►
From YouTube: Kubernetes UG VMware 20220804
Description
August 4, 2022 meeting of the Kubernetes VMware User Group, with a presentation running a Kubernetes homelab on VMware infrastructure, followed by a demo by Amar Gandhi, and a group discussion.
A
A
A
Okay
and
he's
been
working
on
a
project
for
hosting
a
kubernetes
home
lab
on
top
of
vsphere
infrastructure.
So
with
that
said
a
few
things
I
just
posted
a
link
in
the
chat
to
our
agenda
notes
document.
So
I'd
welcome
anybody
to
go
there
and
add
your
name
to
the
attendees
list.
If
you
like,
and
then
let
me
share
a
screen
and
just
start
an
intro
deck.
A
Okay,
then,
what
we're
going
to
start
with
is
just
here's
the
agenda,
we'll
start
with
one
slide
on.
Why
you'd
want
to
do
a
home
lab
a
couple
slides
on
what
you
need
for
this
in
terms
of
what
you
need
to
go
out
and
get
hardware-wise
software-wise,
then
we'll
go
over
some
a
few
suggestions
of
useful
services.
Some
of
them
are
essentially
mandatory.
A
Things
like
you
probably
want
some
source
of
authentication
if
you
might
be
supporting
multiple
users
or
even
if
you're
one
user,
and
you
want
to
run
services
under
separate
accounts,
which
is
probably
a
safe
and
secure
way
to
do
things.
You
might
want
that
and
we'll
just
go
over
the
services
that
you
might
want
running
on
this,
then
I'm
going
to
turn
it
over
to
ammar
and
he's
going
to
demo
what
he's
got
so
far
the
summer
isn't
over.
A
So
we've
got
some
things
on
the
plan
that
have
been
completed,
some
that
aren't
yet
but
are
underway
and
some
that
we've
yet
to
start,
but
I'll
let
amara
cover
it.
We
intend
to
blog
about
all
these
things
and
have
links
so
that
this
could
be
reproduced
by
others.
Then.
Finally,
I'm
guessing
that
all
the
people
here
might
maybe
people
on
this
zoom
already
are
running
their
own
home
lab.
So
let's
share
what
we
experiences
recommendations
and
maybe
even
anti-patterns,
so
why
would
you
want
to
do
a
home
lab?
A
If
you're
in
a
household,
you
know
there
are
services
out
there
that
are
cloud
hosted
many
of
them
claim,
at
least
in
the
marketing
materials
that
they're
quote
free,
but
you
know
there's
an
adage
that
if
the
product
is
free,
maybe
you're
the
product.
In
other
words,
some
of
these
free
services
are
basically
mining
your
data
and
using
them
for
search
engine
ad
placement.
Things
like
that,
and
maybe
doing
this
might
allow
you
to
re
gain
some
level
of
privacy
if
you
can
host
the
media
on
your
own
storage
that
you
own.
A
Finally,
there
is
some
level
of
protection
here.
If
you
choose
to
do
things
like,
say
home,
automation,
that
outsourcing
that
to
a
public
cloud
exposes
you
to
outages
of
the
service,
your
internet
connection
and,
on
a
longer
term,
sad
to
say
there
has
been
a
history
of
people,
maybe
not
making
enough
money
or
getting
acquired
and
shutting
down
these
services.
You
know
I
personally
had
my
music
collection
up
on
google
music
for
a
while
they
re
they
retired
it.
A
I
think,
as
many
as
half
the
internet
hosted
home,
automation,
services
have
disappeared
over
the
course
of
the
last
five
or
ten
years.
For
example,
now
there
are
downsides
of
hosting
your
own.
First
of
all,
you
have
to
host
some
hardware
to
run
it
on
so
and
that
hardware
costs
money.
It
uses
power,
it
takes
space
and
some
of
these
claim
to
be
silent,
but
some
of
the
others
can
produce
a
fair
amount
of
noise.
A
Then
you'll
need
to
put
time
into
this.
You
know
it
isn't
just
spend
some
money
and
the
stuff
maintains
itself.
It's
no
different
from
enterprise
I.t
and
the
fact
is,
if
you
look
at
this
first
bullet
the
learning
opportunity.
Well,
maybe
the
the
fact
that
you
need
to
put
time
into
this
could
be
viewed
as
a
plus,
because
I
suspect
you'll
be
learning
things
that
will
be
useful
in
your
career.
If
you
work
in
the
it
business
as
you
run
your
own
homeland,
so
what
do
you
need
to
do
this?
A
Well,
first
of
all,
you
need
a
firewall
and
router.
You
might
already
have
that.
In
fact,
I
guess,
if
you're
joining
this
zoom
and
your
work
from
home,
you
pretty
much
do
well.
I
I
guess
you
could
be
using
your
phone,
but
I
think
this
is
kind
of
obvious,
but
you
might
need
a
more
full
featured
firewall
router
than
just
buying.
You
know
the
the
cheapest
consumer
grade
router
at
best
buy.
A
My
personal
home
lab
is
using
an
open
source,
firewall
router
called
pfsense
that
runs
on
the
freebsd
os
there's
a
few
others
we'll
get
into
the
options
on
an
on
a
slide
coming
up,
but
you
basically
need
something
like
this.
If
you
do
your
own,
you
go
out
and
buy
an
x86
host,
or
maybe
you,
if
you're
a
hobbyist,
you
might
have
an
old
pc
laying
around,
because
this
doesn't
take
much
I
mean
it.
You
can
run
it
on
a
couple.
Cpu
cores,
4
gig
of
ram,
no
problem.
A
A
A
A
I
have
an
older
model
than
the
reservoir
that
I'm
happy
with
it's
a
little
lower
cost
than
an
intel
nook,
but
and
either
of
those
I
suspect,
will
start
at
500
bucks
and
go
up
depending
on
how
much
memory
storage
you
put
in
it.
A
perhaps
cheaper
option
is
to
get
a
used
server,
at
least
where
I
live
in
los
angeles.
A
A
If
you
get
older
models,
the
hundred
dollar
one
they're,
probably
quite
old,
and
they
might
need
a
little
tweaking
because
perhaps
they've
fallen
off
the
vmware
supported
list
for
vsphere.
There
are
some
tweaks
in
there
that
a
lot
one
of
the
more
infamous
ones
for
home
labs
is
the
allow
legacy
cpus.
A
The
situation
is
that,
at
some
point,
vmware
doesn't
want
to
host
an
infinite
number
of
permutations
in
their
test
and
qa
program,
so
they
dropped
the
older
ones
off
the
list
kind
of
hard
hardware-
that's
older
than
five
years-
becomes
something
where
you
better
check
that
it's
on
the
supported
list,
but
there's
a
gray
area
where
things
aren't
supported,
but
they
still
do
run.
In
other
words,
the
vsphere
7
still
has
the
drivers
for
them,
and
that's
kind
of
the
thing
I'm
running
and
it
is.
A
It
is
the
thing
that
ammar
will
be
demoing,
we're
both
running
on
these
dell
710
series
devices
and,
like
I
say
you
could
I
I
think
you
could
get
those
for
about
half
the
price
of
going
nook,
but
you
have
to
have
a
situation
where
you're
willing
to
put
up
with
primarily,
I
think
the
noise
in
size
they.
Actually
I
I've
been
surprised
at
how
low
they
are
at
power
consumption.
A
That
some
would
argue,
is
also
a
security
exposure.
So
in
a
real
production
environment
outside
the
home.
These
are
often
discouraged,
and
I
would
avoid
it
even
in
my
home,
there's
just
more
abstraction
layers.
You've
got
appears,
you
might
have
to
put
things
in
containers
or
kubernetes
in
privileged
modes
that
are
not
best
security
practices
and,
if
you're
looking
at
this,
as
the
learning
experience
learning
how
to
get
your,
I
o
in
a
way
that
maintains
security
is
in
my
mind,
something
you
want
to
learn
anyway.
A
So
that's
the
route
I
went
and
frankly,
the
cost
of
a
pie.
Isn't
that
significant,
so
just
throw
it
down
there
for
your
physical.
I
o
would
be
my
recommendation.
Finally,
you
do
need
some
storage
here.
You
could
get
an
esxi
host
if
it's
a
rack
mount.
That
has
a
lot
of
storage,
but
another
option
is
to
have
esxi
and
vsphere
consume
external
shared
storage,
so
you
might
want
to
consider
either
a
storage
appliance
or
once
again
this
is
analogous
to
running
on.
You
know,
shrink,
wrap
hardware
and
spending
money
for
new
stuff
there
isn't.
A
A
A
Both
of
them
are
essentially
guis
on
top
of
the
pf
project
that
is
under
open
bsd
and
they
are
very
capable
firewalls,
and
I
think
that
if
you
compare
them
to
commercial
offerings,
they're
actually
competitive
with
those
and
if
you're
not
going
the
route
of
a
very
high-end
consumer,
router
firewall
you'd
have
that
and
technically
you
can
deploy
that
as
a
vm
talking
to
a
managed
switch.
But
I
would
prefer
getting
a
some
form
of
cheap
white
box
x86
and
just
hosting
it
on
that.
A
A
So
there
are
some
perp
people
who
I
don't
know,
there's
there's
a
huge
number
of
youtube
videos
on
repurposing
things
like
cheap,
desktop
servers
and
things
for
running
these
software
firewalls.
So
I
think
you
could
get
that
on
the
air
for
100
bucks,
something
maybe
even
less
money
than
buying
a
high-end
consumer
runner,
for
you
do
need
esxi
and
vcenter
for
what
we're
talking
about
here
and
if
you
look
at
normal
commercial
license
prices,
it
could
be
discouraging.
A
There
is
the
vmug
advantage
program
that
gets
you.
You
have
to
maintain
your
vmug
membership,
which
is
paid,
but
you'll
get
licenses
to
many
vmware
products
for
about
200
bucks
a
year
you
could
go.
The
60-day
trial
license,
obviously
that
ends
at
60
days
as
a
vmware
employee
who
gets
my
paycheck
from
somewhere
based
on
license
sales.
I
am
never
going
to
tell
you
that
you
could
be
a
mega
cheapskate
and
you
know,
terminate
your
trial
and
just
do
another
one.
A
A
I
already
covered
the
storage
software
licenses.
There's
open
media
vault.
I
know
there's
a
whole
camp
that
prefers
the
zfs
varieties
and
I
think
there's
a
couple
others
like
that.
Those,
but
I've
never
used
them
myself.
But
I've
heard
good
things
about
them.
You
do
want
some
sort
of
an
authentication
source.
In
my
opinion,
you
could
go
with
hard-coded
identities
and
passwords
all
over,
but
I
think
getting
an
ldap
on
the
air
would
be
something
that
would
be
once
again
a
great
learning
experience
plus
you
can
really
use
it.
A
There's
the
literally
the
open,
ldap
project
I
think
ammar
has
commissioned
free.
Ipa,
I
think,
is
the
one
he's
using,
but
he
can
talk
about
it
and
there's
a
few
options
for
those
if
you're
doing
those,
I
o
collection
things
like
home
automation
with
z-wave
they're
specialized
apps.
For
that
we'll
get
to
them.
You
may
want
to
run
your
own
container
registry
for
a
situation
where
you're
cold
rebooting
and
not
wanting
to
pull
things
all
the
way
from
docker
hub
kind
of
even
you
know
what
they
call
an
on-prem
and
air
gap
scenario.
A
So
I
don't
know
if,
if
you've
got
the
cpu
resources
and
storage
for
it,
I
would
personally
maybe
look
at
running
my
own
harbor
image
registry,
which
can
host
container
images
as
well
as
health
charts.
Once
again,
you'd
learn
a
lot
about
it
by
getting
one
on
the
air,
you
need
a
kubernetes,
and
what
we're
talking
about
here,
amar
has
happened,
is
using
a
community
edition
of
kanzu,
but
this
should
work
with
any
distro.
A
If
you
wanted
to
use
k3s
micro
gates
or
okd
whatever
it
should
work,
we're
not
today
we're
not
doing
anything
that
couldn't
be
reproduced
on
any
conformant
kubernetes
and
then
there's
the
apps
and
services.
You
choose
to
run
so
what
apps
would
these
be?
Well
in
infra,
I
think
I'd
contend,
you're
going
to
be
ending
you're
going
to
end
up
running
either
a
docker
container
engine
or
pod
man
either
should
work.
A
Docker
compose
is
useful
when
you're
running
multiple
containerized
apps
on
bare
metal.
I
find
portainer
and
there's
a
communication
that
to
be
useful
to
remote,
manage
these
like.
If
you
put
these
in
a
pie,
that's
headless
the
the
ldap
source.
I
already
talked
about
open,
ldap,
free
ipa,
there's
authentic,
there's,
a
number
of
them
I've.
We
actually
investigated
a
number
of
these.
We
meaning
amar,
and
I
and
a
lot
of
them
are
not
vsphere
itself
is
not
happy
with.
So
you
have
to
be
careful.
A
You
can
route
that
over
the
network
and
when
you
do
so,
the
open
source
mosquito
broker
is
a
convenient
way
to
have
the
z-wave
routing
go
to
a
destination
that
can
be
consumed
elsewhere
and
you'll
find
in
the
home
automation
arena.
That
mqtt
is
a
very
popular
well-beaten
path
on
getting
I
o
from
not
just
z-wave
devices,
but
weather
monitors
and
all
kinds
of
things
into
a
spot
where
it
can
be
consumed
by
multiple
apps.
A
A
The
latter
two
are
more
useful
when
you
combine
kubernetes
with
vsphere
and
want
to
manipulate
storage,
persistent
volumes
and
things
so
pretty
easy
to
throw
those
up
on
a
vm,
some
home
away,
services
that
we're
doing
in
omar's
summer.
Internship
project
home
assistant
is
an
open
source
free
home
automation
that
could
be
run
entirely.
Air
gapped
as
long
as
you're
content
with
monitoring
and
consuming
things
in
the
home,
but
it
can
also
be
exposed
out
the
internet
to
connect
to
your
own
mobile
devices.
A
Nexcloud
is
an
interesting
project
that
is
sort
of
like
office
365
or
the
google
suite
for
hosting
office
productivity
apps,
like
word
processing,
spreadsheets,
slide
slide
software
on
your
own
storage
and
the
apps.
In
that
stack.
They
have
a
whole
plug-in
infrastructure,
but
I
believe
that
the
most
popular
plug-in
for
the
office
productivity
is
based
on
libreoffice
and
you
can
stand
it
up
on
your
own
server
and
then
you
can
actually
consume
it
by
opening
up
a
port
on
the
internet
and
installing
client
apps
on
mobile
devices
like
phones,
windows
and
mac,
laptops,
etc.
A
A
Mp4
movies,
mp3,
music
on
your
own
storage,
use
it
throughout
the
house
from
multiple
devices
and
plex
plug-ins
are
built
into
most
of
your
smart
set-top
boxes
and
televisions.
In
my
experience
and
as
an
option,
you
can
start
software
sidebar
to
this.
That
will
share
it
over
the
internet.
So
that
you
could
play
your
music
collection
while
driving
in
your
car
with
a
cell
phone
connection,
for
example,
just
a
generic
tool
would
be
something
like
an
efk
stack.
There's
also
elk
sac
is
another
one.
This
is
a
logging
stack
that
you're.
A
If
you
start
running
a
lot
of
services,
you
ought
to
be
concerned
about
capturing
the
logs
for
it
to
help
you
out.
Should
something
go
wrong,
final
subject,
how
do
you
expose
things
for
out
of
home
use
safely?
Well,
if
you're
running
it
at
the
kubernetes
layer,
the
kubernetes
way
of
doing
this
is
a
load.
A
Balancer
cube,
vip,
metal,
lb,
there's
various
open
source
load,
balancer
options,
then
ingress
is
popular
on
something
like
a
public
cloud
where
they
charge
you
for
a
public-facing
ip,
and
you
want
to
multiplex
it
because
you
might
be
paying
20
bucks
a
month
for
it.
So
an
ingress
service
on
kubernetes
would
be
a
popular
thing,
whether
you
absolutely
need
it
at
home
or
not,
is
debatable.
However,
you
do
have
a
limited
number
of
ports
and
probably
one
ip
exposed
on
your
service
that
you
get
from
your
internet
service
provider.
A
A
It
connects
to
cloudflare
and
then
they
expose
it
on
their
servers
that
are
likely
to
be
far
more
capable
than
whenever
you're
standing
up
at
home,
and
you
don't
need
to
use
that
and
they're
pretty
easy
to
do.
They're
quite
lightweight.
I
was
actually
able
to
get
one
of
these
running
in
a
raspberry
pi
bare
metal
and
it
wasn't
even
a
pi
4.
It
was
an
older
one,
gigabyte
model.
So
these
argo
tunnels
are
actually
pretty
cool
tech.
A
Another
option
is
that
pf
sense
and
other
software
router
firewalls
can
host
an
inbound
vpn.
So
you
would
have
to
log
into
this
to
use
it
from
outside
the
home.
It
arguably
might
be
a
safer
thing
if
you
protected
this
vm
vpn
with
both
pre-installed
client,
certs
and
passwords,
but
it's
a
bit
of
a
nuisance.
If
you
share
it
family-wide,
however,
it
is
an
option.
B
A
B
So
this
demo
application,
basically
I'm
using
some
of
that-
I'm
using
some
of
that
home
automation
to
control
a
smart
outlet,
one
of
those
wi-fi
connected
or
sorry
a
z-wave
connected
outlet
and
that's
controlling
a
light
in
my
house
and
that
light
is
shining
on
this.
Like
little
piece
of
paper
cut
out,
I
have
of
the
tce
logo
and
I
can
turn
that
light
on
over
the
internet
and
in
a
couple
of
seconds
we'll
see
this
video
stream
get
updated
and
yeah.
B
B
B
I
guess
like
you,
could
call
them
workers
or
services
that
we're
running
inside
of
kubernetes
and
some
stuff
we're
running
inside
of
a
raspberry
pi
and
that's
connecting
the
some
stuff
on
the
internet
and
then
that's
finally,
exposing
both
streaming
video,
as
well
as
an
api
and
the
website
to
this
website.
Right
here.
B
B
A
B
Someone's
tried
to
turn
the
light
on
and
off,
so
you
can
see
it
flickering
a
little
here
but
yeah.
So
we
got
the
camera
facing
the
light
and
that
light
is
controlled
by
the
smart
outlet
and
that's
communicating
over
z-wave
here
to
a
little
usb
fob
and
that
z-wave
usb
fob
is
plugged
into
a
raspberry
pi
and
that
raspberry
pi
inside
of
a
docker
container
is
running
a
service
called
z-wave
js
to
mpdt.
This
is
like
a
an
open
source.
B
It
communicates
with
z-wave
devices
right
and
then
publishes
or
subscribes
to
topics
on
mqdt
and
is
able
to
allow
other
device.
Allow
other
computers
connected
to
the
same
mqtt
broker,
to
either
control
the
smart
switch
or
to
quarry
the
different
parameters
of
I
really
gotta
move
this
yeah
either
control
the
smart
switch
or
query
different
parameters
about
it
like
the
current
power
consumption
or
the
current
status,
whether
it's
turned
on
or
off
now
that
mqtt
broker
connected
to
it.
B
B
Let
me
get
back
over
here,
so
you've
got
that
python
api
exposed
through
the
argo
tunnel
and
then
this
website
itself
is
being
hosted
on
engine
x
and
that's
also
running
inside
of
kubernetes
and
yeah.
So
it's
just
built
static,
html
and
javascript
files
and
those
are
being
proxied
through
cloudflare's
cdn
and
that's
being
exposed
that
at
light.icguldy.com,
which
is
this
domain
and
finally,
for
the
video
stream
itself.
B
B
Now,
if
I
go
over
to
this
here,
this
is
a
home
assistant,
and
this
is
on
a
local
ip
address
right
here.
I
can
see
the
home
assistant
dashboard
and
I
can
look
at
the
current
power
consumption
of
the
light,
as
well
as
the
current
status
and
the
historical
energy
usage
of
the
light.
So
you
can
see
that
in
all
the
time
that
this
outlet
has
been
plugged
in
it
has
used
0.171
kilowatt
hours
and
we
can
see
that
someone
just
toggled
the
light.
So
the
state
went
off.
A
B
B
A
B
A
B
This
post
zero
a
focuses
on
all
the
hardware
and
prerequisite
software
that
we
needed,
and
I
think
steve
also
explained,
at
least
in
kind
of
broad
detail,
a
lot
of
the
hardware
and
software
that
we're
running
on,
like
the
dell
r710
server,
the
five
port
networking
switch,
the
raspberry
pi
or
the
some
of
the
software
like
vsphere
or
ldap
right
and
finally,
post.
One
here
focuses
on
deploying
kubernetes.
A
C
C
It's
extremely
cheap,
it's
extremely
cheap
yeah
and
it's
great
the
way
that
it
works
and
I
haven't
played
with
argo
tunnels.
Yet
so
I
have
to
try
that
out
from
cloud
fire,
but
yeah
I
mean
I'm
running
inlets
pro,
I'm
doing
a
bunch
of
fun
stuff
there
I'm
actually
running
my
home
lab.
I
had
an
intel
milk
based
one.
A
A
What
I
get
away
with
in
la
is,
I
keep
those
dell
servers
in
my
garage
and
I
put
them
on
the
concrete
floor,
which
is
basically
the
average
ground
temperature
which
doesn't
get
above
70
here
and
winter
or
summer
and
they've
survived
that
way
for
years
and
out
in
the
garage.
I
don't
care
about
the
noise
and.
D
D
A
A
D
D
A
I
have
a
side
role
in
kubernetes
and
the
cncf
of
being
a
lead
in
the
iot
edge
working
group
and
one
of
the
issues
with
pies
that
they're
nice
for
hobbyists,
maybe
for
home
and
controlled
environment.
But
I'm
aware
of
a
lot
of
industrial
projects
that
either
as
a
proof
of
concept,
or
maybe
somebody
thinking
it
was
production
without
doing
all
their
homework.
A
Trying
to
go
put
them
out
there
in
volume
in
production
and
one
of
the
aspects,
particularly
of
the
older
models,
is
that
the
the
flash
storage
in
those
sd
cards
just
just
does
not
hold
up.
It's
pretty
much
that
if
you
put
a
hundred
of
them
out
there
for
a
year,
it's
not
if
you'll
have
a
lot
of
dead
dead
soldiers
in
the
field,
but
just
how
many,
whether
it's
all
of
them
or
10
20,
but
everybody-
has
that
happen
and
kind
of
the.
A
The
flash
memory
that
goes
into
those
sd
cards
and
flash
drives
is
the
stuff
not
good
enough
for
long-term
enterprise.
Use
you
kind
of
get
what
you
pay
for,
and
the
only
way
to
get
those
to
hold
up
is
to
put
in
an
nvme
or
a
sata
interface,
or
something
like
that
and
move
yourself
up
to
higher
price
storage.
A
A
D
A
D
A
A
By
the
way,
I
should
have
mentioned
it,
but
one
way
to
make
your
pie
survive
and
not
wear
out
that
sd
card.
Obviously
you
can
put
external
storage
in,
but
for
this
pie
with
z-wave
thing,
the
first
thing
you
do
is
stop
logging
on
the
device
put
up
a
log
server
and
the
log
is
going
to
be
the
primary
culprit
for
wearing
it
out.
A
D
A
A
So
even
when
you
run
things
on
pi
like
that
mqtt
js,
damn
you
know
the
z-wave
to
mqtt
it's
available
in
docker
container
and
that's
the
mainstream
way
of
running
it.
But
docker
itself
is
capable
and
eventually
will
fill
up
the
disk
space
with
its
logs
because
they
don't
have
any
log
rotation
by
default.
C
C
I
just
run
the
docker
container,
though
docker
registry
container,
and
that
gives
you
and
then
I
use
that
as
a
pull
through.
So
you
can
actually
configure
it
to
do
pull
through
capabilities
from
docker
hub,
so
anything
that
I
pull
automatically
gets
pulled
through
there
and
then
it
gets
cached
locally.
So
that
makes.
A
C
Of
the
things
that
really
got
a
lot
of
use
into
harbor
and
even
in
like
public
clouds
and
things
like
that,
was
that
it
was
one
of
the
first
that
supported
like
pulled
through
caching
and
when
it
did
that
one
of
the
things
that
people
were
able
to
do
was
just
configure
like
a
container
d
in
the
kubernetes
layer.
Just
configure
that
to
be
their
pull
through
so
anytime,
you're
pulling
to
docker
io.
It's
just
gonna
pull
from
a
hardware
project.
C
It
cashes
that
and
then
yeah.
I
still
in
my
lab
at
the
company
I
work
at.
We
still
hit
docker
hub
rate,
limiting
every
once
in
a
while,
but
before
I
would
usually
buy
about
11
11
30
in
the
morning
docker.
I
was
blocked
for
the
day
now
it
happens,
maybe
once
a
week
and
usually
towards
the
end
of
the
day,
yeah.
So.
A
And
even
if
your
home
isn't
going
to
hit
the
rate
limiting,
I
think
many
of
us
have
limited
outbound
internet
connectivity,
so
caching
is
always
smart
and
I
don't
know
I
live
in
a
household
of
geeks
that
are
always.
You
know,
especially
when
my
gamer
sons
get
active,
can
be
sucking
down
most
of
the
bandwidth
anyway.
So
anything
helps.
C
A
B
A
Wanted
to
point
out,
like
one
of
the
things
that
I
was
most
surprised
at
in
this
exercise
of
getting
this
stuff
up
with
ammar
this
summer
was
a
was
actually
the
this
tunneling
thing
where,
for
years
I've
been
running
things
in
my
home
lab
and
exposing
them.
But
you
know
anytime,
you
do
nat,
you
worry
about
it
and
the
fact
is
that
if
you
ever
got
targeted
by
these
people
who
do
denial
of
service
attacks
and
things,
you
could
argue
they're
unlikely
to
target
you
as
a
home.
A
A
That
runs
on
your
end
and
I'm
almost
thinking
that
those
things
might
mean
the
end
of
trying
to
punch
these
things
out
through
gnat.
The
one
limitation
of
the
free
cloudflare
is
the
terms
of
service,
say
you're
not
allowed
to
do
media
streaming,
whether
they
enforce
it
or
not.
I
don't
know,
but
they
say
you
know
you
can
put
we're
intending
the
free
tier
to
be
for
web
servers
and
the
like,
so
that
if
you're
doing
an
api,
it
might
not
work
if
you're
doing
by
terms
of
service.
A
C
C
C
Funnel
they
do
have
a
paid
version.
They
have
a
free
version,
and
what's
nice
about
it,
is
they
also
have
a
kubernetes
ingress
controller
that
can
auto
create
the
tunnels
as
ingress
objects
like
inlets
products?
Inlets
pro
also
has
a
ingress
implementation
so
that
you
can
actually
just
run
your
deployment,
create
an
ingress
and
it's
public
yay,
and
what's
nice
with
inlets
pros,
while
I
inwards
does
cost
money,
but
it's
cheap
is
that
what's
really
good?
Is
that
what
was
it?
Oh
wow?
C
Because
it
is
creating
that
small
vm
in
a
cloud
you
can,
if
you're,
smart
and
set
it
up
correctly
with
the
cloud
you
aren't
using
yourself,
let's
say:
you're,
also
using
public
cloud.
Most
clouds
have
a
free
tier
and
you
can
actually
stay
within
that
free
tier
and
still
expose
a
lot
of
applications,
because
aws,
google
you're
not
or
azure
you're,
not
using
one
of
them
great
use
that
you're
within
the
free
tier
you
can
create
multiple,
multiple
tunnels
and
not
have
an
issue.
C
Have
to
know
you
could
be
on
digital
ocean
and
there's
a
lot
of
different
integrations
and
with
the
free
tiers
from
all
of
them.
I
don't
think
anyone
is
running
in
their
home
lab
enough
things.
They
would
want
to
publish
that
it
wouldn't
make
sense
to
do
that.
The
one
other
tool
that
I
do
use
in
home
labs
that
I've
used
previously.
That
makes
a
lot
of
sense
with
something
like
this
is
guacamole.
C
Basically,
so
one
of
the
things
you
can
do
is
publish
a
single
tunnel
out
which
gives
you
access
to
all
of
your
internal
machines
that
you're
running
whether
they
be
vms
or
physical
servers
and
just
use
a
single
tunnel
for
that,
and
then
because
it's
running
avm
it
tunnels,
everything
to
those
back
end
things
and
that's
completely.
Free
open
source
apache
license.
A
Okay,
great
recommendation:
thanks
we'll
look
into
that
yeah
we're
at
1202,
so
last
call
if
somebody's
got
any
partying
recommendations,
remarks
questions
otherwise,
we'll
call
this
month's
meeting
to
a
close
and
thanks
for
attending
okay.
Well,
thank
I
want
to
thank
amar
for
the
demo
and
even
more
importantly,
the
work
that
went
in
behind
the
demo
to
be
able
to
demo
it
and
we'll
see
everybody
next
month.
Hopefully,
bye.