Kvindo™ Cloud Docs
A public HTTPS load balancer that terminates TLS with a self-managed certificate and forwards to a backend. Assumes the Networking example's resources are in the same configuration.
How traffic flows: a client connects to the load balancer's floating IP (kvindo_floating_ip.lb) on port 443 → the HTTPS listener terminates TLS using kvindo_certificate.web → the listener rule matches the request path (/) → it forwards to the web-tg target group → which sends it to the static target, the backend VM at 10.10.0.5:80.
Why a self-managed certificate instead of automatic Let's Encrypt? Let's Encrypt has to verify the domain, which requires its DNS to already point at the load balancer's IP — but that IP only exists once the floating IP is created. So provide your own certificate (a self-signed pair is fine for testing).
Resource docs
More in this section
Reference