mirror of
https://github.com/JamesTurland/JimsGarage.git
synced 2024-11-25 01:10:22 +00:00
24 lines
480 B
YAML
24 lines
480 B
YAML
|
kind: NetworkPolicy
|
||
|
|
apiVersion: networking.k8s.io/v1
|
||
|
|
metadata:
|
||
|
|
name: allow-internet-only
|
||
|
|
namespace: pihole
|
||
|
|
spec:
|
||
|
|
podSelector: {}
|
||
|
|
policyTypes:
|
||
|
|
- Egress
|
||
|
|
egress:
|
||
|
|
- to:
|
||
|
|
- ipBlock:
|
||
|
|
cidr: 0.0.0.0/0
|
||
|
|
except:
|
||
|
|
- 10.0.0.0/8
|
||
|
|
- 192.168.0.0/16
|
||
|
|
- 172.16.0.0/20
|
||
|
|
- to:
|
||
|
|
- namespaceSelector:
|
||
|
|
matchLabels:
|
||
|
|
kubernetes.io/metadata.name: "kube-system"
|
||
|
|
- podSelector:
|
||
|
|
matchLabels:
|
||
|
|
k8s-app: "kube-dns"
|