enable tailscale ingress for key servies
This commit is contained in:
@@ -1,32 +1,32 @@
|
||||
# apiVersion: networking.k8s.io/v1
|
||||
# kind: Ingress
|
||||
# metadata:
|
||||
# name: authentik-tailscale
|
||||
# namespace: {{ .Release.Namespace }}
|
||||
# labels:
|
||||
# app.kubernetes.io/name: authentik-tailscale
|
||||
# app.kubernetes.io/instance: {{ .Release.Name }}
|
||||
# app.kubernetes.io/version: {{ .Chart.AppVersion }}
|
||||
# app.kubernetes.io/component: web
|
||||
# app.kubernetes.io/part-of: {{ .Release.Name }}
|
||||
# labels:
|
||||
# tailscale.com/proxy-class: no-metrics
|
||||
# annotations:
|
||||
# tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
|
||||
# spec:
|
||||
# ingressClassName: tailscale
|
||||
# tls:
|
||||
# - hosts:
|
||||
# - auth-cl01tl
|
||||
# secretName: auth-cl01tl
|
||||
# rules:
|
||||
# - host: auth-cl01tl
|
||||
# http:
|
||||
# paths:
|
||||
# - path: /
|
||||
# pathType: Prefix
|
||||
# backend:
|
||||
# service:
|
||||
# name: authentik-server
|
||||
# port:
|
||||
# number: 80
|
||||
apiVersion: networking.k8s.io/v1
|
||||
kind: Ingress
|
||||
metadata:
|
||||
name: authentik-tailscale
|
||||
namespace: {{ .Release.Namespace }}
|
||||
labels:
|
||||
app.kubernetes.io/name: authentik-tailscale
|
||||
app.kubernetes.io/instance: {{ .Release.Name }}
|
||||
app.kubernetes.io/version: {{ .Chart.AppVersion }}
|
||||
app.kubernetes.io/component: web
|
||||
app.kubernetes.io/part-of: {{ .Release.Name }}
|
||||
labels:
|
||||
tailscale.com/proxy-class: no-metrics
|
||||
annotations:
|
||||
tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
|
||||
spec:
|
||||
ingressClassName: tailscale
|
||||
tls:
|
||||
- hosts:
|
||||
- auth-cl01tl
|
||||
secretName: auth-cl01tl
|
||||
rules:
|
||||
- host: auth-cl01tl
|
||||
http:
|
||||
paths:
|
||||
- path: /
|
||||
pathType: Prefix
|
||||
backend:
|
||||
service:
|
||||
name: authentik-server
|
||||
port:
|
||||
number: 80
|
||||
|
@@ -1,32 +1,32 @@
|
||||
# apiVersion: networking.k8s.io/v1
|
||||
# kind: Ingress
|
||||
# metadata:
|
||||
# name: gitea-tailscale
|
||||
# namespace: {{ .Release.Namespace }}
|
||||
# labels:
|
||||
# app.kubernetes.io/name: gitea-tailscale
|
||||
# app.kubernetes.io/instance: {{ .Release.Name }}
|
||||
# app.kubernetes.io/version: {{ .Chart.AppVersion }}
|
||||
# app.kubernetes.io/component: web
|
||||
# app.kubernetes.io/part-of: {{ .Release.Name }}
|
||||
# labels:
|
||||
# tailscale.com/proxy-class: no-metrics
|
||||
# annotations:
|
||||
# tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
|
||||
# spec:
|
||||
# ingressClassName: tailscale
|
||||
# tls:
|
||||
# - hosts:
|
||||
# - gitea-cl01tl
|
||||
# secretName: gitea-cl01tl
|
||||
# rules:
|
||||
# - host: gitea-cl01tl
|
||||
# http:
|
||||
# paths:
|
||||
# - path: /
|
||||
# pathType: ImplementationSpecific
|
||||
# backend:
|
||||
# service:
|
||||
# name: gitea-http
|
||||
# port:
|
||||
# name: http
|
||||
apiVersion: networking.k8s.io/v1
|
||||
kind: Ingress
|
||||
metadata:
|
||||
name: gitea-tailscale
|
||||
namespace: {{ .Release.Namespace }}
|
||||
labels:
|
||||
app.kubernetes.io/name: gitea-tailscale
|
||||
app.kubernetes.io/instance: {{ .Release.Name }}
|
||||
app.kubernetes.io/version: {{ .Chart.AppVersion }}
|
||||
app.kubernetes.io/component: web
|
||||
app.kubernetes.io/part-of: {{ .Release.Name }}
|
||||
labels:
|
||||
tailscale.com/proxy-class: no-metrics
|
||||
annotations:
|
||||
tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
|
||||
spec:
|
||||
ingressClassName: tailscale
|
||||
tls:
|
||||
- hosts:
|
||||
- gitea-cl01tl
|
||||
secretName: gitea-cl01tl
|
||||
rules:
|
||||
- host: gitea-cl01tl
|
||||
http:
|
||||
paths:
|
||||
- path: /
|
||||
pathType: ImplementationSpecific
|
||||
backend:
|
||||
service:
|
||||
name: gitea-http
|
||||
port:
|
||||
name: http
|
||||
|
@@ -1,32 +1,32 @@
|
||||
# apiVersion: networking.k8s.io/v1
|
||||
# kind: Ingress
|
||||
# metadata:
|
||||
# name: vault-tailscale
|
||||
# namespace: {{ .Release.Namespace }}
|
||||
# labels:
|
||||
# app.kubernetes.io/name: vault-tailscale
|
||||
# app.kubernetes.io/instance: {{ .Release.Name }}
|
||||
# app.kubernetes.io/version: {{ .Chart.AppVersion }}
|
||||
# app.kubernetes.io/component: web
|
||||
# app.kubernetes.io/part-of: {{ .Release.Name }}
|
||||
# labels:
|
||||
# tailscale.com/proxy-class: no-metrics
|
||||
# annotations:
|
||||
# tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
|
||||
# spec:
|
||||
# ingressClassName: tailscale
|
||||
# tls:
|
||||
# - hosts:
|
||||
# - vault-cl01tl
|
||||
# secretName: vault-cl01tl
|
||||
# rules:
|
||||
# - host: vault-cl01tl
|
||||
# http:
|
||||
# paths:
|
||||
# - path: /
|
||||
# pathType: Prefix
|
||||
# backend:
|
||||
# service:
|
||||
# name: vault-active
|
||||
# port:
|
||||
# number: 8200
|
||||
apiVersion: networking.k8s.io/v1
|
||||
kind: Ingress
|
||||
metadata:
|
||||
name: vault-tailscale
|
||||
namespace: {{ .Release.Namespace }}
|
||||
labels:
|
||||
app.kubernetes.io/name: vault-tailscale
|
||||
app.kubernetes.io/instance: {{ .Release.Name }}
|
||||
app.kubernetes.io/version: {{ .Chart.AppVersion }}
|
||||
app.kubernetes.io/component: web
|
||||
app.kubernetes.io/part-of: {{ .Release.Name }}
|
||||
labels:
|
||||
tailscale.com/proxy-class: no-metrics
|
||||
annotations:
|
||||
tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
|
||||
spec:
|
||||
ingressClassName: tailscale
|
||||
tls:
|
||||
- hosts:
|
||||
- vault-cl01tl
|
||||
secretName: vault-cl01tl
|
||||
rules:
|
||||
- host: vault-cl01tl
|
||||
http:
|
||||
paths:
|
||||
- path: /
|
||||
pathType: Prefix
|
||||
backend:
|
||||
service:
|
||||
name: vault-active
|
||||
port:
|
||||
number: 8200
|
||||
|
@@ -1,59 +0,0 @@
|
||||
# apiVersion: networking.k8s.io/v1
|
||||
# kind: Ingress
|
||||
# metadata:
|
||||
# name: harbor-tailscale
|
||||
# namespace: {{ .Release.Namespace }}
|
||||
# labels:
|
||||
# app.kubernetes.io/name: harbor-tailscale
|
||||
# app.kubernetes.io/instance: {{ .Release.Name }}
|
||||
# app.kubernetes.io/version: {{ .Chart.AppVersion }}
|
||||
# app.kubernetes.io/component: web
|
||||
# app.kubernetes.io/part-of: {{ .Release.Name }}
|
||||
# labels:
|
||||
# tailscale.com/proxy-class: no-metrics
|
||||
# annotations:
|
||||
# tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true"
|
||||
# spec:
|
||||
# ingressClassName: tailscale
|
||||
# tls:
|
||||
# - hosts:
|
||||
# - harbor-cl01tl
|
||||
# rules:
|
||||
# - host: harbor-cl01tl
|
||||
# http:
|
||||
# paths:
|
||||
# - backend:
|
||||
# service:
|
||||
# name: harbor-core
|
||||
# port:
|
||||
# number: 80
|
||||
# path: /api/
|
||||
# pathType: Prefix
|
||||
# - backend:
|
||||
# service:
|
||||
# name: harbor-core
|
||||
# port:
|
||||
# number: 80
|
||||
# path: /service/
|
||||
# pathType: Prefix
|
||||
# - backend:
|
||||
# service:
|
||||
# name: harbor-core
|
||||
# port:
|
||||
# number: 80
|
||||
# path: /v2/
|
||||
# pathType: Prefix
|
||||
# - backend:
|
||||
# service:
|
||||
# name: harbor-core
|
||||
# port:
|
||||
# number: 80
|
||||
# path: /c/
|
||||
# pathType: Prefix
|
||||
# - backend:
|
||||
# service:
|
||||
# name: harbor-portal
|
||||
# port:
|
||||
# number: 80
|
||||
# path: /
|
||||
# pathType: Prefix
|
Reference in New Issue
Block a user