alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 7 Actions Packages Projects Releases Wiki Activity

disable gateway

Browse Source
This commit is contained in:
Alex Lebens
2024-08-22 12:37:23 -05:00
parent e5d065329c
commit 052f936a5f
3 changed files with 61 additions and 74 deletions
Download Patch File Download Diff File Expand all files Collapse all files

42
clusters/cl01tl/standalone/cilium/templates/certificate.yaml
View File

@@ -1,21 +1,21 @@
apiVersion: cert-manager.io/v1 # apiVersion: cert-manager.io/v1
kind: Certificate # kind: Certificate
metadata: # metadata:
name: wildcard-tls-alexlebens-net # name: wildcard-tls-alexlebens-net
namespace: cilium # namespace: cilium
labels: # labels:
app.kubernetes.io/name: wildcard-tls-alexlebens-net # app.kubernetes.io/name: wildcard-tls-alexlebens-net
app.kubernetes.io/instance: {{ .Release.Name }} # app.kubernetes.io/instance: {{ .Release.Name }}
app.kubernetes.io/version: {{ .Chart.AppVersion }} # app.kubernetes.io/version: {{ .Chart.AppVersion }}
app.kubernetes.io/component: network # app.kubernetes.io/component: network
app.kubernetes.io/part-of: {{ .Release.Name }} # app.kubernetes.io/part-of: {{ .Release.Name }}
spec: # spec:
secretName: wildcard-tls-alexlebens-net # secretName: wildcard-tls-alexlebens-net
duration: 2160h0m0s # duration: 2160h0m0s
renewBefore: 360h0m0s # renewBefore: 360h0m0s
dnsNames: # dnsNames:
- "*.alexlebens.net" # - "*.alexlebens.net"
issuerRef: # issuerRef:
name: letsencrypt-issuer # name: letsencrypt-issuer
kind: ClusterIssuer # kind: ClusterIssuer
commonName: "*.alexlebens.net" # commonName: "*.alexlebens.net"

78
clusters/cl01tl/standalone/cilium/templates/gateway.yaml
View File

@@ -1,39 +1,39 @@
apiVersion: gateway.networking.k8s.io/v1 # apiVersion: gateway.networking.k8s.io/v1
kind: Gateway # kind: Gateway
metadata: # metadata:
name: cilium-tls-gateway # name: cilium-tls-gateway
namespace: cilium # namespace: cilium
labels: # labels:
app.kubernetes.io/name: cilium-tls-gateway # app.kubernetes.io/name: cilium-tls-gateway
app.kubernetes.io/instance: {{ .Release.Name }} # app.kubernetes.io/instance: {{ .Release.Name }}
app.kubernetes.io/version: {{ .Chart.AppVersion }} # app.kubernetes.io/version: {{ .Chart.AppVersion }}
app.kubernetes.io/component: network # app.kubernetes.io/component: network
app.kubernetes.io/part-of: {{ .Release.Name }} # app.kubernetes.io/part-of: {{ .Release.Name }}
annotations: # annotations:
cert-manager.io/cluster-issuer: letsencrypt-issuer # cert-manager.io/cluster-issuer: letsencrypt-issuer
spec: # spec:
gatewayClassName: cilium # gatewayClassName: cilium
infrastructure: # infrastructure:
annotations: # annotations:
io.cilium/lb-ipam-ips: 192.168.1.15 # io.cilium/lb-ipam-ips: 192.168.1.15
listeners: # listeners:
- name: http # - name: http
protocol: HTTP # protocol: HTTP
port: 80 # port: 80
hostname: "*.alexlebens.net" # hostname: "*.alexlebens.net"
allowedRoutes: # allowedRoutes:
namespaces: # namespaces:
from: All # from: All
- name: https # - name: https
protocol: HTTPS # protocol: HTTPS
port: 443 # port: 443
hostname: "*.alexlebens.net" # hostname: "*.alexlebens.net"
allowedRoutes: # allowedRoutes:
namespaces: # namespaces:
from: All # from: All
tls: # tls:
mode: Terminate # mode: Terminate
certificateRefs: # certificateRefs:
- kind: Secret # - kind: Secret
group: core # group: core
name: wildcard-tls-alexlebens-net # name: wildcard-tls-alexlebens-net

15
clusters/cl01tl/standalone/cilium/values.yaml
View File

@@ -31,20 +31,7 @@ cilium:
ingressController: ingressController:
enabled: false enabled: false
gatewayAPI: gatewayAPI:
enabled: true enabled: false
enableProxyProtocol: false
enableAppProtocol: false
enableAlpn: false
xffNumTrustedHops: 0
externalTrafficPolicy: Cluster
gatewayClass:
create: auto
secretsNamespace:
create: false
name: cilium
sync: true
hostNetwork:
enabled: false
hubble: hubble:
enabled: true enabled: true
metrics: metrics: