apiVersion: cilium.io/v2
kind: CiliumNetworkPolicy
metadata:
  name: allow-external-services
  namespace: atlantis
spec:
  egress:
  - toFQDNs:
    - matchName: api.github.com
    - matchName: dapr.github.io
    - matchName: gitlab.com
    - matchPattern: '*.gitlab.com'
    - matchPattern: "*.k1.itpartner.no"
    - matchName: analytics.loft.rocks
  endpointSelector:
    matchLabels: {}
---
apiVersion: cilium.io/v2
kind: CiliumNetworkPolicy
metadata:
  name: allow-atlantis-services
  namespace: atlantis
spec:
  egress:
  - toEndpoints:
    - matchLabels:
        k8s:io.kubernetes.pod.namespace: dapr-system
  - toEndpoints:
    - matchLabels:
        k8s:io.kubernetes.pod.namespace: redis
  - toEndpoints:
    - matchLabels:
        k8s:io.kubernetes.pod.namespace: rabbitmq
  - toEndpoints:
    - matchLabels:
        k8s:io.kubernetes.pod.namespace: jaeger
  endpointSelector:
    matchLabels: {}