Skip to content

Instantly share code, notes, and snippets.

@TownLake

TownLake/cloudflared-sidecar-example.yaml

Last active April 14, 2019 01:20
Show Gist options
  • Save TownLake/3453015e3b12eb23a4a977dc49b19a13 to your computer and use it in GitHub Desktop.
Save TownLake/3453015e3b12eb23a4a977dc49b19a13 to your computer and use it in GitHub Desktop.
Download ZIP
Sample of a k8s yaml file for an Argo Tunnel sidecar deployment
Raw
cloudflared-sidecar-example.yaml
---
apiVersion: v1
kind: Service
metadata:
labels:
app: hello
name: hello
spec:
ports:
- name: http
port: 80
protocol: TCP
targetPort: 8080
selector:
app: hello
---
apiVersion: extensions/v1beta1
kind: Deployment
metadata:
labels:
app: hello
name: hello
spec:
replicas: 1
selector:
matchLabels:
app: hello
template:
metadata:
labels:
app: hello
spec:
containers:
- name: hello
image: gcr.io/k8s-hello-237118/hello-app:v1
imagePullPolicy: Always
env:
- name: NODE_NAME
valueFrom:
fieldRef:
fieldPath: spec.nodeName
- name: POD_NAME
valueFrom:
fieldRef:
fieldPath: metadata.name
- name: POD_NAMESPACE
valueFrom:
fieldRef:
fieldPath: metadata.namespace
- name: POD_IP
valueFrom:
fieldRef:
fieldPath: status.podIP
ports:
- containerPort: 8080
resources:
limits:
cpu: 20m
memory: 40Mi
requests:
cpu: 20m
memory: 40Mi
- name: tunnel
image: docker.io/mattalberts/cloudflared-linux-amd64:2018.11.0
imagePullPolicy: Always
command: ["cloudflared", "tunnel"]
args:
- --url=http://127.0.0.1:8080
- --hostname=sidecar.samrhea.com
- --origincert=/etc/cloudflared/cert.pem
env:
- name: POD_NAME
valueFrom:
fieldRef:
fieldPath: metadata.name
- name: POD_NAMESPACE
valueFrom:
fieldRef:
fieldPath: metadata.namespace
resources:
limits:
cpu: 10m
memory: 20Mi
requests:
cpu: 10m
memory: 20Mi
volumeMounts:
- mountPath: /etc/cloudflared
name: tunnel-secret
readOnly: true
terminationGracePeriodSeconds: 60
volumes:
- name: tunnel-secret
secret:
secretName: samrhea.com
---
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment