alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 6 Actions Activity

feat: change to init sidecar
lint-test-helm / lint-helm (pull_request) Successful in 29s
Details
lint-test-helm / validate-kubeconform (pull_request) Successful in 49s
Details
render-manifests / render-manifests (pull_request) Successful in 1m20s
Details

Browse Source
This commit is contained in:
Alex Lebens
2026-05-17 16:09:08 -05:00
parent 83a57319d5
commit 7dd68e6ef4
3 changed files with 162 additions and 157 deletions
Download Patch File Download Diff File Expand all files Collapse all files
clusters/cl01tl/helm/qbittorrent/values.yaml
+56 -55
View File
@@ -32,6 +32,62 @@ qbittorrent:
- |
sysctl -w net.ipv4.ip_forward=1;
sysctl -w net.ipv6.conf.all.disable_ipv6=1
gluetun:
restartPolicy: Always
image:
repository: ghcr.io/qdm12/gluetun
tag: latest@sha256:725d3e51091dde4ca43e3e3f26e2e6d3d0ccc66821e92d505c3da04958f7d472
lifecycle:
postStart:
exec:
command: ["/bin/sh", "-c", "(ip rule del table 51820; ip -6 rule del table 51820) || true"]
env:
- name: VPN_SERVICE_PROVIDER
value: protonvpn
- name: VPN_TYPE
value: wireguard
- name: WIREGUARD_PRIVATE_KEY
valueFrom:
secretKeyRef:
name: protonvpn-wireguard-conf
key: private-key
- name: FIREWALL_OUTBOUND_SUBNETS
value: 127.0.0.0/8,192.168.1.0/24,10.244.0.0/16,10.96.0.0/12
- name: FIREWALL_INPUT_PORTS
value: 8080,9022
- name: VPN_PORT_FORWARDING
value: "on"
- name: VPN_PORT_FORWARDING_UP_COMMAND
value: '/bin/sh -c "/gluetun/update.sh {{ printf "{{PORT}}" }}"'
- name: PORT_FORWARD_ONLY
value: "on"
- name: BLOCK_MALICIOUS
value: "off"
securityContext:
privileged: True
capabilities:
add:
- NET_ADMIN
- SYS_MODULE
probes:
readiness:
enabled: true
custom: true
spec:
exec:
command:
- /gluetun-entrypoint
- healthcheck
failureThreshold: 5
initialDelaySeconds: 30
periodSeconds: 30
successThreshold: 1
timeoutSeconds: 15
resources:
limits:
devic.es/tun: "1"
requests:
devic.es/tun: "1"
containers:
qbittorrent:
image:
@@ -52,61 +108,6 @@ qbittorrent:
requests:
cpu: 500m
memory: 1Gi
gluetun:
image:
repository: ghcr.io/qdm12/gluetun
tag: latest@sha256:725d3e51091dde4ca43e3e3f26e2e6d3d0ccc66821e92d505c3da04958f7d472
lifecycle:
postStart:
exec:
command: ["/bin/sh", "-c", "(ip rule del table 51820; ip -6 rule del table 51820) || true"]
env:
- name: VPN_SERVICE_PROVIDER
value: protonvpn
- name: VPN_TYPE
value: wireguard
- name: WIREGUARD_PRIVATE_KEY
valueFrom:
secretKeyRef:
name: protonvpn-wireguard-conf
key: private-key
- name: FIREWALL_OUTBOUND_SUBNETS
value: 192.168.1.0/24,10.244.0.0/16,10.96.0.0/12
- name: FIREWALL_INPUT_PORTS
value: 8080,9022
- name: VPN_PORT_FORWARDING
value: "on"
- name: VPN_PORT_FORWARDING_UP_COMMAND
value: '/bin/sh -c "/gluetun/update.sh {{ printf "{{PORT}}" }}"'
- name: PORT_FORWARD_ONLY
value: "on"
- name: BLOCK_MALICIOUS
value: "off"
securityContext:
privileged: True
capabilities:
add:
- NET_ADMIN
- SYS_MODULE
probes:
liveness:
enabled: true
custom: true
spec:
exec:
command:
- /gluetun-entrypoint
- healthcheck
failureThreshold: 5
initialDelaySeconds: 30
periodSeconds: 30
successThreshold: 1
timeoutSeconds: 15
resources:
limits:
devic.es/tun: "1"
requests:
devic.es/tun: "1"
exporter:
image:
repository: esanchezm/prometheus-qbittorrent-exporter