CONFIDENTIAL June 2026

UniCon Server Architecture

Dual-Server Global Infrastructure — Role & Flow

MITOMO Inc. — UniCon Team

Press → or Space to navigate

Why Dual-Server?

🚫 The Problem

China's Great Firewall blocks Google Cloud, making UniCon apps inaccessible for China-based employees.

✅ The Solution

Run a fully mirrored UniCon instance on a local China server, with bi-directional sync via encrypted VPN.

🔒 Connectivity

Tailscale mesh VPN (WireGuard) bypasses GFW, enabling secure server-to-server communication.

🎯 Management

All management centralized at Google Cloud (Japan). No on-site personnel required in China.

Architecture Overview

🇯🇵 GOOGLE CLOUD (Global Master) 🇨🇳 HUAWEI SERVER (China Local) ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ │ UniCon Apps (IERP/IRS/MAS/ASIS)│ │ UniCon Apps (IERP/IRS/MAS/ASIS)│ │ MySQL Master (Global Data) │ │ MySQL Master (China Data) │ │ Qdrant VectorDB │ ◄════► │ Qdrant VectorDB (Mirror) │ │ Hermes Agent (ASIS Global) │ Tailscale│ Hermes Agent (ASIS China) │ │ Google Drive │ VPN │ Local Storage (40TB HDD) │ │ GCE: 136.110.87.61 │ │ HUAWEI RH2288 v3 │ ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ ▲ ▲ │ │ Japan + Global Users China Domestic Users

Server Specifications

🇯🇵 Google Cloud

Platform	Google Compute Engine
Region	asia-northeast1 (Tokyo)
IP	136.110.87.61
Services	MySQL, Qdrant, Hermes, Apps

🇨🇳 China HUAWEI

CPU	Xeon E5-2696v4 ×2 (44 cores)
RAM	DDR4 256GB
Storage	256GB SSD + 40TB HDD
Chassis	FusionServer RH2288 v3

Data Authority — Conflict Prevention

Each server owns write authority for its regional data. Both have read access to all data.

Data Type	Write Authority	Read Access
Japan / Global Orders	🇯🇵 Google	Both
China Domestic Orders	🇨🇳 China	Both
Product Master Data	🇯🇵 Google	Both
China Customer Data	🇨🇳 China	Both
KBMS Documents	🇯🇵 Google	Both
China Local Documents	🇨🇳 China	Both

Synchronization Strategy

MySQL

GTID-based replication
↔ Bi-directional
⏱ Real-time

Qdrant VectorDB

Snapshot transfer
🇯🇵 → 🇨🇳 One-way
⏱ Daily scheduled

File Storage

rclone over VPN
↔ Bi-directional
⏱ Every 5 minutes

Agent Tasks

Hermes API
↔ Bi-directional
⏱ Real-time

Management — Control Tower

All management centralized at Google Cloud. China managed remotely via Tailscale VPN.

Task	Method	From
Code Deployment	Git push + Docker rebuild	🇯🇵 Google
Server Monitoring	SSH + Hermes health checks	🇯🇵 Google
DB Sync	Replication monitoring	🇯🇵 Google
App Updates	Docker Compose restart	🇯🇵 Google
Agent Tasks	Main → China delegation	🇯🇵 Google
Incident Response	SSH via Tailscale	🇯🇵 Google

User Access Map

User Group	Access Point	Server	Channel
🇯🇵 Japan Staff	unicon.mitomo.co.jp	Google	Web / DingTalk
🌏 International	unicon.mitomo.co.jp	Google	Web
🇨🇳 China Staff	Internal IP / CN domain	China	Web / DingTalk
👤 Owner (Admin)	Both servers	Both	Antigravity + Hermes

Disaster Recovery

If either server goes down, the other continues independently. Sync resumes on reconnection.

Implementation Roadmap

Phase	Task	Duration
1	Tailscale VPN setup (both servers)	1 day
2	China server infrastructure (Docker, MySQL, Qdrant)	2 days
3	UniCon app deployment on China server	2 days
4	Data synchronization pipeline	2 days
5	Hermes Agent setup (China)	1 day
6	Testing & validation	1 day
	Total	~9 days

UniCon

Unified Convergence — Dual Server Architecture

MITOMO Inc. — Confidential