mirror of
https://github.com/gwg313/homelab-gitops.git
synced 2026-06-05 20:50:58 +00:00
37 lines
922 B
YAML
37 lines
922 B
YAML
apiVersion: "cilium.io/v2"
|
|
kind: CiliumNetworkPolicy
|
|
metadata:
|
|
name: harbor-intra-namespace-allow
|
|
namespace: harbor
|
|
spec:
|
|
description: "Allow all internal Harbor microservices to talk to each other cleanly"
|
|
endpointSelector:
|
|
matchLabels:
|
|
app: harbor
|
|
ingress:
|
|
- fromEndpoints:
|
|
- matchLabels:
|
|
io.kubernetes.pod.namespace: harbor
|
|
egress:
|
|
- toEndpoints:
|
|
- matchLabels:
|
|
io.kubernetes.pod.namespace: harbor
|
|
---
|
|
apiVersion: cilium.io/v2
|
|
kind: CiliumNetworkPolicy
|
|
metadata:
|
|
name: allow-ingress
|
|
namespace: harbor
|
|
spec:
|
|
description: "Allow external traffic from the shared Cilium edge proxy into the harbor namespace services"
|
|
endpointSelector:
|
|
matchLabels: {}
|
|
ingress:
|
|
- fromEntities:
|
|
- ingress
|
|
toPorts:
|
|
- ports:
|
|
- port: "80"
|
|
protocol: TCP
|
|
- port: "8080"
|
|
protocol: TCP
|