1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
|
apiVersion: apps/v1
kind: Deployment
metadata:
name: {{ include "firewall.fullname" . }}
labels:
release: {{ .Release.Name }}
app: {{ include "firewall.name" . }}
chart: {{ .Chart.Name }}
spec:
replicas: {{ .Values.replicaCount }}
selector:
matchLabels:
app: {{ include "firewall.name" . }}
release: {{ .Release.Name }}
template:
metadata:
labels:
app: {{ include "firewall.name" . }}
release: {{ .Release.Name }}
annotations:
VirtletLibvirtCPUSetting: |
mode: host-model
VirtletCloudInitUserData: |
ssh_pwauth: True
users:
- name: admin
gecos: User
primary-group: admin
groups: users
sudo: ALL=(ALL) NOPASSWD:ALL
lock_passwd: false
passwd: "$6$rounds=4096$QA5OCKHTE41$jRACivoPMJcOjLRgxl3t.AMfU7LhCFwOWv2z66CQX.TSxBy50JoYtycJXSPr2JceG.8Tq/82QN9QYt3euYEZW/"
runcmd:
- export demo_artifacts_version={{ .Values.global.demoArtifactsVersion }}
- export vfw_private_ip_0={{ .Values.global.vfwPrivateIp0 }}
- export vsn_private_ip_0={{ .Values.global.vsnPrivateIp0 }}
- export protected_net_cidr={{ .Values.global.protectedNetCidr }}
- export dcae_collector_ip={{ .Values.global.dcaeCollectorIp }}
- export dcae_collector_port={{ .Values.global.dcaeCollectorPort }}
- export protected_net_gw={{ .Values.global.protectedNetGw }}
- export protected_private_net_cidr={{ .Values.global.protectedPrivateNetCidr }}
- wget -O - https://git.onap.org/multicloud/k8s/plain/kud/tests/vFW/firewall | sudo -E bash
VirtletRootVolumeSize: 5Gi
k8s.v1.cni.cncf.io/networks: '[{"name": {{ .Values.global.ovnMultusNetworkName | quote }}, "namespace": "default"}]'
k8s.plugin.opnfv.org/nfn-network: '{ "type": "ovn4nfv", "interface": [
{ "name": {{ .Values.global.unprotectedNetworkName | quote }}, "ipAddress": {{ .Values.global.vfwPrivateIp0 | quote }}, "interface": "eth1" , "defaultGateway": "false"},
{ "name": {{ .Values.global.protectedNetworkName | quote }}, "ipAddress": {{ .Values.global.vfwPrivateIp1 | quote }}, "interface": "eth2", "defaultGateway": "false" },
{ "name": {{ .Values.global.onapPrivateNetworkName | quote }}, "ipAddress": {{ .Values.global.vfwPrivateIp2 | quote }}, "interface": "eth3" , "defaultGateway": "false"}
]}'
kubernetes.io/target-runtime: virtlet.cloud
spec:
affinity:
nodeAffinity:
requiredDuringSchedulingIgnoredDuringExecution:
nodeSelectorTerms:
- matchExpressions:
- key: extraRuntime
operator: In
values:
- virtlet
containers:
- name: {{ .Chart.Name }}
image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
imagePullPolicy: {{ .Values.image.pullPolicy }}
tty: true
stdin: true
resources:
limits:
memory: {{ .Values.resources.memory }}
|
