scottk/homelab
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/homelab.git synced 2025-10-29 17:12:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
1efb017ef00a941db55d351a7e0769a55da18b7e
homelab/k8s/infra/network/dns/adguard/deployment.yaml
renovate[bot] 1efb017ef0 chore(deps): renovate 2025-01-26 
chore(deps): update helm release argo-cd to v7.7.17

chore(deps): update keycloak docker tag to v24.4.6

chore(deps): update helm release node-feature-discovery to v0.17.1

chore(deps): update sealed-secrets docker tag to v2.5.4

chore(deps): update proxmox-csi-plugin docker tag to v0.3.4

chore(deps): update dependency cert-manager/cert-manager to v1.16.3

chore(deps): update dependency siderolabs/talos to v1.9.2

chore(deps): update netbird

chore(deps): update netbirdio/relay docker tag to v0.36.3

chore(deps): update cilium to v1.16.6

chore(deps): update docker.io/adguard/adguardhome docker tag to v0.107.56

chore(deps): update media containers

chore(deps): update terraform talos to v0.7.1

chore(deps): update dependency crossplane-contrib/provider-keycloak to v1.10.1

chore(deps): update terraform proxmox to v0.70.0
2025-01-26 15:59:50 +01:00

94 lines
2.7 KiB
YAML
Raw Blame History

apiVersion: apps/v1
kind: Deployment
metadata:
name: adguard
namespace: dns
spec:
replicas: 1
selector:
matchLabels:
app: adguard
strategy:
type: RollingUpdate
template:
metadata:
labels:
app: adguard
spec:
securityContext:
seccompProfile:
type: RuntimeDefault
initContainers:
- name: copy-base-config
image: busybox
command: [ "cp", "/tmp/AdGuardHome.yaml", "/opt/adguardhome/conf/AdGuardHome.yaml" ]
securityContext:
allowPrivilegeEscalation: false
readOnlyRootFilesystem: true
capabilities:
drop: [ "ALL" ]
volumeMounts:
- name: config
mountPath: /tmp/AdGuardHome.yaml
subPath: AdGuardHome.yaml
- name: config-folder
mountPath: /opt/adguardhome/conf
- name: append-users
image: busybox
command: [ "sh", "-c", "cat /tmp/users.yaml >> /opt/adguardhome/conf/AdGuardHome.yaml" ]
securityContext:
allowPrivilegeEscalation: false
readOnlyRootFilesystem: true
capabilities:
drop: [ "ALL" ]
volumeMounts:
- name: users
mountPath: /tmp/users.yaml
subPath: users.yaml
- name: config-folder
mountPath: /opt/adguardhome/conf
containers:
- name: adguard
image: docker.io/adguard/adguardhome:v0.107.56 # renovate: docker=docker.io/adguard/adguardhome
securityContext:
allowPrivilegeEscalation: false
readOnlyRootFilesystem: true
# capabilities:
# drop: [ "ALL" ]
ports:
- name: dns-tcp
containerPort: 53
protocol: TCP
- name: dns-udp
containerPort: 53
protocol: UDP
- name: dchp
containerPort: 67
protocol: UDP
- name: http
containerPort: 3000
protocol: TCP
resources:
requests:
cpu: 50m
memory: 128Mi
limits:
cpu: 500m
memory: 256Mi
volumeMounts:
- name: config-folder
mountPath: /opt/adguardhome/conf
- name: work-folder
mountPath: /opt/adguardhome/work
volumes:
- name: config
configMap:
name: adguard-config
- name: users
secret:
secretName: users
- name: config-folder
emptyDir: { }
- name: work-folder
emptyDir: { }
Reference in New Issue View Git Blame Copy Permalink