMAC authentication for management
- API key auth for formations
- systemd service for auto-restart
Prerequisites
- Formation working locally (
muxi devsucceeds) - Server with SSH access (cloud VM, dedicated, etc.)
- Domain name (optional but recommended)
- TLS-ready reverse proxy (Nginx/Caddy) or ability to bind HTTPS at the edge
- Open ports: 443 (public), 7890 (internal to proxy), 8001-9000 (internal formations)
-
Install MUXI on Production Server
SSH to your server:
ssh user@your-server.comInstall MUXI:
curl -fsSL https://muxi.org/install | sudo bashInitialize:
muxi-server initSave the generated credentials! You'll need the
key_idandsecretfor CLI access. -
Configure the Server
Edit the config file:
- System install (sudo):
/etc/muxi/server/config.yaml - User install (Homebrew, curl):
~/.muxi/server/config.yaml
server: port: 7890 host: 127.0.0.1 # Bind to localhost (reverse proxy handles external) auth: enabled: true keys: - id: MUXI_production secret: sk_... # From muxi-server init formations: port_range: [8000, 9000] auto_restart: true health_check_interval: 30s logging: level: info format: json output: /var/log/muxi/server.log # System install # or: ~/.muxi/server/logs/server.log # User install - System install (sudo):
-
Set Up Reverse Proxy
server { listen 443 ssl http2; server_name muxi.yourdomain.com; ssl_certificate /etc/letsencrypt/live/muxi.yourdomain.com/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/muxi.yourdomain.com/privkey.pem; location / { proxy_pass http://127.0.0.1:7890; proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; } }Get a certificate:
sudo certbot --nginx -d muxi.yourdomain.com# Caddy handles TLS automatically! muxi.yourdomain.com { reverse_proxy localhost:7890 } -
Create systemd Service
Create
/etc/systemd/system/muxi-server.service:[Unit] Description=MUXI Server After=network.target [Service] Type=simple User=muxi Group=muxi ExecStart=/usr/local/bin/muxi-server serve Restart=always RestartSec=5 LimitNOFILE=65535 [Install] WantedBy=multi-user.targetEnable and start:
sudo useradd -r -s /bin/false muxi sudo systemctl daemon-reload sudo systemctl enable muxi-server sudo systemctl start muxi-server -
Configure CLI Profile
On your local machine:
muxi profiles add productionEnter when prompted:
- URL:
https://muxi.yourdomain.com - Key ID:
MUXI_production - Secret Key:
sk_...
- URL:
-
Deploy Your Formation
cd my-formation muxi deploy --profile productionVerify:
muxi server list --profile production -
Test
curl https://muxi.yourdomain.com/api/my-formation/healthOr chat:
muxi chat --profile production "Hello!"
Production Checklist
- Authentication enabled (
auth.enabled: true) - TLS/HTTPS configured
- Firewall configured (allow 443, block 7890 from outside)
-
systemdservice running - Logs configured
- Monitoring set up (see Monitoring Guide)
- Backup strategy planned
Troubleshooting
Server won't start
Check logs:
sudo journalctl -u muxi-server -n 100Common issues:
- Port already in use
- Config syntax error
- Missing permissions
502 Bad Gateway
MUXI isn't running or wrong port:
curl http://127.0.0.1:7890/healthAuthentication failing
- Verify credentials match between CLI and server config
- Check timestamp is within 5 minutes
- Regenerate if needed:
muxi-server init
Next Steps
Server: Managing Formations - All operations
CLI: muxi deploy - Command reference
Production Guide - Best practices
Monitoring & Logs - Set up observability
CI/CD Integration - Automate deployments