From 90e2d0a20d941f08417ab775d543412585ef0f8c Mon Sep 17 00:00:00 2001
From: Jonas Juselius <jonas.juselius@oceanbox.io>
Date: Wed, 15 May 2024 18:59:48 +0200
Subject: [PATCH] feat: add clusterwide cilium egress to ceph cluster

---
 resources/allow-ceph-egress.yaml | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)
 create mode 100644 resources/allow-ceph-egress.yaml

diff --git a/resources/allow-ceph-egress.yaml b/resources/allow-ceph-egress.yaml
new file mode 100644
index 00000000..51044489
--- /dev/null
+++ b/resources/allow-ceph-egress.yaml
@@ -0,0 +1,17 @@
+apiVersion: cilium.io/v2
+kind: CiliumClusterwideNetworkPolicy
+metadata:
+  name: allow-ceph-egress
+spec:
+  egress:
+  - toCIDR:
+    - 10.255.241.30/32
+    - 10.255.241.31/32
+    - 10.255.241.32/32
+    - 10.255.244.0/24
+    # toPorts:
+    # - ports:
+    #   - port: "4443"
+    #     protocol: TCP
+  endpointSelector: {}
+