bryopsida

What happens if you set the `runAsGroup: 5984` as well? Try these values. ``` yaml podSecurityContext: seccompProfile: type: RuntimeDefault fsGroup: 5984 fsGroupChangePolicy: "Always" containerSecurityContext: runAsNonRoot: true runAsUser: 5984 runAsGroup: 5984...

> Hi, > > please let me know if i can add these options in `values.yaml` file used in helm deployment? > > ``` > podSecurityContext: > seccompProfile: > type:...

Just as an additional note, the forwards can be setup for IPV6 but for it to function the kubernetes cluster CNI will also need to be configured to allocate IPV6...

Looking over the changes needed in the chart. https://github.com/bryopsida/wireguard-chart/blob/60ceb2d21e245a046660523a20e2a162a52dc03e/helm/wireguard/templates/deployment.yaml#L137 Sysctl calls for IPv6 would need to be added. Most likely IPV6 SNAT/DNAT would need to be added since most clusters...

Seems doable. I suspect it might be beneficial to place the public key in a new secret in case people want to provide access to the public key without also...

I created a draft PR here: #276 and am curious if this approach would be acceptable before I go further with it. Also I'm currently hitting some issues testing it...

Typically you would also want to run as daemonset as well. Here's an example value override for a daemonset: https://github.com/bryopsida/wireguard-chart/blob/main/ci/test-with-healthsidecar-daemonset-hostport.yaml. Some things to be aware of related to that setting...

@freshgeek at first glance your configuration looks valid, there are a few things at the cloud provider level that can impact functionality though. 1) Your cloud provider must support UDP...

` i will to attempt use hubble` I'm not familiar with terway, but as far as I know Hubble will only work with cilium. Maybe there's a similar component with...

When you run the dig command `dig mysql.default.svc.cluster.local` do you see any logs in the kube-dns/core-dns pods related to your query? And if not, does modifying the dig command to...