waylon/k8s-basic
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

wip

Browse source
This commit is contained in:
Waylon S. Walker 2025-02-24 07:55:20 -06:00
parent 948efe60c7
commit 8fdedbcd93
1 changed files with 42 additions and 24 deletions
Download patch file Download diff file Expand all files Collapse all files

66
helm-chart/templates/networkpolicy.yaml
View file

@ -1,27 +1,27 @@
# apiVersion: networking.k8s.io/v1 apiVersion: networking.k8s.io/v1
# kind: NetworkPolicy kind: NetworkPolicy
# metadata: metadata:
# name: {{ .Values.name }} name: {{ .Values.name }}
# namespace: {{ .Values.namespace | default .Values.name }} namespace: {{ .Values.namespace | default .Values.name }}
# labels: labels:
# service: {{ .Values.name }} service: {{ .Values.name }}
# spec: spec:
# podSelector: podSelector:
# matchLabels: matchLabels:
# service: {{ .Values.name }} service: {{ .Values.name }}
# policyTypes: policyTypes:
# - Ingress - Ingress
# - Egress - Egress
# ingress: ingress:
# - from: - from:
# - namespaceSelector: - namespaceSelector:
# matchLabels: matchLabels:
# name: kube-system name: kube-system
# ports: ports:
# - protocol: TCP - protocol: TCP
# port: {{ .Values.port }} port: {{ .Values.port }}
# egress: egress:
# - {} - {}
# TODO, optionally add egress restriction. # TODO, optionally add egress restriction.
# - to: # - to:
# - namespaceSelector: {} # - namespaceSelector: {}
@ -31,3 +31,21 @@
# port: 53 # port: 53
# - protocol: UDP # - protocol: UDP
# port: 53 # port: 53
---
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: default-network-dns-policy
namespace: {{ .Values.namespace | default .Values.name }}
spec:
ingress:
- ports:
- port: 53
protocol: TCP
- port: 53
protocol: UDP
podSelector:
matchLabels:
k8s-app: kube-dns
policyTypes:
- Ingress