[Tracking] Bootstrap/Automation

The following still needs to be automated:
- [ ] DynamicDNS updates
- [x] istio-inject label injection
- [ ] zfs pool detection, provisioning and/or importing
- [ ] provision secrets from `/mnt/secrets`
- [ ] install [calico apiserver][3]
  - [ ] patch `apiservice v3.projectcalico.org` `.spec.caBundle` with apiserver.pem
- [ ] calico/istio integration
  - [ ] calico configmap [patching for istio policy][1]
  - [ ] istio config map [for dikaste][2]
- [ ] CoreDNS - Patch Config to use DNS over TLS via Cloudflare to not depend on internal DNS (This leads to issues when router is advertising cluster as DNS resolver to the cluster...)
```cfg
# coredns configmap
forward . tls://1.1.1.1 {
    tls_servername tls.cloudflare-dns.com
}
```

- [ ] velero schedule and BSL provisioning
- [ ] Prometheus/Grafana deployment


[1]:  https://docs.tigera.io/calico/latest/network-policy/istio/app-layer-policy#enable-application-layer-policy
[2]: https://docs.tigera.io/calico/latest/network-policy/istio/app-layer-policy#update-istio-sidecar-injector
[3]: https://docs.tigera.io/calico/latest/operations/install-apiserver

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[Tracking] Bootstrap/Automation #19

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

[Tracking] Bootstrap/Automation #19

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions