No introduction found. Create it?
Install with:
helm repo add app-template oci://ghcr.io/bjw-s-labs/helm/app-template
helm install blocky app-template/app-template -f values.yamlSee examples from other people.
| Name | Repo | Stars | Version | Timestamp |
|---|---|---|---|---|
| blocky | Pumba98/flux2-gitops | 67 | 4.4.0 | 11 days ago |
| blocky | cbirkenbeul/homelab | 42 | 4.3.0 | 2 months ago |
See the most popular values for this chart:
| Key | Types |
|---|---|
| string | |
persistence.config.type (6) configMap | string |
persistence.config.globalMounts[].path (5) /app/config.yml | string |
| string | |
| boolean | |
| boolean | |
persistence.config.advancedMounts.blocky.app[].path (1) /app/config.yml | string |
| string | |
| boolean | |
persistence.lists.items[].key (1) allowlist.txt | string |
persistence.lists.items[].path (1) allowlist.txt | string |
persistence.lists.name (1) blocky-lists | string |
persistence.lists.type (1) configMap | string |
| number | |
controllers.blocky.strategy (4) RollingUpdate | string |
controllers.blocky.containers.app.image.repository (3) ghcr.io/0xerr0r/blocky | string |
controllers.blocky.containers.app.image.tag (3) v0.26@sha256:b259ada3f943e73283f1fc5e84ac39a791afec7de86515d1aeccc03d2c39e595 | string |
controllers.blocky.containers.app.env.TZ (2) ${TIMEZONE} | string |
| boolean | |
| boolean | |
controllers.blocky.containers.app.probes.liveness.spec.exec.command[] (2) - /app/blocky | string |
| number | |
| number | |
| number | |
| number | |
| boolean | |
| boolean | |
controllers.blocky.containers.app.probes.readiness.spec.exec.command[] (2) - /app/blocky | string |
| number | |
| number | |
| number | |
| number | |
| boolean | |
| boolean | |
controllers.blocky.containers.app.probes.startup.spec.exec.command[] (1) - /app/blocky | string |
| string | |
| number | |
| string | |
| string | |
| boolean | |
controllers.blocky.containers.app.securityContext.capabilities.add[] (2) - NET_BIND_SERVICE | string |
| string | |
| boolean | |
| number | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
controllers.blocky.containers.main.image.repository (1) ghcr.io/0xerr0r/blocky | string |
controllers.blocky.containers.main.image.tag (1) v0.28.2@sha256:5f84a54e4ee950c4ab21db905b7497476ece2f4e1a376d23ab8c4855cabddcba | string |
| boolean | |
| boolean | |
controllers.blocky.containers.main.probes.liveness.spec.exec.command[] (1) - /app/blocky | string |
| boolean | |
| boolean | |
controllers.blocky.containers.main.probes.readiness.spec.exec.command[] (1) - /app/blocky | string |
| string | |
| string | |
| string | |
| boolean | |
| string | |
| string | |
| boolean | |
| number | |
| boolean | |
| number | |
| string | |
| string | |
| string | |
| boolean | |
| string | |
| string | |
| string | |
| string | |
| number | |
| number | |
| string | |
| string | |
controllers.${APP}.containers.app.env.TZ (1) ${TIMEZONE} | string |
controllers.${APP}.containers.app.image.repository (1) ghcr.io/0xerr0r/blocky | string |
controllers.${APP}.containers.app.image.tag (1) v0.28.2@sha256:5f84a54e4ee950c4ab21db905b7497476ece2f4e1a376d23ab8c4855cabddcba | string |
| boolean | |
| boolean | |
| number | |
| number | |
| number | |
| number | |
| boolean | |
| boolean | |
| number | |
| number | |
| number | |
| number | |
| boolean | |
| string | |
| string | |
| boolean | |
controllers.${APP}.containers.app.securityContext.capabilities.add[] (1) - NET_BIND_SERVICE | string |
| string | |
| boolean | |
| string | |
controllers.${APP}.initContainers.init-db.image.repository (1) ghcr.io/home-operations/postgres-init | string |
| number | |
| number | |
| boolean | |
| number | |
controllers.${APP}.strategy (1) RollingUpdate | string |
controllers.${APP}.type (1) daemonset | string |
controllers.cache.containers.server.command (1) redis-server | string |
| string | |
controllers.cache.containers.server.image.repository (1) public.ecr.aws/docker/library/redis | string |
controllers.cache.containers.server.image.tag (1) 8.4.0@sha256:43355efd22490e31ca14b9d569367d05121e2be61fd8e47937563ae2a80952ae | string |
| string | |
| string | |
| string | |
| string | |
controllers.main.containers.main.image.repository (1) ghcr.io/0xerr0r/blocky | string |
controllers.main.containers.main.image.tag (1) v0.28.2@sha256:5f84a54e4ee950c4ab21db905b7497476ece2f4e1a376d23ab8c4855cabddcba | string |
| boolean | |
| boolean | |
| boolean | |
| number | |
| number | |
| number | |
controllers.main.strategy (1) RollingUpdate | string |
| string | |
| number | |
| boolean | |
| number | |
| number | |
| string | |
| number | |
| string | |
service.app.annotations."lbipam.cilium.io/ips" (1) fd42:78a5:2c09::53,192.168.0.53 | string |
service.app.annotations."metallb.io/loadBalancerIPs" (1) fd42:78a5:2c09::53,192.168.0.53 | string |
| string | |
service.app.ipFamilyPolicy (1) PreferDualStack | string |
service.app.type (1) LoadBalancer | string |
| string | |
service.dns.type (4) LoadBalancer | string |
| string | |
| number | |
| string | |
| boolean | |
| number | |
| string | |
| boolean | |
| number | |
| string | |
| number | |
| string | |
| number | |
| string | |
service.dns.annotations."metallb.io/loadBalancerIPs" (2) ${BLOCKY_IP_ADDRESS} | string |
service.dns.annotations."lbipam.cilium.io/ips" (1) 192.168.10.85 | string |
service.dns.loadBalancerIP (1) ${LB_IP_BLOCKY_SVC} | string |
service.apartment.annotations."lbipam.cilium.io/ips" (1) ${BLOCKY_LB_IP:-1.1.1.1} | string |
| string | |
| number | |
| number | |
| number | |
| string | |
service.apartment.type (1) LoadBalancer | string |
| string | |
| number | |
service.internal.clusterIP (1) 2001:cafe:43::c | string |
| string | |
| number | |
| string | |
| number | |
| string | |
service.k8s.clusterIP (1) ${BLOCKY_CLUSTER_IP:-1.1.1.1} | string |
| string | |
| number | |
| number | |
| number | |
| string | |
| number | |
| string | |
| number | |
| string | |
| string | |
| string | |
service.ts.ipFamilyPolicy (1) PreferDualStack | string |
service.ts.loadBalancerClass (1) tailscale | string |
| number | |
| string | |
| number | |
| string | |
| number | |
| boolean | |
| number | |
service.ts.type (1) LoadBalancer | string |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
| string | |
serviceMonitor.blocky.serviceName (1) blocky-k8s | string |
| boolean | |
| string | |
| string | |
| string | |
| string | |
serviceMonitor.main.serviceName (1) blocky-app | string |
ingress.app.hosts[].host (2) {{ .Release.Name }}.${SECRET_DOMAIN} | string |
| string | |
| string | |
| string | |
ingress.app.annotations."cert-manager.io/cluster-issuer" (1) letsencrypt-production | string |
| string | |
ingress.app.className (1) internal | string |
| boolean | |
ingress.app.tls[].hosts[] (1) - ${APP}.local.${SECRET_DOMAIN} | string |
ingress.app.tls[].secretName (1) ${APP}-tls-production | string |
| string | |
ingress.main.annotations."nginx.ingress.kubernetes.io/auth-signin" (1) https://auth.${SECRET_DOMAIN} | string |
ingress.main.annotations."nginx.ingress.kubernetes.io/auth-url" (1) http://authelia.networking.svc.cluster.local/api/authz/auth-request | string |
| string | |
ingress.main.hosts[].host (1) blocky.${SECRET_DOMAIN} | string |
| string | |
| string | |
| string | |
ingress.main.tls[].hosts[] (1) - blocky.${SECRET_DOMAIN} | string |
ingress.main.tls[].secretName (1) blocky-tls | string |
configMaps.config.data."config.yml" (1) caching:
minTime: 2m
maxTime: 1h
maxItemsCount: 0
prefetching: true
prefetchExpires: 1h
prefetchThreshold: 30
prefetchMaxItemsCount: 0
cacheTimeNegative: -1
log:
level: info
connectIPVersion: v4
minTlsServeVersion: 1.3
ports:
dns: 53
tls: 853
http: 4000
prometheus:
enable: true
path: /metrics
conditional:
fallbackUpstream: false
mapping:
${SECRET_DOMAIN}: ${K8S_GATEWAY_CLUSTER_IP}:53
# House
internal: 10.0.30.1:53
0.10.in-addr.arpa: 10.0.30.1:53
# kube
cluster.local: ${COREDNS_CLUSTER_IP}
16.172.in-addr.arpa: ${COREDNS_CLUSTER_IP}
# ClientLookup is set to blocky so it can conditionally forward it to coredns/apt/house DHCP
clientLookup:
upstream: 127.0.0.1
clients:
localhost:
- 127.0.0.1
# To resolve devices behind coredns
ecs:
useAsClient: true
forward: false
bootstrapDns:
- https://1.1.1.1/dns-query
# dnssec:
# validate: true
# cacheExpirationHours: 2
# clockSkewToleranceSec: 300
upstreams:
groups:
default:
- https://dns.pub/dns-query
- https://dns.quad9.net/dns-query
- https://freedns.controld.com/p0
- https://doh.opendns.com/dns-query
- https://cloudflare-dns.com/dns-query
blocking:
blackLists:
ads:
- https://raw.githubusercontent.com/hagezi/dns-blocklists/main/wildcard/multi.txt
whiteLists:
ads:
- |
epi-graphql.conde.digital
clientGroupsBlock:
10.0.0.0/8:
- ads
redis:
address: dragonfly-db.database.svc.cluster.local:6379
database: 4
connectionAttempts: 10
connectionCooldown: 60s
queryLog:
type: postgresql
logRetentionDays: 90
creationAttempts: 5
creationCooldown: 60s
flushInterval: 5s
| string |
| string | |
| number | |
| number | |
| boolean | |
| number | |
| string | |
| boolean |