I'm looking for advice on how to run kubectl on my homelab Kubernetes cluster while I'm away from home. Additionally, I want to know the best methods to access services running in the cluster, like ArgoCD, over the internet. Any suggestions are welcome!
6 Answers
Another good alternative is using Cloudflare Warp along with Cloudflare Tunnel. It provides secure access without the hassle of managing the underlying infrastructure yourself.
SSH tunneling can also work well! By setting up SSH with public key authentication and mapping it to a non-standard port, you can securely access your cluster from anywhere. Just remember the whole port-forwarding and firewall rules to keep it secure.
Using Tailscale is one of the easiest solutions I’ve found! It creates a secure network mesh allowing you to access your homelab from anywhere. If you want something self-hosted, you can look into Headscale as a good alternative. A lot of users rave about how user-friendly Tailscale is compared to other options.
I’ve heard great things about alternatives like NetBird too. It feels more straightforward compared to Tailscale.
If you prefer exposing services directly, you could set up an ingress controller to manage external access to your Kubernetes services, but you'll need to handle DNS, security certificates, and such, which can get complicated real fast. I’d recommend sticking with a VPN solution if you're looking for security and simplicity.
For a solid choice, consider setting up a VPN using WireGuard or OpenVPN. These will let you securely connect to your home network, and then you can interact with your cluster as if you were at home. Just make sure you have a consistent public IP or dynamic DNS setup! If you travel a lot, a small travel router configured with a VPN can be really handy.
Thanks for the tip! Having a travel router sounds like a smart move.
Yeah, totally! That way, you can just connect to any available network and still access your homelab.
I personally use a Cloudflare Tunnel. It sets up an outbound connection from your cluster, allowing you to access services securely from anywhere. It's a clean way to manage access without exposing too much.
Totally agree, Tailscale is a fantastic choice for simplicity!