feat: Setup cilium L2 announcments and IP pool

configs/cilium-config/base/cilium-l2-announcement-policy.yaml

@@ -0,0 +1,9 @@
+apiVersion: cilium.io/v2alpha1
+kind: CiliumL2AnnouncementPolicy
+metadata:
+  name: default-policy
+spec:
+  interfaces:
+    - ^eth[0-9]+
+  externalIPs: true
+  loadBalancerIPs: true

configs/cilium-config/base/kustomization.yaml

@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+  - cilium-l2-announcement-policy.yaml

configs/cilium-config/cilium-config.yaml

@@ -0,0 +1,17 @@
+apiVersion: kustomize.toolkit.fluxcd.io/v1
+kind: Kustomization
+metadata:
+  name: cilium-config
+  namespace: flux-system
+spec:
+  interval: 1h
+  retryInterval: 2m
+  timeout: 15m
+  dependsOn:
+    - name: cilium
+  sourceRef:
+    kind: ExternalArtifact
+    name: cilium-config
+  path: ./${cluster_env}
+  prune: true
+  wait: true

configs/cilium-config/production/cilium-load-balancer-ip-pool.yaml

@@ -0,0 +1,7 @@
+apiVersion: cilium.io/v2alpha1
+kind: CiliumLoadBalancerIPPool
+metadata:
+  name: default-pool
+spec:
+  blocks:
+    - cidr: 10.0.2.100/24

configs/cilium-config/production/kustomization.yaml

@@ -0,0 +1,5 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+  - ../base
+  - cilium-load-balancer-ip-pool.yaml

configs/cilium-config/staging/cilium-load-balancer-ip-pool.yaml

@@ -0,0 +1,8 @@
+apiVersion: cilium.io/v2alpha1
+kind: CiliumLoadBalancerIPPool
+metadata:
+  name: default-pool
+spec:
+  blocks:
+    - start: 192.168.1.100
+      stop: 192.168.1.200

configs/cilium-config/staging/kustomization.yaml

@@ -0,0 +1,5 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+  - ../base
+  - cilium-load-balancer-ip-pool.yaml