From c7e71009098ef4faa82931c16d8d8dc83ebc4a97 Mon Sep 17 00:00:00 2001
From: Jean-Paul van Ravensberg <14926452+DevSecNinja@users.noreply.github.com>
Date: Wed, 13 Nov 2024 19:17:56 +0100
Subject: [PATCH 1/3] Add hostNamespaceOnly setting

---
 .../kubernetes/apps/kube-system/cilium/app/helm-values.yaml.j2 | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/bootstrap/templates/kubernetes/apps/kube-system/cilium/app/helm-values.yaml.j2 b/bootstrap/templates/kubernetes/apps/kube-system/cilium/app/helm-values.yaml.j2
index 3de4cea34f1..c0bd8ff0963 100644
--- a/bootstrap/templates/kubernetes/apps/kube-system/cilium/app/helm-values.yaml.j2
+++ b/bootstrap/templates/kubernetes/apps/kube-system/cilium/app/helm-values.yaml.j2
@@ -68,3 +68,6 @@ securityContext:
       - NET_ADMIN
       - SYS_ADMIN
       - SYS_RESOURCE
+socketLB:
+  # Fixes #1627 and prevents DNS resolution errors when coredns gets restarted
+  hostNamespaceOnly: true

From 71df6c28e18458065701cf550123a5ace67f7786 Mon Sep 17 00:00:00 2001
From: Jean-Paul van Ravensberg <14926452+DevSecNinja@users.noreply.github.com>
Date: Wed, 13 Nov 2024 19:20:49 +0100
Subject: [PATCH 2/3] Make sure 2 replicas are deployed

---
 .../kubernetes/apps/kube-system/coredns/app/helm-values.yaml.j2  | 1 +
 1 file changed, 1 insertion(+)

diff --git a/bootstrap/templates/kubernetes/apps/kube-system/coredns/app/helm-values.yaml.j2 b/bootstrap/templates/kubernetes/apps/kube-system/coredns/app/helm-values.yaml.j2
index 2c358ee354b..c6a224e2dfd 100644
--- a/bootstrap/templates/kubernetes/apps/kube-system/coredns/app/helm-values.yaml.j2
+++ b/bootstrap/templates/kubernetes/apps/kube-system/coredns/app/helm-values.yaml.j2
@@ -6,6 +6,7 @@ serviceAccount:
 service:
   name: kube-dns
   clusterIP: "#{ bootstrap_service_network | nthhost(10) }#"
+replicaCount: 2
 servers:
   - zones:
       - zone: .

From 32c16fbec5eafdadf7c5ebee2ec36b1402166555 Mon Sep 17 00:00:00 2001
From: Devin Buhl <onedr0p@users.noreply.github.com>
Date: Wed, 13 Nov 2024 14:37:46 -0500
Subject: [PATCH 3/3] Update
 bootstrap/templates/kubernetes/apps/kube-system/cilium/app/helm-values.yaml.j2

---
 .../kubernetes/apps/kube-system/cilium/app/helm-values.yaml.j2   | 1 -
 1 file changed, 1 deletion(-)

diff --git a/bootstrap/templates/kubernetes/apps/kube-system/cilium/app/helm-values.yaml.j2 b/bootstrap/templates/kubernetes/apps/kube-system/cilium/app/helm-values.yaml.j2
index c0bd8ff0963..7f988c95c5e 100644
--- a/bootstrap/templates/kubernetes/apps/kube-system/cilium/app/helm-values.yaml.j2
+++ b/bootstrap/templates/kubernetes/apps/kube-system/cilium/app/helm-values.yaml.j2
@@ -69,5 +69,4 @@ securityContext:
       - SYS_ADMIN
       - SYS_RESOURCE
 socketLB:
-  # Fixes #1627 and prevents DNS resolution errors when coredns gets restarted
   hostNamespaceOnly: true