From ef7dcebc86b9e16a0e64364fdab1e2d9dcd72e5a Mon Sep 17 00:00:00 2001 From: Michael Thomson Date: Thu, 14 Dec 2023 08:57:53 -0500 Subject: [PATCH] pihole ingress --- pihole/dns-endpoint.yaml | 12 ++++++++++++ pihole/helmrelease-pihole.yaml | 22 +++++++++++----------- 2 files changed, 23 insertions(+), 11 deletions(-) create mode 100644 pihole/dns-endpoint.yaml diff --git a/pihole/dns-endpoint.yaml b/pihole/dns-endpoint.yaml new file mode 100644 index 0000000..f521f9b --- /dev/null +++ b/pihole/dns-endpoint.yaml @@ -0,0 +1,12 @@ +apiVersion: externaldns.k8s.io/v1alpha1 +kind: DNSEndpoint +metadata: + name: pihole.michaelthomson.dev + namespace: pihole +spec: + endpoints: + - dnsName: pihole.michaelthomson.dev + recordTTL: 180 + recordType: CNAME + targets: + - server.michaelthomson.dev diff --git a/pihole/helmrelease-pihole.yaml b/pihole/helmrelease-pihole.yaml index c464291..eeef30b 100644 --- a/pihole/helmrelease-pihole.yaml +++ b/pihole/helmrelease-pihole.yaml @@ -150,25 +150,25 @@ spec: # -- Configuration for the Ingress ingress: # -- Generate a Ingress resource - enabled: false + enabled: true # -- Specify an ingressClassName - # ingressClassName: nginx + ingressClassName: traefik # -- Annotations for the ingress annotations: - {} - # kubernetes.io/ingress.class: nginx - # kubernetes.io/tls-acme: "true" + traefik.ingress.kubernetes.io/router.entrypoints: websecure + traefik.ingress.kubernetes.io/router.middlewares: traefik-authentik@kubernetescrd + traefik.ingress.kubernetes.io/router.tls: "true" path: / hosts: # virtualHost (default value is pi.hole) will be appended to the hosts - - chart-example.local - tls: [] - # - secretName: chart-example-tls - # hosts: - # #- virtualHost (default value is pi.hole) will be appended to the hosts - # - chart-example.local + - pihole.michaelthomson.dev + tls: + - hosts: + # virtualHost (default value is pi.hole) will be appended to the hosts + - pihole.michaelthomson.dev + secretName: letsencrypt-wildcard-cert-michaelthomson.dev # -- Probes configuration probes: