networks:
  - name: internet
    cidr: 0.0.0.0/0
    except:
      - 10.0.0.0/8
      - 172.16.0.0/12
      - 192.168.0.0/16
    ports:
      - port: 2303


namespaces:
  - name: wamblee-org
    open: false
    capabilities:
      - linkerd
    applications:
      - name: nexus-server
        # ports when specified at the application level are used when
        # not explicitly mentioned when a link is made
        ports:
          - port: 8081
          - port: 8082
            protocol: UDP
        matchLabels:
          app: nexus-server

  - name: exposure
    applications:
      - name: httpd-wamblee-org
        matchLabels:
          app: wamblee-org
        ports:
         - port: 1000
         - port: 1001
           protocol: UDP

communications:
  - from: # can we support both string and list of strings?
      - httpd-wamblee-org
      - internet
      - apiserver
    to:
      - nexus-server


#  # or limiting ports further
#  - from:
#      - httpd-wamblee-org
#    to:
#      - nexus-server
#    ports:
#      - 8081
#      - 8082