re-enable cilium network policies

2024-06-17 11:45:06 +10:00
parent 8736b79cc1
commit d13e5346f7
6 changed files with 25 additions and 48 deletions
--- a/kubernetes/infrastructure/cilium/networkpolicies/egress-world-with-lan.yaml
+++ b/kubernetes/infrastructure/cilium/networkpolicies/egress-world-with-lan.yaml
@@ -1,12 +0,0 @@
-apiVersion: cilium.io/v2
-kind: CiliumClusterwideNetworkPolicy
-metadata:
-  name: egress-world-with-lan
-  namespace: cilium
-spec:
-  endpointSelector:
-    matchLabels:
-      rpi5.cluster.policy/egress-world-with-lan: "true"
-  egress:
-    - toCIDRSet:
-        - cidr: 0.0.0.0/0
--- a/kubernetes/infrastructure/cilium/networkpolicies/egress-world.yaml
+++ b/kubernetes/infrastructure/cilium/networkpolicies/egress-world.yaml
@@ -10,7 +10,3 @@ spec:
  egress:
    - toCIDRSet:
        - cidr: 0.0.0.0/0
-          except:
-            - 192.168.1.0/24
-            - 192.168.2.0/24
-            - 100.64.0.0/10