Skip to content

Commit 342ad7d

Browse files
committed
Add NetworkPolicy ingress rules for Grafana datasource access
- Allow Grafana to query Tempo on port 3200 - Allow Grafana to scrape OTEL Collector metrics on port 8888 - Fixes datasource connectivity from Grafana UI
1 parent be07872 commit 342ad7d

File tree

1 file changed

+18
-0
lines changed

1 file changed

+18
-0
lines changed

components/02-observability/networkpolicies.yaml

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -50,6 +50,15 @@ spec:
5050
- protocol: TCP
5151
port: 3200 # UI
5252

53+
# Allow from Grafana (same namespace, datasource queries)
54+
- from:
55+
- podSelector:
56+
matchLabels:
57+
app: grafana
58+
ports:
59+
- protocol: TCP
60+
port: 3200 # Query API
61+
5362
egress:
5463
# Allow DNS
5564
- to:
@@ -191,6 +200,15 @@ spec:
191200
- protocol: TCP
192201
port: 8888 # Metrics
193202

203+
# Allow from Grafana (metrics scraping for datasource)
204+
- from:
205+
- podSelector:
206+
matchLabels:
207+
app: grafana
208+
ports:
209+
- protocol: TCP
210+
port: 8888 # Metrics
211+
194212
egress:
195213
# Allow to Tempo (export infrastructure traces)
196214
- to:

0 commit comments

Comments
 (0)