golang
/
netmaker
espejo de https://github.com/gravitl/netmaker


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293
							apiVersion: apps/v1
kind: DaemonSet
metadata:
  name: netclient-1
  labels:
    app: netclient-1
spec:
  selector:
    matchLabels:
      app: netclient-1
  template:
    metadata:
      labels:
        app: netclient-1
    spec:
      hostNetwork: true
      containers:
      - name: netclient-1
        image: gravitl/netclient:0.9.2-doks
        env:
        - name: NETCLIENT_ROAMING
          value: "no"
        - name: NETCLIENT_PORT
          value: "51821"
        - name: NETCLIENT_IS_STATIC
          value: "yes"
        - name: NETCLIENT_ENDPOINT
          valueFrom:
            fieldRef:
              fieldPath: status.hostIP
        - name: TOKEN
          value: "<token>"
        volumeMounts:
        - mountPath: /etc/netclient
          name: etc-netclient
        - mountPath: /usr/bin/wg
          name: wg
        securityContext:
          privileged: true
      volumes:
      - hostPath:
          path: /etc/netclient
          type: DirectoryOrCreate
        name: etc-netclient
      - hostPath:
          path: /usr/bin/wg
          type: File
        name: wg
---
apiVersion: apps/v1
kind: DaemonSet
metadata:
  name: wireguard-controller
  labels:
    app: wireguard-controller
spec:
  selector:
    matchLabels:
      app: wireguard-controller
  template:
    metadata:
      labels:
        app: wireguard-controller
    spec:
      hostNetwork: true
      containers:
      - image: gravitl/netclient:0.9.2-doks
        imagePullPolicy: IfNotPresent
        name: wg-installer
        command: ['bash', '-c']
        args:
          - while [ 1 ];
            do if ! command -v wg &> /dev/null;
            then echo "wireguard not installed, installing";
            echo 'deb http://deb.debian.org/debian buster-backports main contrib non-free' > /etc/apt/sources.list.d/buster-backports.list;
            apt update;
            sudo apt -y install linux-headers-$(uname --kernel-release);
            apt -y install wireguard wireguard-tools;
            else echo "wireguard installed";
            sleep 300;
            fi;
            done
        securityContext:
          privileged: true
        volumeMounts:
        - name: rootfolder
          mountPath: /
      volumes:
      - hostPath:
          path: /
          type: ""
        name: rootfolder