| 1234567891011121314151617181920212223242526272829303132 |
- {{- if and .Values.networkPolicy.enabled (or .Values.networkPolicy.egressRules.denyConnectionsToExternal .Values.networkPolicy.egressRules.customRules) }}
- apiVersion: {{ include "common.capabilities.networkPolicy.apiVersion" . }}
- kind: NetworkPolicy
- metadata:
- name: {{ printf "%s-egress" (include "common.names.fullname" .) }}
- namespace: {{ .Release.Namespace }}
- labels: {{- include "common.labels.standard" . | nindent 4 }}
- {{- if .Values.commonLabels }}
- {{- include "common.tplvalues.render" ( dict "value" .Values.commonLabels "context" $ ) | nindent 4 }}
- {{- end }}
- {{- if .Values.commonAnnotations }}
- annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
- {{- end }}
- spec:
- podSelector:
- matchLabels: {{- include "common.labels.matchLabels" . | nindent 6 }}
- policyTypes:
- - Egress
- egress:
- {{- if .Values.networkPolicy.egressRules.denyConnectionsToExternal }}
- - ports:
- - port: 53
- protocol: UDP
- - port: 53
- protocol: TCP
- - to:
- - namespaceSelector: {}
- {{- end }}
- {{- if .Values.networkPolicy.egressRules.customRules }}
- {{- include "common.tplvalues.render" (dict "value" .Values.networkPolicy.egressRules.customRules "context" $) | nindent 4 }}
- {{- end }}
- {{- end }}
|
