From a93b64ceec6376de7fab79fdd8f3a2e874af9414 Mon Sep 17 00:00:00 2001
From: Laurent Lavaud <laurent.lavaud@mirakl.com>
Date: Wed, 7 Aug 2024 15:23:19 +0200
Subject: [PATCH] [stable/redis-ha]: Allow DNS requests to local network

- In some situations (GKE cluster with [Cloud DNS](https://cloud.google.com/kubernetes-engine/docs/how-to/cloud-dns#architecture)), the DNS server is configured on the local network IP range
  (169.254.0.0/16), so we should allow this CIDR in the default network policy.

Signed-off-by: Laurent Lavaud <laurent.lavaud@mirakl.com>
---
 charts/redis-ha/templates/redis-ha-network-policy.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/charts/redis-ha/templates/redis-ha-network-policy.yaml b/charts/redis-ha/templates/redis-ha-network-policy.yaml
index 176d91bd..5560e3cc 100644
--- a/charts/redis-ha/templates/redis-ha-network-policy.yaml
+++ b/charts/redis-ha/templates/redis-ha-network-policy.yaml
@@ -37,6 +37,8 @@ spec:
           protocol: TCP
     - to:
       - namespaceSelector: {}
+      - ipBlock:
+          cidr: 169.254.0.0/16
       ports:
         - port: 53
           protocol: UDP