SeanOMik
/
k3s-cluster
1
0
Fork 0
Code Issues 2 Pull Requests 32 Packages Projects Releases Wiki Activity

fix: change load balancer subnet, make certs valid for '*.internal' domains

This commit is contained in:
SeanOMik 2024-09-12 17:52:21 -04:00
parent bed6a15588
commit daa10b10e1
6 changed files with 8 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
kubernetes/common/apps/cert-manager/certs/files/wildcard-cert.yaml
View File

@ -15,4 +15,5 @@ spec:
dnsNames: dnsNames:
- "${SECRET_NEW_DOMAIN}" - "${SECRET_NEW_DOMAIN}"
- "*.${SECRET_NEW_DOMAIN}" - "*.${SECRET_NEW_DOMAIN}"
- "*.internal.${SECRET_NEW_DOMAIN}"

4
kubernetes/thin/apps/cilium/bgp.yaml
View File

@ -2,7 +2,6 @@ apiVersion: cilium.io/v2alpha1
kind: CiliumBGPClusterConfig kind: CiliumBGPClusterConfig
metadata: metadata:
name: cilium-bgp name: cilium-bgp
namespace: kube-system
spec: spec:
nodeSelector: nodeSelector:
matchExpressions: matchExpressions:
@ -22,7 +21,6 @@ apiVersion: cilium.io/v2alpha1
kind: CiliumBGPPeerConfig kind: CiliumBGPPeerConfig
metadata: metadata:
name: cilium-peer-router name: cilium-peer-router
namespace: kube-system
spec: spec:
timers: timers:
holdTimeSeconds: 9 holdTimeSeconds: 9
@ -41,7 +39,6 @@ apiVersion: cilium.io/v2alpha1
kind: CiliumBGPAdvertisement kind: CiliumBGPAdvertisement
metadata: metadata:
name: bgp-public-ad name: bgp-public-ad
namespace: kube-system
labels: labels:
advertise: "bgp-public" advertise: "bgp-public"
spec: spec:
@ -49,6 +46,7 @@ spec:
- advertisementType: "Service" - advertisementType: "Service"
service: service:
addresses: addresses:
#- ClusterIP
- ExternalIP - ExternalIP
- LoadBalancerIP - LoadBalancerIP
selector: selector:

4
kubernetes/thin/apps/cilium/main-ip-pool.yaml
View File

@ -4,5 +4,5 @@ metadata:
name: "main-pool" name: "main-pool"
spec: spec:
blocks: blocks:
- start: "192.168.1.50" - start: "192.168.2.50"
stop: "192.168.1.59" stop: "192.168.2.59"

2
kubernetes/thin/apps/traefik/app/files/helm-release.yaml
View File

@ -17,7 +17,7 @@ spec:
values: values:
service: service:
annotations: annotations:
io.cilium/lb-ipam-ips: 192.168.1.50 io.cilium/lb-ipam-ips: 192.168.2.50
labels: labels:
bgp/service-type: public bgp/service-type: public

2
kubernetes/thin/apps/traefik/app/files/internal-hr.yaml
View File

@ -17,7 +17,7 @@ spec:
values: values:
service: service:
annotations: annotations:
io.cilium/lb-ipam-ips: 192.168.1.51 io.cilium/lb-ipam-ips: 192.168.2.51
labels: labels:
bgp/service-type: public bgp/service-type: public

2
kubernetes/thin/secrets/cluster-settings.yaml
View File

@ -6,5 +6,5 @@ metadata:
namespace: flux-system namespace: flux-system
data: data:
# MetalLB # MetalLB
METALLB_LB_RANGE: 192.168.1.50-192.168.1.60 METALLB_LB_RANGE: 192.168.2.50-192.168.2.59
SERVER_TIMEZONE: America/New_York SERVER_TIMEZONE: America/New_York