MichaelFisher1997
68dbd2e5b7
Reserve grafana/prometheus/flux alongside rancher during rebuild cleanup so stale tailnet devices do not force -1 hostnames. Tag the exposed Tailscale services so operator-managed proxies are provisioned with explicit prod/service tags from the tailnet policy.
21 lines
509 B
YAML
21 lines
509 B
YAML
apiVersion: v1
|
|
kind: Service
|
|
metadata:
|
|
name: prometheus-tailscale
|
|
namespace: observability
|
|
annotations:
|
|
tailscale.com/hostname: prometheus
|
|
tailscale.com/tags: "tag:prod,tag:prometheus"
|
|
tailscale.com/proxy-class: infra-stable
|
|
spec:
|
|
type: LoadBalancer
|
|
loadBalancerClass: tailscale
|
|
selector:
|
|
app.kubernetes.io/name: prometheus
|
|
operator.prometheus.io/name: observability-kube-prometh-prometheus
|
|
ports:
|
|
- name: http
|
|
port: 9090
|
|
protocol: TCP
|
|
targetPort: 9090
|