fkf9/ungleich-k8s
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

++index link

Browse source
This commit is contained in:
Nico Schottelius 2021-06-09 20:14:49 +02:00
parent 46770797f2
commit 8ed6f0d60c
2 changed files with 30 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
README.md
View file

@ -2,6 +2,10 @@
This project is testing, deploying and using IPv6 only k8s clusters. This project is testing, deploying and using IPv6 only k8s clusters.
## Docs
* [Setting up the cluster with calico](v3-calico/README.md)
## Working ## Working
* networking (calico) * networking (calico)
@ -15,3 +19,4 @@ This project is testing, deploying and using IPv6 only k8s clusters.
* prometheus in the cluster * prometheus in the cluster
* argocd (?) for CI and upgrades * argocd (?) for CI and upgrades
* Maybe LoadBalancer support (our ClusterIP already does that though) * Maybe LoadBalancer support (our ClusterIP already does that though)
* (Other) DNS entrys for services

25
certificates-dns.md Normal file
View file

@ -0,0 +1,25 @@
## Objective
Allow a service to acquire a DNS name and a certificate for the DNS
name.
## Potential flow
* A deployment (?) with annotations domain: xyz.example.com is created
* The DNS entry xyz.example.com pointing to the Service is created
* The certifcatce for xyz.example.com is requested/stored
* All pods get access to the certificate, serve https
## DNS
* Could try to reuse existing CoreDNS
## Letsencrypt / Certificates for services [WIP]
* Maybe using certmanager
```
kubectl apply -f
https://github.com/jetstack/cert-manager/releases/download/v1.3.1/cert-manager.yaml
```