---
apiVersion: v1
kind: Namespace
metadata:
  name: avroid-prod
  labels:
    name: avroid-prod
    app.kubernetes.io/managed-by: argocd
  annotations:
    argocd.argoproj.io/sync-wave: "-1"
    scheduler.alpha.kubernetes.io/node-selector: node-role.kubernetes.io/worker=
---
apiVersion: v1
kind: ResourceQuota
metadata:
  name: avroid-prod
  namespace: avroid-prod
  labels:
    app.kubernetes.io/managed-by: argocd
spec:
  hard:
    requests.cpu: "4"
    requests.memory: "16Gi"
    requests.storage: "100Gi"
    limits.cpu: "22"
    limits.memory: 32Gi
    configmaps: "200"
    resourcequotas: "1"
    secrets: "200"
    services: "200"
    pods: "100"
    persistentvolumeclaims: "40"
---
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
  name: avroid-prod-common
  namespace: avroid-prod
  labels:
    app.kubernetes.io/managed-by: argocd
spec:
  podSelector: {}
  policyTypes:
    - Ingress
    - Egress
  ingress: []
  egress:
    - to:
        - ipBlock:
            # office-balancer.avroid.tech
            cidr: 10.2.16.2/32
      ports:
        - port: 443
          protocol: TCP
    - ports:
        - port: 53
          protocol: TCP
        - port: 53
          protocol: UDP