BGP Fun

So feel like anytime I start down a BGP rabbit hole it always becomes some major amount of fun. Had a buddy of mine setup BGP in his K3s cluster for his home network and obviously I can't be outdone.

So 3 hours of fighting (and messaging him for some questions) I had BGP configured on my K3s cluster in my DataCenter rack. MetalLB is handling it super well and I am curious about adding some more things onto BGP where possible. Now to just go way overboard with it.

Kong

So I have used NGINX, HA Proxy, and Istio for ingress, but Kong is a new one for me. I have been intrigued since it offers more of the API Gateway options for things. Overall I have spun up some items in the cluster with Kong and endpoints to start routing all of the traffic through that rather than an NGINX VM that I have to SSH into all the time. This is allowing me to manage everything through Flux and just keep everything a little more organized. Especially with so many different certs.

Overall I am liking it more as it is as simple as NGINX while having a lot of the features of HA Proxy.

Cert Manager

An interesting thing that I learned about Cert Manager this weekend is how many different DNS providers are supported through various webhooks. This is allowing a lot of different things to happen for me so that I can do DNS challenges instead of HTTP challenges. Overall this just makes life easier.