blocky: controllers: main: type: deployment replicas: 1 strategy: Recreate revisionHistoryLimit: 3 containers: main: image: repository: spx01/blocky tag: v0.24@sha256:9a82e0235c52ef3048586f8006add06e52132adaae70d02f980569dae16421a2 pullPolicy: IfNotPresent env: - name: TZ value: US/Central resources: requests: cpu: 100m memory: 128Mi serviceAccount: create: true configMaps: config: enabled: true data: config.yml: | upstreams: init: strategy: fast groups: default: - tcp-tls:1.1.1.1:853 - tcp-tls:1.0.0.1:853 strategy: parallel_best timeout: 2s connectIPVersion: v4 blocking: denylists: sus: - https://v.firebog.net/hosts/static/w3kbl.txt - https://raw.githubusercontent.com/PolishFiltersTeam/KADhosts/master/KADhosts.txt - https://raw.githubusercontent.com/FadeMind/hosts.extras/master/add.Spam/hosts ads: - https://v.firebog.net/hosts/AdguardDNS.txt - https://v.firebog.net/hosts/Admiral.txt - https://v.firebog.net/hosts/Easylist.txt - https://adaway.org/hosts.txt - https://raw.githubusercontent.com/anudeepND/blacklist/master/adservers.txt - https://pgl.yoyo.org/adservers/serverlist.php?hostformat=hosts&showintro=0&mimetype=plaintext - https://raw.githubusercontent.com/FadeMind/hosts.extras/master/UncheckyAds/hosts - https://raw.githubusercontent.com/bigdargon/hostsVN/master/hosts priv: - https://v.firebog.net/hosts/Easyprivacy.txt - https://v.firebog.net/hosts/Prigent-Ads.txt - https://raw.githubusercontent.com/FadeMind/hosts.extras/master/add.2o7Net/hosts - https://raw.githubusercontent.com/crazy-max/WindowsSpyBlocker/master/data/hosts/spy.txt - https://hostfiles.frogeye.fr/firstparty-trackers-hosts.txt mal: - https://v.firebog.net/hosts/Prigent-Crypto.txt - https://raw.githubusercontent.com/DandelionSprout/adfilt/master/Alternate%20versions%20Anti-Malware%20List/AntiMalwareHosts.txt - https://osint.digitalside.it/Threat-Intel/lists/latestdomains.txt - https://raw.githubusercontent.com/FadeMind/hosts.extras/master/add.Risk/hosts clientGroupsBlock: default: - sus - ads - priv - mal blockType: zeroIp blockTTL: 1m loading: refreshPeriod: 24h downloads: timeout: 60s attempts: 5 cooldown: 10s concurrency: 16 strategy: fast maxErrorsPerSource: 5 caching: minTime: 5m maxTime: 30m maxItemsCount: 0 prefetching: true prefetchExpires: 2h prefetchThreshold: 5 prefetchMaxItemsCount: 0 cacheTimeNegative: 30m prometheus: enable: true path: /metrics queryLog: type: console logRetentionDays: 7 creationAttempts: 1 creationCooldown: 2s flushInterval: 30s minTlsServeVersion: 1.3 ports: dns: 53 http: 4000 log: level: info format: text timestamp: true privacy: false service: main: controller: main annotations: tailscale.com/expose: "true" ports: tcp: port: 53 targetPort: 53 protocol: TCP udp: port: 53 targetPort: 53 protocol: UDP metrics: controller: main ports: metrics: port: 4000 targetPort: 4000 protocol: TCP persistence: config: enabled: true type: configMap name: blocky-config advancedMounts: main: main: - path: /app/config.yml readOnly: true mountPropagation: None subPath: config.yml