Merge pull request #197 from appuio/cilium-netpol

Make mention of the new CiliumNetworkPolicy in the appropriate documentation
appuio · Jun 12, 2024 · 8c568fe · 8c568fe
2 parents 44d23e9 + 670fabf
commit 8c568fe
Showing 1 changed file with 4 additions and 3 deletions.
diff --git a/docs/modules/ROOT/pages/how-to/remove-default-networkpolicies.adoc b/docs/modules/ROOT/pages/how-to/remove-default-networkpolicies.adoc
@@ -1,9 +1,10 @@
 = Remove Default NetworkPolicies
 
-In every namespace 2 `NetworkPolicies` are created and maintained by {product}:
+In every namespace 2 `NetworkPolicies` and one `CiliumNetworkPolicy` are created and maintained by {product}:
 
-. `allow-from-other-namespaces`: This policy allows the Router and other system components to connect to the pods.
-. `allow-from-same-namespace`: This policy allows connections between pods in the same namespace.
+. `networkpolicy/allow-from-other-namespaces`: This policy allows system components such as the monitoring stack to connect to the pods.
+. `networkpolicy/allow-from-same-namespace`: This policy allows connections between pods in the same namespace.
+. `ciliumnetworkpolicy/allow-from-cluster-nodes`: This policy allows the OpenShift ingress router and other system components that run in the host network namespace to connect to the pods.
 
 NOTE: {product} automatically reverts any changes made in these policy objects.