From fa5b6fd188de1d83bc0b2cc82cc096b355cc7d5c Mon Sep 17 00:00:00 2001
From: Mayne0213 <bluemayne0213@icloud.com>
Date: Wed, 31 Dec 2025 17:51:23 +0900
Subject: [PATCH] FEAT(traefik): add master node toleration

- for svclb-traefik
- Enables traefik LoadBalancer on master node with NoExecute taint
- Uses K3s svccontroller annotation for svclb tolerations
---
 traefik/helm-values.yaml | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)

diff --git a/traefik/helm-values.yaml b/traefik/helm-values.yaml
index 9bae885..f75b8d1 100644
--- a/traefik/helm-values.yaml
+++ b/traefik/helm-values.yaml
@@ -9,6 +9,22 @@ spec:
     deployment:
       replicas: 3
 
+    # Pod Anti-Affinity - 각 노드에 최대 1개씩만 배치
+    affinity:
+      podAntiAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchLabels:
+                app.kubernetes.io/name: traefik
+            topologyKey: kubernetes.io/hostname
+
+    # Master 노드에도 배치 허용
+    tolerations:
+      - key: node-role.kubernetes.io/master
+        operator: Exists
+      - key: node-role.kubernetes.io/control-plane
+        operator: Exists
+
     # Traefik Dashboard 활성화
     dashboard:
       enabled: true
@@ -23,3 +39,8 @@ spec:
       traefik:
         expose:
           default: true
+
+    # svclb tolerations for master node
+    service:
+      annotations:
+        svccontroller.k3s.cattle.io/tolerations: '[{"key":"node-role.kubernetes.io/master","operator":"Exists","effect":"NoExecute"}]'