Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

etcd optional installation for mojaloop and cc, and bringing coredns-nodecache to an independent ansible role #434

Open
dfry opened this issue Dec 6, 2024 · 0 comments
Assignees

Comments

@dfry
Copy link
Collaborator

dfry commented Dec 6, 2024

The refactored design involves leveraging this coredns install with some additional pieces:

  1. installation of etcd operator
  2. install of virtual services for coredns
  3. addition of security groups for coredns to allow internal/external traffic to Upgrade dep #2
  4. iac to generate upstream NS records to point to Upgrade dep #2
  5. external dns configuration to point to the internal coredns/etcd install

GitHub - aenix-io/etcd-operator: New generation community-driven etcd-operator!

proposed operator install for etcd, just for supporting coredns as an external dns backend.

also, we need to provide optional changes to expose correct ports in istio as well as load balancer and security groups in order to allow for dns traffic from external networks.

in summary, we need a flag for turning off exposing core dns as public service which would also enable the etcd operator as well as the underlying network access rules.

there would need to be a proof of concept work to show how to setup a zone in route53 that would automatically point to the exposed coredns service and then additionally, setup external dns to point to the local coredns/etcd installation.

IaC Workstream P21 Next Steps-k8s-coredns-design

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

3 participants