# Talos Cluster

## Repository Structure

1. [Infrastructure](./00-infrastructure/README.md)

## Architecture

### Network

#### Node Network

- IPv4 configuration uses DHCP with static MAC binding for easy bring-up
- IPv6 addresses are manually assigned
- DNS Zone: prod.k8.eis-mk8.de.s5b.org

|VLAN|IPv4|IPv6|
|--|--|--|
|210|10.51.10.0/23|2a13:fc80:1:a::/64|

#### Pod Network

- IPv4 only
- IPv4 prefix: 10.244.0.0/16
- Potential IPv6 prefix: 2a13:fc80:0001:d200::/64

##### Important side-notes

- DNS resolver (Vyos) these networks must be whitelisted to allow recursive DNS

#### Service Network

- Dual-Stack
- IPv6 Prefix: 2a13:fc80:0001:d201::/64
- IPv4 Prefix: 185.83.87.48/28

#### BGP

|ASN|Who|
|--|--|
|65000|Upstream Router|
|65001|Cluster|

## How to use

### Prerequisites

#### Secrets handling

Use ``direnv`` package to automatically load the environment variables for a directory and keep the secrets in ``.envrc`` files. For ZSH, add

```shell
eval "$(direnv hook zsh)"
``

to your ``.zshrc`` for automatic loading on directory change.