switch to gateway

This commit is contained in:
2024-08-22 00:49:17 -05:00
parent ea8ef30b71
commit 2eafe1dd62
2 changed files with 41 additions and 41 deletions

View File

@@ -1,36 +1,36 @@
# apiVersion: gateway.networking.k8s.io/v1 apiVersion: gateway.networking.k8s.io/v1
# kind: Gateway kind: Gateway
# metadata: metadata:
# name: cilium-tls-gateway name: cilium-tls-gateway
# namespace: cilium namespace: cilium
# labels: labels:
# app.kubernetes.io/name: cilium-tls-gateway app.kubernetes.io/name: cilium-tls-gateway
# app.kubernetes.io/instance: {{ .Release.Name }} app.kubernetes.io/instance: {{ .Release.Name }}
# app.kubernetes.io/version: {{ .Chart.AppVersion }} app.kubernetes.io/version: {{ .Chart.AppVersion }}
# app.kubernetes.io/component: network app.kubernetes.io/component: network
# app.kubernetes.io/part-of: {{ .Release.Name }} app.kubernetes.io/part-of: {{ .Release.Name }}
# annotations: annotations:
# cert-manager.io/cluster-issuer: letsencrypt-issuer cert-manager.io/cluster-issuer: letsencrypt-issuer
# spec: spec:
# gatewayClassName: cilium gatewayClassName: cilium
# listeners: listeners:
# - name: http - name: http
# protocol: HTTP protocol: HTTP
# port: 80 port: 80
# hostname: "*.alexlebens.net" hostname: "*.alexlebens.net"
# allowedRoutes: allowedRoutes:
# namespaces: namespaces:
# from: All from: All
# - name: https - name: https
# protocol: HTTPS protocol: HTTPS
# port: 443 port: 443
# hostname: "*.alexlebens.net" hostname: "*.alexlebens.net"
# allowedRoutes: allowedRoutes:
# namespaces: namespaces:
# from: All from: All
# tls: tls:
# mode: Terminate mode: Terminate
# certificateRefs: certificateRefs:
# - kind: Secret - kind: Secret
# group: core group: core
# name: wildcard-tls-alexlebens-net name: wildcard-tls-alexlebens-net

View File

@@ -27,7 +27,7 @@ cilium:
enableK8sEndpointSlice: true enableK8sEndpointSlice: true
enableCiliumEndpointSlice: false enableCiliumEndpointSlice: false
ingressController: ingressController:
enabled: true enabled: false
default: true default: true
loadbalancerMode: shared loadbalancerMode: shared
enforceHttps: true enforceHttps: true
@@ -45,10 +45,10 @@ cilium:
insecureNodePort: 30000 insecureNodePort: 30000
secureNodePort: 30001 secureNodePort: 30001
gatewayAPI: gatewayAPI:
enabled: false enabled: true
enableProxyProtocol: true enableProxyProtocol: false
enableAppProtocol: true enableAppProtocol: false
enableAlpn: true enableAlpn: false
xffNumTrustedHops: 0 xffNumTrustedHops: 0
externalTrafficPolicy: Cluster externalTrafficPolicy: Cluster
gatewayClass: gatewayClass: