hosts/ni/setups/development: add k3s server

2025-02-07 06:19:00 +00:00 · 2024-12-11 10:57:43 +08:00 · 2024-12-11 10:57:43 +08:00 · e455ee0ad4
commit e455ee0ad4
parent e385a69b25
1 changed files with 19 additions and 0 deletions
--- a/configs/nixos/ni/modules/setups/development.nix
+++ b/configs/nixos/ni/modules/setups/development.nix
@ -64,6 +64,25 @@ in
      ];
    }

+    (lib.mkIf config.suites.dev.containers.enable {
+      # Setting up a single-node k3s cluster for learning purposes.
+      services.k3s = {
+        enable = true;
+        role = "server";
+        extraFlags = [ "--debug" ];
+      };
+
+      networking.firewall.allowedTCPPorts = [
+        6443 # required so that pods can reach the API server (running on port 6443 by default)
+        2379 # etcd clients: required if using a "High Availability Embedded etcd" configuration
+        2380 # etcd peers: required if using a "High Availability Embedded etcd" configuration
+      ];
+
+      networking.firewall.allowedUDPPorts = [
+        8472 # flannel: required if using multi-node for inter-node networking
+      ];
+    })
+
    # You'll be most likely having these anyways and even if this is disabled,
    # you most likely cannot use the system at all so WHY IS IT HERE?
    (lib.mkIf hostCfg.networking.enable {