Skip to content

Commit

Permalink
fix: remove ports & bind-address 127.0.0.1
Browse files Browse the repository at this point in the history
  • Loading branch information
FabianKramm committed Sep 25, 2023
1 parent fe29d9d commit eafe3d2
Show file tree
Hide file tree
Showing 6 changed files with 6 additions and 44 deletions.
10 changes: 0 additions & 10 deletions charts/eks/templates/coredns.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -131,16 +131,6 @@ data:
- name: custom-config-volume
mountPath: /etc/coredns/custom
readOnly: true
ports:
- containerPort: 1053
name: dns
protocol: UDP
- containerPort: 1053
name: dns-tcp
protocol: TCP
- containerPort: 9153
name: metrics
protocol: TCP
securityContext:
runAsNonRoot: true
runAsUser: {{`{{.RUN_AS_USER}}`}}
Expand Down
10 changes: 0 additions & 10 deletions charts/k0s/templates/coredns.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -135,16 +135,6 @@ data:
- name: custom-config-volume
mountPath: /etc/coredns/custom
readOnly: true
ports:
- containerPort: 1053
name: dns
protocol: UDP
- containerPort: 1053
name: dns-tcp
protocol: TCP
- containerPort: 9153
name: metrics
protocol: TCP
securityContext:
runAsNonRoot: true
runAsUser: {{`{{.RUN_AS_USER}}`}}
Expand Down
7 changes: 4 additions & 3 deletions charts/k0s/templates/secret.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@ metadata:
heritage: "{{ .Release.Service }}"
{{- if .Values.globalAnnotations}}
annotations:
{{ toYaml .Values.globalAnnotations | indent 4 }}
{{ toYaml .Values.globalAnnotations | indent 4 }}
{{- end }}
type: Opaque
stringData:
Expand All @@ -31,13 +31,14 @@ stringData:
port: 6443
k0sApiPort: 9443
extraArgs:
bind-address: 127.0.0.1
enable-admission-plugins: NodeRestriction
endpoint-reconciler-type: none
network:
{{- if .Values.serviceCIDR }}
serviceCIDR: {{ .Values.serviceCIDR }}
{{- else }}
# Will be replaced automatically by the syncer container on first
# Will be replaced automatically by the syncer container on first
serviceCIDR: CIDR_PLACEHOLDER
{{- end }}
provider: custom
Expand All @@ -54,4 +55,4 @@ stringData:
node-monitor-period: 1h
{{- end }}
{{- end }}
{{- end }}
{{- end }}
10 changes: 0 additions & 10 deletions charts/k3s/templates/coredns.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -135,16 +135,6 @@ data:
- name: custom-config-volume
mountPath: /etc/coredns/custom
readOnly: true
ports:
- containerPort: 1053
name: dns
protocol: UDP
- containerPort: 1053
name: dns-tcp
protocol: TCP
- containerPort: 9153
name: metrics
protocol: TCP
securityContext:
runAsNonRoot: true
runAsUser: {{`{{.RUN_AS_USER}}`}}
Expand Down
3 changes: 2 additions & 1 deletion charts/k3s/values.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -169,11 +169,12 @@ vcluster:
- server
- --write-kubeconfig=/data/k3s-config/kube-config.yaml
- --data-dir=/data
- --disable=traefik,servicelb,metrics-server,local-storage,coredns
- --disable=traefik,servicelb,metrics-server,local-storage,coredns#
- --disable-network-policy
- --disable-agent
- --disable-cloud-controller
- --flannel-backend=none
- --kube-apiserver-arg=bind-address=127.0.0.1
extraArgs: []
volumeMounts:
- mountPath: /data
Expand Down
10 changes: 0 additions & 10 deletions charts/k8s/templates/coredns.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -135,16 +135,6 @@ data:
- name: custom-config-volume
mountPath: /etc/coredns/custom
readOnly: true
ports:
- containerPort: 1053
name: dns
protocol: UDP
- containerPort: 1053
name: dns-tcp
protocol: TCP
- containerPort: 9153
name: metrics
protocol: TCP
securityContext:
runAsNonRoot: true
runAsUser: {{`{{.RUN_AS_USER}}`}}
Expand Down

0 comments on commit eafe3d2

Please sign in to comment.