2025-12-15 22:32:32 -05:00
|
|
|
{
|
|
|
|
|
config,
|
|
|
|
|
lib,
|
|
|
|
|
pkgs,
|
|
|
|
|
...
|
|
|
|
|
}:
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
imports = [ ];
|
|
|
|
|
|
|
|
|
|
options.me = {
|
|
|
|
|
worker_node.enable = lib.mkOption {
|
|
|
|
|
type = lib.types.bool;
|
|
|
|
|
default = false;
|
|
|
|
|
example = true;
|
|
|
|
|
description = "Whether we want to install worker_node.";
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
config = lib.mkIf config.me.worker_node.enable {
|
2025-12-18 22:28:03 -05:00
|
|
|
me.cilium.enable = true;
|
2025-12-15 22:32:32 -05:00
|
|
|
me.containerd.enable = true;
|
2025-12-16 21:07:39 -05:00
|
|
|
me.firewall.enable = true;
|
2025-12-16 21:48:44 -05:00
|
|
|
# me.kube-proxy.enable = true;
|
2025-12-16 19:31:33 -05:00
|
|
|
me.kubelet.enable = true;
|
2025-12-15 22:32:32 -05:00
|
|
|
me.kubernetes.enable = true;
|
2025-12-18 22:28:03 -05:00
|
|
|
|
|
|
|
|
networking.firewall.allowedTCPPortRanges = [
|
|
|
|
|
{
|
|
|
|
|
# NodePort services
|
|
|
|
|
from = 30000;
|
|
|
|
|
to = 32767;
|
|
|
|
|
}
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
networking.firewall.allowedUDPPortRanges = [
|
|
|
|
|
{
|
|
|
|
|
# NodePort services
|
|
|
|
|
from = 30000;
|
|
|
|
|
to = 32767;
|
|
|
|
|
}
|
|
|
|
|
];
|
2025-12-15 22:32:32 -05:00
|
|
|
};
|
|
|
|
|
}
|
