Techly NewsGet the app

Get the latest tech news

Building a Homelab, Part 4 – Nixification, Kubernetes


- Nixification, Kubernetes May 17, 2024 | 30 min. read This is the fifth post in a series on the homelab that I've been building.

The BIND server still lives outside of Kubernetes and in a single Docker container on athena(I figured I should limit the blast radius in case the k8s cluster has an outage), so all I had to do was edit the record to point to heracles.lab.janissary.xyz instead. I'll probably do a full post-mortem of the outage in a future post, but to summarize: the Tailscale key for heracles expired one afternoon, so out of nowhere I was both unable to reach any*.lab.janissary.xyz service nor could I interact with the Kubernetes API via kubectl. It won't prevent the Kubernetes API going down again, but some DNS-level load balancing will help increase the resiliency of the web services since any node can now route HTTP requests via the Traefik ServiceLB DaemonSet.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Kubernetes

Kubernetes

Photo of Homelab

Homelab

Photo of nixification

nixification

Related news:

News photo

Rebuilding my homelab: Suffering as a service

News photo

How to Use the Grafana Operator: Managing a Grafana Cloud Stack in Kubernetes

News photo

Hackers hijack OpenMetadata apps in Kubernetes cryptomining attacks

« Compilers for free with weval
The smells and tastes of a great video game »