-
-
Notifications
You must be signed in to change notification settings - Fork 1.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
how to run wg-easy in kubernetes? #3
Comments
Based on what I understand. Sysctls are still in beta in versions prior to 1.21 so you might have needed to enable the feature via a feature flag when running k3s agent. However it seems like there's no impact in excluding this sysctl. I'm currently running wg-easy on k3s 1.18, works just fine, though client speed statistics are off likely due to the missing sysctl, not a deal breaker imo. |
I managed to run wg-easy in kubernetes:
Below is how my deployment looks like, please note that in this example I use traefik as reverse-proxy and authelia as traefik-middleware for UI authentication. Traefik and authelia configuration are beyond the scope of this post.
Following are from my host machine:
|
Feature small screen fixes
Feature small screen fixes
I tried it running in the kubernetes (k3s) cluster. I get the following error:
error: error validating "wireguard": error validating data: ValidationError(Deployment.spec.template.spec.containers[0].securityContext): unknown field "sysctls" in io.k8s.api.core.v1.SecurityContext; if you choose to ignore these errors, turn validation off with --validate=false
my deployment.yml looks like this:
from my host machine (debain):
net.ipv4.conf.all.src_valid_mark
as "0". If yes, how to turn this to "1"?The text was updated successfully, but these errors were encountered: