zerotier-docker/k8s/deployment.yaml

apiVersion: apps/v1
kind: Deployment
metadata:
  name: zerotier
spec:
  selector:
    matchLabels:
      app: zerotier
  template:
    metadata:
      labels:
        app: zerotier
    spec:
      initContainers:
        - name: network-joiner
          image: busybox
          env:
            - name: NETWORK_ID
              value: "<replace with network id>"
          command: [ "sh", "-c", "mkdir -p /mnt/networks.d && touch /mnt/networks.d/$(NETWORK_ID).conf" ]
          volumeMounts:
            - name: vol
              subPath: config
              mountPath: /mnt

      containers:
      - name: zerotier
        image: zyclonite/zerotier:router
        resources:
          limits:
            memory: "128Mi"
            cpu: "500m"
        ports:
        - name: net
          containerPort: 9993
        volumeMounts:
          - name: vol
            subPath: config
            mountPath: /var/lib/zerotier-one
          - name: tun
            readOnly: true
            mountPath: /dev/net/tun

        securityContext:
          capabilities:
            add:
            - NET_ADMIN
            - NET_RAW
            - SYS_ADMIN

      dnsPolicy: "None"
      dnsConfig:
        nameservers:
          - 1.1.1.1
          - 8.8.8.8

      volumes:
        - name: vol
          persistentVolumeClaim:
            claimName: zerotier
        - name: tun
          hostPath:
            path: /dev/net/tun
            type: ''
Added bridge mode Added K8S deployment 2022-01-19 08:59:04 +01:00			`apiVersion: apps/v1`
			`kind: Deployment`
			`metadata:`
			`name: zerotier`
			`spec:`
			`selector:`
			`matchLabels:`
			`app: zerotier`
			`template:`
			`metadata:`
			`labels:`
			`app: zerotier`
			`spec:`
			`initContainers:`
			`- name: network-joiner`
			`image: busybox`
			`env:`
			`- name: NETWORK_ID`
			`value: "<replace with network id>"`
			`command: [ "sh", "-c", "mkdir -p /mnt/networks.d && touch /mnt/networks.d/$(NETWORK_ID).conf" ]`
			`volumeMounts:`
			`- name: vol`
			`subPath: config`
			`mountPath: /mnt`
add net_raw cap for bridge mode, seems to be not a default for podman on fedora 2022-01-31 11:58:07 +01:00
Added bridge mode Added K8S deployment 2022-01-19 08:59:04 +01:00			`containers:`
			`- name: zerotier`
rename "bridge" to "router" 1. Rename files with "bridge" in the name to "router". 2. Edit file contents referring to "bridge" so they refer to "router". 3. Update README to reflect this change, plus point to the relevant link in the ZeroTier documentation. Signed-off-by: Phill Kelley <34226495+Paraphraser@users.noreply.github.com> 2022-07-18 08:03:36 +02:00			`image: zyclonite/zerotier:router`
Added bridge mode Added K8S deployment 2022-01-19 08:59:04 +01:00			`resources:`
			`limits:`
			`memory: "128Mi"`
			`cpu: "500m"`
			`ports:`
			`- name: net`
			`containerPort: 9993`
			`volumeMounts:`
			`- name: vol`
			`subPath: config`
			`mountPath: /var/lib/zerotier-one`
			`- name: tun`
			`readOnly: true`
			`mountPath: /dev/net/tun`
add net_raw cap for bridge mode, seems to be not a default for podman on fedora 2022-01-31 11:58:07 +01:00
Added bridge mode Added K8S deployment 2022-01-19 08:59:04 +01:00			`securityContext:`
			`capabilities:`
			`add:`
			`- NET_ADMIN`
add net_raw cap for bridge mode, seems to be not a default for podman on fedora 2022-01-31 11:58:07 +01:00			`- NET_RAW`
Added bridge mode Added K8S deployment 2022-01-19 08:59:04 +01:00			`- SYS_ADMIN`
add net_raw cap for bridge mode, seems to be not a default for podman on fedora 2022-01-31 11:58:07 +01:00
Added bridge mode Added K8S deployment 2022-01-19 08:59:04 +01:00			`dnsPolicy: "None"`
			`dnsConfig:`
			`nameservers:`
			`- 1.1.1.1`
			`- 8.8.8.8`

			`volumes:`
			`- name: vol`
			`persistentVolumeClaim:`
			`claimName: zerotier`
			`- name: tun`
			`hostPath:`
			`path: /dev/net/tun`
add net_raw cap for bridge mode, seems to be not a default for podman on fedora 2022-01-31 11:58:07 +01:00			`type: ''`