Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

How to access services or apps locally? #205

Closed
META-DREAMER opened this issue Feb 1, 2022 · 4 comments
Closed

How to access services or apps locally? #205

META-DREAMER opened this issue Feb 1, 2022 · 4 comments

Comments

@META-DREAMER
Copy link

Details

Ask your question:

Is there any way we can setup the cluster to allow local access to hajimari etc instead of only going through Cloudflare? When I visit BOOTSTRAP_METALLB_TRAEFIK_ADDR locally it gives me an SSL error
@onedr0p
Copy link
Owner

onedr0p commented Feb 1, 2022
edited
Loading

This is a pretty big topic and very much depends on what router you are using and what you are comfortable doing in regards to DNS @home. You have some options, and even more than I can sum up here:

  • Use your /etc/hosts and have a override for your local domains, then delete the entry from cloudflare so it's internal only. But this means all devices on your network need to have a host file with the same entries to access the services.
  • Use split-brain DNS on your router or pihole or whatever and have a host override for your domain so the traffic never leaves your home network, then delete the entry from cloudflare so it's internal only and only manage services you want to be external in cloudflare.
  • Almost the same as above but use NAT reflection.
  • Check out how I manage DNS @home

@onedr0p
Copy link
Owner

onedr0p commented Feb 8, 2022

@META-DREAMER I am going to re-open this issue and pin it. It's a pretty common topic for people to discuss.

@onedr0p onedr0p reopened this Feb 8, 2022
@onedr0p onedr0p pinned this issue Feb 8, 2022
@onedr0p onedr0p changed the title Ability to access services / apps locally? How to access services or apps locally? Feb 8, 2022
@MrMarble
Copy link

I am currently using Pi-hole as my DNS server at home. I have configured in dnsmasq a redirect from my domain to the Metallb traefik IP. Then I can configure the entry for any app to be external or not with an annotation to create the Cloudflare record, but it will be accessible from my local network either way.

Example dnsmasq config:
address=/public-domain.com/192.168.1.220

Example ingress config:

ingress:
  enabled: true
  ingressClassName: "traefik"
  annotations:
    hajimari.io/icon: "home-assistant"
    cert-manager.io/cluster-issuer: "letsencrypt-production"
    traefik.ingress.kubernetes.io/router.entrypoints: "websecure"
    external-dns.alpha.kubernetes.io/target: "${SECRET_DOMAIN}"  # Only needed if external access is required
    external-dns.alpha.kubernetes.io/cloudflare-proxied: "true"  # Only needed if external access is required

There may be better ways to do it, but this one was easy and has worked for me so far.

@onedr0p
Copy link
Owner

onedr0p commented Apr 16, 2022

With #288 and #287 implemented I am going to close this issue. The docs were updated to reflect these changes on how it works.

@onedr0p onedr0p closed this as completed Apr 16, 2022
@onedr0p onedr0p unpinned this issue Apr 16, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@onedr0p @MrMarble @META-DREAMER