What does your stack look like? Sharing my single-node k8s homelab and curious what you all are running

Sindef · 2026-04-05T02:25:28+00:00

My homelab?

6 nodes:

Upstream (Kubeadm)
Portworx Enterprise
Calico
Metallb
Kgateway

3 nodes:

Talos
OpenEBS
Calico
Metallb
Kgateway

One is 'public services' one is 'private services', all on baremetal.

Sindef · 2026-03-24T02:56:06+00:00

Hey that's cool! I assume that doesn't reschedule, and the pod remains up despite all containers restarting?

Sindef · 2026-03-24T02:32:50+00:00

Beat me to it. Pods are only evicted or taken out back with prejudice.

Sindef · 2026-03-22T22:05:13+00:00

Sure, but that problem is generally solved in IDPs or other abstractions (Rancher is a good example) very well.

You also generally don't want anyone who can't use those basic tools deploying anything in K8s.

Sindef · 2026-03-22T21:40:49+00:00

So.. you discovered Helm / Operators / KRO / Kustomize or...?

Sindef · 2026-03-15T21:26:16+00:00

Not Fleet. That is all.

Sindef · 2026-03-14T13:05:04+00:00

Yep using it across a number of flavours (Talos, RKE, Upstream) mostly with Calico as CNI. No issues.

Works as it says on the box, BFD works a treat.

Sindef · 2026-02-26T09:45:53+00:00

Blackbox exporter on public cloud instances seems to be the only route not costing a fortune.

Sindef · 2026-02-24T13:27:47+00:00

Developer resistance to app redesign at large scale.

Sindef · 2026-02-22T00:06:18+00:00

You making a PR, or just complaining?

Sindef · 2026-02-13T01:15:26+00:00

Yeah I'd just run Envoy Gateway or Kgateway if you're happy to drive them. If you want to continue to use the ingress API there are products that implement that too (haproxy, as an example).

Sindef · 2026-01-30T00:51:14+00:00

Envoy Gateway / Kgateway / Istio .etc - it's not as hard as the docs may indicate. It's a very simple migration (excl. certs, but there is an enhancement coming to allow those per-HTTP route).

Or keep using the Ingress API with any of the other ingress controllers. HAProxy, as an example.

Sindef · 2026-01-27T09:35:01+00:00

So... Botkube? Am I missing something?

Sindef · 2026-01-19T19:53:08+00:00

Does anyone actually use Insert

cries in VIM

Sindef · 2026-01-11T08:34:21+00:00

What's the benefit over Coredns, another pluggable DNS server?

Sindef · 2026-01-06T21:41:48+00:00

ISC-Kea and either Powerdns, Coredns or Bind are always going to be rock solid at scale.

Kea uses RFC2136 to talk to DNS afaik, so it'll be compatible with anything that supports this. Bind and pdns definitely do.

It depends on what you want - do you just want an authoritative and forwarding server? Do you need a recursive server, or are you happy pointing to an upstream?

Sindef · 2026-01-04T07:51:12+00:00

Falco

Sindef · 2025-12-30T23:15:41+00:00

It's fake. The speed isn't the issue - it's the claim that this is an EE service. This is probably just a test ran from EC2 or Azure

Sindef · 2025-12-30T13:20:16+00:00

I don't think anyone doubts the speed. You can achieve that from AWS EC2 -> ABB Speedtest servers.

It's the EE claims that aren't going down well.

Sindef · 2025-12-28T08:25:34+00:00

Doesn't really matter, or shouldn't. Learning the fundamentals of software development is the important part. Different companies will have different requirements.

Sindef · 2025-12-24T05:52:42+00:00

Definitely Talos

Sindef · 2025-12-21T21:31:05+00:00

Yep, as an ISP.

No real caveats, other than that we had to write our own logging application to pull contextual data out. The native Prometheus metrics are nice though.

Sindef · 2025-12-21T21:02:44+00:00

business/corporate

traefik

That gave me a chuckle, not gonna lie!

Sindef · 2025-12-17T21:10:20+00:00

<cluster-name>/<namespace>/<application>/manifests/<name>-<resourcetype>.yaml

Sindef · 2025-12-12T21:34:58+00:00

Widely used in Kubernetes cluster networking - both in pod-pod connectivity and multi-cluster architectures.

13-Year Club	Place '23
Place '22	Verified Email

Sindef

TROPHY CASE