mirror of https://github.com/siderolabs/extensions.git synced 2025-08-06 14:27:31 +02:00

History

Mateusz Urbanek b4c2a62dc9 docs: add SBOM for more extensions Partial for #10940 Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>		2025-07-24 14:45:37 +02:00
..
manifest.yaml	feat: add Newt extension	2025-07-01 12:08:36 +05:30
newt.yaml	fix(newt): add SSL ca cert mount	2025-07-07 11:28:40 +05:30
pkg.yaml	docs: add SBOM for more extensions	2025-07-24 14:45:37 +02:00
README.md	feat: add Newt extension	2025-07-01 12:08:36 +05:30
vars.yaml	feat: add Newt extension	2025-07-01 12:08:36 +05:30

README.md

Newt client

Newt is a fully user space WireGuard tunnel client and TCP/UDP proxy, designed to securely expose private resources controlled by Pangolin. By using Newt, you don't need to manage complex WireGuard tunnels and NATing. More info: https://github.com/fosrl/newt

Installation

Newt system extension can be installed by customising boot assets or after installation with the installer

You can use the following schematic file:

# newt-ext.yaml
customization:
  systemExtensions:
    officialExtensions:
      - siderolabs/newt

Check documentation for install:

Usage

Configure the extension via ExtensionServiceConfig document.

# newt-config.yaml
---
apiVersion: v1alpha1
kind: ExtensionServiceConfig
name: newt
environment:
  - PANGOLIN_ENDPOINT=https://example.com
  - NEWT_ID=2ix2t8xk22ubpfy
  - NEWT_SECRET=nnisrfsdfc7prqsp9ewo1dvtvci50j5uiqotez00dgap0ii2

Then apply the patch to your node's MachineConfigs

talosctl patch mc -p @newt-config.yaml

You will then be able to verify that it is in place with the following command

talosctl get extensionserviceconfigs

NODE     NAMESPACE   TYPE                     ID            VERSION
mynode   runtime     ExtensionServiceConfig   newt   1

Configuration

See all run parameters here (use environment variables): https://docs.fossorial.io/Newt/overview#cli-args