API
This document is a reference of the API types introduced by Kilo.
Note: this document is generated from code comments. When contributing a change to this document, please do so by changing the code comments.
Table of Contents
DNSOrIP
DNSOrIP represents either a DNS name or an IP address. When both are given, the IP address, as it is more specific, override the DNS name.
| Field | Description | Scheme | Required |
|---|---|---|---|
| dns | DNS must be a valid RFC 1123 subdomain. | string | false |
| ip | IP must be a valid IP address. | string | false |
Peer
Peer is a WireGuard peer that should have access to the VPN.
| Field | Description | Scheme | Required |
|---|---|---|---|
| metadata | Standard object’s metadata. More info: https://github.com/kubernetes/community/blob/master/contributors/devel/api-conventions.md#metadata | metav1.ObjectMeta | false |
| spec | Specification of the desired behavior of the Kilo Peer. More info: https://github.com/kubernetes/community/blob/master/contributors/devel/api-conventions.md#spec-and-status | PeerSpec | true |
PeerEndpoint
PeerEndpoint represents a WireGuard endpoint, which is an IP:port tuple.
| Field | Description | Scheme | Required |
|---|---|---|---|
| dnsOrIP | DNSOrIP is a DNS name or an IP address. | DNSOrIP | true |
| port | Port must be a valid port number. | uint32 | true |
PeerList
PeerList is a list of peers.
| Field | Description | Scheme | Required |
|---|---|---|---|
| metadata | Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds | metav1.ListMeta | false |
| items | List of peers. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md | []Peer | true |
PeerSpec
PeerSpec is the description and configuration of a peer.
| Field | Description | Scheme | Required |
|---|---|---|---|
| allowedIPs | AllowedIPs is the list of IP addresses that are allowed for the given peer's tunnel. | []string | true |
| endpoint | Endpoint is the initial endpoint for connections to the peer. | *PeerEndpoint | false |
| persistentKeepalive | PersistentKeepalive is the interval in seconds of the emission of keepalive packets by the peer. This defaults to 0, which disables the feature. | int | false |
| presharedKey | PresharedKey is the optional symmetric encryption key for the peer. | string | false |
| publicKey | PublicKey is the WireGuard public key for the peer. | string | true |