A side note, how do you use Kubernetes to set up HTTPS on wildcard DNS? Is there a service for autoconfiguring the DNS and getting the certificate without a forward proxy?
> Is there a service for autoconfiguring the DNS
There is! I use external-dns. [1]
I haven't actually set up a Let's Encrypt wildcard cert, but I'm pretty certain cert-manager [2] supports it. I don't think you need a proxy if you use the DNS01 challenges.