From 063b5da94ffd0ae54fdf86bbf437daee30ec9c99 Mon Sep 17 00:00:00 2001
From: Vegard Hagen <vegard@stonegarden.dev>
Date: Sat, 8 Feb 2025 22:10:10 +0100
Subject: [PATCH] fix(cilium): use legacy host routing

requirement for running on talos
---
 k8s/infra/network/cilium/values.yaml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/k8s/infra/network/cilium/values.yaml b/k8s/infra/network/cilium/values.yaml
index f2c9789..4894cbe 100644
--- a/k8s/infra/network/cilium/values.yaml
+++ b/k8s/infra/network/cilium/values.yaml
@@ -1,3 +1,4 @@
+# https://github.com/cilium/cilium/blob/main/install/kubernetes/cilium/values.yaml
 cluster:
   name: talos
   id: 1
@@ -17,9 +18,15 @@ cgroup:
     enabled: false
   hostRoot: /sys/fs/cgroup
 
+# https://www.talos.dev/latest/talos-guides/network/host-dns/#forwarding-kube-dns-to-host-dns
+# https://docs.cilium.io/en/stable/operations/performance/tuning/#ebpf-host-routing
+bpf:
+  hostLegacyRouting: true
+
 # https://docs.cilium.io/en/stable/network/concepts/ipam/
 ipam:
   mode: kubernetes
+  multiPoolPreAllocation: ""
 
 operator:
   rollOutPods: true