diff --git a/kubernetes/bootstrap/readme.md b/kubernetes/bootstrap/readme.md
index 7eba6c98..3302db8c 100644
--- a/kubernetes/bootstrap/readme.md
+++ b/kubernetes/bootstrap/readme.md
@@ -1,31 +1,23 @@
 # Bootstrap
 
+## Prerequisites
+```sh
+brew install helmfile
+helm plugin install https://github.com/databus23/helm-diff
+```
+
 ## Talos
 
 ### Bootstrap talos cluster
 
 ```sh
-omnictl cluster template sync -f ./template.yaml --omniconfig ./omniconfig.yaml
+omnictl cluster template sync -f ./omni-homelab-export.yaml --omniconfig ./omniconfig.yaml
 ```
-## CNI
-
-### Install Cilium
+## CNI & Container Proxy
 
+### Install Cilium & Spegel
 ```sh
-cilium install \
-    --helm-set=ipam.mode=kubernetes \
-    --helm-set=kubeProxyReplacement=true \
-    --helm-set=securityContext.capabilities.ciliumAgent="{CHOWN,KILL,NET_ADMIN,NET_RAW,IPC_LOCK,SYS_ADMIN,SYS_RESOURCE,DAC_OVERRIDE,FOWNER,SETGID,SETUID}" \
-    --helm-set=securityContext.capabilities.cleanCiliumState="{NET_ADMIN,SYS_ADMIN,SYS_RESOURCE}" \
-    --helm-set=cgroup.autoMount.enabled=false \
-    --helm-set=cgroup.hostRoot=/sys/fs/cgroup \
-    --helm-set=k8sServiceHost=127.0.0.1 \
-    --helm-set=k8sServicePort=7445 \
-    --helm-set=bgpControlPlane.enabled=true \
-    --helm-set=bgp.enabled=false \
-    --helm-set=bgp.announce.loadbalancerIP=true \
-    --helm-set=bgp.announce.podCIDR=false \
-    --helm-set=cni-exclusive=false
+helmfile apply -f kubernetes/bootstrap/talos/apps/helmfile.yaml
 ```
 
 ## Flux Prep