oceanbox/platform
6
0
Fork 0
Code Issues 10 Pull Requests 1 Actions Packages Projects Releases Wiki Activity

fix: move apiserver port to standard 6443

Browse Source
This commit is contained in:
Jonas Juselius
2025-09-13 07:00:49 +02:00
parent eb7b1f8130
commit 6767eb21e6
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
modules/k8s/default.nix
View File

@@ -25,7 +25,7 @@ let
hostName = config.networking.hostName; hostName = config.networking.hostName;
domain = config.networking.domain; domain = config.networking.domain;
apiserverAddress = "https://${cfg.master.address}:4443"; apiserverAddress = "https://${cfg.master.address}:6443";
cfssl-apitoken = cfssl-apitoken =
let let
@@ -220,7 +220,7 @@ let
advertiseAddress = cfg.master.address; advertiseAddress = cfg.master.address;
authorizationMode = [ "Node" "RBAC" ]; authorizationMode = [ "Node" "RBAC" ];
allowPrivileged = true; allowPrivileged = true;
securePort = 4443; securePort = 6443;
serviceClusterIpRange = "10.0.0.0/22"; serviceClusterIpRange = "10.0.0.0/22";
extraOpts = "--requestheader-client-ca-file ${pki.ca.cert}"; extraOpts = "--requestheader-client-ca-file ${pki.ca.cert}";
#extraSANs = cfg.master.extraSANs; #extraSANs = cfg.master.extraSANs;
@@ -252,7 +252,7 @@ let
}; };
networking.firewall = { networking.firewall = {
allowedTCPPorts = [ 53 5000 8080 4443 4001 2379 2380 10250 10251 10252 ]; allowedTCPPorts = [ 53 5000 8080 6443 4001 2379 2380 10250 10251 10252 ];
allowedUDPPorts = [ 53 4053 ]; allowedUDPPorts = [ 53 4053 ];
}; };