public/policy-generator
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
eba04ec132
policy-generator/example/config.yaml
Erik Brakkee eba04ec132 Ports specified at communications now override the default ports of 
the application.

Also added some comments to the generated output.
2025-01-02 22:49:47 +01:00

65 lines
1.1 KiB
YAML
Raw Blame History

networks:
- name: internet
cidr: 0.0.0.0/0
except:
- 10.0.0.0/8
- 172.16.0.0/12
- 192.168.0.0/16
ports:
- port: 2303
namespaces:
- name: wamblee-org
#open: true
capabilities:
- linkerd
applications:
- name: nexus-server
# ports when specified at the application level are used when
# not explicitly mentioned when a link is made
ports:
- port: 8081
- port: 8082
protocol: UDP
matchLabels:
app: nexus-server
- name: exposure
open: false
applications:
- name: httpd-wamblee-org
matchLabels:
app: wamblee-org
ports:
- port: 1000
- port: 1001
protocol: UDP
communications:
- from: # can we support both string and list of strings?
- httpd-wamblee-org
#- internet
#- apiserver
to:
- nexus-server
- internet
ports:
- port: 53
protocol: UDP
# # or limiting ports further
# - from:
# - httpd-wamblee-org
# to:
# - nexus-server
# ports:
# - 8081
# - 8082
Reference in New Issue View Git Blame Copy Permalink