Last active
August 29, 2015 14:10
-
-
Save hidekazuna/52f9f002d120830cdb31 to your computer and use it in GitHub Desktop.
cf-openstack-nonfs-singlezone-deployment.yml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# /var/vcap/store exists only vms has persistent_disk | |
# default value is /var/vcap/nfs/shared | |
<% | |
static_ip = '10.0.0.211' | |
root_domain = "#{static_ip}.xip.io" | |
deployment_name = 'cf-deployment' | |
cf_release = '192+dev.1' | |
protocol = 'http' | |
%> | |
director_uuid: 16361490-3b06-4677-8da8-5b9afd940558 | |
name: cf-deployment | |
releases: | |
- name: cf | |
version: <%= cf_release %> | |
compilation: | |
cloud_properties: | |
instance_type: m1.small | |
network: cf1 | |
reuse_compilation_vms: true | |
workers: 2 | |
jobs: | |
- name: nats_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
static_ips: | |
- 192.168.1.112 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: nats | |
- name: nats_stream_forwarder | |
- name: metron_agent | |
- name: etcd_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
static_ips: | |
- 192.168.1.118 | |
persistent_disk: 10024 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: etcd | |
- name: etcd_metrics_server | |
- name: metron_agent | |
- name: stats_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: collector | |
- name: metron_agent | |
# - name: nfs_z1 | |
# instances: 1 | |
# networks: | |
# - name: cf1 | |
# static_ips: | |
# - 192.168.1.113 | |
# persistent_disk: 31200 | |
# properties: | |
# metron_agent: | |
# zone: z1 | |
# resource_pool: small_z1 | |
# templates: | |
# - name: debian_nfs_server | |
# release: cf | |
# - name: metron_agent | |
# release: cf | |
- name: postgres_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
static_ips: | |
- 192.168.1.114 | |
persistent_disk: 4096 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: postgres | |
- name: metron_agent | |
- name: uaa_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: uaa | |
- name: metron_agent | |
- name: login_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: login | |
- name: metron_agent | |
- name: api_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
persistent_disk: 10024 | |
properties: | |
metron_agent: | |
zone: z1 | |
# nfs_server: | |
# address: 192.168.1.113 | |
# allow_from_entries: | |
# - 192.168.1.0/24 | |
# share: 192.168.1.0/24 | |
resource_pool: small_z1 | |
templates: | |
- name: cloud_controller_ng | |
- name: metron_agent | |
# - name: nfs_mounter | |
# release: cf | |
- name: clock_global | |
instances: 1 | |
networks: | |
- name: cf1 | |
persistent_disk: 0 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: cloud_controller_clock | |
- name: metron_agent | |
# - name: api_worker_z1 | |
# instances: 1 | |
# networks: | |
# - name: cf1 | |
# persistent_disk: 0 | |
# properties: | |
# metron_agent: | |
# zone: z1 | |
# networks: | |
# apps: cf1 | |
# nfs_server: | |
# address: 192.168.1.113 | |
# allow_from_entries: | |
# - 192.168.1.0/24 | |
# share: 192.168.1.0/24 | |
# resource_pool: small_z1 | |
# templates: | |
# - name: cloud_controller_worker | |
# release: cf | |
# - name: metron_agent | |
# release: cf | |
# - name: nfs_mounter | |
# release: cf | |
- name: hm9000_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: hm9000 | |
- name: metron_agent | |
- name: runner_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
static_ips: null | |
properties: | |
dea_next: | |
zone: z1 | |
metron_agent: | |
zone: z1 | |
resource_pool: runner_z1 | |
templates: | |
- name: dea_next | |
- name: dea_logging_agent | |
- name: metron_agent | |
update: | |
max_in_flight: 1 | |
- name: loggregator_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
properties: | |
doppler: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: doppler | |
- name: loggregator_trafficcontroller_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
properties: | |
metron_agent: | |
zone: z1 | |
traffic_controller: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: loggregator_trafficcontroller | |
- name: metron_agent | |
- name: router_z1 | |
instances: 1 | |
networks: | |
- name: external | |
default: [dns, gateway] | |
static_ips: | |
- 192.168.1.116 | |
- name: floating | |
static_ips: | |
- 10.0.0.211 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: router_z1 | |
templates: | |
- name: gorouter | |
- name: metron_agent | |
#meta: | |
# environment: null | |
# releases: | |
# - name: cf | |
# version: latest | |
# stemcell: | |
# name: bosh-openstack-kvm-ubuntu-trusty-go_agent | |
# version: latest | |
networks: | |
- name: cf1 | |
type: manual | |
subnets: | |
- range: 192.168.1.0/24 | |
gateway: 192.168.1.1 | |
static: | |
- 192.168.1.110 - 192.168.1.150 | |
reserved: | |
- 192.168.1.2 - 192.168.1.109 | |
cloud_properties: | |
net_id: 5643b40e-d810-476c-8d4b-6f6a7be9644a | |
security_groups: | |
- default | |
- bosh | |
- cf-private | |
- ssh | |
- name: external | |
type: manual | |
subnets: | |
- range: 192.168.1.0/24 | |
gateway: 192.168.1.1 | |
static: | |
- 192.168.1.110 - 192.168.1.150 | |
reserved: | |
- 192.168.1.2 - 192.168.1.109 | |
cloud_properties: | |
net_id: 5643b40e-d810-476c-8d4b-6f6a7be9644a | |
security_groups: | |
- default | |
- bosh | |
- cf-public | |
- ssh | |
- name: floating | |
type: vip | |
cloud_properties: {} | |
properties: | |
system_domain: <%= root_domain %> | |
system_domain_organization: 'admin' | |
domain: <%= root_domain %> | |
app_domains: | |
- <%= root_domain %> | |
networks: | |
apps: cf1 | |
cc: | |
allowed_cors_domains: [] | |
app_events: | |
cutoff_age_in_days: 31 | |
app_usage_events: | |
cutoff_age_in_days: 31 | |
audit_events: | |
cutoff_age_in_days: 31 | |
billing_event_writing_enabled: true | |
broker_client_timeout_seconds: 70 | |
buildpacks: | |
buildpack_directory_key: bd_key | |
cdn: null | |
fog_connection: | |
provider: Local | |
local_root: /var/vcap/store/nfs/shared | |
bulk_api_password: password | |
client_max_body_size: 1536M | |
db_encryption_key: the_key | |
db_logging_level: debug2 | |
default_app_disk_in_mb: 1024 | |
default_app_memory: 1024 | |
default_buildpacks: | |
- name: java_buildpack | |
package: buildpack_java | |
- name: ruby_buildpack | |
package: buildpack_ruby | |
- name: nodejs_buildpack | |
package: buildpack_nodejs | |
- name: go_buildpack | |
package: buildpack_go | |
- name: python_buildpack | |
package: buildpack_python | |
- name: php_buildpack | |
package: buildpack_php | |
default_quota_definition: default | |
default_running_security_groups: | |
- public_networks | |
- dns | |
default_staging_security_groups: | |
- public_networks | |
- dns | |
development_mode: false | |
diego: | |
running: disabled | |
staging: disabled | |
diego_docker: false | |
directories: null | |
disable_custom_buildpacks: false | |
droplets: | |
cdn: null | |
droplet_directory_key: the_key | |
fog_connection: | |
provider: Local | |
local_root: /var/vcap/store/nfs/shared | |
external_host: api | |
install_buildpacks: | |
- name: java_buildpack | |
package: buildpack_java | |
- name: ruby_buildpack | |
package: buildpack_ruby | |
- name: nodejs_buildpack | |
package: buildpack_nodejs | |
- name: go_buildpack | |
package: buildpack_go | |
- name: python_buildpack | |
package: buildpack_python | |
- name: php_buildpack | |
package: buildpack_php | |
internal_api_password: password | |
internal_api_user: internal_user | |
jobs: | |
app_bits_packer: | |
timeout_in_seconds: null | |
app_events_cleanup: | |
timeout_in_seconds: null | |
app_usage_events_cleanup: | |
timeout_in_seconds: null | |
blobstore_delete: | |
timeout_in_seconds: null | |
blobstore_upload: | |
timeout_in_seconds: null | |
droplet_deletion: | |
timeout_in_seconds: null | |
droplet_upload: | |
timeout_in_seconds: null | |
generic: | |
number_of_workers: null | |
global: | |
timeout_in_seconds: 14400 | |
model_deletion: | |
timeout_in_seconds: null | |
logging_level: debug2 | |
maximum_app_disk_in_mb: 2048 | |
newrelic: | |
capture_params: false | |
developer_mode: false | |
environment_name: null | |
license_key: null | |
monitor_mode: false | |
transaction_tracer: | |
enabled: true | |
record_sql: obfuscated | |
packages: | |
app_package_directory_key: <%= root_domain %>-cc-packages | |
cdn: null | |
fog_connection: | |
provider: Local | |
local_root: /var/vcap/store/nfs/shared | |
max_package_size: 1073741824 | |
quota_definitions: | |
default: | |
memory_limit: 10240 | |
non_basic_services_allowed: true | |
total_routes: 1000 | |
total_services: 100 | |
resource_pool: | |
cdn: null | |
fog_connection: | |
provider: Local | |
local_root: /var/vcap/store/nfs/shared | |
resource_directory_key: <%= root_domain %>-cc-resources | |
security_group_definitions: | |
- name: public_networks | |
rules: | |
- destination: 0.0.0.0-9.255.255.255 | |
protocol: all | |
- destination: 11.0.0.0-169.253.255.255 | |
protocol: all | |
- destination: 169.255.0.0-172.15.255.255 | |
protocol: all | |
- destination: 172.32.0.0-192.167.255.255 | |
protocol: all | |
- destination: 192.169.0.0-255.255.255.255 | |
protocol: all | |
- name: dns | |
rules: | |
- destination: 0.0.0.0/0 | |
ports: "53" | |
protocol: tcp | |
- destination: 0.0.0.0/0 | |
ports: "53" | |
protocol: udp | |
srv_api_uri: <%= protocol %>://api.<%= root_domain %> | |
stacks: null | |
staging_upload_password: password | |
staging_upload_user: username | |
system_buildpacks: | |
- name: java_buildpack | |
package: buildpack_java | |
- name: ruby_buildpack | |
package: buildpack_ruby | |
- name: nodejs_buildpack | |
package: buildpack_nodejs | |
- name: go_buildpack | |
package: buildpack_go | |
- name: python_buildpack | |
package: buildpack_python | |
- name: php_buildpack | |
package: buildpack_php | |
thresholds: | |
api: | |
alert_if_above_mb: null | |
restart_if_above_mb: null | |
restart_if_consistently_above_mb: null | |
worker: | |
alert_if_above_mb: null | |
restart_if_above_mb: null | |
restart_if_consistently_above_mb: null | |
user_buildpacks: [] | |
ccdb: | |
address: 192.168.1.114 | |
databases: | |
- name: ccdb | |
tag: cc | |
db_scheme: postgres | |
port: 5524 | |
roles: | |
- name: ccadmin | |
password: admin_password | |
tag: admin | |
collector: null | |
databases: | |
address: 192.168.1.114 | |
databases: | |
- citext: true | |
name: ccdb | |
tag: cc | |
- citext: true | |
name: uaadb | |
tag: uaa | |
db_scheme: postgres | |
port: 5524 | |
roles: | |
- name: ccadmin | |
password: admin_password | |
tag: admin | |
- name: uaaadmin | |
password: admin_password | |
tag: admin | |
dea_next: | |
advertise_interval_in_seconds: 5 | |
allow_networks: null | |
default_health_check_timeout: 60 | |
deny_networks: null | |
directory_server_protocol: <%= protocol %> | |
disk_mb: 2048 | |
disk_overcommit_factor: 2 | |
evacuation_bail_out_time_in_seconds: 600 | |
heartbeat_interval_in_seconds: 10 | |
instance_disk_inode_limit: 200000 | |
kernel_network_tuning_enabled: true | |
logging_level: debug | |
memory_mb: 1024 | |
memory_overcommit_factor: 3 | |
staging_disk_inode_limit: 200000 | |
staging_disk_limit_mb: 4096 | |
staging_memory_limit_mb: 1024 | |
mtu: 1454 | |
disk_quota_enabled: true | |
doppler: | |
blacklisted_syslog_ranges: null | |
debug: false | |
maxRetainedLogMessages: 100 | |
doppler_endpoint: | |
shared_secret: loggregator_endpoint_secret | |
dropsonde: | |
enabled: true | |
etcd: | |
machines: | |
- 192.168.1.118 | |
etcd_metrics_server: | |
nats: | |
machines: | |
- 192.168.1.112 | |
password: nats_password | |
username: nats_user | |
hm9000: | |
url: <%= protocol %>://hm9000.<%= root_domain %> | |
logger_endpoint: | |
use_ssl: <%= protocol == 'https' %> | |
port: 80 | |
loggregator: | |
blacklisted_syslog_ranges: [] | |
debug: false | |
maxRetainedLogMessages: 100 | |
loggregator_endpoint: | |
shared_secret: loggregator_endpoint_secret | |
login: | |
analytics: | |
code: null | |
domain: null | |
asset_base_url: null | |
brand: oss | |
catalina_opts: -Xmx768m -XX:MaxPermSize=256m | |
enabled: true | |
invitations_enabled: null | |
links: | |
home: <%= protocol %>://console.<%= root_domain %> | |
network: null | |
passwd: <%= protocol %>://console.<%= root_domain %>/password_resets/new | |
signup: <%= protocol %>://console.<%= root_domain %>/register | |
signup-network: null | |
messages: null | |
notifications: | |
url: null | |
protocol: <%= protocol %> | |
saml: null | |
signups_enabled: null | |
smtp: | |
host: null | |
password: null | |
port: null | |
user: null | |
spring_profiles: null | |
tiles: null | |
uaa_base: null | |
uaa_certificate: null | |
url: null | |
metron_endpoint: | |
shared_secret: loggregator_endpoint_secret | |
nats: | |
address: 192.168.1.112 | |
debug: false | |
machines: | |
- 192.168.1.112 | |
monitor_port: 0 | |
password: nats_password | |
port: 4222 | |
prof_port: 0 | |
trace: false | |
user: nats_user | |
# nfs_server: | |
# address: 192.168.1.113 | |
# allow_from_entries: | |
# - 192.168.1.0/24 | |
# share: null | |
request_timeout_in_seconds: 900 | |
router: | |
requested_route_registration_interval_in_seconds: 20 | |
status: | |
port: 8080 | |
password: router_password | |
user: router_user | |
ssl: | |
skip_cert_verify: true | |
syslog_daemon_config: null | |
uaa: | |
url: <%= protocol %>://uaa.<%= root_domain %> | |
no_ssl: <%= protocol == 'http' %> | |
admin: | |
client_secret: admin_secret | |
authentication: | |
policy: | |
countFailuresWithinSeconds: null | |
lockoutAfterFailures: null | |
lockoutPeriodSeconds: null | |
batch: | |
password: batch_password | |
username: batch_username | |
catalina_opts: -Xmx768m -XX:MaxPermSize=256m | |
cc: | |
client_secret: cc_client_secret | |
clients: | |
# app-direct: | |
# access-token-validity: 1209600 | |
# authorities: app_direct_invoice.write | |
# authorized-grant-types: authorization_code,client_credentials,password,refresh_token,implicit | |
# override: true | |
# redirect-uri: https://console.<%= root_domain %> | |
# refresh-token-validity: 1209600 | |
# secret: app-direct_secret | |
developer_console: | |
access-token-validity: 1209600 | |
authorities: scim.write,scim.read,cloud_controller.read,cloud_controller.write,password.write,uaa.admin,uaa.resource,cloud_controller.admin,billing.admin | |
authorized-grant-types: authorization_code,client_credentials | |
override: true | |
redirect-uri: <%= protocol %>://console.<%= root_domain %>/oauth/callback | |
refresh-token-validity: 1209600 | |
scope: openid,cloud_controller.read,cloud_controller.write,password.write,console.admin,console.support | |
secret: developer_console_secret | |
doppler: | |
authorities: uaa.resource | |
override: true | |
secret: doppler_secret | |
login: | |
authorities: oauth.login,notifications.write,critical_notifications.write,emails.write | |
authorized-grant-types: authorization_code,client_credentials,refresh_token | |
override: true | |
redirect-uri: <%= protocol %>://login.<%= root_domain %> | |
scope: openid,oauth.approvals | |
secret: login_client_secret | |
notifications: | |
authorities: cloud_controller.admin,scim.read | |
authorized-grant-types: client_credentials | |
secret: notification_secret | |
servicesmgmt: | |
authorities: uaa.resource,oauth.service,clients.read,clients.write,clients.secret | |
authorized-grant-types: authorization_code,client_credentials,password,implicit | |
autoapprove: true | |
override: true | |
redirect-uri: <%= protocol %>://servicesmgmt.<%= root_domain %>/auth/cloudfoundry/callback | |
scope: openid,cloud_controller.read,cloud_controller.write | |
secret: service_mgmt_secret | |
space-mail: | |
access-token-validity: 1209600 | |
authorities: scim.read,scim.write,cloud_controller.admin | |
authorized-grant-types: client_credentials | |
override: true | |
refresh-token-validity: 1209600 | |
secret: space-mail_secret | |
support-services: | |
access-token-validity: 1209600 | |
authorities: portal.users.read | |
authorized-grant-types: authorization_code,client_credentials | |
redirect-uri: <%= protocol %>://support-signon.<%= root_domain %> | |
refresh-token-validity: 1209600 | |
scope: scim.write,scim.read,openid,cloud_controller.read,cloud_controller.write | |
secret: support-services_secret | |
jwt: | |
signing_key: | | |
-----BEGIN RSA PRIVATE KEY----- | |
MIICXAIBAAKBgQDHFr+KICms+tuT1OXJwhCUmR2dKVy7psa8xzElSyzqx7oJyfJ1 | |
JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMXqHxf+ZH9BL1gk9Y6kCnbM5R6 | |
0gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBugspULZVNRxq7veq/fzwIDAQAB | |
AoGBAJ8dRTQFhIllbHx4GLbpTQsWXJ6w4hZvskJKCLM/o8R4n+0W45pQ1xEiYKdA | |
Z/DRcnjltylRImBD8XuLL8iYOQSZXNMb1h3g5/UGbUXLmCgQLOUUlnYt34QOQm+0 | |
KvUqfMSFBbKMsYBAoQmNdTHBaz3dZa8ON9hh/f5TT8u0OWNRAkEA5opzsIXv+52J | |
duc1VGyX3SwlxiE2dStW8wZqGiuLH142n6MKnkLU4ctNLiclw6BZePXFZYIK+AkE | |
xQ+k16je5QJBAN0TIKMPWIbbHVr5rkdUqOyezlFFWYOwnMmw/BKa1d3zp54VP/P8 | |
+5aQ2d4sMoKEOfdWH7UqMe3FszfYFvSu5KMCQFMYeFaaEEP7Jn8rGzfQ5HQd44ek | |
lQJqmq6CE2BXbY/i34FuvPcKU70HEEygY6Y9d8J3o6zQ0K9SYNu+pcXt4lkCQA3h | |
jJQQe5uEGJTExqed7jllQ0khFJzLMx0K6tj0NeeIzAaGCQz13oo2sCdeGRHO4aDh | |
HH6Qlq/6UOV5wP8+GAcCQFgRCcB+hrje8hfEEefHcFpyKH+5g1Eu1k0mLrxK2zd+ | |
4SlotYRHgPCEubokb2S1zfZDWIXW3HmggnGgM949TlY= | |
-----END RSA PRIVATE KEY----- | |
verification_key: | | |
-----BEGIN PUBLIC KEY----- | |
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHFr+KICms+tuT1OXJwhCUmR2d | |
KVy7psa8xzElSyzqx7oJyfJ1JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMX | |
qHxf+ZH9BL1gk9Y6kCnbM5R60gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBug | |
spULZVNRxq7veq/fzwIDAQAB | |
-----END PUBLIC KEY----- | |
scim: | |
users: | |
- admin|fakepassword|scim.write,scim.read,openid,cloud_controller.admin,doppler.firehose | |
uaadb: | |
address: 192.168.1.114 | |
databases: | |
- name: uaadb | |
tag: uaa | |
db_scheme: postgresql | |
port: 5524 | |
roles: | |
- name: uaaadmin | |
password: admin_password | |
tag: admin | |
resource_pools: | |
- name: small_z1 | |
network: cf1 | |
size: 11 | |
stemcell: | |
name: bosh-openstack-kvm-ubuntu-trusty-go_agent | |
version: latest | |
cloud_properties: | |
instance_type: m1.small | |
- name: runner_z1 | |
network: cf1 | |
size: 1 | |
stemcell: | |
name: bosh-openstack-kvm-ubuntu-trusty-go_agent | |
version: latest | |
cloud_properties: | |
instance_type: m1.small | |
- name: router_z1 | |
network: cf1 | |
size: 1 | |
stemcell: | |
name: bosh-openstack-kvm-ubuntu-trusty-go_agent | |
version: latest | |
cloud_properties: | |
instance_type: m1.small | |
update: | |
canaries: 1 | |
canary_watch_time: 30000-600000 | |
max_in_flight: 1 | |
serial: false | |
update_watch_time: 5000-600000 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# /var/vcap/store exists only vms has persistent_disk | |
# default value is /var/vcap/nfs/shared | |
<% | |
static_ip = '10.0.0.211' | |
root_domain = "#{static_ip}.xip.io" | |
deployment_name = 'cf-deployment' | |
cf_release = '194+dev.2' | |
protocol = 'http' | |
%> | |
director_uuid: 2758650b-bdfa-426b-8529-cf1473a99e76 | |
name: cf-deployment | |
releases: | |
- name: cf | |
version: <%= cf_release %> | |
compilation: | |
cloud_properties: | |
instance_type: m1.small | |
network: cf1 | |
reuse_compilation_vms: true | |
workers: 2 | |
jobs: | |
- name: ha_proxy_z1 | |
instances: 1 | |
networks: | |
- name: external | |
default: [dns, gateway] | |
static_ips: | |
- 192.168.1.119 | |
- name: floating | |
static_ips: | |
- 10.0.0.211 | |
properties: | |
ha_proxy: | |
ssl_pem: null | |
metron_agent: | |
zone: z1 | |
router: | |
servers: | |
z1: | |
- 192.168.1.116 | |
z2: | |
- [] | |
resource_pool: small_z1 | |
templates: | |
- name: haproxy | |
- name: metron_agent | |
- name: nats_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
static_ips: | |
- 192.168.1.112 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: nats | |
- name: nats_stream_forwarder | |
- name: metron_agent | |
- name: etcd_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
static_ips: | |
- 192.168.1.118 | |
persistent_disk: 10024 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: etcd | |
- name: etcd_metrics_server | |
- name: metron_agent | |
- name: stats_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: collector | |
- name: metron_agent | |
# - name: nfs_z1 | |
# instances: 1 | |
# networks: | |
# - name: cf1 | |
# static_ips: | |
# - 192.168.1.113 | |
# persistent_disk: 31200 | |
# properties: | |
# metron_agent: | |
# zone: z1 | |
# resource_pool: small_z1 | |
# templates: | |
# - name: debian_nfs_server | |
# release: cf | |
# - name: metron_agent | |
# release: cf | |
- name: postgres_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
static_ips: | |
- 192.168.1.114 | |
persistent_disk: 4096 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: postgres | |
- name: metron_agent | |
- name: uaa_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: uaa | |
- name: metron_agent | |
- name: login_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: login | |
- name: metron_agent | |
- name: api_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
persistent_disk: 10024 | |
properties: | |
metron_agent: | |
zone: z1 | |
# nfs_server: | |
# address: 192.168.1.113 | |
# allow_from_entries: | |
# - 192.168.1.0/24 | |
# share: 192.168.1.0/24 | |
resource_pool: small_z1 | |
templates: | |
- name: cloud_controller_ng | |
- name: metron_agent | |
# - name: nfs_mounter | |
release: cf | |
- name: clock_global | |
instances: 1 | |
networks: | |
- name: cf1 | |
persistent_disk: 0 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: cloud_controller_clock | |
- name: metron_agent | |
- name: api_worker_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
persistent_disk: 0 | |
properties: | |
metron_agent: | |
zone: z1 | |
networks: | |
apps: cf1 | |
# nfs_server: | |
# address: 192.168.1.113 | |
# allow_from_entries: | |
# - 192.168.1.0/24 | |
# share: 192.168.1.0/24 | |
resource_pool: small_z1 | |
templates: | |
- name: cloud_controller_worker | |
release: cf | |
- name: metron_agent | |
release: cf | |
# - name: nfs_mounter | |
# release: cf | |
- name: hm9000_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: hm9000 | |
- name: metron_agent | |
- name: runner_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
static_ips: null | |
properties: | |
dea_next: | |
zone: z1 | |
metron_agent: | |
zone: z1 | |
resource_pool: runner_z1 | |
templates: | |
- name: dea_next | |
- name: dea_logging_agent | |
- name: metron_agent | |
update: | |
max_in_flight: 1 | |
- name: loggregator_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
properties: | |
doppler: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: doppler | |
- name: loggregator_trafficcontroller_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
properties: | |
metron_agent: | |
zone: z1 | |
traffic_controller: | |
zone: z1 | |
resource_pool: small_z1 | |
templates: | |
- name: loggregator_trafficcontroller | |
- name: metron_agent | |
- name: router_z1 | |
instances: 1 | |
networks: | |
- name: cf1 | |
static_ips: | |
- 192.168.1.116 | |
properties: | |
metron_agent: | |
zone: z1 | |
resource_pool: router_z1 | |
templates: | |
- name: gorouter | |
- name: metron_agent | |
#meta: | |
# environment: null | |
# releases: | |
# - name: cf | |
# version: latest | |
# stemcell: | |
# name: bosh-openstack-kvm-ubuntu-trusty-go_agent | |
# version: latest | |
networks: | |
- name: cf1 | |
type: manual | |
subnets: | |
- range: 192.168.1.0/24 | |
gateway: 192.168.1.1 | |
static: | |
- 192.168.1.110 - 192.168.1.150 | |
reserved: | |
- 192.168.1.2 - 192.168.1.109 | |
cloud_properties: | |
net_id: 5643b40e-d810-476c-8d4b-6f6a7be9644a | |
security_groups: | |
- default | |
- bosh | |
- cf-private | |
- ssh | |
- name: external | |
type: manual | |
subnets: | |
- range: 192.168.1.0/24 | |
gateway: 192.168.1.1 | |
static: | |
- 192.168.1.110 - 192.168.1.150 | |
reserved: | |
- 192.168.1.2 - 192.168.1.109 | |
cloud_properties: | |
net_id: 5643b40e-d810-476c-8d4b-6f6a7be9644a | |
security_groups: | |
- default | |
- bosh | |
- cf-public | |
- ssh | |
- name: floating | |
type: vip | |
cloud_properties: {} | |
properties: | |
system_domain: <%= root_domain %> | |
system_domain_organization: 'admin' | |
domain: <%= root_domain %> | |
app_domains: | |
- <%= root_domain %> | |
networks: | |
apps: cf1 | |
cc: | |
allowed_cors_domains: [] | |
app_events: | |
cutoff_age_in_days: 31 | |
app_usage_events: | |
cutoff_age_in_days: 31 | |
audit_events: | |
cutoff_age_in_days: 31 | |
billing_event_writing_enabled: true | |
broker_client_timeout_seconds: 70 | |
buildpacks: | |
buildpack_directory_key: bd_key | |
cdn: null | |
fog_connection: | |
provider: Local | |
local_root: /var/vcap/store/nfs/shared | |
bulk_api_password: password | |
client_max_body_size: 1536M | |
db_encryption_key: the_key | |
db_logging_level: debug2 | |
default_app_disk_in_mb: 1024 | |
default_app_memory: 1024 | |
default_buildpacks: | |
- name: java_buildpack | |
package: buildpack_java | |
- name: ruby_buildpack | |
package: buildpack_ruby | |
- name: nodejs_buildpack | |
package: buildpack_nodejs | |
- name: go_buildpack | |
package: buildpack_go | |
- name: python_buildpack | |
package: buildpack_python | |
- name: php_buildpack | |
package: buildpack_php | |
default_quota_definition: default | |
default_running_security_groups: | |
- public_networks | |
- dns | |
default_staging_security_groups: | |
- public_networks | |
- dns | |
development_mode: false | |
diego: | |
running: disabled | |
staging: disabled | |
diego_docker: false | |
directories: null | |
disable_custom_buildpacks: false | |
droplets: | |
cdn: null | |
droplet_directory_key: the_key | |
fog_connection: | |
provider: Local | |
local_root: /var/vcap/store/nfs/shared | |
external_host: api | |
install_buildpacks: | |
- name: java_buildpack | |
package: buildpack_java | |
- name: ruby_buildpack | |
package: buildpack_ruby | |
- name: nodejs_buildpack | |
package: buildpack_nodejs | |
- name: go_buildpack | |
package: buildpack_go | |
- name: python_buildpack | |
package: buildpack_python | |
- name: php_buildpack | |
package: buildpack_php | |
internal_api_password: password | |
internal_api_user: internal_user | |
jobs: | |
app_bits_packer: | |
timeout_in_seconds: null | |
app_events_cleanup: | |
timeout_in_seconds: null | |
app_usage_events_cleanup: | |
timeout_in_seconds: null | |
blobstore_delete: | |
timeout_in_seconds: null | |
blobstore_upload: | |
timeout_in_seconds: null | |
droplet_deletion: | |
timeout_in_seconds: null | |
droplet_upload: | |
timeout_in_seconds: null | |
generic: | |
number_of_workers: null | |
global: | |
timeout_in_seconds: 14400 | |
model_deletion: | |
timeout_in_seconds: null | |
logging_level: debug2 | |
maximum_app_disk_in_mb: 2048 | |
newrelic: | |
capture_params: false | |
developer_mode: false | |
environment_name: null | |
license_key: null | |
monitor_mode: false | |
transaction_tracer: | |
enabled: true | |
record_sql: obfuscated | |
packages: | |
app_package_directory_key: <%= root_domain %>-cc-packages | |
cdn: null | |
fog_connection: | |
provider: Local | |
local_root: /var/vcap/store/nfs/shared | |
max_package_size: 1073741824 | |
quota_definitions: | |
default: | |
memory_limit: 10240 | |
non_basic_services_allowed: true | |
total_routes: 1000 | |
total_services: 100 | |
resource_pool: | |
cdn: null | |
fog_connection: | |
provider: Local | |
local_root: /var/vcap/store/nfs/shared | |
resource_directory_key: <%= root_domain %>-cc-resources | |
security_group_definitions: | |
- name: public_networks | |
rules: | |
- destination: 0.0.0.0-9.255.255.255 | |
protocol: all | |
- destination: 11.0.0.0-169.253.255.255 | |
protocol: all | |
- destination: 169.255.0.0-172.15.255.255 | |
protocol: all | |
- destination: 172.32.0.0-192.167.255.255 | |
protocol: all | |
- destination: 192.169.0.0-255.255.255.255 | |
protocol: all | |
- name: dns | |
rules: | |
- destination: 0.0.0.0/0 | |
ports: "53" | |
protocol: tcp | |
- destination: 0.0.0.0/0 | |
ports: "53" | |
protocol: udp | |
srv_api_uri: <%= protocol %>://api.<%= root_domain %> | |
stacks: null | |
staging_upload_password: password | |
staging_upload_user: username | |
system_buildpacks: | |
- name: java_buildpack | |
package: buildpack_java | |
- name: ruby_buildpack | |
package: buildpack_ruby | |
- name: nodejs_buildpack | |
package: buildpack_nodejs | |
- name: go_buildpack | |
package: buildpack_go | |
- name: python_buildpack | |
package: buildpack_python | |
- name: php_buildpack | |
package: buildpack_php | |
thresholds: | |
api: | |
alert_if_above_mb: null | |
restart_if_above_mb: null | |
restart_if_consistently_above_mb: null | |
worker: | |
alert_if_above_mb: null | |
restart_if_above_mb: null | |
restart_if_consistently_above_mb: null | |
user_buildpacks: [] | |
ccdb: | |
address: 192.168.1.114 | |
databases: | |
- name: ccdb | |
tag: cc | |
db_scheme: postgres | |
port: 5524 | |
roles: | |
- name: ccadmin | |
password: admin_password | |
tag: admin | |
collector: null | |
databases: | |
address: 192.168.1.114 | |
databases: | |
- citext: true | |
name: ccdb | |
tag: cc | |
- citext: true | |
name: uaadb | |
tag: uaa | |
db_scheme: postgres | |
port: 5524 | |
roles: | |
- name: ccadmin | |
password: admin_password | |
tag: admin | |
- name: uaaadmin | |
password: admin_password | |
tag: admin | |
dea_next: | |
advertise_interval_in_seconds: 5 | |
allow_networks: null | |
default_health_check_timeout: 60 | |
deny_networks: null | |
directory_server_protocol: <%= protocol %> | |
disk_mb: 2048 | |
disk_overcommit_factor: 2 | |
evacuation_bail_out_time_in_seconds: 600 | |
heartbeat_interval_in_seconds: 10 | |
instance_disk_inode_limit: 200000 | |
kernel_network_tuning_enabled: true | |
logging_level: debug | |
memory_mb: 1024 | |
memory_overcommit_factor: 3 | |
staging_disk_inode_limit: 200000 | |
staging_disk_limit_mb: 4096 | |
staging_memory_limit_mb: 1024 | |
mtu: 1454 | |
disk_quota_enabled: true | |
doppler: | |
blacklisted_syslog_ranges: null | |
debug: false | |
maxRetainedLogMessages: 100 | |
doppler_endpoint: | |
shared_secret: loggregator_endpoint_secret | |
dropsonde: | |
enabled: true | |
etcd: | |
machines: | |
- 192.168.1.118 | |
etcd_metrics_server: | |
nats: | |
machines: | |
- 192.168.1.112 | |
password: nats_password | |
username: nats_user | |
hm9000: | |
url: <%= protocol %>://hm9000.<%= root_domain %> | |
logger_endpoint: | |
use_ssl: <%= protocol == 'https' %> | |
port: 80 | |
loggregator: | |
blacklisted_syslog_ranges: [] | |
debug: false | |
maxRetainedLogMessages: 100 | |
loggregator_endpoint: | |
shared_secret: loggregator_endpoint_secret | |
login: | |
analytics: | |
code: null | |
domain: null | |
asset_base_url: null | |
brand: oss | |
catalina_opts: -Xmx768m -XX:MaxPermSize=256m | |
enabled: true | |
invitations_enabled: null | |
links: | |
home: <%= protocol %>://console.<%= root_domain %> | |
network: null | |
passwd: <%= protocol %>://console.<%= root_domain %>/password_resets/new | |
signup: <%= protocol %>://console.<%= root_domain %>/register | |
signup-network: null | |
messages: null | |
notifications: | |
url: null | |
protocol: <%= protocol %> | |
saml: null | |
signups_enabled: null | |
smtp: | |
host: null | |
password: null | |
port: null | |
user: null | |
spring_profiles: null | |
tiles: null | |
uaa_base: null | |
uaa_certificate: null | |
url: null | |
metron_endpoint: | |
shared_secret: loggregator_endpoint_secret | |
nats: | |
address: 192.168.1.112 | |
debug: false | |
machines: | |
- 192.168.1.112 | |
monitor_port: 0 | |
password: nats_password | |
port: 4222 | |
prof_port: 0 | |
trace: false | |
user: nats_user | |
# nfs_server: | |
# address: 192.168.1.113 | |
# allow_from_entries: | |
# - 192.168.1.0/24 | |
# share: null | |
request_timeout_in_seconds: 900 | |
router: | |
requested_route_registration_interval_in_seconds: 20 | |
status: | |
port: 8080 | |
password: router_password | |
user: router_user | |
ssl: | |
skip_cert_verify: true | |
syslog_daemon_config: null | |
uaa: | |
url: <%= protocol %>://uaa.<%= root_domain %> | |
no_ssl: <%= protocol == 'http' %> | |
admin: | |
client_secret: admin_secret | |
authentication: | |
policy: | |
countFailuresWithinSeconds: null | |
lockoutAfterFailures: null | |
lockoutPeriodSeconds: null | |
batch: | |
password: batch_password | |
username: batch_username | |
catalina_opts: -Xmx768m -XX:MaxPermSize=256m | |
cc: | |
client_secret: cc_client_secret | |
clients: | |
# app-direct: | |
# access-token-validity: 1209600 | |
# authorities: app_direct_invoice.write | |
# authorized-grant-types: authorization_code,client_credentials,password,refresh_token,implicit | |
# override: true | |
# redirect-uri: https://console.<%= root_domain %> | |
# refresh-token-validity: 1209600 | |
# secret: app-direct_secret | |
developer_console: | |
access-token-validity: 1209600 | |
authorities: scim.write,scim.read,cloud_controller.read,cloud_controller.write,password.write,uaa.admin,uaa.resource,cloud_controller.admin,billing.admin | |
authorized-grant-types: authorization_code,client_credentials | |
override: true | |
redirect-uri: <%= protocol %>://console.<%= root_domain %>/oauth/callback | |
refresh-token-validity: 1209600 | |
scope: openid,cloud_controller.read,cloud_controller.write,password.write,console.admin,console.support | |
secret: developer_console_secret | |
doppler: | |
authorities: uaa.resource | |
override: true | |
secret: doppler_secret | |
login: | |
authorities: oauth.login,notifications.write,critical_notifications.write,emails.write | |
authorized-grant-types: authorization_code,client_credentials,refresh_token | |
override: true | |
redirect-uri: <%= protocol %>://login.<%= root_domain %> | |
scope: openid,oauth.approvals | |
secret: login_client_secret | |
notifications: | |
authorities: cloud_controller.admin,scim.read | |
authorized-grant-types: client_credentials | |
secret: notification_secret | |
servicesmgmt: | |
authorities: uaa.resource,oauth.service,clients.read,clients.write,clients.secret | |
authorized-grant-types: authorization_code,client_credentials,password,implicit | |
autoapprove: true | |
override: true | |
redirect-uri: <%= protocol %>://servicesmgmt.<%= root_domain %>/auth/cloudfoundry/callback | |
scope: openid,cloud_controller.read,cloud_controller.write | |
secret: service_mgmt_secret | |
space-mail: | |
access-token-validity: 1209600 | |
authorities: scim.read,scim.write,cloud_controller.admin | |
authorized-grant-types: client_credentials | |
override: true | |
refresh-token-validity: 1209600 | |
secret: space-mail_secret | |
support-services: | |
access-token-validity: 1209600 | |
authorities: portal.users.read | |
authorized-grant-types: authorization_code,client_credentials | |
redirect-uri: <%= protocol %>://support-signon.<%= root_domain %> | |
refresh-token-validity: 1209600 | |
scope: scim.write,scim.read,openid,cloud_controller.read,cloud_controller.write | |
secret: support-services_secret | |
jwt: | |
signing_key: | | |
-----BEGIN RSA PRIVATE KEY----- | |
MIICXAIBAAKBgQDHFr+KICms+tuT1OXJwhCUmR2dKVy7psa8xzElSyzqx7oJyfJ1 | |
JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMXqHxf+ZH9BL1gk9Y6kCnbM5R6 | |
0gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBugspULZVNRxq7veq/fzwIDAQAB | |
AoGBAJ8dRTQFhIllbHx4GLbpTQsWXJ6w4hZvskJKCLM/o8R4n+0W45pQ1xEiYKdA | |
Z/DRcnjltylRImBD8XuLL8iYOQSZXNMb1h3g5/UGbUXLmCgQLOUUlnYt34QOQm+0 | |
KvUqfMSFBbKMsYBAoQmNdTHBaz3dZa8ON9hh/f5TT8u0OWNRAkEA5opzsIXv+52J | |
duc1VGyX3SwlxiE2dStW8wZqGiuLH142n6MKnkLU4ctNLiclw6BZePXFZYIK+AkE | |
xQ+k16je5QJBAN0TIKMPWIbbHVr5rkdUqOyezlFFWYOwnMmw/BKa1d3zp54VP/P8 | |
+5aQ2d4sMoKEOfdWH7UqMe3FszfYFvSu5KMCQFMYeFaaEEP7Jn8rGzfQ5HQd44ek | |
lQJqmq6CE2BXbY/i34FuvPcKU70HEEygY6Y9d8J3o6zQ0K9SYNu+pcXt4lkCQA3h | |
jJQQe5uEGJTExqed7jllQ0khFJzLMx0K6tj0NeeIzAaGCQz13oo2sCdeGRHO4aDh | |
HH6Qlq/6UOV5wP8+GAcCQFgRCcB+hrje8hfEEefHcFpyKH+5g1Eu1k0mLrxK2zd+ | |
4SlotYRHgPCEubokb2S1zfZDWIXW3HmggnGgM949TlY= | |
-----END RSA PRIVATE KEY----- | |
verification_key: | | |
-----BEGIN PUBLIC KEY----- | |
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHFr+KICms+tuT1OXJwhCUmR2d | |
KVy7psa8xzElSyzqx7oJyfJ1JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMX | |
qHxf+ZH9BL1gk9Y6kCnbM5R60gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBug | |
spULZVNRxq7veq/fzwIDAQAB | |
-----END PUBLIC KEY----- | |
scim: | |
users: | |
- admin|fakepassword|scim.write,scim.read,openid,cloud_controller.admin,doppler.firehose | |
uaadb: | |
address: 192.168.1.114 | |
databases: | |
- name: uaadb | |
tag: uaa | |
db_scheme: postgresql | |
port: 5524 | |
roles: | |
- name: uaaadmin | |
password: admin_password | |
tag: admin | |
resource_pools: | |
- name: small_z1 | |
network: cf1 | |
size: 13 | |
stemcell: | |
name: bosh-openstack-kvm-ubuntu-trusty-go_agent | |
version: latest | |
cloud_properties: | |
instance_type: m1.small | |
- name: runner_z1 | |
network: cf1 | |
size: 1 | |
stemcell: | |
name: bosh-openstack-kvm-ubuntu-trusty-go_agent | |
version: latest | |
cloud_properties: | |
instance_type: m1.small | |
- name: router_z1 | |
network: cf1 | |
size: 1 | |
stemcell: | |
name: bosh-openstack-kvm-ubuntu-trusty-go_agent | |
version: latest | |
cloud_properties: | |
instance_type: m1.small | |
update: | |
canaries: 1 | |
canary_watch_time: 30000-600000 | |
max_in_flight: 1 | |
serial: false | |
update_watch_time: 5000-600000 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment