|
|
|
|
|
|
by alephu5
1798 days ago
|
|
|
There are some good ansible playbooks on GitHub for nomad, consul and vault. I personally don't use vault because it's overkill for the proeuct in working on at the moment. To avoid the pain of managing a CA and passing out certificates for TLS between services, I use a wireguard mesh and bind nomad, consul and vault to these wg interfaces. This includes all the chatter of these components, as well as the services I deploy with nomad. It's configured such that any job can join the "private" wireguard network or "public" internet gateway. It takes a few days to set up, but it's very easy to manage. |
|
|
I’m a freelancer that hosts client stuff and I need something between “SSH into server” and “kubernetes.”
No, I never did buy the docker hype. Seem to be doing okay.