mirror of
https://github.com/lingble/talos.git
synced 2026-01-07 23:21:44 +00:00
5dbc26c7a3
This is a rename of the osctl binary. We decided that talosctl is a better name for the Talos CLI. This does not break any APIs, but does make older documentation only accurate for previous versions of Talos. Signed-off-by: Andrew Rynhard <andrew@andrewrynhard.com>
52 lines
823 B
Markdown
52 lines
823 B
Markdown
---
|
|
title: 'Running Behind a Corporate Proxy'
|
|
---
|
|
|
|
## Appending the Certificate Authority of MITM Proxies
|
|
|
|
Put into each machine the PEM encoded certificate:
|
|
|
|
```yaml
|
|
machine:
|
|
...
|
|
files:
|
|
- content: |
|
|
-----BEGIN CERTIFICATE-----
|
|
...
|
|
-----END CERTIFICATE-----
|
|
permissions: 0644
|
|
path: /etc/ssl/certs/ca-certificates
|
|
op: append
|
|
```
|
|
|
|
## Configuring a Machine to Use the Proxy
|
|
|
|
To make use of a proxy:
|
|
|
|
```yaml
|
|
machine:
|
|
env:
|
|
http_proxy: <http proxy>
|
|
https_proxy: <https proxy>
|
|
no_proxy: <no proxy>
|
|
```
|
|
|
|
Additionally, configure the DNS `nameservers`, and NTP `servers`:
|
|
|
|
```yaml
|
|
machine:
|
|
env:
|
|
...
|
|
time:
|
|
servers:
|
|
- <server 1>
|
|
- <server ...>
|
|
- <server n>
|
|
...
|
|
network:
|
|
nameservers:
|
|
- <ip 1>
|
|
- <ip ...>
|
|
- <ip n>
|
|
```
|