Hacker News new | past | comments | ask | show | jobs | submit login

Even though I fully agree with you, running a little 3 node cluster just for fun is amazing. Thanks to Rook and an Nginx ingress controller with kube-lego, I’m able to deploy applications leveraging distributed storage and getting tls secured endpoints without a single ssh session. This, in my point of view, is absolutely powerful.

Shameless plug, I‘ve been working on a project explaining how to run small scale clusters in the cloud for more than a year: https://github.com/hobby-kube/guide




You may want to update your tutorial to use cert-manager because kube-lego is in maintenance-only mode


Thanks for the hint, I didn‘t know that. Related issue: https://github.com/hobby-kube/guide/issues/47


cert-manager is marked as alpha/non-production currently.


(Off Topic) interesting that we're seeing two radically different philosophies of software development in this thread, in stark contrast.


So is kube-lego.


You mean, it's stable. That sounds like a good reason to use it, not to avoid it.


Not really; I had an issue that silently broke renewals. When I found the open issue that corresponded to it the maintainers were herding people to cert-manager. There are a lot of issues where they are doing that (besides very obviously at the top of the README with warning symbols).

At the very least it's eventually going to break on newer versions of Kubernetes. Maintenance-only != LTS.


Maintenance-only usually means deprecated. There are some areas in the software world where maintenance-only can last a long time and can be de facto LTS. The Kubernetes ecosystem is not one of them.


It doesn’t support ACMEv2, Wildcard certs, and more. And Certmanager is alpha. The alternatives are all horrible.


From the Kube-lego github page, it looks like the last version of k8s is supports is 1.8, which will only be supported until 1.11 comes out.

So sounds more like it's deprecated than stable.


Depends on where you come from. In JS world, stable means there's a fork in it, and it's grayer than last weeks' meat. In server-side world, that means you're good to build a business on it for 15 years


You: Look what I did with k8s

Top voted reply: You had to use a thing to do what you want, and that thing isn't even supported any more. [Either I was hallucinating at the time and imagined it, or there was a reply that got deleted]

I think you've just quite nicely demonstrated the original authors point.


You sound like you‘re new to this business.


Sometimes the people "new to this business" have the best ideas. It's more likely that I'm a grumpy old man worried about his lawn.


Ooh, thanks, this is just what I've been looking for.


>"Rook and an Nginx ingress controller with kube-lego"

Can you elaborate on this configuration, specifically Root and Kube-lego? I am not familiar with those.


Thanks for sharing about hobby-kube.


How did I not find this one month ago, as I set up a two node hobby cluster?!


> I’m able to deploy applications leveraging distributed storage and getting tls secured endpoints without a single ssh session

Is it grammatically possible to use more buzzwords in a single sentence? Reading that made me want to vomit.


The words have meaning. If you don't understand them you could just ask for them to be explained rather than throwing out insults. I suspect you actually do understand the meaning of what was written though so I suppose that means you're just trying to start a flamewar.


The problem is that "leveraging" can be replaced with "using" every time, with the added benefit that it won't leave a bad taste in the reader's mouth.


This is what I mean.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: