From 92b015a51df5ac70c81e9f8f5de144001348f29b Mon Sep 17 00:00:00 2001 From: Alex Lebens Date: Thu, 25 Dec 2025 19:18:39 -0600 Subject: [PATCH] disable cilium gateway --- .../argo-workflows/templates/http-route.yaml | 4 +- clusters/cl01tl/helm/blocky/values.yaml | 4 +- .../cl01tl/helm/cilium/templates/gateway.yaml | 70 +++++++++---------- .../helm/cilium/templates/http-route.yaml | 6 +- clusters/cl01tl/helm/cilium/values.yaml | 2 +- hosts/ps08rp/blocky/config.yml | 4 +- hosts/ps09rp/blocky/config.yml | 4 +- 7 files changed, 47 insertions(+), 47 deletions(-) diff --git a/clusters/cl01tl/helm/argo-workflows/templates/http-route.yaml b/clusters/cl01tl/helm/argo-workflows/templates/http-route.yaml index 6bce911f3..d1bfaa142 100644 --- a/clusters/cl01tl/helm/argo-workflows/templates/http-route.yaml +++ b/clusters/cl01tl/helm/argo-workflows/templates/http-route.yaml @@ -11,8 +11,8 @@ spec: parentRefs: - group: gateway.networking.k8s.io kind: Gateway - name: cilium-tls-gateway - namespace: kube-system + name: traefik-gateway + namespace: traefik hostnames: - argo-workflows.alexlebens.net rules: diff --git a/clusters/cl01tl/helm/blocky/values.yaml b/clusters/cl01tl/helm/blocky/values.yaml index 1dc83e209..48d86d5b5 100644 --- a/clusters/cl01tl/helm/blocky/values.yaml +++ b/clusters/cl01tl/helm/blocky/values.yaml @@ -103,7 +103,7 @@ blocky: ;; Application Names actual IN CNAME traefik-cl01tl alertmanager IN CNAME traefik-cl01tl - argo-workflows IN CNAME cilium-cl01tl + argo-workflows IN CNAME traefik-cl01tl argocd IN CNAME traefik-cl01tl audiobookshelf IN CNAME traefik-cl01tl authentik IN CNAME traefik-cl01tl @@ -124,7 +124,7 @@ blocky: home IN CNAME traefik-cl01tl home-assistant IN CNAME traefik-cl01tl home-assistant-code-server IN CNAME traefik-cl01tl - hubble IN CNAME cilium-cl01tl + hubble IN CNAME traefik-cl01tl huntarr IN CNAME traefik-cl01tl immich IN CNAME traefik-cl01tl jellyfin IN CNAME traefik-cl01tl diff --git a/clusters/cl01tl/helm/cilium/templates/gateway.yaml b/clusters/cl01tl/helm/cilium/templates/gateway.yaml index 11c42129f..924f10b95 100644 --- a/clusters/cl01tl/helm/cilium/templates/gateway.yaml +++ b/clusters/cl01tl/helm/cilium/templates/gateway.yaml @@ -1,35 +1,35 @@ -apiVersion: gateway.networking.k8s.io/v1 -kind: Gateway -metadata: - name: cilium-tls-gateway - namespace: {{ .Release.Namespace }} - labels: - app.kubernetes.io/name: tls-gateway - app.kubernetes.io/instance: {{ .Release.Name }} - app.kubernetes.io/part-of: {{ .Release.Name }} - annotations: - cert-manager.io/cluster-issuer: letsencrypt-issuer -spec: - gatewayClassName: cilium - listeners: - - allowedRoutes: - namespaces: - from: All - hostname: '*.alexlebens.net' - name: http - port: 80 - protocol: HTTP - - allowedRoutes: - namespaces: - from: All - hostname: '*.alexlebens.net' - name: https - port: 443 - protocol: HTTPS - tls: - certificateRefs: - - group: '' - kind: Secret - name: https-gateway-cert - namespace: kube-system - mode: Terminate +# apiVersion: gateway.networking.k8s.io/v1 +# kind: Gateway +# metadata: +# name: cilium-tls-gateway +# namespace: {{ .Release.Namespace }} +# labels: +# app.kubernetes.io/name: tls-gateway +# app.kubernetes.io/instance: {{ .Release.Name }} +# app.kubernetes.io/part-of: {{ .Release.Name }} +# annotations: +# cert-manager.io/cluster-issuer: letsencrypt-issuer +# spec: +# gatewayClassName: cilium +# listeners: +# - allowedRoutes: +# namespaces: +# from: All +# hostname: '*.alexlebens.net' +# name: http +# port: 80 +# protocol: HTTP +# - allowedRoutes: +# namespaces: +# from: All +# hostname: '*.alexlebens.net' +# name: https +# port: 443 +# protocol: HTTPS +# tls: +# certificateRefs: +# - group: '' +# kind: Secret +# name: https-gateway-cert +# namespace: kube-system +# mode: Terminate diff --git a/clusters/cl01tl/helm/cilium/templates/http-route.yaml b/clusters/cl01tl/helm/cilium/templates/http-route.yaml index 6c1df8593..d6a2df802 100644 --- a/clusters/cl01tl/helm/cilium/templates/http-route.yaml +++ b/clusters/cl01tl/helm/cilium/templates/http-route.yaml @@ -11,15 +11,15 @@ spec: parentRefs: - group: gateway.networking.k8s.io kind: Gateway - name: cilium-tls-gateway - namespace: kube-system + name: traefik-gateway + namespace: traefik hostnames: - hubble.alexlebens.net rules: - matches: - path: type: PathPrefix - value: /hubble + value: / backendRefs: - group: '' kind: Service diff --git a/clusters/cl01tl/helm/cilium/values.yaml b/clusters/cl01tl/helm/cilium/values.yaml index c16a41576..d74321b65 100644 --- a/clusters/cl01tl/helm/cilium/values.yaml +++ b/clusters/cl01tl/helm/cilium/values.yaml @@ -42,7 +42,7 @@ cilium: ingressController: enabled: false gatewayAPI: - enabled: true + enabled: false enableAlpn: true enableAppProtocol: true externalIPs: diff --git a/hosts/ps08rp/blocky/config.yml b/hosts/ps08rp/blocky/config.yml index 722bb8bbc..f6e033344 100644 --- a/hosts/ps08rp/blocky/config.yml +++ b/hosts/ps08rp/blocky/config.yml @@ -79,7 +79,7 @@ customDNS: ;; Application Names actual IN CNAME traefik-cl01tl alertmanager IN CNAME traefik-cl01tl - argo-workflows IN CNAME cilium-cl01tl + argo-workflows IN CNAME traefik-cl01tl argocd IN CNAME traefik-cl01tl audiobookshelf IN CNAME traefik-cl01tl authentik IN CNAME traefik-cl01tl @@ -100,7 +100,7 @@ customDNS: home IN CNAME traefik-cl01tl home-assistant IN CNAME traefik-cl01tl home-assistant-code-server IN CNAME traefik-cl01tl - hubble IN CNAME cilium-cl01tl + hubble IN CNAME traefik-cl01tl huntarr IN CNAME traefik-cl01tl immich IN CNAME traefik-cl01tl jellyfin IN CNAME traefik-cl01tl diff --git a/hosts/ps09rp/blocky/config.yml b/hosts/ps09rp/blocky/config.yml index 722bb8bbc..f6e033344 100644 --- a/hosts/ps09rp/blocky/config.yml +++ b/hosts/ps09rp/blocky/config.yml @@ -79,7 +79,7 @@ customDNS: ;; Application Names actual IN CNAME traefik-cl01tl alertmanager IN CNAME traefik-cl01tl - argo-workflows IN CNAME cilium-cl01tl + argo-workflows IN CNAME traefik-cl01tl argocd IN CNAME traefik-cl01tl audiobookshelf IN CNAME traefik-cl01tl authentik IN CNAME traefik-cl01tl @@ -100,7 +100,7 @@ customDNS: home IN CNAME traefik-cl01tl home-assistant IN CNAME traefik-cl01tl home-assistant-code-server IN CNAME traefik-cl01tl - hubble IN CNAME cilium-cl01tl + hubble IN CNAME traefik-cl01tl huntarr IN CNAME traefik-cl01tl immich IN CNAME traefik-cl01tl jellyfin IN CNAME traefik-cl01tl