This is just a space for me to share some notes and thoughts. I hope someone finds something useful here. Zola 2025-11-23T00:00:00+00:00 https://suchaboris.com/tags/kubernetes/atom.xml 2025-11-23T00:00:00+00:00 2025-11-23T00:00:00+00:00 Unknown https://suchaboris.com/blog/the-power-of-hands-on-learning/ <p>This week, I wanted to highlight briefly how important it is to be <strong>hands-on</strong> with any learning. Theory is great, and I would have learned a lot just by reading <strong>Kubernetes</strong> docs and examples. But I would never solidify that knowledge if I hadn't built my own <strong>K8s cluster</strong>.</p> <p>When you are actually applying what you have learned, there is some different feedback loop in the brain that makes it stick better. I'm sure other people can explain it better. All I want to say is if you want to learn something new, just reading about it is not enough. You need to practice it. I know that's nothing new, it's a well-known fact. I'm just comprehending and appreciating it much more after doing it myself.</p> <p>I find it a bit relevant with <strong>AI</strong>. I always ask it to explain to me what and why it is doing certain things so I understand. But when I actually do something similar myself, my understanding is much deeper. And that's just much more satisfying.</p> 2025-11-16T00:00:00+00:00 2025-11-16T00:00:00+00:00 Unknown https://suchaboris.com/blog/using-nas-as-a-data-layer-for-k8s/ <p>I have only had time this week for a tiny personal project. And that project was to use my <strong>NAS</strong> as a data persistence layer for at least some of the apps running in my <strong>K8s cluster</strong>. It was surprisingly easy.</p> <p>The setup required tinkering with nodes and <strong>K8s</strong> manifests, but it all went very smoothly. So now I have my <strong>Minecraft</strong> server storing all the data on my NAS via <strong>NFS</strong>, so even if my lab's hardware fails, the data will not be lost. And as I'm running backups on the NAS itself, I can protect the data even more.</p> <p>There is a tiny latency tradeoff. I did notice a bit of a lag in Minecraft, as it has to read and write files a lot. But because all connections are wired and the lab and NAS are on the same switch, it has not been a problem so far. If it becomes worse, I can always revert back to local storage just for one app.</p> 2025-11-09T00:00:00+00:00 2025-11-09T00:00:00+00:00 Unknown https://suchaboris.com/blog/running-my-own-minecraft-server/ <p>For months, if not years, creating a <strong>homelab</strong> was on my mind, but I kept postponing it because I lacked a clear goal for what I'd run there.</p> <p>When I finally started working on it in October, the motivation was very simple: My oldest kid wanted to play <strong>Minecraft</strong> together! :)</p> <p>It took a bit of time and a lot of extra steps to ensure I did it the way I wanted. I learned so much about <strong>Kubernetes</strong> and all the related tools along the way, which was part of the goal.</p> <p>I'm happy to share I now have a <strong>Minecraft server</strong> running in my <strong>K8s homelab cluster</strong>. It is always on, there is no lag, and it's running surprisingly well.</p> <p>I have other lab projects in mind, but I am very happy that the idea that started it all is now complete.</p> 2025-11-02T00:00:00+00:00 2025-11-02T00:00:00+00:00 Unknown https://suchaboris.com/blog/debugging-k8s-network-policies/ <p>My focus last week (in personal projects space) was to add network policies to my <strong>homelab</strong>. I added them to all custom namespaces but, in the end, had to revert some and replace them with less restrictive ones because some things just stopped working, and I had no time to investigate why.</p> <p>The biggest challenge was in the very beginning when none of the policies I added did anything. Everything looked good in the logs and on the <strong>K8s</strong> cluster. I mean, there were no errors or reports of invalid configs.</p> <p>After several hours of cumulative debugging, checking all configs, and brainstorming with AI, I found that my nodes just didn't have the <strong>iptables</strong> binary! 🤦</p> <p>Everything looked great in the logs, but no rules were enforced. After adding the binary and updating my bootstrap scripts, all the rules started working as intended.</p> 2025-10-26T00:00:00+00:00 2025-10-26T00:00:00+00:00 Unknown https://suchaboris.com/blog/the-joy-of-scope-creep-in-a-homelab/ <p>Last week was a classic case of <strong>scope creep</strong> (for a personal project): I started one task and it instantly spawned five more. On one hand, it's a good learning process; on the other, it feels less productive because my To-Do list got bigger, not smaller.</p> <p>All I wanted was to set up some <strong>security scanner</strong> for my <strong>homelab K8s cluster</strong>. After researching different tools, I spun one up and got a summary report, which was great. Time to start fixing vulnerabilities and misconfigurations, right?</p> <p>Well, I thought I needed to set up alerting first so I know the number does not go up. But for that, I need to set up <strong>secret management</strong> so alerts can be sent via email. And each part requires quite a bit of reading, research, and evaluation of which solution will work best for my case.</p> <p>And so, by the end of the week, my To-Do list for the homelab is twice as big as it was when the week started. And I love it. I am learning so much with this project.</p> 2025-10-19T00:00:00+00:00 2025-10-19T00:00:00+00:00 Unknown https://suchaboris.com/blog/my-homelab-is-ready/ <p>I'm very happy to share that I've finished setting up my <strong>homelab</strong>!</p> <p>It took about a month to go from "I want to run a homelab on <strong>Kubernetes</strong>" to successfully using my first self-hosted app. I thought it would take much longer with my limited time, so this is a big personal milestone.</p> <p>I have two <strong>old laptops</strong> I got from friends sitting in my garage, running a Kubernetes cluster leveraging <strong>Debian</strong> and <strong>k3s</strong>. At the moment, it's a full monitoring stack (<strong>Prometheus</strong> + <strong>Grafana</strong>) and a simple app, all running smoothly. Seeing the metrics in Grafana for the first time was incredibly satisfying.</p> <p>This entire setup relies on a <strong>GitOps</strong> flow, specifically using <strong>FluxCD</strong> to manage all deployments. I had to fight a number of quirks setting everything up, obviously, but that's just a part of the learning process.</p> <p>Next up: adding some security layers, then deploying more useful applications.</p> <p>If you want the technical details, check out my <a rel="external" href="https://github.com/prymost/homelab">Homelab repository</a> on GitHub.</p> 2025-10-05T00:00:00+00:00 2025-10-05T00:00:00+00:00 Unknown https://suchaboris.com/blog/docker-in-docker/ <p>For people who already knew this, it might be trivial, but I learned something interesting last week.</p> <p>I knew you can run pretty much anything in <strong>Docker</strong>. And I knew Docker with <strong>Compose</strong> or equivalent tools can be used to run a whole dev environment or something like <strong>Testcontainers</strong>. I'd even heard at some point that you can potentially run <strong>Docker inside Docker</strong>, but I either didn't pay attention or had no use for it. And that's what blew my mind when I tried it last week.</p> <p>As I'm building out my <strong>homelab</strong>, I set up a full <strong>Kubernetes</strong> cluster in a <strong>devcontainer</strong>, and I can easily test new deployments locally. Using my own <strong>YAML</strong> or <strong>Helm</strong>—it doesn't matter. Everything is in a container. The whole <strong>K8s</strong> cluster inside Docker. What? It still blows my mind.</p> <p>If you want to see how I set it up, check out my <a rel="external" href="https://github.com/prymost/homelab/tree/main/.devcontainer">Homelab DevContainer configuration</a> on GitHub.</p>