diff --git a/nix/kubernetes/hosts/controller0/default.nix b/nix/kubernetes/hosts/controller0/default.nix
index 53616127..4521b7e1 100644
--- a/nix/kubernetes/hosts/controller0/default.nix
+++ b/nix/kubernetes/hosts/controller0/default.nix
@@ -117,7 +117,8 @@
     ];
 
     me.kube_apiserver.internal_ip = "2620:11f:7001:7:ffff:ffff:0ad7:01dd";
-    me.kube_apiserver.external_ip = "74.80.180.138";
+    # me.kube_apiserver.external_ip = "74.80.180.138";
+    me.kube_apiserver.external_ip = "2620:11f:7001:7:ffff:ffff:0ad7:01dd";
     me.kube_apiserver.etcd_services = [
       "https://[2620:11f:7001:7:ffff:ffff:0ad7:01dd]:2379" # 10.215.1.221
       "https://[2620:11f:7001:7:ffff:ffff:0ad7:01de]:2379" # 10.215.1.222
diff --git a/nix/kubernetes/hosts/controller1/default.nix b/nix/kubernetes/hosts/controller1/default.nix
index d6571c08..3af358d9 100644
--- a/nix/kubernetes/hosts/controller1/default.nix
+++ b/nix/kubernetes/hosts/controller1/default.nix
@@ -117,7 +117,8 @@
     ];
 
     me.kube_apiserver.internal_ip = "2620:11f:7001:7:ffff:ffff:0ad7:01de";
-    me.kube_apiserver.external_ip = "74.80.180.138";
+    # me.kube_apiserver.external_ip = "74.80.180.138";
+    me.kube_apiserver.external_ip = "2620:11f:7001:7:ffff:ffff:0ad7:01de";
     me.kube_apiserver.etcd_services = [
       "https://[2620:11f:7001:7:ffff:ffff:0ad7:01dd]:2379" # 10.215.1.221
       "https://[2620:11f:7001:7:ffff:ffff:0ad7:01de]:2379" # 10.215.1.222
diff --git a/nix/kubernetes/hosts/controller2/default.nix b/nix/kubernetes/hosts/controller2/default.nix
index c6c95c03..a25ddae0 100644
--- a/nix/kubernetes/hosts/controller2/default.nix
+++ b/nix/kubernetes/hosts/controller2/default.nix
@@ -117,7 +117,8 @@
     ];
 
     me.kube_apiserver.internal_ip = "2620:11f:7001:7:ffff:ffff:0ad7:01df";
-    me.kube_apiserver.external_ip = "74.80.180.138";
+    # me.kube_apiserver.external_ip = "74.80.180.138";
+    me.kube_apiserver.external_ip = "2620:11f:7001:7:ffff:ffff:0ad7:01df";
     me.kube_apiserver.etcd_services = [
       "https://[2620:11f:7001:7:ffff:ffff:0ad7:01dd]:2379" # 10.215.1.221
       "https://[2620:11f:7001:7:ffff:ffff:0ad7:01de]:2379" # 10.215.1.222
diff --git a/nix/kubernetes/keys/package/bootstrap-script/files/manifests/coredns.yaml b/nix/kubernetes/keys/package/bootstrap-script/files/manifests/coredns.yaml
index 74698a64..1f12a63d 100644
--- a/nix/kubernetes/keys/package/bootstrap-script/files/manifests/coredns.yaml
+++ b/nix/kubernetes/keys/package/bootstrap-script/files/manifests/coredns.yaml
@@ -201,7 +201,8 @@ metadata:
 spec:
   selector:
     k8s-app: kube-dns
-  clusterIP: 10.197.0.10
+  # clusterIP: 10.197.0.10
+  clusterIP: "fd00:3e42:e349::10"
   ports:
     - name: dns
       port: 53
diff --git a/nix/kubernetes/roles/kube_apiserver/default.nix b/nix/kubernetes/roles/kube_apiserver/default.nix
index 66b31aad..4bd798e5 100644
--- a/nix/kubernetes/roles/kube_apiserver/default.nix
+++ b/nix/kubernetes/roles/kube_apiserver/default.nix
@@ -57,6 +57,7 @@ in
           shellCommand [
             # NEW:
             "${pkgs.kubernetes}/bin/kube-apiserver"
+            "--advertise-address=${config.me.kube_apiserver.external_ip}"
             "--allow-privileged=true"
             "--audit-log-maxage=30"
             "--audit-log-maxbackup=3"
@@ -83,6 +84,7 @@ in
             "--tls-cert-file=/.persist/keys/kube/kube-api-server.crt"
             "--tls-private-key-file=/.persist/keys/kube/kube-api-server.key"
             "--tls-min-version=VersionTLS13"
+            "--service-cluster-ip-range=fd00:3e42:e349::/48"
             "--v=2"
 
             # OLD:
diff --git a/nix/kubernetes/roles/kube_proxy/default.nix b/nix/kubernetes/roles/kube_proxy/default.nix
index 213aa3a7..bd23e460 100644
--- a/nix/kubernetes/roles/kube_proxy/default.nix
+++ b/nix/kubernetes/roles/kube_proxy/default.nix
@@ -57,6 +57,7 @@ in
             "${pkgs.kubernetes}/bin/kube-proxy"
             "--config=${config_file}"
             "--nodeport-addresses=primary"
+            "--cluster-cidr=fd49:0595:2bba::/48"
           ]
         );
         Restart = "on-failure";
diff --git a/nix/kubernetes/roles/kubelet/files/kubelet-config.yaml b/nix/kubernetes/roles/kubelet/files/kubelet-config.yaml
index 05f53201..c7901989 100644
--- a/nix/kubernetes/roles/kubelet/files/kubelet-config.yaml
+++ b/nix/kubernetes/roles/kubelet/files/kubelet-config.yaml
@@ -23,6 +23,6 @@ registerNode: true
 runtimeRequestTimeout: "15m"
 tlsCertFile: "/.persist/keys/kube/kubelet.crt"
 tlsPrivateKeyFile: "/.persist/keys/kube/kubelet.key"
-clusterDomain: "cluster.local"
-clusterDNS:
-  - "10.197.0.10"
+# clusterDomain: "cluster.local"
+# clusterDNS:
+#   - "10.197.0.10"