Commit Graph - k8s - Straub Intranet

s5b-public/k8s

Fork 0

Commit Graph

Select branches

Hide Pull Requests

docs/howto-bootstrap-cluster

feature/argocd-network

feature/cilium-ipv6

feature/fix-cilium-network

feature/kubeseal-config

feature/sealed-secrets

fix/sealed-secrets-ns

fixing/argocd-part-2

fixing/argocd-part-3

main

#1

#10

#11

#12

#13

#14

#2

#3

#4

#5

#6

#7

#8

#9

9a785ccac6 link to cilium documentation docs/howto-bootstrap-cluster Marcel Straub 2025-10-05 21:44:56 +02:00
ded950c527 Update documentation for bootstrapping Talos and Cilium Marcel Straub 2025-10-05 21:44:04 +02:00
07d234d72e Add static IPv6 default gateway configuration feature/cilium-ipv6 Marcel Straub 2025-10-05 14:46:05 +02:00
5162bbc275 Configure subnetmask sizes for static host IP address assignment Marcel Straub 2025-09-28 20:31:53 +02:00
5392ba16e2 Configure IPv4 DNS server to get rid of default google and cloudflare dns Marcel Straub 2025-09-28 20:31:20 +02:00
a2f03019df Configure network mask for static ip assignments Marcel Straub 2025-09-28 20:30:36 +02:00
96560ec2f7 static IPv4 a nd v6 configuration of nodes Marcel Straub 2025-09-28 18:58:20 +02:00
5c2e53d66b Merge branch 'main' into feature/fix-cilium-network feature/fix-cilium-network Marcel Straub 2025-09-28 18:22:37 +02:00
58070479b0 Added configuring DNS server Marcel Straub 2025-09-28 17:22:50 +02:00
e9f7936e5b Make kubelet listen to all IPv4 and IPv6 addresses Marcel Straub 2025-09-28 15:12:45 +02:00
91ee97708c Ensure that all k8s services listen on IPv6 catch all and IPv6 networks are correctly configured / Still cluster gets not functional Marcel Straub 2025-09-14 21:10:00 +02:00
eb00ba2c5a fix: Make Cilium IPv4 BGP network fully functional including proof-of-concept application (#11) main Marcel Straub 2025-09-13 23:28:37 +02:00
2281216562 IPv4 service subnet to 10.96.0.0/16 Marcel Straub 2025-09-13 23:14:55 +02:00
31ade3ad23 fixed LB-IPAM example application Marcel Straub 2025-09-13 23:08:27 +02:00
db6cc4b9a8 demo application requests bgp-control plane for loadbalancing Marcel Straub 2025-09-13 22:35:33 +02:00
1048f3d861 Configure BGP advertisement to export all routes Marcel Straub 2025-09-13 22:35:11 +02:00
01204cfd2a Add small example nginx application to test LBs Marcel Straub 2025-09-13 22:20:42 +02:00
57485cf6ad Fix: do not define node ipv6 cidr mask if IPv6 is not assigned. Otherwise, cluster will be in boot loop Marcel Straub 2025-09-13 21:57:32 +02:00
d4d327a3d0 Update to Talos v1.11 Marcel Straub 2025-09-13 21:13:10 +02:00
ea1b7d8df0 documented Pod network setup Marcel Straub 2025-09-13 20:35:41 +02:00
70370e9514 working ipv4 config Marcel Straub 2025-09-13 20:35:30 +02:00
9e7485cafc Cilium BPF vs Talos Host DNS fix https://github.com/siderolabs/talos/issues/10002 Marcel Straub 2025-09-13 20:26:17 +02:00
18941f9eec Enable IPv4 BGP networking (#10) Marcel Straub 2025-09-08 21:54:03 +02:00
700db1be08 initial network argocd project (#9) Marcel Straub 2025-09-07 16:04:43 +02:00
bbb52178c2 initial network argocd project feature/argocd-network Marcel Straub 2025-09-07 16:04:30 +02:00
b3b4bb6361 Define kustomize config for Cilium inlcuding an L2 load balancer pool (#8) Marcel Straub 2025-09-07 15:58:09 +02:00
0bf1a4b536 Added small shell tool for fetching certs of SealedSecrets for backup purpose (#7) Marcel Straub 2025-09-07 15:49:23 +02:00
a010a52df5 Added fetching pub and private SealedSecrets key feature/kubeseal-config Marcel Straub 2025-09-07 15:46:11 +02:00
df98f3f211 Small helper to fetch current Kubeseal cert Marcel Straub 2025-09-07 15:38:29 +02:00
456692fae3 Added creation of sealed-secrets namespace (#6) Marcel Straub 2025-09-07 15:30:33 +02:00
9517a2f986 Added creation of sealed-secrets namespace fix/sealed-secrets-ns Marcel Straub 2025-09-07 15:30:20 +02:00
daa76476a1 Sealed secrets, correct helm-chart version (#5) Marcel Straub 2025-09-07 15:27:13 +02:00
5d758337fd Try other kustomiz.buildOptions for ArgoCd (#4) Marcel Straub 2025-09-07 15:19:53 +02:00
e702ba20a6 Try other kustomiz.buildOptions for ArgoCd fixing/argocd-part-3 Marcel Straub 2025-09-07 15:19:30 +02:00
1a685314be Try fixing ArgoCD with Helm+Kustomize (#3) Marcel Straub 2025-09-07 11:51:36 +02:00
78a1ec78ce Applied patch in-hope to fix ArgoCD with helm + kustomize fixing/argocd-part-2 Marcel Straub 2025-09-07 11:51:09 +02:00
aed74785d6 moved from stonegarden to own labels Marcel Straub 2025-09-07 11:36:40 +02:00
1c2ed174cf Fixing ArgoCD by moving to right repository Marcel Straub 2025-09-07 11:32:40 +02:00
04cede6f11 Rebuild ArgoCD deployment by example on sealed-secrets Marcel Straub 2025-09-07 11:08:10 +02:00
6251b7ce40 configure argocd project for infra and infra/controllers feature/sealed-secrets Marcel Straub 2025-09-07 10:36:08 +02:00
4c4b367418 Added Alias for public AWS ECR endpoint Marcel Straub 2025-09-07 10:28:46 +02:00
036ca1d466 first draft of the controllers structure Marcel Straub 2025-09-07 10:11:14 +02:00
427eb7407a First draft for sealed secrets gitops files Marcel Straub 2025-09-07 10:10:58 +02:00
43a52aa4d8 Initial draft for manual kustomize helm deployment of argocd Marcel Straub 2025-09-07 10:10:32 +02:00
d2dee1d3bf Added installing kustomize and kubesearl to install_clis.sh Marcel Straub 2025-09-07 10:09:07 +02:00
d0ce3e4f46 Add kustomize artifacts to gitignore Marcel Straub 2025-09-07 10:08:50 +02:00
80542fee8d Disabled installing ArgoCD through Talos inline manifests and favor manual helm deployment Marcel Straub 2025-09-07 10:08:35 +02:00
dc7aa1cdb4 Added top level scripts for installing relevant CLIs Marcel Straub 2025-09-07 08:12:11 +02:00
56870c61e6 Add ArgoCD bootstrapping (#2) Marcel Straub 2025-09-07 08:10:32 +02:00
b2f7eba0fa Enable Cilium IPv4 only (#1) Marcel Straub 2025-09-05 12:43:00 +02:00
bcb019c17d moved container registry mirrors to configuration Marcel Straub 2025-09-04 10:43:59 +02:00
d7b993dc21 Small changes on debug container Marcel Straub 2025-09-04 10:33:20 +02:00
3111caf4bf Added information about using debug cotnainer Marcel Straub 2025-09-04 10:21:58 +02:00
83242d8c74 output kube-config Marcel Straub 2025-09-04 09:12:33 +02:00
e65f99c728 README: Added info to get 64bit opentofu version Marcel Straub 2025-09-04 09:04:23 +02:00
ecb2349156 made iso image fetching more resilient to network errors Marcel Straub 2025-09-03 19:22:29 +02:00
582395275a fixed configuration of ntp server Marcel Straub 2025-09-03 19:22:14 +02:00
f791531e1d upgraded opentofu talos provide to fix incompatibility with newer talos version Marcel Straub 2025-09-03 18:52:13 +02:00
26a62b20a0 Removed cilium - First working state, i.e. talosctl health is successful Marcel Straub 2025-09-03 17:11:58 +02:00
56692bc7b8 Updated .gitignore Marcel Straub 2025-09-03 16:42:32 +02:00
c3d6312cc5 first edition that installs the cluster but cluster does not get healthy Marcel Straub 2025-09-03 16:42:08 +02:00
c83ca025ae Added .gitignore: ignore .envrc files Marcel Straub 2025-09-01 15:35:18 +02:00
d5494e4cdd technology agnostic naming Marcel Straub 2025-09-01 10:22:02 +02:00
ef0df1f22a reorg and restart of configuration build-up Marcel Straub 2025-09-01 10:15:09 +02:00
d4ff360bc2 last state before restart Marcel Straub 2025-09-01 10:04:58 +02:00
f8c3b7fa85 disable kube-proxy Marcel Straub 2025-01-19 18:45:43 +01:00
3cf36a0b06 clean-up: removed redundancies between plane controlplane.yaml and pathces Marcel Straub 2025-01-19 18:45:25 +01:00
4a50ca5829 Structured configuration Marcel Straub 2025-01-19 11:58:37 +01:00
6b4b3d9ee2 Created transient config directory Marcel Straub 2025-01-19 11:52:46 +01:00
6c9e7ad2a5 First working iteration of cluster with 3 controllers and 3 workers Marcel Straub 2025-01-19 11:16:04 +01:00