claude/infrastructure
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
94 Commits 6 Branches 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
claude e43f4dfc90
Some checks failed
PR Checks / tofu-checks (pull_request) Failing after 3s
Details
1/1 projects planned successfully.
K8s security hardening + scaling to half bare_srv_1 
Security:
- Remove DNAT/FW rules for K8s API (6443) and ArgoCD (30443)
- Access now via SSH tunnel (k8s-tunnel.service on control plane)
- Keep monitoring DNAT (9200-9202) restricted to control plane IP

Scaling:
- k8s-master: 4 CPU, 16GB RAM, 100GB disk
- k8s-worker-01: 6 CPU, 24GB RAM, 450GB disk
- k8s-worker-02: 6 CPU, 24GB RAM, 450GB disk (NEW)
- Total: 16 CPU, 64GB RAM, 1TB disk (half of bare_srv_1)
2026-02-14 09:32:08 +01:00
.gitea/workflows
Add drift detection workflow (every 6h)
2026-02-09 09:15:11 +01:00
environments/production
K8s security hardening + scaling to half bare_srv_1
2026-02-14 09:32:08 +01:00
modules
Fix: add conntrack to cloud-init packages (required by kubeadm)
2026-02-14 08:41:22 +01:00
policies
feat: add tenant VM module for VM-as-a-Service (Step 5.2)
2026-02-11 20:01:38 +01:00
.gitignore
Initial infrastructure repo structure
2026-02-09 05:39:52 +01:00
.sops.yaml
Add OPA/Conftest policies and SOPS config
2026-02-09 06:36:39 +01:00
atlantis.yaml
feat: add tenant VM module for VM-as-a-Service (Step 5.2)
2026-02-11 20:01:38 +01:00
README.md
Initial commit
2026-02-08 23:32:37 +01:00

README.md

infrastructure

OpenTofu IaC — Proxmox VMs, networking, storage

Description
OpenTofu IaC — Proxmox VMs, networking, storage
Readme 198 KiB
Languages
HCL 86.6%
Open Policy Agent 13.4%