Several misconfigurations may stop a Linux machine from having access to its integrated Intel GPU devices. Let’s check the most common problems and how to fix them.

If you’re using Cloudflare to protect HTTP endpoints, it might be worth it to block any web traffic that doesn’t come from their servers.

If you’re using Ingress Nginx to manage public endpoints, ModSecurity is already installed but disabled by default. To enable it, add the following to the ConfigMap ingress-nginx-controller:

Ideally, you would be able to open ports 80 and 443 of your public IP address and update DNS entries with solutions like ddclient or DNS-O-Matic.

We will use k3s, a lightweight Kubernetes distribution, to get the most out of our hardware. This tutorial uses a Raspberry Pi 4 and the latest Raspberry Pi OS 32-bit (formerly known as Raspbian). The 64-bit version is pretty much the same for these steps.

This tutorial was tested on a Raspberry Pi 4 with the RGB Cooling HAT model “YB-EBV02 VER1.1”, by Yahboom, on both 32-bit and 64-bit OS.

This will work for Raspberry Pi OS (formerly known as Raspbian); no monitor or keyboard is needed.

We will use cert-manager to issue HTTPS certificates for domains served publicly by a Kubernetes cluster.