From 184bf72d365503692f1c3996ddde1584997c1c93 Mon Sep 17 00:00:00 2001
From: kaizhang-shanxi <kaizhang.shanxi@gmail.com>
Date: Mon, 16 Jul 2018 16:19:06 +0800
Subject: [PATCH] add registry profile

---
 .../roles/calico/files/calico/profile.yml     | 40 ++++++++++++++++++-
 1 file changed, 39 insertions(+), 1 deletion(-)

diff --git a/playbooks/roles/calico/files/calico/profile.yml b/playbooks/roles/calico/files/calico/profile.yml
index ddf43f8..fffb8e6 100644
--- a/playbooks/roles/calico/files/calico/profile.yml
+++ b/playbooks/roles/calico/files/calico/profile.yml
@@ -170,4 +170,42 @@
     - action: allow
       destination: {}
       source:
-        tag: webrouter
\ No newline at end of file
+        tag: webrouter
+- apiVersion: v1
+  kind: profile
+  metadata:
+    name: registry
+    tags:
+    - registry
+  spec:
+    egress:
+    - action: allow
+      destination: {}
+      source: {}
+    ingress:
+    - action: allow
+      destination: {}
+      source:
+        tag: lain
+    - action: allow
+      destination: {}
+      source:
+        tag: registry
+    - action: allow
+      destination:
+        ports:
+        - 5000
+      protocol: tcp
+      source: {}
+    - action: allow
+      destination:
+        ports:
+        - 80
+      protocol: tcp
+      source: {}
+    - action: allow
+      destination:
+        ports:
+        - 443
+      protocol: tcp
+      source: {}