mirror of
https://github.com/kittywitch/nixfiles.git
synced 2026-02-09 04:19:19 -08:00
36 lines
939 B
Nix
36 lines
939 B
Nix
{pkgs, ...}: let
|
|
kubeMasterIP = "100.105.14.66";
|
|
kubeMasterHostname = "ran.gensokyo.zone";
|
|
kubeMasterAPIServerPort = 6443;
|
|
in {
|
|
# packages for administration tasks
|
|
environment.systemPackages = with pkgs; [
|
|
kompose
|
|
kubectl
|
|
kubernetes
|
|
];
|
|
|
|
networking = {
|
|
firewall.allowedTCPPorts = [
|
|
kubeMasterAPIServerPort
|
|
443
|
|
80
|
|
];
|
|
extraHosts = "${kubeMasterIP} ${kubeMasterHostname}";
|
|
};
|
|
|
|
systemd.services.etcd.preStart = ''${pkgs.writeShellScript "etcd-wait" ''
|
|
while [ ! -f /var/lib/kubernetes/secrets/etcd.pem ]; do sleep 1; done
|
|
''}'';
|
|
|
|
services.kubernetes = {
|
|
roles = ["master" "node"];
|
|
addons.dns.enable = true; # CoreDNS
|
|
masterAddress = kubeMasterHostname;
|
|
apiserverAddress = "https://${kubeMasterHostname}:${toString kubeMasterAPIServerPort}";
|
|
apiserver = {
|
|
securePort = kubeMasterAPIServerPort;
|
|
advertiseAddress = kubeMasterIP;
|
|
};
|
|
};
|
|
}
|