hello im looking for support for a total newb i understood that i can have k3b containers for both controller and agent so i would run them on the single machine i have but they would be securely separated - is this correct? i wanted to use proxmox for this but i also need user connections to my service - initially there will be one single outgoing connection handling all users, but after some time we will for example handle dns over https so i will have 10s or 100s of incoming tcp connections it is my understanding i need nginx or haproxy to handle this and send it to the container - on which container do i install nginx, please?

K3s comes with Trafik Ingress controller https://docs.k3s.io/networking/networking-services#traefik-ingress-controller

i dont have the money for this, this is a homebrew project

yeah so for proof of concept your single deployment is fine

what about traefik - i understand ingress has 2 components - the app (traefik) and the component that it connects to (controller) - is this correct? in containers of k3s i get the controller but i have to install traefik somewhere too, no? where do i install it please?

no? where are you getting this from?

thats how i understood the blabla of chatgpt

Don’t ask chatgpt unless you want garbage

and that is all that is required to receive tcp and udp incoming?

If you have just a single host, then you should run only a single instance of K3s to host everything you need. That single k3s node will host the Traefik ingress, along with everything else running in your cluster.

isnt that less secure than 2 containers for k3s?

less secure how? You have only a single node anyway.

well whoever breaks in through my app hosted in the pod gets to the controller and etc database,no?

what?

because they will be in the same container

no?

ok, i clearly do not understand, sorry 😞

Your app is in one container. the ingress controller is in another container. K3s (etcd, apiserver, other control-plane components) are running on the node, not inside a container within the cluster.

that will save me RAM, thanks

I don’t know what you’re referring to when you say “containers”, but everything does not all run together within the containers managed by kubernetes and containerd. that is the entire point of containerizing apps.

im beginning to think this does not need proxmox then

you could run it in a vm on proxmox. or if you don’t need proxmox for anything specific, you could just run a normal linux distro on your host and then install k3s on that.

https://docs.k3s.io/ there is a lot of incorrect information out there... should always review official docs