diff --git a/infra/helm/stonks-oracle/templates/network-policies.yaml b/infra/helm/stonks-oracle/templates/network-policies.yaml
index 7a4d6f8..1cb98fb 100644
--- a/infra/helm/stonks-oracle/templates/network-policies.yaml
+++ b/infra/helm/stonks-oracle/templates/network-policies.yaml
@@ -25,6 +25,9 @@ spec:
         - namespaceSelector:
             matchLabels:
               kubernetes.io/metadata.name: kube-system
+        - podSelector:
+            matchLabels:
+              app: dashboard
       ports:
         - protocol: TCP
           port: 8000
@@ -143,6 +146,26 @@ spec:
 ---
 apiVersion: networking.k8s.io/v1
 kind: NetworkPolicy
+metadata:
+  name: allow-dashboard-ingress
+  namespace: {{ .Release.Namespace }}
+spec:
+  podSelector:
+    matchLabels:
+      app: dashboard
+  policyTypes:
+    - Ingress
+  ingress:
+    - from:
+        - namespaceSelector:
+            matchLabels:
+              kubernetes.io/metadata.name: kube-system
+      ports:
+        - protocol: TCP
+          port: 8080
+---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
 metadata:
   name: deny-broker-adapter-ingress
   namespace: {{ .Release.Namespace }}