Spaces:
Paused
Paused
File size: 909 Bytes
e202f7f |
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 |
{{- if $.Values.networkPolicy.enabled }}
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: {{ include "name" . }}
namespace: {{ .Release.Namespace }}
spec:
egress:
- ports:
- port: 53
protocol: UDP
to:
- namespaceSelector:
matchLabels:
kubernetes.io/metadata.name: kube-system
podSelector:
matchLabels:
k8s-app: kube-dns
- to:
{{- range $ip := .Values.networkPolicy.allowedBlocks }}
- ipBlock:
cidr: {{ $ip | quote }}
{{- end }}
- to:
- ipBlock:
cidr: 0.0.0.0/0
except:
- 10.0.0.0/8
- 172.16.0.0/12
- 192.168.0.0/16
- 169.254.169.254/32
podSelector:
matchLabels: {{ include "labels.standard" . | nindent 6 }}
policyTypes:
- Egress
{{- end }}
|