From bfcdc0f8d30e199281ec9bdf0d115dbccd3a76dc Mon Sep 17 00:00:00 2001
From: Joshua Carnes <joshua.t.carnes@lmco.com>
Date: Wed, 26 May 2021 14:25:36 +0000
Subject: [PATCH] Add allow comms port from inside cluster

---
 chart/Chart.yaml                                 |  2 +-
 .../templates/network-policy/ingress-all-ns.yml  | 16 ++++++++++++++++
 2 files changed, 17 insertions(+), 1 deletion(-)
 create mode 100644 chart/templates/network-policy/ingress-all-ns.yml

diff --git a/chart/Chart.yaml b/chart/Chart.yaml
index df56b60..143e0cb 100644
--- a/chart/Chart.yaml
+++ b/chart/Chart.yaml
@@ -1,4 +1,4 @@
 apiVersion: v2
 name: twistlock
-version: 0.0.4-bb.1
+version: 0.0.4-bb.2
 appVersion: 21.04.412
diff --git a/chart/templates/network-policy/ingress-all-ns.yml b/chart/templates/network-policy/ingress-all-ns.yml
new file mode 100644
index 0000000..49f8bba
--- /dev/null
+++ b/chart/templates/network-policy/ingress-all-ns.yml
@@ -0,0 +1,16 @@
+{{- if .Values.networkPolicies.enabled }}
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: ingress-allow-cluster
+  namespace: "{{ .Release.Namespace }}"
+spec:
+  ingress:
+    - from:
+        - namespaceSelector: {} # all namespaces for now
+      ports:
+        - port: 8084 # communications port
+  podSelector: {} # all pods
+  policyTypes:
+    - Ingress
+{{- end }}
-- 
GitLab