shpaq/auricom-home-cluster
1
0
Fork 0
mirror of https://github.com/auricom/home-cluster.git synced 2025-10-01 16:05:55 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
b4b0023b3e13f8db5bdf9e4dfa98e1f3c0038c97
auricom-home-cluster/kubernetes/apps/network/envoy-gateway/config/gateway.yaml
auricom 42a98c5d16 chore: io.cilium/lb-ipam-ips
2025-08-21 01:48:43 +02:00

79 lines
2.1 KiB
YAML
Raw Blame History

---
apiVersion: gateway.networking.k8s.io/v1
kind: GatewayClass
metadata:
name: envoy-gateway
spec:
controllerName: gateway.envoyproxy.io/gatewayclass-controller
parametersRef:
group: gateway.envoyproxy.io
kind: EnvoyProxy
name: config
namespace: network
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/gateway.networking.k8s.io/gateway_v1.json
apiVersion: gateway.networking.k8s.io/v1
kind: Gateway
metadata:
name: internal
annotations:
external-dns.alpha.kubernetes.io/target: &host internal.${SECRET_EXTERNAL_DOMAIN}
spec:
gatewayClassName: envoy-gateway
infrastructure:
annotations:
external-dns.alpha.kubernetes.io/hostname: *host
io.cilium/lb-ipam-ips: 192.168.169.121
listeners:
- name: http
protocol: HTTP
port: 80
hostname: "*.${SECRET_EXTERNAL_DOMAIN}"
allowedRoutes:
namespaces:
from: Same
- name: https
protocol: HTTPS
port: 443
hostname: "*.${SECRET_EXTERNAL_DOMAIN}"
allowedRoutes:
namespaces:
from: All
tls:
certificateRefs:
- kind: Secret
name: ${SECRET_EXTERNAL_DOMAIN//./-}-tls
---
# yaml-language-server: $schema=https://kubernetes-schemas.pages.dev/gateway.networking.k8s.io/gateway_v1.json
apiVersion: gateway.networking.k8s.io/v1
kind: Gateway
metadata:
name: external
annotations:
external-dns.alpha.kubernetes.io/target: &host external.${SECRET_EXTERNAL_DOMAIN}
spec:
gatewayClassName: envoy-gateway
infrastructure:
annotations:
external-dns.alpha.kubernetes.io/hostname: *host
io.cilium/lb-ipam-ips: 192.168.169.122
listeners:
- name: http
protocol: HTTP
port: 80
hostname: "*.${SECRET_EXTERNAL_DOMAIN}"
allowedRoutes:
namespaces:
from: Same
- name: https
protocol: HTTPS
port: 443
hostname: "*.${SECRET_EXTERNAL_DOMAIN}"
allowedRoutes:
namespaces:
from: All
tls:
certificateRefs:
- kind: Secret
name: ${SECRET_EXTERNAL_DOMAIN//./-}-tls
Reference in New Issue View Git Blame Copy Permalink