diff --git a/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml b/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml
index df9d472..7cfa0da 100644
--- a/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml
+++ b/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml
@@ -34,10 +34,18 @@ spec:
         enabled: true
       ui:
         enabled: true
+      metrics:
+        enabled: "{dns,drop,tcp,flow,port-distribution,icmp,httpV2:exemplars=true;labelsContext=source_ip,source_namespace,source_workload,destination_ip,destination_namespace,destination_workload,traffic_direction}"
+        enableOpenMetrics: true
+    prometheus:
+      enabled: true
+    operator:
+      prometheus:
+        enabled: true
     ipam:
       mode: kubernetes
     policyEnforcementMode: always    # enforce network policies
-    policyAuditMode: true            # do not block traffic
+    # policyAuditMode: true            # do not block traffic
     hostFirewall:
       enabled: true                  # enable host policies
     extraConfig: