UNCLASSIFIED - NO CUI

add ingress kubeapi definition for gatekeeper and kyverno

Rob Fergusonrequested to merge
ingress-kubeapi-definition into master

General MR

Summary

Adds ingress KubeAPI definition, which is used by Kyverno and Gatekeeper

Relevant logs/screenshots

2026-02-18_12-02-1771440569

Linked Issue

issue

Upgrade Notices

Upgrade Notices

Kyverno and Gatekeeper now are leveraging the Big Bang ingress definition for the KubeAPI CIDRs to limit ingress traffic to CIDRs specified in the definition.

To customize, override these values via Big Bang values (default is listed below):

networkPolicies:
  ingress:
    definitions:
      kubeAPI:
        from:
          - ipBlock:
              cidr: 192.168.0.0/16
          - ipBlock:
              cidr: 172.16.0.0/12
          - ipBlock:
              cidr: 10.0.0.0/8
Edited by Rob Ferguson

Merge request reports

UNCLASSIFIED - NO CUI