fix: update external dns and move pihole out of k8s cluster

2025-11-15 13:15:04 +05:00
parent 22586fbdd3
commit db25a0ea79
4 changed files with 23 additions and 130 deletions
--- a/helm/values/externaldns.values.yaml
+++ b/helm/values/externaldns.values.yaml
@@ -1,15 +1,25 @@
+global:
+  security:
+    allowInsecureImages: true # needed for ghcr.io images
+image:
+  registry: docker.io
+  repository: bitnamilegacy/external-dns
+  tag: 0.18.0-debian-12-r1
+  pullPolicy: IfNotPresent
 interval: 10s
 provider: pihole
 policy: upsert-only
 txtOwnerId: "homelab"
 pihole:
-  server: http://pihole-web
+  server: http://rashid
+nodeSelector:
+  nodepool: worker
 extraEnvVars:
  - name: EXTERNAL_DNS_PIHOLE_PASSWORD
    valueFrom:
      secretKeyRef:
        name: pihole-admin
-        key: password
+        key: app-password
 extraArgs:
  pihole-api-version: 6
 serviceAccount:
@@ -18,7 +28,7 @@ serviceAccount:
 ingressClassFilters:
  - nginx-internal
 metrics:
-  enabled: true
+  enabled: false
  serviceMonitor:
    enabled: true
    interval: 30s
--- a/helm/values/pihole.values.yaml
+++ b/helm/values/pihole.values.yaml
@@ -1,84 +0,0 @@
---
-DNS1:
-  1.1.1.1
-DNS2:
-  1.0.0.1
-admin:
-  enabled: true
-  existingSecret: pihole-admin
-  passwordKey: password
-persistentVolumeClaim:
-  enabled: true
-  storageClass: longhorn
-  size: 10Gi
-  accessModes:
-    - ReadWriteMany
-ingress:
-  enabled: true
-  ingressClassName: nginx-internal
-  annotations:
-    cert-manager.io/cluster-issuer: cloudflare-issuer
-    cert-manager.io/acme-challenge-type: dns01
-    cert-manager.io/private-key-size: "4096"
-  hosts:
-    - pihole.dogar.dev
-  tls:
-    - secretName: pihole-tls
-      hosts:
-        - pihole.dogar.dev
-serviceWeb:
-  annotations:
-    metallb.universe.tf/allow-shared-ip: pihole-svc
-  type: ClusterIP
-  https:
-    enabled: false
-serviceDns:
-  annotations:
-    metallb.universe.tf/allow-shared-ip: pihole-svc
-  mixedService: true
-  type: LoadBalancer
-  loadBalancerIP: 192.168.18.250
-serviceDhcp:
-  enabled: false
-probes:
-  liveness:
-    enabled: false
-  readiness:
-    enabled: false
-dnsmasq:
-  staticDhcpEntries:
-    - dhcp-host=B0:41:6F:0F:A8:D3,192.168.18.10,homelab-0
-    - dhcp-host=B0:41:6F:0F:AE:89,192.168.18.11,homelab-1
-    - dhcp-host=B0:41:6F:0F:A0:CD,192.168.18.12,homelab-2
-hostNetwork: true
-hostname: pihole
-priviledged: true
-virtualHost: "pihole.dogar.dev"
-capabilities:
-  add:
-    - NET_ADMIN
-extraEnvVars:
-  TZ: "Asia/Karachi"
-  DNSSEC: "true"
-  FTLCONG_dhcp_active: "true"
-  FTLCONF_dhcp_start: "192.168.18.2"
-  FTLCONF_dhcp_end: "192.168.18.100"
-  FTLCONF_dhcp_leaseTime: "24h"
-  FTLCONF_dhcp_netmask: "255.255.255.0"
-  FTLCONF_dhcp_router: "192.168.18.1"
-  FTLCONF_dns_listeningMode: "all"
-  INTERFACE: "enp1s0"
-podAnnotations:
-  prometheus.io/scrape: "true"
-  prometheus.io/port: "9617"
-monitoring:
-  sidecar:
-    enabled: true
-    port: 9617
-    image:
-      repository: ekofr/pihole-exporter
-      tag: v0.3.0
-      pullPolicy: IfNotPresent
-    resources:
-      limits:
-        memory: 128Mi