Skip to content

Commit efa4b1b

Browse files
author
angelnu
committed
more network-policies
1 parent 292c34d commit efa4b1b

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

47 files changed

+281
-580
lines changed

apps/default/forecastle/kustomization.yaml

Lines changed: 0 additions & 4 deletions
This file was deleted.

apps/default/forecastle/release.yaml

Lines changed: 0 additions & 37 deletions
This file was deleted.

apps/default/gitea/kustomization.yaml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,7 @@
11
apiVersion: kustomize.config.k8s.io/v1beta1
22
kind: Kustomization
33
resources:
4+
- networkpolicy.yaml
45
- nfs.yaml
56
- secret.yaml
67
- release-db.yaml

apps/default/gitea/networkpolicy.yaml

Lines changed: 19 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,19 @@
1+
kind: NetworkPolicy
2+
apiVersion: networking.k8s.io/v1
3+
metadata:
4+
name: gitea
5+
spec:
6+
podSelector:
7+
matchLabels:
8+
app.kubernetes.io/name: gitea
9+
ingress:
10+
- from:
11+
# Allow ssh ingress
12+
- ipBlock:
13+
cidr: "0.0.0.0/0"
14+
ports:
15+
- protocol: TCP
16+
port: 2222
17+
endPort: 2222
18+
policyTypes:
19+
- Ingress

apps/default/gonic/kustomization.yaml

Lines changed: 0 additions & 5 deletions
This file was deleted.

apps/default/gonic/release-fs.yaml

Lines changed: 0 additions & 43 deletions
This file was deleted.

apps/default/gonic/release.yaml

Lines changed: 0 additions & 65 deletions
This file was deleted.

apps/default/home-assistant/kustomization.yaml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,7 @@
11
apiVersion: kustomize.config.k8s.io/v1beta1
22
kind: Kustomization
33
resources:
4+
- networkpolicy.yaml
45
- secret.yaml
56
- secret-appdaemon.yaml
67
- release-db.yaml

apps/default/home-assistant/networkpolicy.yaml

Lines changed: 28 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,28 @@
1+
kind: NetworkPolicy
2+
apiVersion: networking.k8s.io/v1
3+
metadata:
4+
name: home-assistant
5+
spec:
6+
podSelector:
7+
matchLabels:
8+
app.kubernetes.io/name: home-assistant
9+
ingress:
10+
- from:
11+
# Allow homematic ingress from K8S
12+
- ipBlock:
13+
cidr: "10.0.0.0/8"
14+
# Allow homematic ingress from lan
15+
- ipBlock:
16+
cidr: "192.0.0.0/8"
17+
ports:
18+
- protocol: TCP
19+
port: 2001
20+
endPort: 2001
21+
egress:
22+
- to:
23+
# Allow egress to Internet
24+
- ipBlock:
25+
cidr: "0.0.0.0/0"
26+
policyTypes:
27+
- Ingress
28+
- Egress

apps/default/kustomization.yaml

Lines changed: 0 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -6,9 +6,7 @@ resources:
66
- comics
77
- deepstack
88
- esphome
9-
# - forecastle
109
- gitea
11-
# - gonic
1210
#- gow
1311
- hajimari
1412
- home-assistant

apps/kube-system/kustomization.yaml

Lines changed: 0 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -3,5 +3,3 @@ kind: Kustomization
33
namespace: kube-system
44
resources:
55
- kured
6-
# - mail
7-
# - mailu

apps/kube-system/mail/kustomization.yaml

Lines changed: 0 additions & 6 deletions
This file was deleted.

apps/kube-system/mail/release.yaml

Lines changed: 0 additions & 42 deletions
This file was deleted.

apps/kube-system/mail/secret.yaml

Lines changed: 0 additions & 38 deletions
This file was deleted.

apps/kube-system/mailu/kustomization.yaml

Lines changed: 0 additions & 7 deletions
This file was deleted.

apps/kube-system/mailu/release-fs.yaml

Lines changed: 0 additions & 43 deletions
This file was deleted.

0 commit comments

Comments
 (0)