summaryrefslogtreecommitdiffstats
path: root/kud/demo/composite-firewall/firewall/templates/deployment.yaml
blob: 560f66de7df865e72238244b437c26d427e32bb9 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
apiVersion: kubevirt.io/v1alpha3
kind: VirtualMachine
metadata:
  name: {{ include "firewall.fullname" . }}
  labels:
    release: {{ .Release.Name }}
    app: {{ include "firewall.name" . }}
    chart: {{ .Chart.Name }}
spec:
  running: true
  template:
    metadata:
      labels:
        app: {{ include "firewall.name" . }}
        release: {{ .Release.Name }}
    spec:
      domain:
        cpu:
          model: host-model
        devices:
          disks:
            - name: containerdisk
              disk:
                bus: virtio
            - name: cloudinitdisk
              disk:
                bus: virtio
          interfaces:
          - name: default
            bridge: {}
          - name: unprotected
            macAddress: 52:57:2b:7b:e4:27
            bridge: {}
          - name: protected
            macAddress: fa:d1:3a:a1:5c:67
            bridge: {}
          - name: emco
            macAddress: 86:31:ea:6a:ce:75
            bridge: {}
        resources:
          requests:
            memory: {{ .Values.resources.memory }}
      networks:
      - name: default
        pod: {}
      - name: unprotected
        multus:
          networkName: {{ .Values.global.unprotectedNetworkName }}
      - name: protected
        multus:
          networkName: {{ .Values.global.protectedNetworkName }}
      - name: emco
        multus:
          networkName: {{ .Values.global.emcoPrivateNetworkName }}
      volumes:
        - name: cloudinitdisk
          cloudInitNoCloud:
            networkData: |
              version: 2
              ethernets:
                enp1s0:
                  dhcp4: true
                eth1:
                  match:
                    macaddress: "52:57:2b:7b:e4:27"
                  set-name: eth1
                  dhcp4: true
                eth2:
                  match:
                    macaddress: "fa:d1:3a:a1:5c:67"
                  set-name: eth2
                  dhcp4: true
                eth3:
                  match:
                    macaddress: "86:31:ea:6a:ce:75"
                  set-name: eth3
                  dhcp4: true
            userData: |
              #cloud-config
              ssh_pwauth: True
              users:
              - name: admin
                gecos: User
                primary-group: admin
                groups: users
                sudo: ALL=(ALL) NOPASSWD:ALL
                lock_passwd: false
                passwd: "$6$rounds=4096$QA5OCKHTE41$jRACivoPMJcOjLRgxl3t.AMfU7LhCFwOWv2z66CQX.TSxBy50JoYtycJXSPr2JceG.8Tq/82QN9QYt3euYEZW/"
              runcmd:
                - export demo_artifacts_version={{ .Values.global.demoArtifactsVersion }}
                - export vfw_private_ip_0={{ .Values.global.vfwPrivateIp0 }}
                - export vsn_private_ip_0={{ .Values.global.vsnPrivateIp0 }}
                - export protected_net_cidr={{ .Values.global.protectedNetCidr }}
                - export dcae_collector_ip={{ .Values.global.dcaeCollectorIp }}
                - export dcae_collector_port={{ .Values.global.dcaeCollectorPort }}
                - export protected_net_gw={{ .Values.global.protectedNetGw }}
                - export protected_private_net_cidr={{ .Values.global.protectedPrivateNetCidr }}
                - wget -O - https://git.onap.org/multicloud/k8s/plain/kud/tests/vFW/firewall | sudo -E bash
        - name: containerdisk
          containerDisk:
            image: integratedcloudnative/ubuntu:16.04
            imagePullPolicy: IfNotPresent