s5b-public/k8s

Go to file

Marcel Straub 9a785ccac6 link to cilium documentation

2025-10-05 21:44:56 +02:00

00-infrastructure

link to cilium documentation

2025-10-05 21:44:56 +02:00

Update documentation for bootstrapping Talos and Cilium

2025-10-05 21:44:04 +02:00

fix: Make Cilium IPv4 BGP network fully functional including proof-of-concept application (#11 )

2025-09-13 23:28:37 +02:00

reorg and restart of configuration build-up

2025-09-01 10:15:09 +02:00

.gitignore

Rebuild ArgoCD deployment by example on sealed-secrets

2025-09-07 11:08:10 +02:00

.yamllint.yaml

first edition that installs the cluster but cluster does not get healthy

2025-09-03 16:42:08 +02:00

install_clis.sh

Rebuild ArgoCD deployment by example on sealed-secrets

2025-09-07 11:08:10 +02:00

README.md

fix: Make Cilium IPv4 BGP network fully functional including proof-of-concept application (#11 )

2025-09-13 23:28:37 +02:00

README.md

Talos Cluster

Repository Structure

Infrastructure

Architecture

Network

Node Network

IPv4 configuration uses DHCP with static MAC binding for easy bring-up
IPv6 addresses are manually assigned
DNS Zone: prod.k8.eis-mk8.de.s5b.org

VLAN	IPv4	IPv6
210	10.51.10.0/23	2a13:fc80:1:a::/64

Pod Network

IPv4 only
IPv4 prefix: 10.244.0.0/16
Potential IPv6 prefix: 2a13:fc80:0001:d200::/64

Important side-notes

DNS resolver (Vyos) these networks must be whitelisted to allow recursive DNS

Service Network

Dual-Stack
IPv6 Prefix: 2a13:fc80:0001:d201::/64
IPv4 Prefix: 185.83.87.48/28

BGP

ASN	Who
65000	Upstream Router
65001	Cluster

How to use

Prerequisites

Secrets handling

Use direnv package to automatically load the environment variables for a directory and keep the secrets in .envrc files. For ZSH, add

eval "$(direnv hook zsh)"
``

to your ``.zshrc`` for automatic loading on directory change.