This draft captures the practical work of creating a new cloudflared tunnel, replacing the Kubernetes secrets that hold the certificate and tunnel credentials, and updating the config map and deployment to run the new tunnel.
This draft turns a noisy environment-specific note into a cleaner pattern: create the Cloudflare Tunnel credentials, store them as Kubernetes secrets, define a cloudflared config map, run the deployment, and validate that the tunnel actually maps the hostname to the intended TCP service.
This draft turns a sparse work log into a short operations note on taking a Proxmox interface that originally lived on a direct host-and-port URL and exposing it through a Kubernetes-based Cloudflare Tunnel with a cleaner HTTPS hostname.
This draft captures a common cloudflared repair pattern: upgrade the binary, refresh the login material, and recreate the tunnel credentials rather than guessing at partially broken state.
This draft captures the practical shape of a cluster-side Cloudflare tunnel setup: install cloudflared, register the service, and use DNS-backed certificate workflows where needed.
This draft turns a real cluster note into a cleaner walkthrough for installing cert-manager, configuring a Cloudflare-backed ClusterIssuer, issuing certificates, and handling a few common ingress-related surprises.