Tom Alexander
|
4c59dfd8b2
|
Enable hubble.
|
2026-06-14 08:47:15 -04:00 |
|
Tom Alexander
|
724c05f03a
|
Enable the firewall.
Now that we have networking working, I can enable the firewall and confirm nothing breaks.
|
2026-06-14 08:47:15 -04:00 |
|
Tom Alexander
|
8b2916189b
|
Fix CoreDNS IPv4 connectivity.
|
2026-06-14 08:47:15 -04:00 |
|
Tom Alexander
|
a95f24af0d
|
Increase timeout for coredns cache.
|
2026-06-14 08:47:14 -04:00 |
|
Tom Alexander
|
1528ae0764
|
More changes to try to fix coredns.
|
2026-06-14 08:47:14 -04:00 |
|
Tom Alexander
|
30f817dfe8
|
Move the kubelet yaml config into nix.
|
2026-06-14 08:47:14 -04:00 |
|
Tom Alexander
|
efd21f715f
|
Implement a generic helm templater package.
|
2026-06-14 08:47:14 -04:00 |
|
Tom Alexander
|
23372d763f
|
Switch to generating the coredns manifests via nix.
|
2026-06-14 08:47:14 -04:00 |
|
Tom Alexander
|
43633597fc
|
Build the cilium manifest automatically in nix.
|
2026-06-14 08:47:13 -04:00 |
|
Tom Alexander
|
4fe58c4d6c
|
Apply the git repo to the cluster.
|
2026-06-14 08:47:12 -04:00 |
|
Tom Alexander
|
3a5ada6049
|
Generic secrets for ssh keys.
|
2026-06-14 08:47:11 -04:00 |
|
Tom Alexander
|
8d572a5cce
|
Generic secrets for pgp keys.
|
2026-06-14 08:47:11 -04:00 |
|
Tom Alexander
|
c26fa59408
|
Generate kubernetes secrets for ssh keys.
|
2026-06-14 08:47:11 -04:00 |
|
Tom Alexander
|
3197868a7b
|
Generate pgp keys for sops.
|
2026-06-14 08:47:11 -04:00 |
|
Tom Alexander
|
c9f483dd98
|
Generate ssh keys for flux bootstrap.
|
2026-06-14 08:47:11 -04:00 |
|
Tom Alexander
|
dbeb98112b
|
Move the cluster bootstrap into the keys flake.
Bootstrapping the cluster needs access to secrets, so I am moving it into the keys flake.
|
2026-06-14 08:47:10 -04:00 |
|
Tom Alexander
|
eb82e8e5e3
|
Add kube-proxy.
|
2026-06-14 08:47:09 -04:00 |
|
Tom Alexander
|
f1382cfbb7
|
Add kubelet.
|
2026-06-14 08:47:09 -04:00 |
|
Tom Alexander
|
f3797b5c42
|
Add kube-scheduler.
|
2026-06-14 08:47:09 -04:00 |
|
Tom Alexander
|
84738f7266
|
Move the encryption config into a package.
|
2026-06-14 08:47:08 -04:00 |
|
Tom Alexander
|
45b7ce369e
|
Switch to generating certs with openssl.
|
2026-06-14 08:47:08 -04:00 |
|
Tom Alexander
|
c863bfe136
|
Add controller proxy certs.
|
2026-06-14 08:47:08 -04:00 |
|
Tom Alexander
|
98a0d78e45
|
Add requestheader-client-ca.
|
2026-06-14 08:47:08 -04:00 |
|
Tom Alexander
|
87312b19fa
|
Add service account.
|
2026-06-14 08:47:07 -04:00 |
|
Tom Alexander
|
cb312752ba
|
Install kubernetes.
|
2026-06-14 08:47:07 -04:00 |
|
Tom Alexander
|
321d215a57
|
Add additional controllers.
|
2026-06-14 08:47:07 -04:00 |
|
Tom Alexander
|
21d5002e7f
|
Add configs for a new kubernetes cluster on NixOS.
|
2026-06-14 08:47:05 -04:00 |
|