Homelab

This project transforms a collection of recycled enterprise thin clients into a highly available, production-grade Kubernetes environment designed around the principles of immutable infrastructure and declarative configuration. At its core, the cluster runs on Talos Linux, a container-optimized operating system that eliminates configuration drift by removing the console, shell, and SSH in favor of a secure, API-driven management plane. The entire infrastructure lifecycle is managed as code: Terraform and Ansible handle the provisioning of Proxmox VMs and cluster resources, while ArgoCD enforces a strict GitOps workflow, continuously reconciling the cluster state against a central Git repository.

Networking is architected for a complete Zero Trust security model. Public ingress is routed exclusively through Cloudflare Tunnels, removing the need for open inbound ports, while private administrative access is secured via a NetBird WireGuard mesh overlay. Inside the cluster, Cilium leverages eBPF technology to replace standard kube-proxy functions, providing high-performance networking and L2 service announcements. State persistence is handled by Longhorn, which aggregates mixed NVMe and SATA media into a distributed block storage system, enabling the reliable hosting of a complex application stack that includes media automation, workflow orchestration, and a comprehensive Grafana/Mimir/Loki observability suite.