-
Notifications
You must be signed in to change notification settings - Fork 12
/
Copy pathvalues.yaml
393 lines (369 loc) · 7.79 KB
/
values.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
---
labels:
name: cgw
cluster: cluster01
resources:
# We usually recommend not to specify default resources and to leave this as a conscious
# choice for the user. This also increases chances charts run on environments with little
# resources, such as Minikube. If you do want to specify resources, uncomment the following
# lines, adjust them as necessary, and remove the curly braces after 'resources:'.
initGre:
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
initVti:
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
ipsec:
limits:
cpu: 200m
memory: 256Mi
requests:
cpu: 200m
memory: 128Mi
cgwExporter:
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
pingProber:
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
vrrp:
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
vxlanControllerAgent:
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
vxlanControllerIpSetup:
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
ipSetup:
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
vxlanControllerAgentInit:
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
iptables:
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
debug:
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
initScript:
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
bird:
limits:
cpu: 100m
memory: 128Mi
requests:
cpu: 100m
memory: 128Mi
birdConfigWatcher:
limits:
cpu: 50m
memory: 128Mi
requests:
cpu: 50m
memory: 64Mi
birdExporter:
limits:
cpu: 50m
memory: 128Mi
requests:
cpu: 50m
memory: 64Mi
pcap:
limits:
cpu: 50m
memory: 256Mi
requests:
cpu: 50m
memory: 128Mi
radvd:
limits:
cpu: 50m
memory: 64Mi
requests:
cpu: 50m
memory: 64Mi
initIp:
limits:
cpu: 50m
memory: 128Mi
requests:
cpu: 50m
memory: 64Mi
pingExporter:
limits:
cpu: 100m
memory: 64Mi
requests:
cpu: 50m
memory: 32Mi
rclone:
limits:
cpu: 50m
memory: 256Mi
requests:
cpu: 50m
memory: 64Mi
replicaCount: 1
ipsec:
enabled: false
useEnvConfig: "HIDDEN_PUBIP_HOST"
setRouteDefaultTable: false
remoteip: 192.0.2.0
remotenet: 192.168.23.0/24
localprivip: "%any"
# localpubip: ipsec.openvnf.com
localnet: 192.168.24.0/24
keyexchange: ikev2
ikecipher: aes192gcm16-aes128gcm16-prfsha256-ecp256-ecp521,aes192-sha256-modp3072
espcipher: aes192gcm16-aes128gcm16-ecp256,aes192-sha256-modp3072
psk: secret
forceudp: "yes"
vti_key: 1304
manualConfig: true
certs: {}
service:
enabled: false
name: ipsec
type: ClusterIP
image:
repository: quay.io/openvnf/vnf-ipsec
tag: v1.4.0
pullPolicy: IfNotPresent
## Values used to set up GRE usage
gre:
enabled: false
localip: 192.0.2.1
remoteip: 203.0.113.0
name: gre9
gretap: false
bird:
enabled: false
image:
repository: quay.io/openvnf/vnf-bird
tag: v1.2.0
pullPolicy: IfNotPresent
birdConfigWatcher:
enabled: false
metricsPort: 8000
service:
annotations:
prometheus.io/scrape: "true"
prometheus.io/port: "8000"
image:
repository: quay.io/openvnf/bird-configwatcher
tag: v0.1.1
pullPolicy: IfNotPresent
birdExporter:
enabled: true
service:
annotations:
prometheus.io/scrape: "true"
prometheus.io/port: "9324"
image:
repository: quay.io/openvnf/bird_exporter
tag: 1.2.3_bugfix1
pullPolicy: IfNotPresent
initScript:
enabled: false
env: {}
image:
repository: quay.io/travelping/nettools
tag: v1.10.0
pullPolicy: IfNotPresent
script: |
echo "script configuration is missing"
networkUtility:
image:
repository: quay.io/travelping/nettools
tag: v1.10.0
pullPolicy: IfNotPresent
iptables:
enabled: false
image:
repository: quay.io/travelping/nettools
tag: v1.10.0
pullPolicy: IfNotPresent
ipv4Rules: ""
#*filter
## Block all traffic silently as default policy
#-P INPUT DROP
#-P FORWARD DROP
#-P OUTPUT DROP
## Allows all loopback (lo0) traffic and drop all traffic to 127/8 that doesn't use lo0
#-A INPUT -i lo0 -j ACCEPT
#-A INPUT ! -i lo0 -d 127.0.0.0/8 -j REJECT
#COMMIT
ipv6Rules: ""
#*filter
## Block all traffic silently as default policy
#-P INPUT DROP
#-P FORWARD DROP
#-P OUTPUT DROP
## Allows all loopback (lo0) traffic and drop all traffic to ::1 that doesn't use lo0
#-A INPUT -i lo0 -j ACCEPT
#-A INPUT ! -i lo0 -d ::1 -j REJECT
#COMMIT
debug:
enabled: true
image:
repository: quay.io/travelping/nettools
tag: v1.10.0
pullPolicy: IfNotPresent
pingProber:
enabled: false
image:
repository: quay.io/travelping/nettools
tag: v1.10.0
pullPolicy: IfNotPresent
pingExporter:
enabled: false
image:
repository: quay.io/travelping/ping-exporter
tag: v0.6.0
pullPolicy: IfNotPresent
service:
annotations:
prometheus.io/scrape: "true"
prometheus.io/port: "9427"
config:
web:
listen-address: ":9427"
telemetry-path: "/metrics"
dns:
refresh: 1m
vxlan:
enabled: false
image:
repository: travelping/vxlan-connector
tag: 1.0.0
pullPolicy: IfNotPresent
connectors:
- name: default
peer: 192.0.2.2
bridge: true
bridged_ifaces: dum0815
bridge_name: br0
id: 100
service:
enabled: false
type: ClusterIP
vxlanController:
enabled: false
annotationKey: vxlan.openvnf.org/networks
metadataKey: vxlan.openvnf.org
names: "vxeth0, vxeth1"
image:
repository: quay.io/openvnf/kube-vxlan-controller-agent
tag: v2.1.0
pullPolicy: IfNotPresent
# ip:
# - interface: vxeth1
# addr: "192.0.2.1/24"
# type: ip
# - interface: bridge0
# type: bridge
# bind:
# - gre9
# - vxeth0
ipSetup:
enabled: false
vrrp:
enabled: false
instances: {}
pcap:
enabled: false
image:
repository: quay.io/travelping/pcap
tag: v1.2.1
pullPolicy: IfNotPresent
radvd:
enabled: false
image:
repository: quay.io/openvnf/radvd
tag: v0.1.1
pullPolicy: IfNotPresent
rclone:
enabled: false
# compress using lz4
compression: false
# enable debug output (`set -x`) of rclone script
debug: false
# filename template.
# The value is used as the `FORMAT` string for a `date -d ...` run so the template can contain date format strings.
# Do NOT include the '+' demanded by `date`, we do that for you.
filename: "%Y-%m-%dT%H:%M:%SZ_gtp.pcap"
useSSHkeyFile: false
# Build target path from various components. If all components are enabled, the path is
# RCLONE_REMOTE_NAME/RCLONE_REMOTE_PATH/<.Values.labels.cluster>/<.Values.labels.name>/<date>
pathComponents:
# add cluster to path
cluster:
enabled: true
# add date to path
date:
enabled: true
# date format.
# The value is used as the `FORMAT` string for a `date -d ...`.
# Do NOT include the '+' demanded by `date`, we do that for you.
format: "%Y-%m-%d"
# add name to path
name:
enabled: true
image:
repository: quay.io/travelping/docker-rclone
tag: v1.50.2
pullPolicy: IfNotPresent
env:
RCLONE_REMOTE_NAME: "sftp"
RCLONE_REMOTE_PATH: "data"