Week 5 2025

Work

• Dev env migration
  • Route53 zone, IAM user role for k8s external DNS done
  • Public and private VPC done
  • RDS security group done
  • Elasticache security group still in review
  • EKS still in review
• Discussion about aws-ia/eks-blueprints-addons Terraform module
  • Will create aws-ia/eks-blueprints-addon (without "s") -> will create helm_release resource
  • Due to being a Helm release, CRD won't be updated along with module upgrade. This is Helm limitation (and design?)
  • Required to update CRD through separate job before Helm release upgrade

Other

• Talos bare metal (mostly) unattended provision:
  • Use nocloud variant and not metal. Somehow metal couldn't detect metal-iso partition
  • dd the ISO: sudo dd if=<ISO> of=<USB> conv=fsync oflag=direct status=progress
  • Fix backup partition table and add new partition using gdisk
    1. sudo gdisk <DEVICE>
    2. x (extra functionality)
    3. e (relocate backup data structures to the end of the disk)
    4. m (return to main menu)
    5. n (add a new partition)
    6. TODO
    7. w (write table to disk and exit)
  • https://www.talos.dev/v1.9/talos-guides/install/cloud-platforms/nocloud/