updated bootstrapping procedure with more sane defaults

2025-09-03 13:20:09 +02:00
parent e98d7330f1
commit b54b6b0f60
6 changed files with 34 additions and 34 deletions
--- a/infrastructure/traefik-system/configmap.yaml
+++ b/infrastructure/traefik-system/configmap.yaml
@@ -5,15 +5,15 @@ metadata:
 data:
  traefik.toml: |
    [ping]
-    
+
    [global]
      checkNewVersion = false
      # renovate does that
      sendAnonymousUsage = false
-    
+
    [log]
      level = "INFO"
-    
+
    [accessLog]
      [accessLog.fields]
        defaultMode = "keep"
@@ -41,17 +41,17 @@ data:
      dashboard = true
      insecure = true
      debug = false
- 
+
    [providers]
      [providers.kubernetesCRD]
        allowCrossNamespace = true
      [providers.kubernetesIngress]
        allowExternalNameServices = true
-        ingressClass = "traefik"    
+        ingressClass = "traefik"

    [serversTransport]
      insecureSkipVerify = true
- 
+
    [entryPoints]
      [entryPoints.web]
        address = ":8000"
@@ -66,13 +66,13 @@ data:
        [entryPoints.websecure.forwardedHeaders]
          insecure = true
          # forward ip headers no matter where they come from
-      
+
      [entryPoints.metrics]
        address = ":9100"
-      
+
      [entryPoints.traefik]
-        address = ":9000"
-      
+        address = ":8080"
+
      [entryPoints.dnsovertls]
        address = ":8853"
        # route dns over https to other pods but provide own certificate