Установил короче cert-manager 1.4.0 / До этого было 1.2.1 - В

поде cert-manager-webhook сыпет ошибку:
"TLS handshake error from 10.42.0.0:43164: remote error: tls: bad certificate"
- В поде cert-manager ошибка
"Failed to watch *v1.Challenge: failed to list *v1.Challenge: conversion webhook for acme.cert-manager.io/v1alpha2,"


Устанавлвивал так:
- kubectl create namespace cert-manager
- helm repo add jetstack https://charts.jetstack.io
- helm repo update
- kubectl apply --validate=false -f https://github.com/jetstack/cert-manager/releases/download/v1.4.0/cert-manager.crds.yaml
-
helm install \
cert-manager \
--namespace cert-manager \
--version v1.4.0 \
--set ingressShim.defaultIssuerName=letsencrypt-prod \
--set ingressShim.defaultIssuerKind=ClusterIssuer \
jetstack/cert-manager

И сам clusterIssuer
`
apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: letsencrypt-prod
namespace: cert-manager
spec:
acme:
# You must replace this email address with your own.
# Let's Encrypt will use this to contact you about expiring
# certificates, and issues related to your account.
email: admin@admin.com
server: https://acme-v02.api.letsencrypt.org/directory
privateKeySecretRef:
# Secret resource used to store the account's private key.
name: letsencrypt-prod
# Add a single challenge solver, HTTP01 using nginx
solvers:
- http01:
ingress:
class: nginx
`

Кто подскажет где что не так?

10.42.0.0? Очень странный айпи