fix: change load balancer subnet, make certs valid for '*.internal' domains

This commit is contained in:
SeanOMik 2024-09-12 17:52:21 -04:00
parent ae4b14b1b6
commit 47a36fb75d
Signed by: SeanOMik
GPG Key ID: FEC9E2FC15235964
6 changed files with 8 additions and 9 deletions

View File

@ -15,4 +15,5 @@ spec:
dnsNames:
- "${SECRET_NEW_DOMAIN}"
- "*.${SECRET_NEW_DOMAIN}"
- "*.${SECRET_NEW_DOMAIN}"
- "*.internal.${SECRET_NEW_DOMAIN}"

View File

@ -2,7 +2,6 @@ apiVersion: cilium.io/v2alpha1
kind: CiliumBGPClusterConfig
metadata:
name: cilium-bgp
namespace: kube-system
spec:
nodeSelector:
matchExpressions:
@ -22,7 +21,6 @@ apiVersion: cilium.io/v2alpha1
kind: CiliumBGPPeerConfig
metadata:
name: cilium-peer-router
namespace: kube-system
spec:
timers:
holdTimeSeconds: 9
@ -41,7 +39,6 @@ apiVersion: cilium.io/v2alpha1
kind: CiliumBGPAdvertisement
metadata:
name: bgp-public-ad
namespace: kube-system
labels:
advertise: "bgp-public"
spec:
@ -49,6 +46,7 @@ spec:
- advertisementType: "Service"
service:
addresses:
#- ClusterIP
- ExternalIP
- LoadBalancerIP
selector:

View File

@ -4,5 +4,5 @@ metadata:
name: "main-pool"
spec:
blocks:
- start: "192.168.1.50"
stop: "192.168.1.59"
- start: "192.168.2.50"
stop: "192.168.2.59"

View File

@ -17,7 +17,7 @@ spec:
values:
service:
annotations:
io.cilium/lb-ipam-ips: 192.168.1.50
io.cilium/lb-ipam-ips: 192.168.2.50
labels:
bgp/service-type: public

View File

@ -17,7 +17,7 @@ spec:
values:
service:
annotations:
io.cilium/lb-ipam-ips: 192.168.1.51
io.cilium/lb-ipam-ips: 192.168.2.51
labels:
bgp/service-type: public

View File

@ -6,5 +6,5 @@ metadata:
namespace: flux-system
data:
# MetalLB
METALLB_LB_RANGE: 192.168.1.50-192.168.1.60
METALLB_LB_RANGE: 192.168.2.50-192.168.2.59
SERVER_TIMEZONE: America/New_York