From 59ff9b230914b8a5eec559722840e6ad165735bb Mon Sep 17 00:00:00 2001
From: gitea-bot <gitea-bot@alexlebens.net>
Date: Thu, 5 Feb 2026 03:48:42 +0000
Subject: [PATCH] Automated Manifest Update (#3728)

This PR contains newly rendered Kubernetes manifests automatically generated by the CI workflow.

Reviewed-on: https://gitea.alexlebens.dev/alexlebens/infrastructure/pulls/3728
Co-authored-by: gitea-bot <gitea-bot@alexlebens.net>
Co-committed-by: gitea-bot <gitea-bot@alexlebens.net>
---
 .../CiliumLoadBalancerIPPool-bgp-ip-pool.yaml |  2 +-
 ...iumLoadBalancerIPPool-default-ip-pool.yaml |  2 +-
 .../cilium/Gateway-cilium-tls-gateway.yaml    | 45 +++++++++++++++++++
 3 files changed, 47 insertions(+), 2 deletions(-)
 create mode 100644 clusters/cl01tl/manifests/cilium/Gateway-cilium-tls-gateway.yaml

diff --git a/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-bgp-ip-pool.yaml b/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-bgp-ip-pool.yaml
index 1f0766ad9..03b4c5df8 100644
--- a/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-bgp-ip-pool.yaml
+++ b/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-bgp-ip-pool.yaml
@@ -1,4 +1,4 @@
-apiVersion: "cilium.io/v2alpha1"
+apiVersion: cilium.io/v2
 kind: CiliumLoadBalancerIPPool
 metadata:
   name: bgp-ip-pool
diff --git a/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-default-ip-pool.yaml b/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-default-ip-pool.yaml
index acb8a7d6b..76f6777e9 100644
--- a/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-default-ip-pool.yaml
+++ b/clusters/cl01tl/manifests/cilium/CiliumLoadBalancerIPPool-default-ip-pool.yaml
@@ -1,4 +1,4 @@
-apiVersion: "cilium.io/v2alpha1"
+apiVersion: cilium.io/v2
 kind: CiliumLoadBalancerIPPool
 metadata:
   name: default-ip-pool
diff --git a/clusters/cl01tl/manifests/cilium/Gateway-cilium-tls-gateway.yaml b/clusters/cl01tl/manifests/cilium/Gateway-cilium-tls-gateway.yaml
new file mode 100644
index 000000000..b7a1ea54c
--- /dev/null
+++ b/clusters/cl01tl/manifests/cilium/Gateway-cilium-tls-gateway.yaml
@@ -0,0 +1,45 @@
+apiVersion: gateway.networking.k8s.io/v1
+kind: Gateway
+metadata:
+  name: cilium-tls-gateway
+  namespace: kube-system
+  labels:
+    app.kubernetes.io/name: cilium-tls-gateway
+    app.kubernetes.io/instance: cilium
+    app.kubernetes.io/part-of: cilium
+  annotations:
+    cert-manager.io/cluster-issuer: letsencrypt-issuer
+spec:
+  addresses:
+    - type: IPAddress
+      value: 10.232.2.23
+  gatewayClassName: cilium
+  listeners:
+    - allowedRoutes:
+        namespaces:
+          from: All
+      hostname: '*.alexlebens.net'
+      name: https
+      port: 443
+      protocol: HTTPS
+      tls:
+        certificateRefs:
+          - group: ''
+            kind: Secret
+            name: https-gateway-cert
+            namespace: kube-system
+        mode: Terminate
+    - allowedRoutes:
+        namespaces:
+          from: All
+      hostname: 'alexlebens.net'
+      name: https-domain
+      port: 443
+      protocol: HTTPS
+      tls:
+        certificateRefs:
+          - group: ''
+            kind: Secret
+            name: https-gateway-cert
+            namespace: kube-system
+        mode: Terminate