Build the cilium manifest automatically in nix.

nix/kubernetes/README.org

@@ -10,43 +10,11 @@
     { domain = "@users"; item = "rtprio"; type = "-"; value = 1; }
   ];
 #+end_src
-* Bootstrap
-** Install cilium
+* Healthcheck
+** Check cilium status
 #+begin_src bash
-  # nix shell nixpkgs#cilium-cli
-  nix shell 'nixpkgs#kubernetes-helm'
-
-  helm repo add cilium https://helm.cilium.io/
-  helm template --dry-run=client cilium cilium/cilium --version 1.18.5 --namespace kube-system \
-       --set kubeProxyReplacement=true \
-       --set ipam.mode=kubernetes \
-       --set k8sServiceHost="2620:11f:7001:7:ffff:ffff:ad7:1dd" \
-       --set k8sServicePort=6443 \
-       --set ipv6.enabled=true \
-       --set ipv4.enabled=true \
-       --set enableIPv6Masquerade=false
-       # --set enableIPv4BIGTCP=true \
-       # --set enableIPv6BIGTCP=true
-       # --set routingMode=native \
-       # --set ipv4NativeRoutingCIDR=10.0.0.0/8 \
-       # --set ipv6NativeRoutingCIDR=fd00::/100
-
-  kubec
-  tl -n kube-system exec ds/cilium -- cilium-dbg status --verbose
+  kubectl -n kube-system exec ds/cilium -- cilium-dbg status --verbose
   kubectl -n kube-system exec ds/cilium -- cilium-dbg status | grep KubeProxyReplacement
-
-  #      --set hostFirewall.enabled=true
-  # routingMode=native
-
-       # --set ipv4-native-routing-cidr=10.0.0.0/8 \
-       # --set ipv6-native-routing-cidr=fd00::/100
-  # --set 'ipam.operator.clusterPoolIPv4PodCIDRList=["10.0.0.0/8"]' \
-  # --set 'ipam.operator.clusterPoolIPv6PodCIDRList=["fd00::/100"]' \
-
-
-  # --set encryption.enabled=true \
-  #   --set encryption.type=wireguard
-  #   --set encryption.nodeEncryption=true
 #+end_src
 ** Install flux
 #+begin_src bash