talexander/machine_setup
1
0
Fork 0
Code Issues Pull Requests Releases Activity
1,245 Commits 8 Branches 0 Tags
Commit Graph

27 Commits

Author SHA1 Message Date
Tom Alexander
1bbaa2689a
Enable hubble. 2026-02-06 11:28:44 -05:00
Tom Alexander
72084f1a7e
Enable the firewall. 
Now that we have networking working, I can enable the firewall and confirm nothing breaks.
 2026-02-06 11:28:44 -05:00
Tom Alexander
4024847954
Fix CoreDNS IPv4 connectivity. 2026-02-06 11:28:44 -05:00
Tom Alexander
d8fa1a06c7
Increase timeout for coredns cache. 2026-02-06 11:28:44 -05:00
Tom Alexander
9cae3bbae3
More changes to try to fix coredns. 2026-02-06 11:28:43 -05:00
Tom Alexander
c62071f80e
Move the kubelet yaml config into nix. 2026-02-06 11:28:43 -05:00
Tom Alexander
29608e3376
Implement a generic helm templater package. 2026-02-06 11:28:43 -05:00
Tom Alexander
b7310a03b8
Switch to generating the coredns manifests via nix. 2026-02-06 11:28:43 -05:00
Tom Alexander
96112bd40a
Build the cilium manifest automatically in nix. 2026-02-06 11:28:43 -05:00
Tom Alexander
645c71ce33
Apply the git repo to the cluster. 2026-02-06 11:28:41 -05:00
Tom Alexander
8c70d4e829
Generic secrets for ssh keys. 2026-02-06 11:28:41 -05:00
Tom Alexander
df4260a35a
Generic secrets for pgp keys. 2026-02-06 11:28:41 -05:00
Tom Alexander
32fda29efe
Generate kubernetes secrets for ssh keys. 2026-02-06 11:28:41 -05:00
Tom Alexander
3affee9007
Generate pgp keys for sops. 2026-02-06 11:28:40 -05:00
Tom Alexander
144b39dfdd
Generate ssh keys for flux bootstrap. 2026-02-06 11:28:40 -05:00
Tom Alexander
d97edf0add
Move the cluster bootstrap into the keys flake. 
Bootstrapping the cluster needs access to secrets, so I am moving it into the keys flake.
 2026-02-06 11:28:40 -05:00
Tom Alexander
c61da527f2
Add kube-proxy. 2026-02-06 11:28:39 -05:00
Tom Alexander
0463d2cbd1
Add kubelet. 2026-02-06 11:28:39 -05:00
Tom Alexander
3b96f8d26c
Add kube-scheduler. 2026-02-06 11:28:38 -05:00
Tom Alexander
f8b8005ab2
Move the encryption config into a package. 2026-02-06 11:28:38 -05:00
Tom Alexander
5d660cced8
Switch to generating certs with openssl. 2026-02-06 11:28:38 -05:00
Tom Alexander
d093c9185a
Add controller proxy certs. 2026-02-06 11:28:38 -05:00
Tom Alexander
1cd5ba2c5c
Add requestheader-client-ca. 2026-02-06 11:28:38 -05:00
Tom Alexander
626055e063
Add service account. 2026-02-06 11:28:37 -05:00
Tom Alexander
342a5e338c
Install kubernetes. 2026-02-06 11:28:37 -05:00
Tom Alexander
f4a2f57062
Add additional controllers. 2026-02-06 11:28:37 -05:00
Tom Alexander
2b29530047
Add configs for a new kubernetes cluster on NixOS. 2026-02-06 08:53:23 -05:00