diff --git a/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-bgp-ip-pool.yaml b/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-bgp-ip-pool.yaml
index 1f0766ad9..03b4c5df8 100644
--- a/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-bgp-ip-pool.yaml
+++ b/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-bgp-ip-pool.yaml
@@ -1,4 +1,4 @@
-apiVersion: "cilium.io/v2alpha1"
+apiVersion: cilium.io/v2
 kind: CiliumLoadBalancerIPPool
 metadata:
   name: bgp-ip-pool
diff --git a/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-default-ip-pool.yaml b/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-default-ip-pool.yaml
index acb8a7d6b..76f6777e9 100644
--- a/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-default-ip-pool.yaml
+++ b/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-default-ip-pool.yaml
@@ -1,4 +1,4 @@
-apiVersion: "cilium.io/v2alpha1"
+apiVersion: cilium.io/v2
 kind: CiliumLoadBalancerIPPool
 metadata:
   name: default-ip-pool
diff --git a/clusters/cl01tl/manifests/cilium/Gateway-cilium-tls-gateway.yaml b/clusters/cl01tl/manifests/cilium/Gateway-cilium-tls-gateway.yaml
new file mode 100644
index 000000000..b7a1ea54c
--- /dev/null
+++ b/clusters/cl01tl/manifests/cilium/Gateway-cilium-tls-gateway.yaml
@@ -0,0 +1,45 @@
+apiVersion: gateway.networking.k8s.io/v1
+kind: Gateway
+metadata:
+  name: cilium-tls-gateway
+  namespace: kube-system
+  labels:
+    app.kubernetes.io/name: cilium-tls-gateway
+    app.kubernetes.io/instance: cilium
+    app.kubernetes.io/part-of: cilium
+  annotations:
+    cert-manager.io/cluster-issuer: letsencrypt-issuer
+spec:
+  addresses:
+    - type: IPAddress
+      value: 10.232.2.23
+  gatewayClassName: cilium
+  listeners:
+    - allowedRoutes:
+        namespaces:
+          from: All
+      hostname: '*.alexlebens.net'
+      name: https
+      port: 443
+      protocol: HTTPS
+      tls:
+        certificateRefs:
+          - group: ''
+            kind: Secret
+            name: https-gateway-cert
+            namespace: kube-system
+        mode: Terminate
+    - allowedRoutes:
+        namespaces:
+          from: All
+      hostname: 'alexlebens.net'
+      name: https-domain
+      port: 443
+      protocol: HTTPS
+      tls:
+        certificateRefs:
+          - group: ''
+            kind: Secret
+            name: https-gateway-cert
+            namespace: kube-system
+        mode: Terminate