Kubernetes is everywhere and can support many interesting use-cases for hosting services, while some feel it is overkill - decide for yourself.
This talk is based on my experience as a Unix, Internet and Security person with researching K8s over some years and setting up my own infrastructure with Kubernetes in a small production setup. The main points in the talk are:
- Experiences running the setup for one more year now
- Upgrading this small setup
- How do you bring up a bare-metal test-cluster using Kubeadm, I use two small VMs for all of it
- Cilium as the network plugin - and listing some things I noticed, like your setup may be correct, but the version of cilium can have a problem
- Keeping your cluster connected to the outside world with BGP, worked nicely
I use this to run a small set of services based on Nginx as ingress controller, and Nginx serving applications (very boring static sites generated using Jekyll) you can see the result at: https://garden.kramse.org which also documents this setup
The talk is based on my experiences, and I would love to discuss more K8s security before and after, and will be at BornHack all week.
Speakers for Experiences with a small on-premise Kubernetes setup:
Metadata for Experiences with a small on-premise Kubernetes setup
To be recorded: YesTo be streamed: Yes
URLs for Experiences with a small on-premise Kubernetes setup
Slides: https://codeberg.org/kramse
Schedule for Experiences with a small on-premise Kubernetes setup
-
Not scheduled yet