apiVersion: gateway.networking.k8s.io/v1 kind: Gateway metadata: name: tls-gateway namespace: {{ .Release.Namespace }} labels: app.kubernetes.io/name: tls-gateway app.kubernetes.io/instance: {{ .Release.Name }} app.kubernetes.io/part-of: {{ .Release.Name }} annotations: cert-manager.io/cluster-issuer: letsencrypt-issuer spec: gatewayClassName: cilium addresses: - type: IPAddress value: 10.232.2.10 gatewayClassName: cilium listeners: - allowedRoutes: namespaces: from: All name: ssh port: 22 protocol: TCP - allowedRoutes: namespaces: from: All hostname: '*.alexlebens.net' name: http port: 8000 protocol: HTTP - allowedRoutes: namespaces: from: All hostname: '*.alexlebens.net' name: https port: 8443 protocol: HTTPS tls: certificateRefs: - group: '' kind: Secret name: https-gateway-cert namespace: kube-system mode: Terminate