Skip to content

Commit 5709b44

Browse files
vehagnvehagn
committed
feat(bgp): enable bgp in cilium and disable l2 announcements
Also change IPs off all services to a different subnet Signed-off-by: Vegard Hagen <[email protected]>
1 parent 3a77de4 commit 5709b44

File tree

27 files changed

+134
-43
lines changed

27 files changed

+134
-43
lines changed

k8s/apps/dev/whoami/svc.yaml

Lines changed: 4 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,10 @@ metadata:
44
name: whoami
55
namespace: whoami
66
annotations:
7-
io.cilium/lb-ipam-ips: 192.168.1.223
7+
io.cilium/lb-ipam-ips: 172.20.10.200
8+
labels:
9+
bgp.cilium.io/advertise-service: default
10+
lb-ipam.cilium.io/ip-pool: default-bgp
811
spec:
912
type: LoadBalancer
1013
selector:

k8s/apps/external/proxmox/svc.yaml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -8,4 +8,5 @@ spec:
88
- name: https
99
protocol: TCP
1010
port: 443
11+
appProtocol: kubernetes.io/h2c
1112
targetPort: 8006

k8s/apps/external/truenas/svc.yaml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -8,3 +8,4 @@ spec:
88
- name: https
99
protocol: TCP
1010
port: 443
11+
appProtocol: kubernetes.io/h2c

k8s/apps/media/plex/kustomization.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -8,7 +8,7 @@ configMapGenerator:
88
namespace: plex
99
literals:
1010
- TZ="Europe/Oslo"
11-
- PLEX_ADVERTISE_URL=https://plex.stonegarden.dev:443,http://192.168.1.228:32400
11+
- PLEX_ADVERTISE_URL=https://plex.stonegarden.dev:443
1212

1313
resources:
1414
- ns.yaml

k8s/apps/utils/torrent/svc-torrent.yaml

Lines changed: 4 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,10 @@ metadata:
44
name: torrent-torrent
55
namespace: torrent
66
annotations:
7-
io.cilium/lb-ipam-ips: 192.168.1.225
7+
io.cilium/lb-ipam-ips: 172.20.10.250
8+
labels:
9+
bgp.cilium.io/advertise-service: default
10+
lb-ipam.cilium.io/ip-pool: default-bgp
811
spec:
912
type: LoadBalancer
1013
selector:

k8s/apps/utils/unpoller/config/up.conf

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -26,7 +26,7 @@
2626
dynamic = false
2727

2828
[unifi.defaults]
29-
url = "https://192.168.1.1"
29+
url = "https://172.20.10.1"
3030

3131
user = "unifipoller"
3232
pass = "file:///mnt/secrets/password"

k8s/infra/auth/authelia/cnpg-db.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -27,7 +27,7 @@ spec:
2727
# metadata:
2828
# name: authelia-postgres-db
2929
# annotations:
30-
# io.cilium/lb-ipam-ips: 192.168.1.240
30+
# io.cilium/lb-ipam-ips: 172.20.10.241
3131
# spec:
3232
# type: LoadBalancer
3333
storage:

k8s/infra/auth/lldap/cnpg-db.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -27,7 +27,7 @@ spec:
2727
# metadata:
2828
# name: lldap-postgres-db
2929
# annotations:
30-
# io.cilium/lb-ipam-ips: 192.168.1.241
30+
# io.cilium/lb-ipam-ips: 172.20.10.240
3131
# spec:
3232
# type: LoadBalancer
3333
storage:

k8s/infra/auth/lldap/svc.yaml

Lines changed: 4 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,10 @@ metadata:
44
name: lldap
55
namespace: lldap
66
annotations:
7-
io.cilium/lb-ipam-ips: 192.168.1.242
7+
io.cilium/lb-ipam-ips: 172.20.10.120
8+
labels:
9+
bgp.cilium.io/advertise-service: default
10+
lb-ipam.cilium.io/ip-pool: default-bgp
811
spec:
912
type: LoadBalancer
1013
# https://kubernetes.io/docs/concepts/services-networking/cluster-ip-allocation/

k8s/infra/network/cilium/announce.yaml

Lines changed: 0 additions & 8 deletions
This file was deleted.

0 commit comments

Comments
 (0)