121 lines
2.3 KiB
YAML
121 lines
2.3 KiB
YAML
apiVersion: networking.k8s.io/v1
|
|
kind: NetworkPolicy
|
|
metadata:
|
|
name: argocd-application-controller-network-policy
|
|
namespace: devops
|
|
spec:
|
|
ingress:
|
|
- from:
|
|
- namespaceSelector: {}
|
|
ports:
|
|
- port: 8082
|
|
podSelector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: argocd-application-controller
|
|
policyTypes:
|
|
- Ingress
|
|
|
|
---
|
|
|
|
apiVersion: networking.k8s.io/v1
|
|
kind: NetworkPolicy
|
|
metadata:
|
|
name: argocd-dex-server-network-policy
|
|
namespace: devops
|
|
spec:
|
|
ingress:
|
|
- from:
|
|
- podSelector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: argocd-server
|
|
ports:
|
|
- port: 5556
|
|
protocol: TCP
|
|
- port: 5557
|
|
protocol: TCP
|
|
- from:
|
|
- namespaceSelector: {}
|
|
ports:
|
|
- port: 5558
|
|
protocol: TCP
|
|
podSelector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: argocd-dex-server
|
|
policyTypes:
|
|
- Ingress
|
|
|
|
---
|
|
|
|
apiVersion: networking.k8s.io/v1
|
|
kind: NetworkPolicy
|
|
metadata:
|
|
name: argocd-redis-network-policy
|
|
namespace: devops
|
|
spec:
|
|
ingress:
|
|
- from:
|
|
- podSelector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: argocd-server
|
|
- podSelector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: argocd-repo-server
|
|
- podSelector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: argocd-application-controller
|
|
ports:
|
|
- port: 6379
|
|
protocol: TCP
|
|
podSelector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: argocd-redis
|
|
policyTypes:
|
|
- Ingress
|
|
|
|
---
|
|
|
|
apiVersion: networking.k8s.io/v1
|
|
kind: NetworkPolicy
|
|
metadata:
|
|
name: argocd-repo-server-network-policy
|
|
namespace: devops
|
|
spec:
|
|
ingress:
|
|
- from:
|
|
- podSelector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: argocd-server
|
|
- podSelector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: argocd-application-controller
|
|
- podSelector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: argocd-notifications-controller
|
|
ports:
|
|
- port: 8081
|
|
protocol: TCP
|
|
- from:
|
|
- namespaceSelector: {}
|
|
ports:
|
|
- port: 8084
|
|
podSelector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: argocd-repo-server
|
|
policyTypes:
|
|
- Ingress
|
|
|
|
---
|
|
|
|
apiVersion: networking.k8s.io/v1
|
|
kind: NetworkPolicy
|
|
metadata:
|
|
name: argocd-server-network-policy
|
|
namespace: devops
|
|
spec:
|
|
ingress:
|
|
- {}
|
|
podSelector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: argocd-server
|
|
policyTypes:
|
|
- Ingress |