From 67e0fa3811652f9244a36793e9d52834eea22966 Mon Sep 17 00:00:00 2001
From: alexlebens <alexanderlebens@gmail.com>
Date: Wed, 21 Aug 2024 23:56:27 -0500
Subject: [PATCH] change security context

---
 clusters/cl01tl/standalone/cilium/values.yaml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/clusters/cl01tl/standalone/cilium/values.yaml b/clusters/cl01tl/standalone/cilium/values.yaml
index ac9e4ab96..28d1683d0 100644
--- a/clusters/cl01tl/standalone/cilium/values.yaml
+++ b/clusters/cl01tl/standalone/cilium/values.yaml
@@ -9,6 +9,7 @@ cilium:
         - NET_ADMIN
         - NET_RAW
         - IPC_LOCK
+        - NET_BIND_SERVICE
         - SYS_ADMIN
         - SYS_RESOURCE
         - DAC_OVERRIDE
@@ -19,6 +20,10 @@ cilium:
         - NET_ADMIN
         - SYS_ADMIN
         - SYS_RESOURCE
+  envoy:
+    securityContext:
+      capabilities:
+        keepCapNetBindService: true
   enableK8sEndpointSlice: true
   enableCiliumEndpointSlice: false
   ingressController: