extraccion de DNS/ revision de ACLs

coredns/configmap-coredns.yaml

@@ -0,0 +1,41 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: coredns-custom
+  namespace: coredns
+data:
+  Corefile: |
+    .:53 {
+        log
+        errors
+        health
+        reload
+        hosts {
+          # === APOLO (GPS tactico)     ===
+          192.168.200.10 backend.apolo.c2et.net
+          192.168.200.10 portal.apolo.c2et.net
+          192.168.200.10 colossus.apolo.c2et.net
+          192.168.200.13 chat.apolo.c2et.net
+          192.168.200.13 muc.chat.apolo.c2et.net
+          192.168.200.12 streaming.apolo.c2et.net
+          192.168.200.14 meeting.apolo.c2et.net
+
+          # === ARGOS (videovigilancia) ===
+          192.168.200.15 mqtt.argos.interna
+          192.168.200.16 mediamtx.argos.interna
+          192.168.200.10 s3.argos.interna
+          192.168.200.10 minio.argos.interna
+          192.168.200.10 panel.argos.c2et.net
+
+          # === External              ) ===
+          192.168.0.100 admin.firewall.c2et.net
+          192.168.0.100 k8s.c2et.net
+          192.168.0.100 admin.powervault1.c2et.net
+          192.168.0.100 admin.powervault2.c2et.net
+          192.168.0.100 ceph.c2et.net
+          fallthrough
+        }
+        forward . /etc/resolv.conf
+        cache 120
+        # prometheus 0.0.0.0:9153   # <- activa si quieres métricas
+    }