Comments (9)
khuedoan
commented on June 3, 2024
Have you applied the full Terraform in external? It will create a secret in cloudflared namespace, you can check the secret content to see if it's correct.
from homelab.
MCP-LTS
commented on June 3, 2024
i did a clean install now it works . it shows the warn :
2023/08/05 21:42:42 failed to sufficiently increase receive buffer size (was: 208 kiB, wanted: 2048 kiB, got: 416 kiB). See https://github.com/lucas-clemente/quic-go/wiki/UDP-Receive-Buffer-Size for details.
but it works so i can safely ignore that
Thank you
Now i try for example deploy vaultwarden helm i do it from argocd sucessfully but i cant find a readme how to make it accessible from https://vaultwarden.mydomain.com
i checked your script "scripts/new-service" so i added in apps folder
a folder vaultwarden with
Chart.yaml
apiVersion: v2
name: vaultwarden
version: 0.0.0
dependencies:
- name: vaultwarden
version: 0.1.5
repository: https://cdwv.github.io/bitwarden-k8s/
and values.yaml
vaultwarden:
ingress:
main:
enabled: true
ingressClassName: nginx
annotations:
cert-manager.io/cluster-issuer: letsencrypt-prod
hajimari.io/appName: vaultwarden
hajimari.io/icon: google-drive
hosts:
- host: &host vaultwarden.mcp.cool
paths:
- path: /
pathType: Prefix
tls:
- secretName: vaultwarden-tls-certificate
hosts:
- *host
and then running make again? what should i do?
Thanks again
from homelab.
khuedoan
commented on June 3, 2024
For that please see https://homelab.khuedoan.com/how-to-guides/expose-services-to-the-internet
from homelab.
MCP-LTS
commented on June 3, 2024
I meant to see it from lan i use vpn to access my services.
from homelab.
khuedoan
commented on June 3, 2024
What is the IP resolved from DNS, does it match the load balancer?
host vaultwarden.example.com
kubectl get svc -n ingress-nginx
from homelab.
MCP-LTS
commented on June 3, 2024
yes services url match the load balancer
finally after a lot of digging i have that problem
the ingress-nginx without any error while still running and no errors in logs stops serving outside the controller at 80 and 443 randomly and often
before and after ingress-nginx pod restart nmap from lan
$ nmap 192.168.8.128 -P0 -p 80,443
Starting Nmap 7.93 ( https://nmap.org/ ) at 2023-08-20 19:01 EEST
Nmap scan report for 192.168.8.128
Host is up (0.25s latency).
PORT STATE SERVICE
80/tcp closed http
443/tcp closed https
Nmap done: 1 IP address (1 host up) scanned in 0.31 seconds
nmap 192.168.8.128 -P0 -p 80,443
Starting Nmap 7.93 ( https://nmap.org/ ) at 2023-08-20 19:07 EEST
Nmap scan report for 192.168.8.128
Host is up (0.0010s latency).
PORT STATE SERVICE
80/tcp open http
443/tcp open https
inside the controller always works
$ kubectl get svc -n ingress-nginx
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
ingress-nginx-controller LoadBalancer 10.43.96.203 192.168.8.128 80:32638/TCP,443:31523/TCP,22:30144/TCP 94m
ingress-nginx-controller-admission ClusterIP 10.43.17.10 <none> 443/TCP 94m
ingress-nginx-controller-metrics ClusterIP 10.43.169.27 <none> 10254/TCP 94m
what goes wrong any suggestions or where to check for more logs?
thank you
from homelab.
khuedoan
commented on June 3, 2024
If it works inside the controller but not from outside, maybe something is up with MetalLB
from homelab.
MCP-LTS
commented on June 3, 2024
any suggestions? how can i check it?
from homelab.
khuedoan
commented on June 3, 2024
You can check the logs in metallb-system namespace. Anyway since this is a different problem, please create a new issue (in case anyone have the same problem they can find it easier).
from homelab.
Related Issues (20)
- System-upgrade was removed HOT 1
- Add idm_admin creation to kanidm admin reset script? HOT 1
- gitea and 4 other services in a degraded state HOT 5
- Contact Point of AlertManager is absent HOT 5
- Adding a second dedicated network interface for longhorn replication HOT 4
- [Feature request] Add VPN egress HOT 3
- Kubernetes cluster unreachable: x509: certificate signed by unknown authority HOT 1
- Failed to install ArgoCD HOT 5
- Command: make tools, error HOT 2
- Getting errors on bootstrap phase with ApplicationSets HOT 1
- Cannot add master node HOT 3
- Add Infro PR Checks? HOT 1
- Not an Issue : Just a question about nodes HOT 1
- Question about cilium HOT 1
- cloudflare terraform deprecation and cloudflared failing HOT 1
- dex secret not found HOT 5
- [Suggestion] Replace terraform with opentofu HOT 1
- Issues Global-Secret Generated Secrets HOT 1
- ArgoCD Manifest error
- Argocd Apply Manifests Error
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from homelab.