fix: change load balancer subnet, make certs valid for '*.internal' domains

kubernetes/common/apps/cert-manager/certs/files/wildcard-cert.yaml

@@ -16,3 +16,4 @@ spec:
   dnsNames:
     - "${SECRET_NEW_DOMAIN}"
     - "*.${SECRET_NEW_DOMAIN}"
+    - "*.internal.${SECRET_NEW_DOMAIN}"

kubernetes/thin/apps/cilium/bgp.yaml

@@ -2,7 +2,6 @@ apiVersion: cilium.io/v2alpha1
 kind: CiliumBGPClusterConfig
 metadata:
   name: cilium-bgp
-  namespace: kube-system
 spec:
   nodeSelector:
     matchExpressions:
@@ -22,7 +21,6 @@ apiVersion: cilium.io/v2alpha1
 kind: CiliumBGPPeerConfig
 metadata:
   name: cilium-peer-router
-  namespace: kube-system
 spec:
   timers:
     holdTimeSeconds: 9
@@ -41,7 +39,6 @@ apiVersion: cilium.io/v2alpha1
 kind: CiliumBGPAdvertisement
 metadata:
   name: bgp-public-ad
-  namespace: kube-system
   labels:
     advertise: "bgp-public"
 spec:
@@ -49,6 +46,7 @@ spec:
   - advertisementType: "Service"
     service:
       addresses:
+      #- ClusterIP
       - ExternalIP
       - LoadBalancerIP
     selector:

kubernetes/thin/apps/cilium/main-ip-pool.yaml

@@ -4,5 +4,5 @@ metadata:
   name: "main-pool"
 spec:
   blocks:
-  - start: "192.168.1.50"
+  - start: "192.168.2.50"
-    stop: "192.168.1.59"
+    stop: "192.168.2.59"

kubernetes/thin/apps/traefik/app/files/helm-release.yaml

@@ -17,7 +17,7 @@ spec:
   values:
     service:
       annotations:
-        io.cilium/lb-ipam-ips: 192.168.1.50
+        io.cilium/lb-ipam-ips: 192.168.2.50
       labels:
         bgp/service-type: public
 

kubernetes/thin/apps/traefik/app/files/internal-hr.yaml

@@ -17,7 +17,7 @@ spec:
   values:
     service:
       annotations:
-        io.cilium/lb-ipam-ips: 192.168.1.51
+        io.cilium/lb-ipam-ips: 192.168.2.51
       labels:
         bgp/service-type: public
 

kubernetes/thin/secrets/cluster-settings.yaml

@@ -6,5 +6,5 @@ metadata:
   namespace: flux-system
 data:
   # MetalLB
-  METALLB_LB_RANGE: 192.168.1.50-192.168.1.60
+  METALLB_LB_RANGE: 192.168.2.50-192.168.2.59
   SERVER_TIMEZONE: America/New_York