apiVersion: apps/v1 kind: Deployment metadata: name: netbird-dashboard namespace: netbird spec: replicas: 1 selector: matchLabels: app: netbird-dashboard template: metadata: labels: app: netbird-dashboard spec: containers: - name: dashboard image: netbirdio/dashboard:v2.10.0 ports: - containerPort: 80 env: - name: NETBIRD_MGMT_API_ENDPOINT value: "https://netbird.halis.io" - name: NETBIRD_MGMT_GRPC_API_ENDPOINT value: "https://netbird.halis.io" - name: AUTH_AUDIENCE value: "309574205744152807@netbird" - name: AUTH_CLIENT_ID value: "309574205744152807@netbird" - name: AUTH_CLIENT_SECRET value: "" - name: AUTH_AUTHORITY value: "https://zitadel.halis.io" - name: USE_AUTH0 value: "false" - name: AUTH_SUPPORTED_SCOPES value: "openid profile email offline_access" - name: AUTH_REDIRECT_URI value: "/nb-auth" - name: AUTH_SILENT_REDIRECT_URI value: "/nb-silent-auth" - name: NETBIRD_TOKEN_SOURCE value: "" --- apiVersion: apps/v1 kind: Deployment metadata: name: netbird namespace: netbird spec: replicas: 1 selector: matchLabels: app: netbird template: metadata: labels: app: netbird spec: containers: - name: management image: netbirdio/management:0.37.1 args: [ "--port", "443", "--log-file", "console", "--log-level", "info", "--disable-anonymous-metrics=true", "--single-account-mode-domain=entos.kerux", "--dns-domain=entos.kerux" #"--disable-single-account-mode" ] ports: - containerPort: 443 volumeMounts: - mountPath: "/etc/netbird/management.json" name: management-config subPath: management.json - mountPath: "/var/lib/netbird" name: management-pvc volumes: - name: management-config secret: secretName: netbird-management-secrets - name: management-pvc persistentVolumeClaim: claimName: management-pvc --- apiVersion: apps/v1 kind: Deployment metadata: name: netbird-signal namespace: netbird spec: replicas: 1 selector: matchLabels: app: netbird-signal template: metadata: labels: app: netbird-signal spec: containers: - name: signal image: netbirdio/signal:0.37.1 ports: - containerPort: 10000 volumeMounts: - mountPath: "/var/lib/netbird" name: signal-pvc volumes: - name: signal-pvc persistentVolumeClaim: claimName: signal-pvc --- apiVersion: apps/v1 kind: Deployment metadata: name: netbird-relay namespace: netbird spec: replicas: 1 selector: matchLabels: app: netbird-relay template: metadata: labels: app: netbird-relay spec: containers: - name: relay image: netbirdio/relay:0.37.1 ports: - containerPort: 33080 protocol: TCP - containerPort: 33080 protocol: UDP env: - name: NB_LOG_LEVEL value: "debug" - name: NB_LISTEN_ADDRESS value: ":33080" - name: NB_EXPOSED_ADDRESS value: "rels://netbird.halis.io:33080" # Add Relay section in configmap - name: NB_AUTH_SECRET valueFrom: secretKeyRef: name: netbird-relay-secrets key: auth_secret --- apiVersion: apps/v1 kind: Deployment metadata: name: netbird-turn namespace: netbird spec: replicas: 1 selector: matchLabels: app: netbird-turn template: metadata: labels: app: netbird-turn spec: containers: - name: coturn image: coturn/coturn:4.6.3 args: [ "-c", "/etc/turnserver.conf" ] ports: - containerPort: 3478 protocol: UDP - containerPort: 3478 protocol: TCP - containerPort: 5349 protocol: UDP - containerPort: 5349 protocol: TCP volumeMounts: - mountPath: "/etc/turnserver.conf:ro" name: coturn-config subPath: turnserver.conf volumes: - name: coturn-config secret: secretName: netbird-turn-secrets