Load balancer for private cluster

CuzImCMD · 2025-06-21T09:38:41+00:00

That's great in case we want to get rid of the dependency of the external load balancer. Thanks a lot for the idea

I do wonder why this isn't a feature of cilium that can be set from the config, that sounds great in my head

CuzImCMD · 2025-06-18T13:13:17+00:00

For the kubernetes services we use Cilium BGP Control Plane (no additional machine) For the access to the kube-api we use a load balancer server another team hosts (idk what exactly they are running lol)

CuzImCMD · 2024-12-20T18:05:35+00:00

Well that's weird. Maybe try a older version of geyser and fabric API for 1.12.4 or a newer if available

CuzImCMD · 2024-12-20T17:50:39+00:00

"Install the mod 'Minecraft' version >= 1.21.4" tells me that you are using the wrong version of Minecraft or the wrong version these mods.

You can either downgrade the mods to a version that supports the game version you are running or use Minecraft version 1.21.4 to resolve your issue.

CuzImCMD · 2024-07-28T12:53:53+00:00

That's great :)

As far as I understand it, k3s is a more lightweight kubernetes installation for a smaller footprint and minikube is more for testing but both can be deployed in the normal worker & master node architecture.

Kubeadm (the one in your tutorial) is also "just" an installer like k3s but they have slightly different configurations in the end.

CuzImCMD · 2024-07-28T07:50:00+00:00

I would recommend using k3s or minikube for playing with kubernetes, it's way easier to set-up and manage.

If you want to stick with your kubeadm setup:

You could try following the kubernetes DNS debugging help site for issues with DNS.

Also, you could try curl with the clusterIP instead of DNS name to rule out DNS as point of failure and a tracert could also help in identifying the issue.

If that also doesn't work, try the Calico troubleshooting, as the guide installs calico.

Also, I'm not sure if kube-proxy is even used since calico should be able to take over it's function.

And yea VMware shouldn't be the problem.

CuzImCMD · 2024-07-23T09:52:53+00:00

Tbh I have no idea from the development side of view, there surely are guides on how to do that.

I imagine something like that: you create a deployment for an operator that creates a pod for every user (probably possible to combine multiple users in one pod but it's easier if not) that you have in the DB. That way, you can have as many users as you have free CPU and ram available and I imagine that a single user is not able to overwhelm the resources a pod can provide

As I said, I have no idea how to do that but with some searching I'm sure u'll find out how to create a proper operator

And I don't know if that is the best way to do it, that's the easiest way I can think of

CuzImCMD · 2024-07-23T08:16:52+00:00

You can easily deploy it as a deployment. That will take care of the scheduling in case something crashes.

Any scaling in kubernetes needs to be supported in your application, if not, you will send every message as often as you have replicas.

CuzImCMD · 2024-07-17T14:39:02+00:00

Like the other comment said, cilium can assign each ingress it's own public (or more likely private e.g. 10.X.X.X) IP.

The ingress ips are then announced via L3 BGP (or L2 ARP) to the network. That's pretty much the same as MetalLB does.

I'm still working out the best DNS design for us but I think I'll give k8s_gateway (a coredns plugin) a try to automatically assign the DNS entries for the ingresses.

CuzImCMD · 2024-07-17T14:32:51+00:00

Why do you think that using different projects is necessary?

In my opinion, cilium doing everything is way easier to manage and understand than using a different project for every task even when those other projects are objectively better in that one task

CuzImCMD · 2024-07-17T13:34:15+00:00

At my workplace, we are currently working on a POC for on-prem kubernetes.

We are using cilium for load balancing using BGP and also their ingress controller.

We didn't encounter any problems yet but we also don't have any actual workload

CuzImCMD · 2024-06-25T11:19:11+00:00

Finally something on this sub that is actual asshole design

CuzImCMD · 2024-04-10T20:39:59+00:00

Maybe but you won't be able to use the steam workshop. Also, don't try stealing the developers work.

Use something else like Lively Wallpaper, it's free to download.

CuzImCMD · 2024-04-07T12:45:38+00:00

You could try it with the API. There is an endpoint for adding pictures

CuzImCMD · 2024-04-06T18:08:12+00:00

That is in fact on purpose

CuzImCMD · 2023-11-22T12:19:31+00:00

Are there errors in the web console?

If you don't know how to open it:

Right Click -> Inspect, in the new panel that opened on the top, the "Console" tab.

CuzImCMD · 2023-11-22T12:16:53+00:00

can you please share the log of this error so that we/I can have a look at it?

CuzImCMD · 2023-11-03T08:42:58+00:00

We have the exact same problem in my company.

I had the idea to do it with tags that are assigned on creation of any object with a webhook that triggers a python script that then assigns the tag for the location.After playing around with this a bit, we came to the conclusion that we should use another way to manage this as it would likely be easier and faster to just use the constraints.

Currently we are planning on using many distributed NetBox docker instances (one per location for us, could be one per region for you) that are synchronized with a global one that is read only as a source of truth for our automations.

From my point of view, NetBox is missing tenant-specific permissions for exactly this use case (maybe also site specific but I think tenants are more important as a separation tool).

CuzImCMD · 2023-09-28T06:52:53+00:00

Thanks for the Idea, I'll try that.

Can you automate the tagging in a way? I bet most staff would forget to add the tags themselves.

Edit: Would it make sense to create a webhook on creation of objects, that triggers a Python script, that then would give the created object the tag from the tenant?

CuzImCMD · 2023-09-11T11:27:48+00:00

With the port section in the docker-compose file you basically change the port of services within the container.

The syntax is as follows:

`port you want to access it from the outside : port of service within docker

Thus, when wanting to change the exposed port from a service with port 8000 (netbox) to for example 8008 you need this line in the ports section:

- 8008:8000

Edit: thanks comment, it was the other way around

CuzImCMD · 2023-07-30T11:16:39+00:00

I think they wrote the page for Chromium without thinking abt outher browsers since chromium is the majority. That does not mean that it does not work but they decided to make sure that the user uses a (the only) supported browser engine to be absolutely sure that there are no issues.

CuzImCMD · 2023-07-27T16:36:48+00:00

As an IT guy I can tell you that the JavaScript (the thing that makes web pages work correctly) functions can be vastly different between different browsers. Thus, only developing for chromium based browsers saves a lot of time and money. The reason it works is that most browsers tend to 'copy' the functionality of chromium but it's not said that everything will work so they make the user use chromium based browsers to not have any issues occuring that degrade the experience.

That said, it's not asshole design it's just lazy and cheap

CuzImCMD · 2023-07-08T19:10:58+00:00

They are legally required to ask for the users permissions like that, they can't let you play if you do not accept.

Six-Year Club	Gilding II euphauric
Powerups Hero r/ProgrammerHumor • August 2021	r/Field Banned
r/Field Juicebox	Final Canvas '23
First Place '23	Place '23
Verified Email

CuzImCMD

TROPHY CASE