fix: add rabbitmq network policies

values/rabbitmq/manifests/CiliumNetworkPolicy-allow-inter-node-traffic.yaml

@@ -0,0 +1,52 @@
+apiVersion: cilium.io/v2
+kind: CiliumNetworkPolicy
+metadata:
+  name: allow-inter-node-traffic
+  namespace: rabbitmq
+spec:
+  description: Allow communication between nodes int the RabbitMQ cluster
+  egress:
+    - toEndpoints:
+        - matchLabels:
+            app.kubernetes.io/component: rabbitmq
+      toPorts:
+        - ports:
+            - port: "4369"
+            - endPort: 6500
+              port: "6000"
+            - port: "25672"
+            - port: "35672"
+            - port: "35673"
+            - port: "35674"
+            - port: "35675"
+            - port: "35676"
+            - port: "35677"
+            - port: "35678"
+            - port: "35679"
+            - port: "35680"
+            - port: "35681"
+            - port: "35682"
+  endpointSelector:
+    matchLabels:
+      app.kubernetes.io/component: rabbitmq
+  ingress:
+    - fromEndpoints:
+        - matchLabels:
+            app.kubernetes.io/component: rabbitmq
+      toPorts:
+        - ports:
+            - port: "4369"
+            - endPort: 6500
+              port: "6000"
+            - port: "25672"
+            - port: "35672"
+            - port: "35673"
+            - port: "35674"
+            - port: "35675"
+            - port: "35676"
+            - port: "35677"
+            - port: "35678"
+            - port: "35679"
+            - port: "35680"
+            - port: "35681"
+            - port: "35682"

values/rabbitmq/manifests/CiliumNetworkPolicy-allow-operator-traffic.yaml

@@ -0,0 +1,18 @@
+apiVersion: cilium.io/v2
+kind: CiliumNetworkPolicy
+metadata:
+  name: allow-operator-traffic
+  namespace: rabbitmq
+spec:
+  description: Allow access to the RabbitMQ operator
+  endpointSelector:
+    matchLabels:
+      app.kubernetes.io/component: rabbitmq
+  ingress:
+    - fromEndpoints:
+        - matchLabels:
+            app.kubernetes.io/component: rabbitmq-operator
+      toPorts:
+        - ports:
+            - port: "15672"
+            - port: "15671"

values/rabbitmq/manifests/CiliumNetworkPolicy-allow-rabbitmq-traffic.yaml

@@ -0,0 +1,27 @@
+apiVersion: cilium.io/v2
+kind: CiliumNetworkPolicy
+metadata:
+  name: allow-rabbitmq-traffic
+  namespace: rabbitmq
+spec:
+  description: Allow access to the RabbitMQ cluster
+  endpointSelector:
+    matchLabels:
+      app.kubernetes.io/component: rabbitmq
+  ingress:
+    - toPorts:
+        - ports:
+            - port: "5672"
+            - port: "5671"
+            - port: "5552"
+            - port: "5551"
+            - port: "15672"
+            - port: "15671"
+            - port: "61613"
+            - port: "61614"
+            - port: "1883"
+            - port: "8883"
+            - port: "15674"
+            - port: "15675"
+            - port: "15692"
+            - port: "15691"