Below you can find a screenshot of the network setup, however it is important to note that not all firewall settings are visible there. I was trying to configure everything so that it is managed as infrastructure as code, but the Terraform providers were lacking. Slowly migrating security away to Kubernetes may be the way.
Diagram (Canvas not visible on site)
Transclude of Network-Diagram.canvas