[winterqt]

> Tunneling through a single external node defeats the purpose of hosting k8s in home server.

How so? You can just rent a cheap server to tunnel through, while having the benefits of your home machine(s) for compute.

> Maybe the external ingress node can be a load balancer controlled by the k8 cluster. But then you still have to communicate with the home server and it has no exposed ip address

Do you mean that you wouldn’t be able to access the K8s control plane endpoint then (which you could if configured properly)? Or something else?

[TZubiri]

>how so?

SPOF

[Daviey]

And having a single IP address, with one ISP at home isn't a SPOF?

[Daviey]

@TZubiri, Then if that is a risk you accept, you could have multiple VPS's and load balance back to your home network, eliminating the new SPOF.

(@'ing because we reached the maximum reply limit)

[TZubiri]

@Daviey

Or just get your very own static IP.

It's a ZPOF.

Routing happens automatically on nearby router routes

It's deep down a matter of taste, you have a home server in Arizona and you route users to a Hetzner server in Germany and then back?

Don't justify, just recognize it's in bad taste, seek to use ip addresses as geographical host identifiers. Do not hide origin or destination. Minimize

[TZubiri]

You are adding a(nother) SPOF.