James Andariese
2a9b3551f8
* adds a server cert from the mtls CA for mtls clients * adds gost as a tls offload for non-mtls clients to work around https://github.com/eclipse/mosquitto/issues/1839 * adds wildcard-tls through external secrets and removes template operator version * removes non-working websockets listener * fixes tests to work with mtls and non-mtls
38 lines
712 B
YAML
38 lines
712 B
YAML
apiVersion: v1
|
|
kind: Service
|
|
metadata:
|
|
labels:
|
|
mosquitto: server
|
|
app: mosquitto
|
|
name: mosquitto
|
|
namespace: mosquitto
|
|
annotations:
|
|
metallb.universe.tf/allow-shared-ip: 172.16.17.83
|
|
metallb.universe.tf/loadBalancerIPs: 172.16.17.83
|
|
spec:
|
|
ipFamilies:
|
|
- IPv4
|
|
ipFamilyPolicy: SingleStack
|
|
clusterRoutingPolicy: Local
|
|
ports:
|
|
- port: 1883
|
|
name: mqtt
|
|
protocol: TCP
|
|
targetPort: 1883
|
|
- port: 1884
|
|
name: mqtts
|
|
protocol: TCP
|
|
targetPort: 1884
|
|
- port: 8883
|
|
name: mqtts-mtls
|
|
protocol: TCP
|
|
targetPort: 8883
|
|
- port: 9001
|
|
name: mqttwss
|
|
protocol: TCP
|
|
targetPort: 9001
|
|
selector:
|
|
mosquitto: server
|
|
app: mosquitto
|
|
type: LoadBalancer
|