Is your feature request related to a problem? Please describe (👍 if you like this request)

We have network policy manifest examples for Longhorn workloads already, but for the least privilege, it would be better to install them by default; however, they will only take effect after a policy network plugin gets installed and need to consider different installed ingress reverse proxy. It would be good to provide an opt-in policy installation.

For user-facing components like longhorn-ui, there could be a reverse proxy ahead, so should allow users to configure the ingress setting (ex: from, ports) of the installed policy based on their installed provider. (ex: https://github.com/longhorn/longhorn/pull/5378/files)

Describe the solution you'd like

Install network policy manifests by default with customizable ingress setting for user-facing components.

Additional context

cc @longhorn/dev