From d1fc5c10262ec802647e0af3024eb84917c9f08c Mon Sep 17 00:00:00 2001 From: nold Date: Fri, 21 Jun 2024 09:40:53 +0200 Subject: [PATCH] allow(nextcloud): egress to localai --- projects/nextcloud/project.yaml | 1 + resources/networkpolicy.yml | 19 +++++++++++++++++++ 2 files changed, 20 insertions(+) diff --git a/projects/nextcloud/project.yaml b/projects/nextcloud/project.yaml index eb061d03..3f4747eb 100644 --- a/projects/nextcloud/project.yaml +++ b/projects/nextcloud/project.yaml @@ -5,6 +5,7 @@ config: - internet rules: - allow-minio + - allow-localai labels: environment: external diff --git a/resources/networkpolicy.yml b/resources/networkpolicy.yml index f026973d..fe7cb9b0 100644 --- a/resources/networkpolicy.yml +++ b/resources/networkpolicy.yml @@ -141,3 +141,22 @@ networkPolicy: - namespaceSelector: matchLabels: app.heqet.gnu.one/project: argocd + + # Allow access to internet proxy + allow-localai: + podSelector: {} + policyTypes: + - Egress + egress: + - ports: + - port: 80 + protocol: TCP + - port: 8080 + protocol: TCP + to: + - podSelector: + matchLabels: + app.kubernetes.io/name: local-ai + - namespaceSelector: + matchLabels: + app.heqet.gnu.one/project: ai