platform/manifests
1
1
Fork 0
Code Issues 7 Pull Requests 6 Actions Packages Projects Releases Wiki Activity

fix: add hel1 to headscale

Browse Source
This commit is contained in:
Jonas Juselius
2025-11-13 09:13:00 +01:00
parent 8ebc031f9b
commit a83c8d1a5c
1 changed files with 30 additions and 23 deletions
Download Patch File Download Diff File Expand all files Collapse all files
values/headscale/values/values.yaml
+30 -23
View File
@@ -3,7 +3,7 @@ image:
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
tag: v0.26.1 tag: v0.26.1
args: [ "serve" ] args: ["serve"]
env: env:
HEADSCALE_DNS_BASE_DOMAIN: "ts.obx" HEADSCALE_DNS_BASE_DOMAIN: "ts.obx"
@@ -132,6 +132,7 @@ configMaps:
"tag:k8s": [ "group:admin" ], "tag:k8s": [ "group:admin" ],
"tag:hpc": [ "group:admin" ], "tag:hpc": [ "group:admin" ],
"tag:mumindalen": [ "group:admin" ], "tag:mumindalen": [ "group:admin" ],
"tag:hel1": [ "group:admin" ],
}, },
// hosts should be defined using its IP addresses and a subnet mask. // hosts should be defined using its IP addresses and a subnet mask.
// to define a single host, use a /32 mask. You cannot use DNS entries here, // to define a single host, use a /32 mask. You cannot use DNS entries here,
@@ -154,29 +155,32 @@ configMaps:
"mgmt.tos.net": "10.255.240.0/24", "mgmt.tos.net": "10.255.240.0/24",
"dc.vtn.net": "172.16.239.0/24", "dc.vtn.net": "172.16.239.0/24",
"mgmt.vtn.net": "172.16.238.0/24", "mgmt.vtn.net": "172.16.238.0/24",
"dc.hel1.net": "10.0.1.0/24",
}, },
"acls": [ "acls": [
{ {
"action": "accept", "action": "accept",
"src": [ "src": [
"group:admin", "group:admin",
"tag:mumindalen", "tag:mumindalen",
], ],
"dst": [ "dst": [
"tag:hpc:*", "tag:hpc:*",
"tag:mumindalen:*", "tag:hel1:*",
"dc.tos.net:*", "tag:mumindalen:*",
"mgmt.tos.net:*", "dc.tos.net:*",
"office.tos.net:*", "mgmt.tos.net:*",
"dc.vtn.net:*", "office.tos.net:*",
"mgmt.vtn.net:*", "dc.vtn.net:*",
"100.64.0.0/10:*", "mgmt.vtn.net:*",
"dc.hel1.net:*",
"100.64.0.0/10:*",
] ]
}, },
{ {
"action": "accept", "action": "accept",
"src": [ "src": [
"tag:hpc", "tag:hpc",
], ],
"dst": [ "dst": [
"tag:hpc:22", "tag:hpc:22",
@@ -188,24 +192,27 @@ configMaps:
"action": "accept", "action": "accept",
"src": [ "group:devops" ], "src": [ "group:devops" ],
"dst": [ "dst": [
"k8s.oceanbox.tos:6443", "k8s.oceanbox.tos:6443",
"k8s.ekman.tos:6443", "k8s.ekman.tos:6443",
"tag:hpc:*", "tag:hpc:*",
"tag:mumindalen:*", "tag:hel1:*",
"dc.tos.net:*", "tag:mumindalen:*",
"dc.tos.net:*",
"dc.hel1.net:*",
] ]
}, },
{ {
"action": "accept", "action": "accept",
"src": [ "src": [
"group:oceanographer", "group:oceanographer",
"group:manager", "group:manager",
"group:marketing", "group:marketing",
], ],
"dst": [ "dst": [
"tag:mumindalen:0", "tag:mumindalen:0",
"tag:hpc:22,80,443", "tag:hpc:22,80,443",
"dc.tos.net:22,80,443", "dc.tos.net:22,80,443",
"dc.hel1.net:443",
] ]
}, },
{ {