apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
  name: egress-pginstances2k8s
# netpol needed due to https://issues.arxes-tolina.de/browse/DEV-745
# allow connection against k8s-api server
spec:
  egress:
  - ports:
    - port: 443
      protocol: TCP
    - port: 6443
      protocol: TCP
    to:
    - ipBlock:
        cidr: 10.3.0.2/32
    - ipBlock:
        cidr: 10.3.0.5/32
    - ipBlock:
        cidr: 10.3.0.6/32
  podSelector:
    matchLabels:
      cluster-name: postgres-cluster
  policyTypes:
  - Egress