-
Notifications
You must be signed in to change notification settings - Fork 6
/
npeditor-cilium.yaml
73 lines (73 loc) · 1.47 KB
/
npeditor-cilium.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
apiVersion: cilium.io/v2
kind: CiliumNetworkPolicy
metadata:
name: mypolicyv1
namespace: starwars
spec:
endpointSelector:
matchLabels:
app: frontend
env: production
ingress:
- fromEndpoints:
- {}
- fromEndpoints:
- matchLabels:
app: frontend
version: "2"
toPorts:
- ports:
- port: "443"
- ports:
- port: "80"
- fromEntities:
- world
toPorts:
- ports:
- port: "443"
- ports:
- port: "80"
egress:
- toEndpoints:
- matchLabels:
io.kubernetes.pod.namespace: kube-system
k8s-app: kube-dns
toPorts:
- ports:
- port: "53"
protocol: UDP
rules:
dns:
- matchPattern: "*"
- toEndpoints:
- {}
- toEndpoints:
- matchLabels:
app: frontend
version: "2"
toPorts:
- ports:
- port: "443"
- ports:
- port: "80"
- toEntities:
- world
toPorts:
- ports:
- port: "443"
- ports:
- port: "80"
- toCIDRSet:
- cidr: 10.99.99.0/24
toPorts:
- ports:
- port: "443"
- ports:
- port: "80"
- toFQDNs:
- matchName: cilium.io
toPorts:
- ports:
- port: "443"
- ports:
- port: "80"