Thanks for the response! Actually, those articles made me see that it was possible to do it. And inspired me to try it and write the article.

How do you see it would get less elegant and safe integrating TLS/SSL certs? I would like to understand your point of view.

Although right now the focus of the article was on making a in-stack proxy, I didn’t focus on a front load balancer / proxy with TLS / SSL termination (I plan to investigate and write about what I find later). But by the way TLS works, it would have to be a per cluster (or at least per IP) proxy to handle all the incoming connections… but anyway, that will be for a future article.