UNCLASSIFIED - NO CUI

Skip to content
Snippets Groups Projects

Adding egress from minio tenants to API

Merged Adding egress from minio tenants to API
new-minio-things into main
All threads resolved!
Merged Ryan Garcia requested to merge new-minio-things into main
All threads resolved!
Compare
and
5 files
+ 29
2
Compare changes
  • Side-by-side
  • Inline
Files
5
chart/templates/bigbang/networkpolicies/egress-minio-tenant.yaml 0 → 100644
+ 22
0
{{- if and .Values.networkPolicies.enabled .Values.minio.install }}
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: allow-minio-api-egress
namespace: {{ .Release.Namespace }}
spec:
podSelector:
matchLabels:
app: minio
policyTypes:
- Egress
egress:
- to:
- ipBlock:
cidr: {{ .Values.networkPolicies.controlPlaneCidr }}
{{- if eq .Values.networkPolicies.controlPlaneCidr "0.0.0.0/0" }}
# ONLY Block requests to cloud metadata IP
except:
- 169.254.169.254/32
{{- end }}
{{- end }}

UNCLASSIFIED - NO CUI