home/nixos-servers
home/nixos-servers
2
0
Fork 0
Code Issues 8 Pull requests Projects Releases Packages Wiki Activity Actions

feat(dnsmasq): Move to dns k8s namespace

Browse source 
refactor(pihole): Move to dns k8s namespace
This commit is contained in:
Pim Kunis 2024-07-17 10:25:23 +02:00
parent e9307da90d
commit 342ba2baeb
6 changed files with 29 additions and 32 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
README.md
View file

@ -68,6 +68,7 @@ Currently, the applications being deployed like this are:
- `immich`
- `attic`
- `inbucket`
- `dnsmasq`
## Known bugs

4
flake-parts/kubenix.nix
View file

@ -89,11 +89,13 @@
kubenix.syncthing = mkDeployScriptAndManifest
"${self}/kubenix-modules/syncthing.nix" "syncthing" "syncthing";
kubenix.pihole = mkDeployScriptAndManifest
"${self}/kubenix-modules/pihole.nix" "pihole" "pihole";
"${self}/kubenix-modules/pihole.nix" "pihole" "dns";
kubenix.immich = mkDeployScriptAndManifest
"${self}/kubenix-modules/immich.nix" "immich" "immich";
kubenix.attic = mkDeployScriptAndManifest
"${self}/kubenix-modules/attic.nix" "attic" "attic";
kubenix.inbucket = mkDeployScriptAndManifest
"${self}/kubenix-modules/inbucket.nix" "inbucket" "inbucket";
kubenix.dnsmasq = mkDeployScriptAndManifest
"${self}/kubenix-modules/dnsmasq.nix" "dnsmasq" "dns";
})

1
kubenix-modules/all.nix
View file

@ -2,7 +2,6 @@ let
applications = [
./media.nix
./bind9
./dnsmasq.nix
# ./argo.nix
# ./minecraft.nix
];

2
kubenix-modules/base.nix
View file

@ -72,10 +72,10 @@
forgejo = { };
paperless = { };
syncthing = { };
pihole = { };
immich = { };
attic = { };
inbucket = { };
dns = { };
};
nodes =

39
kubenix-modules/dnsmasq.nix
View file

@ -1,6 +1,5 @@
{ myLib, ... }: {
kubernetes.resources = {
# TODO: generate this with nix?
configMaps.dnsmasq-config.data.config = ''
address=/kms.kun.is/${myLib.globals.kmsIPv4}
address=/ssh.git.kun.is/${myLib.globals.gitIPv4}
@ -16,33 +15,29 @@
server=/kun.is/${myLib.globals.bind9IPv4}
'';
deployments.dnsmasq = {
metadata.labels.app = "dnsmasq";
deployments.dnsmasq.spec = {
selector.matchLabels.app = "dnsmasq";
spec = {
selector.matchLabels.app = "dnsmasq";
template = {
metadata.labels.app = "dnsmasq";
template = {
metadata.labels.app = "dnsmasq";
spec = {
containers.dnsmasq = {
image = "dockurr/dnsmasq:2.90";
spec = {
containers.dnsmasq = {
image = "dockurr/dnsmasq:2.90";
ports.dns = {
containerPort = 53;
protocol = "UDP";
};
volumeMounts = [{
name = "config";
mountPath = "/etc/dnsmasq.conf";
subPath = "config";
}];
ports.dns = {
containerPort = 53;
protocol = "UDP";
};
volumes.config.configMap.name = "dnsmasq-config";
volumeMounts = [{
name = "config";
mountPath = "/etc/dnsmasq.conf";
subPath = "config";
}];
};
volumes.config.configMap.name = "dnsmasq-config";
};
};
};

14
kubenix-modules/pihole.nix
View file

@ -44,8 +44,8 @@
};
volumes = {
data.persistentVolumeClaim.claimName = "data";
dnsmasq.persistentVolumeClaim.claimName = "dnsmasq";
data.persistentVolumeClaim.claimName = "pihole-data";
dnsmasq.persistentVolumeClaim.claimName = "pihole-dnsmasq";
};
securityContext = {
@ -57,7 +57,7 @@
};
services = {
web.spec = {
pihole-web.spec = {
selector.app = "pihole";
ports.web = {
@ -66,7 +66,7 @@
};
};
dns.spec = {
pihole-dns.spec = {
type = "LoadBalancer";
loadBalancerIP = myLib.globals.piholeIPv4;
selector.app = "pihole";
@ -86,18 +86,18 @@
entrypoint = "localsecure";
service = {
name = "web";
name = "pihole-web";
portName = "web";
};
};
longhorn.persistentVolumeClaim = {
data = {
pihole-data = {
volumeName = "pihole-data";
storage = "750Mi";
};
dnsmasq = {
pihole-dnsmasq = {
volumeName = "pihole-dnsmasq";
storage = "16Mi";
};