xavor/kubernetes
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

añadido apolo

Browse Source
This commit is contained in:
xguefer
2025-08-17 10:15:19 +02:00
parent 2a3067dc0b
commit 31a109fd5c
68 changed files with 2416 additions and 26 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
apolo/ingress/ingress-colossus.yaml Normal file
View File

@@ -0,0 +1,26 @@
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: apolo-colossus
namespace: apolo
annotations:
cert-manager.io/cluster-issuer: letsencrypt-prod
nginx.ingress.kubernetes.io/ssl-redirect: "true"
nginx.ingress.kubernetes.io/whitelist-source-range: "192.168.200.0/24,10.244.0.0/16,192.168.4.0/24"
spec:
ingressClassName: nginx
tls:
- hosts:
- colossus.apolo.c2et.net
secretName: colossus-tls
rules:
- host: colossus.apolo.c2et.net
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: apolo-colossus
port:
number: 3000

26
apolo/ingress/ingress-kurento-api.yaml Normal file
View File

@@ -0,0 +1,26 @@
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: apolo-meeting
namespace: apolo
annotations:
cert-manager.io/cluster-issuer: letsencrypt-prod
nginx.ingress.kubernetes.io/ssl-redirect: "true"
nginx.ingress.kubernetes.io/proxy-body-size: "0"
nginx.ingress.kubernetes.io/whitelist-source-range: "192.168.200.0/24,10.244.0.0/16,192.168.4.0/24"
spec:
ingressClassName: nginx
tls:
- hosts: [meeting.apolo.c2et.net]
secretName: meeting-tls
rules:
- host: meeting.apolo.c2et.net
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: apolo-kurento-api
port:
number: 3000

26
apolo/ingress/ingress-portal.yaml Normal file
View File

@@ -0,0 +1,26 @@
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: apolo-portal
namespace: apolo
annotations:
cert-manager.io/cluster-issuer: letsencrypt-prod
nginx.ingress.kubernetes.io/whitelist-source-range: "192.168.200.0/24,10.244.0.0/16,192.168.4.0/24"
nginx.ingress.kubernetes.io/ssl-redirect: "true"
spec:
ingressClassName: nginx
tls:
- hosts:
- portal.apolo.c2et.net
secretName: portal-tls
rules:
- host: portal.apolo.c2et.net
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: apolo-portal
port:
number: 8080

27
apolo/ingress/ingress-web.yaml Normal file
View File

@@ -0,0 +1,27 @@
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: apolo-backend
namespace: apolo
annotations:
cert-manager.io/cluster-issuer: letsencrypt-prod
nginx.ingress.kubernetes.io/proxy-body-size: "0"
nginx.ingress.kubernetes.io/whitelist-source-range: "192.168.200.0/24,10.244.0.0/16,192.168.4.0/24"
nginx.ingress.kubernetes.io/ssl-redirect: "true"
spec:
ingressClassName: nginx
tls:
- hosts:
- backend.apolo.c2et.net
secretName: backend-tls
rules:
- host: backend.apolo.c2et.net
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: apolo-web
port:
number: 80

34
apolo/ingress/ingress-websocket.yaml Normal file
View File

@@ -0,0 +1,34 @@
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: apolo-backend-websocket
namespace: apolo
annotations:
nginx.ingress.kubernetes.io/ssl-redirect: "true"
# Mantener conexiones WS mucho tiempo
nginx.ingress.kubernetes.io/proxy-read-timeout: "3600"
nginx.ingress.kubernetes.io/proxy-send-timeout: "3600"
# (Opcional) Desactiva buffering para WS
nginx.ingress.kubernetes.io/proxy-buffering: "off"
# En Traefik ponías X-Forwarded-Proto=wss; replicamos eso:
nginx.ingress.kubernetes.io/configuration-snippet: |
proxy_set_header X-Forwarded-Proto wss;
# Misma ACL que tu backend (sólo VPN/LAN)
nginx.ingress.kubernetes.io/whitelist-source-range: "192.168.200.0/24,10.244.0.0/16,192.168.4.0/24"
spec:
ingressClassName: nginx
rules:
- host: backend.apolo.c2et.net
http:
paths:
- path: /app
pathType: Prefix
backend:
service:
name: apolo-websocket
port:
number: 6001