This is my kubernetes homelab, currently running on a cluster of MinisForum devices. Photos to be added when I finish the enclosure.
Click here to see my high-level network diagram
- Talos OS for immutability, security, performance, ease-of-use. For my homelab, I've deployed this on Proxmox so I'm using nocloud, but for a bare metal install there are a lot of great tools you can use
- Automation, including GitOps using FluxCD, Reloader, and other deployments
- Local OCI registry mirror using spegel
- Cert-manager with LetsEncrypt and DNS authorization
- Cilium container networking and CoreDNS with network policies for most things
- Secrets encrypted using a mix of SOPS and external-secrets accessing Bitwarden
- OIDC authentication with Authelia and LLDAP (TODO: Reimplement this)
- Traefik internal and external ingress with hardened security and Anubis to block AI crawlers
- Databases for Cloudnative PG, MinIO, Dragonfly, Mosquitto, and, if you can find it in my archive, MS SQL Server
- Storage managed by OpenEBS
- Various drivers and utilities
- Observability tools and exporters including Prometheus, Grafana, Loki, and others
- Many self-hosted deployments, including a Homepage, game servers, a media stack, and my personal website
- Taskfiles (go-task) and scripts for ease-of-use
- bjw-s for app-template
- brettinternet for inspiration
- onedr0p for inspiration