From 0d22f421bcece9171d6380859548b559da00b578 Mon Sep 17 00:00:00 2001
From: Pim Kunis <pim@kunis.nl>
Date: Tue, 2 Apr 2024 22:18:01 +0200
Subject: [PATCH] expose coredns outside of the cluster

---
 nix/flake/kubenix/default.nix                 | 26 +++++++++++++++++++
 .../networking/dmz_services/dnsmasq.nix       |  1 +
 2 files changed, 27 insertions(+)

diff --git a/nix/flake/kubenix/default.nix b/nix/flake/kubenix/default.nix
index ff90232..d158a7a 100644
--- a/nix/flake/kubenix/default.nix
+++ b/nix/flake/kubenix/default.nix
@@ -65,6 +65,32 @@
                     loadBalancerIP: "192.168.30.128"
               '';
             };
+
+            configMaps.coredns-custom = {
+              metadata.namespace = "kube-system";
+              data."external.server" = ''
+                kubernetes.dmz {
+                  kubernetes
+                  k8s_external kubernetes.dmz
+                }
+              '';
+            };
+
+            services.kube-dns-external = {
+              metadata.namespace = "kube-system";
+
+              spec = {
+                type = "LoadBalancer";
+                loadBalancerIP = "192.168.30.133";
+                selector.k8s-app = "kube-dns";
+
+                ports = [{
+                  port = 53;
+                  targetPort = 53;
+                  protocol = "UDP";
+                }];
+              };
+            };
           };
 
           helm.releases.metallb = {
diff --git a/nix/modules/networking/dmz_services/dnsmasq.nix b/nix/modules/networking/dmz_services/dnsmasq.nix
index 78ab5a3..a3af4a3 100644
--- a/nix/modules/networking/dmz_services/dnsmasq.nix
+++ b/nix/modules/networking/dmz_services/dnsmasq.nix
@@ -24,6 +24,7 @@ in
   server = [
     cfg.dmz.ipv4.router
     "/kun.is/${cfg.dmz.ipv4.services}"
+    "/kubernetes.dmz/192.168.30.133"
   ];
 
   dhcp-range = [