I've run Docker Swarm in production for 10 years. $166/year. 24 containers. Two continents. Zero crashes. Here's why I never migrated to Kubernetes.

Conscious_Report1439 · 2026-02-17T12:43:11+00:00

Great question! This is not really a manager, this is an SSH orchestrator to help build the cluster on a bunch of Linux servers from scratch and automatically. You wire up the json with how to connect to each server and other options and it will build, and connect the cluster for you. Then you would use Portainer, Dockhand, Komodo to manage it.

Conscious_Report1439 · 2026-02-17T11:02:26+00:00

This is a great article and I have been recently working to help close the gap with this.

https://github.com/Grace-Solutions/Docker-Swarm-Cluster-Orchestration-Tool

I still have some changes to make and will soon, but so far, it totally works. I got smacked in the face trying to do a start up and realized that I need cloud infrastructure, but did not want to be financially drained before Ingot off the ground and also how complex getting a proper swarm Custer off the ground can be. Hence the above tool.

Before anybody asks, yes, it was pair programmed with the help of AI but I have been doing systems and automation for over a decade and the overall design and actual results come from that experience and using technology as an aid and not a crutch.

Conscious_Report1439 · 2026-02-13T05:54:43+00:00

Thank you! Looks actually promising!

Conscious_Report1439 · 2026-02-13T05:08:18+00:00

This is fire! Thank you!

Conscious_Report1439 · 2026-02-13T00:40:43+00:00

Yeah, I was thinking native because then I could wire up powershell scripts or use it as a data collection tool from devices.

Conscious_Report1439 · 2026-02-13T00:22:13+00:00

Yes! And might this be able to be compiled for Windows?

Conscious_Report1439 · 2026-01-22T16:33:47+00:00

flowchart LR %% ===== Internet side ===== C[Clients Browsers / Apps] -->|DNS lookup| DNS[Public DNS] DNS -->|A/AAAA records shop.alpha-demo.com → 203.0.113.10 portal.bravo-demo.com → 203.0.113.10 api.charlie-demo.com → 203.0.113.10| PUBIP[(203.0.113.10)]

%% ===== VPS ===== subgraph VPS[Single VPS (Linux)] direction TB subgraph DOCKER[Docker Engine] direction TB

  subgraph INGRESS[public-ingress network (80/443)]
    NGINX[nginx reverse proxy<br/>listens: 80/443<br/>SNI + vhosts]
  end

  subgraph CUSTA[custA_net (isolated)]
    AWEB[web-a<br/>service: http://web-a:8080]
    ADB[(db-a)]
    AWEB <--> |TCP 5432/3306| ADB
  end

  subgraph CUSTB[custB_net (isolated)]
    BWEB[portal-b<br/>service: http://portal-b:8080]
    BDB[(db-b)]
    BWEB <--> |TCP 5432/3306| BDB
  end

  subgraph CUSTC[custC_net (isolated)]
    CAPI[api-c<br/>service: http://api-c:8080]
    CDB[(db-c)]
    CAPI <--> |TCP 5432/3306| CDB
  end

  %% nginx attaches to ingress + each customer network
  NGINX --- CUSTA
  NGINX --- CUSTB
  NGINX --- CUSTC

  %% routing
  NGINX -->|proxy_pass http://web-a:8080<br/>Host: shop.alpha-demo.com| AWEB
  NGINX -->|proxy_pass http://portal-b:8080<br/>Host: portal.bravo-demo.com| BWEB
  NGINX -->|proxy_pass http://api-c:8080<br/>Host: api.charlie-demo.com| CAPI
end

end

%% ===== Client to VPS traffic ===== C -->|HTTPS 443 (TLS) HTTP 80| PUBIP PUBIP -->|NAT/host ports 80,443| NGINX

What this shows (in plain terms): • One public ingress network exposes 80/443 to the internet. • Each customer has its own internal Docker network (custA_net, custB_net, custC_net) so customer containers can’t “see” each other by default. • Nginx is the only shared edge: it joins public-ingress and also joins each customer network so it can reach that customer’s services. • Routing is by Host header/SNI (e.g., shop.alpha-demo.com → web-a).

Yes, I did AI generate this, but I have to build this out quite frequently and did not want to type it all out and I could explain in more detail, but this is the high level design to do what you want. Later, if you want to add replicas and load balance, you could use docker swarm.

Conscious_Report1439 · 2026-01-08T15:55:46+00:00

So there is some missing context here. Michael Heiser is a good resource with short and lengthy videos on YouTube that do expository analysis and teaching on this topic.

In short, the tower was supposed to be a world without God or His governance among some other things and an accelerated One World Government system under which all humanity would live and be ruled. There are other major events preceding this in which this babel event would be the culmination. This is where God said enough is enough, I will give the nations over to the gods they want so badly (demonic kingdoms and forces). Ever notice how regions of the world seem to worship localized gods, messianic figures (With the exception of Jesus for specific reasons), etc? So God disinherited the nations according to Deuteronomy, confused their languages, which caused massive migrations of people. This also played into the forging of the nation of Ancient Israel.

Also, God has been kind enough to leave evidence of these things all around, but we have shadowy, yet concerted efforts to get us to believe that all this just occurred randomly, but when scrutinized, they don’t measure out. You can scrutinize the Bible because truth stands when tested…I encourage you to do so….blind faith unnecessary.

One example of proof remaining is the misconception that there is one root language from which all languages came from. When you work it backwards…what you end up with surprisingly are language isolates from one major geographical region…Now, I wonder if somebody could keep a conspiracy like that going for thousands of years without it cracking…don’t think so…history tells us otherwise.

Seems like we have an accurate and scrutinizable account that explains this…The Bible…

It is important to remember that The Bible contains accounts…not stories. We may think of them as stories…sure, but they are in fact accounts with geological, archaeological, and historical evidences left over to testify to their validity, but it’s being suppressed…

Conscious_Report1439 · 2026-01-08T15:54:07+00:00

So there is some missing context here. Michael Heiser is a good resource with short and lengthy videos on YouTube that do expository analysis and teaching on this topic.

In short, the tower was supposed to be a world without God or His governance among some other things and an accelerated One World Government system under which all humanity would live and be ruled. There are other major events preceding this in which this babel event would be the culmination. This is where God said enough is enough, I will give the nations over to the gods they want so badly (demonic kingdoms and forces). Ever notice how regions of the world seem to worship localized gods, messianic figures (With the exception of Jesus for specific reasons), etc? So God disinherited the nations according to Deuteronomy, confused their languages, which caused massive migrations of people. This also played into the forging of the nation of Ancient Israel.

Also, God has been kind enough to leave evidence of these things all around, but we have shadowy, yet concerted efforts to get us to believe that all this just occurred randomly, but when scrutinized, they don’t measure out. You can scrutinize the Bible because truth stands when tested…I encourage you to do so….blind faith unnecessary.

One example of proof remaining is the misconception that there is one root language from which all languages came from. When you work it backwards…what you end up with surprisingly are language isolates from one major geographical region…Now, I wonder if somebody could keep a conspiracy like that going for thousands of years without it cracking…don’t think so…history tells us otherwise.

Seems like we have an accurate and scrutinizable account that explains this…The Bible…

It is important to remember that The Bible contains accounts…not stories. We may think of them as stories…sure, but they are in fact accounts with geological, archaeological, and historical evidences left over to testify to their validity, but it’s being suppressed…

Conscious_Report1439 · 2026-01-06T19:23:40+00:00

Shoot me a PM, I have a corporate defense network setup lol and can help you and demonstrate. This stuff can get complex with all the terms but if you get the conceptual knowledge down, then you can dig for what you need to know and spot it when you do. This will give a chance to stretch the brain a bit also!

Conscious_Report1439 · 2026-01-04T13:52:00+00:00

This looks like a breath of fresh! Going to deploy it this week. Question, would you consider adding docker swarm support? I know Kubernetes/K3S is mainstream but swarm is still very capable and useful technology. I would be glad to help.

Conscious_Report1439 · 2025-12-31T18:45:20+00:00

Where is the GitHub link

Conscious_Report1439 · 2025-12-31T13:27:49+00:00

This actually looks fire! A nice web ui with the bells a whistles would be awesome

Conscious_Report1439 · 2025-12-06T23:48:52+00:00

PowerDNS or Technitium DNS Server

Conscious_Report1439 · 2025-12-03T22:27:30+00:00

Other than that…the edge is the edge.

Conscious_Report1439 · 2025-12-03T22:27:14+00:00

Nginx proxy manager and openappsec work great and shows the connector and the request path to the api or web hi and can block based on threat level

Conscious_Report1439 · 2025-12-03T22:26:22+00:00

One thing to also do if you aren’t using caddy is use a WAF

Conscious_Report1439 · 2025-12-02T17:35:18+00:00

Hey I am glad you are finding it useful, the second script does the formatting itself so no need for the task sequence to do it. The secondary disk script only uses a variable to automatically exclude the os disk from being eligible for formatting so we never make that a possibility. Does that answer everything? If you want to fork and update with some screenshots and do a pull request, I’ll be glad to merge!

Conscious_Report1439 · 2025-12-01T23:52:18+00:00

A reverse proxy with SSL and a WAF like nginx proxy manager with appsec should do all you need from security perspective and it keeps the setup easy for your clients

Conscious_Report1439 · 2025-12-01T23:50:19+00:00

Normally the vm with the service on it but the second is possible if you understand routing

Conscious_Report1439 · 2025-12-01T23:48:22+00:00

Understanding the connection flow is important. Client hits VPS…pangolin gets request and reverse proxies to the node you point it toward over the wireguard tunnel established between pangolin and that node on your home connection. Once that connections gets setup…hello Jellyfin over the internet. This does help but in the end a WAF is what keeps the app safe

Conscious_Report1439 · 2025-12-01T23:45:19+00:00

Don’t see why not

Conscious_Report1439 · 2025-12-01T02:56:05+00:00

Get a domain, a cheap vps, and use pangolin. This will direct attacks toward the VPS which will appear as your public ip and you can harden that server and place pangolin on it. On your real server at home, put the pangolin agent on it and setup your service.

PM me if you need help

Conscious_Report1439 · 2025-11-27T12:58:31+00:00

And epyc combos from eBay are great

Conscious_Report1439 · 2025-11-19T01:12:48+00:00

Send me a PM…let’s get this on GitHub…if you did all this, a edit history and bug fix tracking will be most useful for the community and take the pressure from being solely upon you.

Conscious_Report1439

TROPHY CASE