diff --git a/hosts/levi/kube.nix b/hosts/levi/kube.nix index cb3ee66..8f3470a 100644 --- a/hosts/levi/kube.nix +++ b/hosts/levi/kube.nix @@ -1,14 +1,13 @@ { pkgs, ... }: { networking.firewall.allowedTCPPorts = [ 6443 ]; - environment.systemPackages = [ - pkgs.kubectl - pkgs.kubernetes-helm - ]; + environment.systemPackages = [ pkgs.kubectl ]; services.k3s.enable = true; - services.k3s.extraFlags = toString [ - # flags for using Calico instead of Flannel - "--disable-network-policy" - "--flannel-backend=none" - ]; + + # Get NetworkPolicy working + networking.firewall.enable = false; + systemd.services.k3s.path = [ pkgs.ipset ]; + services.k3s.package = pkgs.k3s.overrideAttrs (prev: { + buildInputs = prev.buildInputs ++ [ pkgs.ipset ]; + }); }