Back to talosnet.
This commit is contained in:
parent
844879f83e
commit
ece569535b
2 changed files with 91 additions and 23 deletions
|
@ -16,16 +16,6 @@ additionalMachineCertSans:
|
||||||
|
|
||||||
nodes:
|
nodes:
|
||||||
# cloud CAX21 Arm64
|
# cloud CAX21 Arm64
|
||||||
- hostname: aule
|
|
||||||
disableSearchDomain: true
|
|
||||||
ipAddress: ${auleIP}
|
|
||||||
controlPlane: true
|
|
||||||
installDiskSelector:
|
|
||||||
busPath: /dev/sda
|
|
||||||
networkInterfaces:
|
|
||||||
- interface: eth0
|
|
||||||
dhcp: true
|
|
||||||
# cloud CAX21 Arm64
|
|
||||||
- hostname: arlen
|
- hostname: arlen
|
||||||
disableSearchDomain: true
|
disableSearchDomain: true
|
||||||
ipAddress: ${arlenIP}
|
ipAddress: ${arlenIP}
|
||||||
|
@ -35,6 +25,12 @@ nodes:
|
||||||
networkInterfaces:
|
networkInterfaces:
|
||||||
- interface: eth0
|
- interface: eth0
|
||||||
dhcp: true
|
dhcp: true
|
||||||
|
- interface: eth1
|
||||||
|
dhcp: true
|
||||||
|
routes:
|
||||||
|
- network: 10.2.0.0/16
|
||||||
|
gateway: 10.2.0.1 # The route's gateway (if empty, creates link scope route).
|
||||||
|
metric: 2048
|
||||||
# cloud CAX21 Arm64
|
# cloud CAX21 Arm64
|
||||||
- hostname: eonwe
|
- hostname: eonwe
|
||||||
disableSearchDomain: true
|
disableSearchDomain: true
|
||||||
|
@ -45,6 +41,28 @@ nodes:
|
||||||
networkInterfaces:
|
networkInterfaces:
|
||||||
- interface: eth0
|
- interface: eth0
|
||||||
dhcp: true
|
dhcp: true
|
||||||
|
- interface: eth1
|
||||||
|
dhcp: true
|
||||||
|
routes:
|
||||||
|
- network: 10.2.0.0/16
|
||||||
|
gateway: 10.2.0.1 # The route's gateway (if empty, creates link scope route).
|
||||||
|
metric: 2048
|
||||||
|
# cloud CAX21 Arm64
|
||||||
|
- hostname: aule
|
||||||
|
disableSearchDomain: true
|
||||||
|
ipAddress: ${auleIP}
|
||||||
|
controlPlane: true
|
||||||
|
installDiskSelector:
|
||||||
|
busPath: /dev/sda
|
||||||
|
networkInterfaces:
|
||||||
|
- interface: eth0
|
||||||
|
dhcp: true
|
||||||
|
- interface: eth1
|
||||||
|
dhcp: true
|
||||||
|
routes:
|
||||||
|
- network: 10.2.0.0/16
|
||||||
|
gateway: 10.2.0.1 # The route's gateway (if empty, creates link scope route).
|
||||||
|
metric: 2048
|
||||||
# Bare-metal AX41-Nvme - AMD Ryzen 5 3600 6-Core Processor (Zen2) - 64GB ECC RAM
|
# Bare-metal AX41-Nvme - AMD Ryzen 5 3600 6-Core Processor (Zen2) - 64GB ECC RAM
|
||||||
- hostname: nienna
|
- hostname: nienna
|
||||||
disableSearchDomain: true
|
disableSearchDomain: true
|
||||||
|
@ -57,17 +75,27 @@ nodes:
|
||||||
# officialExtensions:
|
# officialExtensions:
|
||||||
# - siderolabs/amd-ucode
|
# - siderolabs/amd-ucode
|
||||||
# - siderolabs/qemu-guest-agent
|
# - siderolabs/qemu-guest-agent
|
||||||
talosImageURL: factory.talos.dev/installer/696bb48d9c48e567596f393a4ff9bfd26d4dda5d92c16beb580e96fa68d6324c
|
talosImageURL: harbor.hsn.dev/factory.talos.dev/installer/696bb48d9c48e567596f393a4ff9bfd26d4dda5d92c16beb580e96fa68d6324c
|
||||||
# https://factory.talos.dev/image/696bb48d9c48e567596f393a4ff9bfd26d4dda5d92c16beb580e96fa68d6324c/v1.5.5/metal-amd64.iso
|
# https://factory.talos.dev/image/696bb48d9c48e567596f393a4ff9bfd26d4dda5d92c16beb580e96fa68d6324c/v1.5.5/metal-amd64.iso
|
||||||
# no guest agent in the raw.xz image
|
# no guest agent in the raw.xz image
|
||||||
# https://factory.talos.dev/image/6c789e7a3eec37617fd9d239a7f696ba48e75bc4780f5cb30bf8882686d79a22/v1.5.5/metal-amd64.raw.xz
|
# https://factory.talos.dev/image/6c789e7a3eec37617fd9d239a7f696ba48e75bc4780f5cb30bf8882686d79a22/v1.5.5/metal-amd64.raw.xz
|
||||||
installDiskSelector:
|
installDiskSelector:
|
||||||
busPath: /pci0000:00/0000:00:0a.0/virtio2/
|
busPath: /pci0000:00/0000:00:0a.0/virtio2/
|
||||||
# Ceph Disk Fast: /pci0000:00/0000:00:11.0/nvme/nvme0/nvme0n1
|
|
||||||
# Ceph Disk Large: /pci0000:00/0000:00:10.0/ata1/host0/target0:0:0/0:0:0:0/
|
|
||||||
networkInterfaces:
|
networkInterfaces:
|
||||||
- interface: eth0
|
- interface: eth0
|
||||||
dhcp: true
|
dhcp: true
|
||||||
|
- interface: eth1
|
||||||
|
dhcp: false
|
||||||
|
vlans:
|
||||||
|
- vlanId: 4010
|
||||||
|
mtu: 1400
|
||||||
|
addresses:
|
||||||
|
- 10.2.1.2/24
|
||||||
|
dhcp: false
|
||||||
|
routes:
|
||||||
|
- network: 10.2.0.0/16
|
||||||
|
gateway: 10.2.1.1 # The route's gateway (if empty, creates link scope route).
|
||||||
|
metric: 2048
|
||||||
# VM on EX44 - Intel Gen 13 (Raptor Lake) - 64GB RAM
|
# VM on EX44 - Intel Gen 13 (Raptor Lake) - 64GB RAM
|
||||||
- hostname: orome
|
- hostname: orome
|
||||||
disableSearchDomain: true
|
disableSearchDomain: true
|
||||||
|
@ -81,14 +109,25 @@ nodes:
|
||||||
# - siderolabs/i915-ucode
|
# - siderolabs/i915-ucode
|
||||||
# - siderolabs/intel-ucode
|
# - siderolabs/intel-ucode
|
||||||
# - siderolabs/qemu-guest-agent
|
# - siderolabs/qemu-guest-agent
|
||||||
talosImageURL: factory.talos.dev/installer/f2f665587318c2d79e7b315cc333fff276ed59c8de831f16e28b4db107496ac2
|
talosImageURL: harbor.hsn.dev/factory.talos.dev/installer/f2f665587318c2d79e7b315cc333fff276ed59c8de831f16e28b4db107496ac2
|
||||||
# https://factory.talos.dev/image/f2f665587318c2d79e7b315cc333fff276ed59c8de831f16e28b4db107496ac2/metal-amd64.iso
|
# https://factory.talos.dev/image/f2f665587318c2d79e7b315cc333fff276ed59c8de831f16e28b4db107496ac2/metal-amd64.iso
|
||||||
installDiskSelector:
|
installDiskSelector:
|
||||||
busPath: /pci0000:00/0000:00:0a.0/virtio2/
|
busPath: /pci0000:00/0000:00:0a.0/virtio2/
|
||||||
# Ceph Disk: /dev/disk/by-id/nvme-SAMSUNG_MZVL2512HCJQ-00B00_S675NU0TB36132
|
|
||||||
networkInterfaces:
|
networkInterfaces:
|
||||||
- interface: eth0
|
- interface: eth0
|
||||||
dhcp: true
|
dhcp: true
|
||||||
|
- interface: eth1
|
||||||
|
dhcp: false
|
||||||
|
vlans:
|
||||||
|
- vlanId: 4010
|
||||||
|
mtu: 1400
|
||||||
|
addresses:
|
||||||
|
- 10.2.1.3/24
|
||||||
|
dhcp: false
|
||||||
|
routes:
|
||||||
|
- network: 10.2.0.0/16
|
||||||
|
gateway: 10.2.1.1 # The route's gateway (if empty, creates link scope route).
|
||||||
|
metric: 2048
|
||||||
worker:
|
worker:
|
||||||
patches:
|
patches:
|
||||||
- |-
|
- |-
|
||||||
|
@ -111,6 +150,19 @@ worker:
|
||||||
rotate-server-certificates: "true"
|
rotate-server-certificates: "true"
|
||||||
extraConfig:
|
extraConfig:
|
||||||
maxPods: 150
|
maxPods: 150
|
||||||
|
nodeIP:
|
||||||
|
validSubnets:
|
||||||
|
- 10.2.0.0/16
|
||||||
|
registries:
|
||||||
|
mirrors:
|
||||||
|
docker.io:
|
||||||
|
endpoints:
|
||||||
|
- http://harbor.hsn.dev/v2/docker.io
|
||||||
|
overridePath: true
|
||||||
|
ghcr.io:
|
||||||
|
endpoints:
|
||||||
|
- http://harbor.hsn.dev/v2/ghcr.io
|
||||||
|
overridePath: true
|
||||||
controlPlane:
|
controlPlane:
|
||||||
patches:
|
patches:
|
||||||
- |-
|
- |-
|
||||||
|
@ -125,6 +177,9 @@ controlPlane:
|
||||||
name: none
|
name: none
|
||||||
proxy:
|
proxy:
|
||||||
disabled: true
|
disabled: true
|
||||||
|
etcd:
|
||||||
|
advertisedSubnets:
|
||||||
|
- 10.2.0.0/24
|
||||||
|
|
||||||
- |-
|
- |-
|
||||||
- op: remove
|
- op: remove
|
||||||
|
@ -136,6 +191,16 @@ controlPlane:
|
||||||
kubePrism:
|
kubePrism:
|
||||||
enabled: true
|
enabled: true
|
||||||
port: 7445
|
port: 7445
|
||||||
|
registries:
|
||||||
|
mirrors:
|
||||||
|
docker.io:
|
||||||
|
endpoints:
|
||||||
|
- http://harbor.hsn.dev/v2/docker.io
|
||||||
|
overridePath: true
|
||||||
|
ghcr.io:
|
||||||
|
endpoints:
|
||||||
|
- http://harbor.hsn.dev/v2/ghcr.io
|
||||||
|
overridePath: true
|
||||||
|
|
||||||
files:
|
files:
|
||||||
- op: create
|
- op: create
|
||||||
|
@ -151,6 +216,9 @@ controlPlane:
|
||||||
rotate-server-certificates: "true"
|
rotate-server-certificates: "true"
|
||||||
extraConfig:
|
extraConfig:
|
||||||
maxPods: 150
|
maxPods: 150
|
||||||
|
nodeIP:
|
||||||
|
validSubnets:
|
||||||
|
- 10.2.0.0/16
|
||||||
sysctls:
|
sysctls:
|
||||||
fs.inotify.max_user_watches: "1048576"
|
fs.inotify.max_user_watches: "1048576"
|
||||||
fs.inotify.max_user_instances: "8192"
|
fs.inotify.max_user_instances: "8192"
|
||||||
|
|
|
@ -1,10 +1,10 @@
|
||||||
clusterName: ENC[AES256_GCM,data:iT5CwpMddw==,iv:st1ajjpRXQiHozpIJqUUwmRe542IiR2aWLEdqkk4W9k=,tag:KOCQ8x28kwNNDUXwOTpulg==,type:str]
|
clusterName: ENC[AES256_GCM,data:iT5CwpMddw==,iv:st1ajjpRXQiHozpIJqUUwmRe542IiR2aWLEdqkk4W9k=,tag:KOCQ8x28kwNNDUXwOTpulg==,type:str]
|
||||||
clusterEndpointIP: ENC[AES256_GCM,data:nQcNkmmaLuOxz5tTKlY=,iv:IAnSXk667TSWcE2QDmE/xk56R6dCsNK5hMIY96BPN08=,tag:G1ebt6kfJ2V1WMfJ9zNBhA==,type:str]
|
clusterEndpointIP: ENC[AES256_GCM,data:3oaQK/8A4H8=,iv:GUtz5qkZMy/mq+Qf2VkoxTJpoeC7F8ySJcmzcTcLEkY=,tag:8GsMnWRBptAhzSQ9IZxwbA==,type:str]
|
||||||
auleIP: ENC[AES256_GCM,data:fowDru5uo1tx36Y3vQ==,iv:wSPdnE+eQ+er2pCOvS2DoynCxA+4oNbJacQhvQR6KJk=,tag:Fb+D9nA3U/QbgqmQhDMDDw==,type:str]
|
auleIP: ENC[AES256_GCM,data:l+3uRMhfUDk=,iv:emxhDXyCKP9ijhxH4egI/3i+BCprcPf0AIVVi29GCGE=,tag:+0dl4A72vIgXdNlk5Etdug==,type:str]
|
||||||
arlenIP: ENC[AES256_GCM,data:O3z2uYFNjS9iMng=,iv:b6T1AbWdIoFrH3hV1zop1C2x652sweKhgKPzUVNoDUY=,tag:d6edGxWSXtq9cpbcjIbtQw==,type:str]
|
arlenIP: ENC[AES256_GCM,data:uXEM6zEuo40=,iv:eZMNksxYqpfYaY70yiJDOOnpOZ2cIfu4sE71irlUWOY=,tag:C0PjKj3FVDeLhUFInEQzLg==,type:str]
|
||||||
eonweIP: ENC[AES256_GCM,data:WdN3OPeVD0ppPax856w=,iv:QVhxp1Q3JPbHZAyZbwoBfmIu+qazvAQPKJR10RdtfFI=,tag:raJ2APpfNTyXLSH9SjzoGA==,type:str]
|
eonweIP: ENC[AES256_GCM,data:zfIK5G67zEQ=,iv:xXPae345ybW9u6SX5eNHwEcBe+Y/7Gvzt6qWni3x+k4=,tag:hFO15lqDviJz+dnsa8IgMg==,type:str]
|
||||||
niennaIP: ENC[AES256_GCM,data:XQCs/IoSGQIzBKe2Kw==,iv:P72qBaIHY8oLpfR+t5ZZ31XJE1kytCvav0I25nQKSWI=,tag:ZVbQHHzct2Y/fvHxAXROXQ==,type:str]
|
niennaIP: ENC[AES256_GCM,data:3FRJBHRujl0=,iv:wd+Wp8DCXITYv4/Ys26+2GmeMXn0hvakxMUpDALqciE=,tag:P0Px35bWU0IzpH2H0i6dpA==,type:str]
|
||||||
oromeIP: ENC[AES256_GCM,data:nCeVxdK8Q1+E9nMoeNM=,iv:lqM72ewe+nwJUiJGOsLmGBtUU9JcxxmbEUZJNdFroWI=,tag:cpXvK0HW22mpy4nxWCgRmw==,type:str]
|
oromeIP: ENC[AES256_GCM,data:xSp35+pBlyk=,iv:Utk+kCiUKbSrx3kCsEtc90VRWEC9FSZJvJ1fvLZWc38=,tag:6uHW+BiOau9PUS2I2OnVGA==,type:str]
|
||||||
sops:
|
sops:
|
||||||
kms: []
|
kms: []
|
||||||
gcp_kms: []
|
gcp_kms: []
|
||||||
|
@ -20,8 +20,8 @@ sops:
|
||||||
MTFUZEplYVN5RGhhMGNEcDlGbTVQcjQKktwztZAHGUqoxbGHuAg0dX5Vap+wFVfx
|
MTFUZEplYVN5RGhhMGNEcDlGbTVQcjQKktwztZAHGUqoxbGHuAg0dX5Vap+wFVfx
|
||||||
ku6Hzg1ZU8Lvd8ODe+4p+RvHSKVll1akgpPVuymCUxl+I6EvH7gEDA==
|
ku6Hzg1ZU8Lvd8ODe+4p+RvHSKVll1akgpPVuymCUxl+I6EvH7gEDA==
|
||||||
-----END AGE ENCRYPTED FILE-----
|
-----END AGE ENCRYPTED FILE-----
|
||||||
lastmodified: "2023-12-10T16:40:14Z"
|
lastmodified: "2023-12-12T17:44:15Z"
|
||||||
mac: ENC[AES256_GCM,data:P0rbT2U+Ga29qR7hewngNrmfqA0ShNnCjaYGQLyHTsowqJ3ZY4HX7UQzwtXaZZTfz0SSIAK9yUHStmOoQ0p6c5t6uhww5565MAi23J5vQSkg3iIZ9MLuHkfAYwt4mOXVxvlhGMM0sEkE3nsurHVyEB3TOBgXKziz7Wi+pH1knXw=,iv:QBs7SV667gbiWbTNOcmzHc2eygJSLmK2aiLF4b4qvWU=,tag:/LjNKYD+XooTRLr/gcJQvg==,type:str]
|
mac: ENC[AES256_GCM,data:bXullHomsdG80EKIVrghmPIkcQMzWX/gvM8w0iqWRbunC4SlNTzFIgrHvs1qYdyPqy+rC2NhhhWGBVSDEfAA5wRQ/xmLPmFP/z9hKsUiQqHUwZflu2taB2SLuhjMMHS2sKwcP3uPA1anPkvEjhx+IpGv9X92RHqr8YF1r2LhOVk=,iv:OQwhjxw/FI/S9pXS9/HHTFdFxIetKUPcESscfJNjkao=,tag:AhoPRZifwQVPRO38fA/LSQ==,type:str]
|
||||||
pgp: []
|
pgp: []
|
||||||
unencrypted_suffix: _unencrypted
|
unencrypted_suffix: _unencrypted
|
||||||
version: 3.8.1
|
version: 3.8.1
|
||||||
|
|
Reference in a new issue