From 35325a1ba27c8fc46e60179784a2cd77b753da17 Mon Sep 17 00:00:00 2001 From: Drew Newberry Date: Thu, 12 Mar 2026 19:42:58 -0700 Subject: [PATCH] fix: restore cluster_pods network policy for nemoclaw and openclaw The cluster_pods allowed_ips policy was accidentally removed in #24. This policy allows sandbox binaries to reach services on the k3s cluster pod network (10.42.0.0/16), which is required for internal service communication. --- sandboxes/nemoclaw/policy.yaml | 13 +++++++++++++ sandboxes/openclaw/policy.yaml | 13 ++++++++++++- 2 files changed, 25 insertions(+), 1 deletion(-) diff --git a/sandboxes/nemoclaw/policy.yaml b/sandboxes/nemoclaw/policy.yaml index 3a1422e..d7ec59b 100644 --- a/sandboxes/nemoclaw/policy.yaml +++ b/sandboxes/nemoclaw/policy.yaml @@ -127,3 +127,16 @@ network_policies: - { path: /usr/local/bin/claude } - { path: /usr/bin/gh } + # --- Private network access (allowed_ips) --- + # Allows any binary to reach services on the k3s cluster pod network + # (10.42.0.0/16). Without allowed_ips, the proxy's SSRF check blocks + # all connections to private RFC 1918 addresses. + cluster_pods: + name: cluster-pods + endpoints: + - port: 8080 + allowed_ips: + - "10.42.0.0/16" + binaries: + - { path: "/**" } + diff --git a/sandboxes/openclaw/policy.yaml b/sandboxes/openclaw/policy.yaml index 9e2ef78..fc0e225 100644 --- a/sandboxes/openclaw/policy.yaml +++ b/sandboxes/openclaw/policy.yaml @@ -126,7 +126,18 @@ network_policies: - { path: /usr/local/bin/claude } - { path: /usr/bin/gh } - + # --- Private network access (allowed_ips) --- + # Allows any binary to reach services on the k3s cluster pod network + # (10.42.0.0/16). Without allowed_ips, the proxy's SSRF check blocks + # all connections to private RFC 1918 addresses. + cluster_pods: + name: cluster-pods + endpoints: + - port: 8080 + allowed_ips: + - "10.42.0.0/16" + binaries: + - { path: "/**" } inference: allowed_routes: