HomeInfra/HetznerTerra
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: Remove tls:external from Rancher HelmRelease
Some checks failed
Deploy Cluster / Terraform (push) Failing after 55s
Details
Deploy Cluster / Ansible (push) Has been skipped
Details

Browse Source 
With Tailscale LoadBalancer, TLS is not actually terminated at the edge.
The Tailscale proxy does TCP passthrough, so Rancher must serve its own
TLS certs. Setting tls: external caused Rancher to listen HTTP-only,
which broke HTTPS access through Tailscale.
This commit is contained in:
MichaelFisher1997
2026-03-29 22:19:23 +00:00
parent f2c506b350
commit 48870433bf
1 changed files with 0 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
infrastructure/addons/rancher/helmrelease-rancher.yaml
View File

@@ -23,7 +23,6 @@ spec:
retries: 3 retries: 3
values: values:
hostname: rancher.silverside-gopher.ts.net hostname: rancher.silverside-gopher.ts.net
tls: external
replicas: 1 replicas: 1
extraEnv: extraEnv:
- name: CATTLE_PROMETHEUS_METRICS - name: CATTLE_PROMETHEUS_METRICS