diff --git a/helm/peikarband/values.yaml b/helm/peikarband/values.yaml
index 9e6e857..0179655 100644
--- a/helm/peikarband/values.yaml
+++ b/helm/peikarband/values.yaml
@@ -8,6 +8,17 @@ image:
   pullPolicy: IfNotPresent
   tag: "latest"
 
+# Build-time configuration (used during docker build)
+# Note: This is for documentation. Actual build uses Makefile NPM_REGISTRY variable
+# To override npm registry during build:
+#   make docker-build NPM_REGISTRY=https://your-npm-registry.com/
+build:
+  npmRegistry: "https://registry.npmjs.org/"  # Default npm registry URL
+  # Optional: Set if behind proxy (not needed for servers outside Iran)
+  # httpProxy: ""
+  # httpsProxy: ""
+  # noProxy: ""
+
 imagePullSecrets: []
 
 # Registry secret auto-creation (for private registry)
@@ -209,6 +220,12 @@ networkPolicy:
       - protocol: TCP
         port: 3000
   egress:
+    # Allow DNS resolution (required for all external connections)
+    - to: []
+      ports:
+      - protocol: UDP
+        port: 53    # DNS
+    # Allow internal cluster traffic (PostgreSQL, Redis, etc.)
     - to:
       - namespaceSelector: {}
       ports:
@@ -216,12 +233,14 @@ networkPolicy:
         port: 5432  # PostgreSQL
       - protocol: TCP
         port: 6379  # Redis
+    # Allow external internet access (npm registry, APIs, etc.)
+    # Empty 'to' selector means all destinations (including external)
+    - to: []
+      ports:
       - protocol: TCP
-        port: 443   # HTTPS
+        port: 443   # HTTPS (npm registry, APIs, etc.)
       - protocol: TCP
         port: 80    # HTTP
-      - protocol: UDP
-        port: 53    # DNS
 
 monitoring:
   serviceMonitor: