auricom-home-cluster/talos/cluster-0/talconfig.yaml

---
clusterName: cluster-0

talosVersion: v1.4.0
kubernetesVersion: v1.27.1
endpoint: https://cluster-0.${domainName}:6443

cniConfig:
  name: none

additionalApiServerCertSans:
  - ${clusterEndpointIP}

additionalMachineCertSans:
  - ${clusterEndpointIP}
  - cluster-0.${domainName}

nodes:
  - hostname: talos-node-1
    ipAddress: 192.168.9.101
    controlPlane: true
    installDisk: /dev/sda
  - hostname: talos-node-2
    ipAddress: 192.168.9.102
    controlPlane: true
    installDisk: /dev/sda
  - hostname: talos-node-3
    ipAddress: 192.168.9.103
    controlPlane: true
    installDisk: /dev/sda
  - hostname: talos-node-4
    ipAddress: 192.168.9.104
    controlPlane: true
    installDisk: /dev/sda

controlPlane:
  patches:
    - |-
      cluster:
        allowSchedulingOnMasters: true
        apiServer:
          extraArgs:
            feature-gates: MixedProtocolLBService=true
        controllerManager:
          extraArgs:
            feature-gates: MixedProtocolLBService=true
        discovery:
          registries:
            service:
              disabled: true
        proxy:
          disabled: true
          extraArgs:
            feature-gates: MixedProtocolLBService=true,EphemeralContainers=True
        scheduler:
          extraArgs:
            feature-gates: MixedProtocolLBService=true,EphemeralContainers=True

      machine:
        files:
          - content: |
              [plugins."io.containerd.grpc.v1.cri"]
                enable_unprivileged_ports = true
                enable_unprivileged_icmp = true
            path: /var/cri/conf.d/allow-unpriv-ports.toml
            op: create
        kubelet:
          extraArgs:
            feature-gates: GracefulNodeShutdown=true,MixedProtocolLBService=true
            rotate-server-certificates: "true"
        install:
          extraKernelArgs:
            - "talos.logging.kernel=udp://192.168.169.108:6050/"
        logging:
          destinations:
            - endpoint: "udp://192.168.169.108:6051/"
              format: json_lines
        network:
          extraHostEntries:
            - ip: ${clusterEndpointIP}
              aliases:
                - cluster-0.${domainName}
        sysctls:
          fs.inotify.max_user_watches: "1048576"
          fs.inotify.max_user_instances: "8192"
        time:
          disabled: false
          servers:
            - 192.168.8.1