Created
March 29, 2020 17:15
-
-
Save raj-prakarsh/764503f1384345654a26dfb5c654bee3 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Minikube stores its logs in a separate directory. | |
| # Enable if you install the chart in minikube. | |
| on_minikube: false | |
| image: | |
| fluent_bit: | |
| repository: fluent/fluent-bit | |
| tag: 1.3.7 | |
| pullPolicy: Always | |
| testFramework: | |
| image: "dduportal/bats" | |
| tag: "0.4.0" | |
| nameOverride: "" | |
| fullnameOverride: "" | |
| # When enabled, exposes json and prometheus metrics on {{ .Release.Name }}-metrics service | |
| metrics: | |
| enabled: false | |
| service: | |
| # labels: | |
| # key: value | |
| annotations: {} | |
| # In order for Prometheus to consume metrics automatically use the following annotations: | |
| # prometheus.io/path: "/api/v1/metrics/prometheus" | |
| # prometheus.io/port: "2020" | |
| # prometheus.io/scrape: "true" | |
| port: 2020 | |
| type: ClusterIP | |
| serviceMonitor: | |
| enabled: false | |
| additionalLabels: {} | |
| # namespace: monitoring | |
| # interval: 30s | |
| # scrapeTimeout: 10s | |
| # When enabled, fluent-bit will keep track of tailing offsets across pod restarts. | |
| trackOffsets: false | |
| ## PriorityClassName | |
| ## Ref: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/#priorityclass | |
| priorityClassName: "" | |
| backend: | |
| type: forward | |
| #You can change type to es and specify es configs to forward logs directly to Elastic Search | |
| forward: | |
| host: fluentd | |
| port: 24284 | |
| tls: "off" | |
| tls_verify: "on" | |
| tls_debug: 1 | |
| shared_key: | |
| es: | |
| host: elasticsearch | |
| port: 9200 | |
| # Elastic Index Name | |
| index: kubernetes_cluster | |
| type: flb_type | |
| logstash_prefix: kubernetes_cluster | |
| replace_dots: "On" | |
| logstash_format: "On" | |
| retry_limit: "False" | |
| time_key: "@timestamp" | |
| # Optional username credential for Elastic X-Pack access | |
| http_user: | |
| # Password for user defined in HTTP_User | |
| http_passwd: | |
| # Optional TLS encryption to ElasticSearch instance | |
| tls: "off" | |
| tls_verify: "on" | |
| # TLS certificate for the Elastic (in PEM format). Use if tls=on and tls_verify=on. | |
| tls_ca: "" | |
| # TLS debugging levels = 1-4 | |
| tls_debug: 1 | |
| splunk: | |
| host: 127.0.0.1 | |
| port: 8088 | |
| token: "" | |
| send_raw: "on" | |
| tls: "on" | |
| tls_verify: "off" | |
| tls_debug: 1 | |
| message_key: "kubernetes" | |
| stackdriver: {} | |
| ## | |
| ## Ref: http://fluentbit.io/documentation/current/output/http.html | |
| ## | |
| http: | |
| host: 127.0.0.1 | |
| port: 80 | |
| uri: "/" | |
| http_user: | |
| http_passwd: | |
| tls: "off" | |
| tls_verify: "on" | |
| tls_debug: 1 | |
| ## Specify the data format to be used in the HTTP request body | |
| ## Can be either 'msgpack' or 'json' | |
| format: msgpack | |
| # json_date_format: double or iso8601 | |
| headers: [] | |
| parsers: | |
| enabled: false | |
| ## List the respective parsers in key: value format per entry | |
| ## Regex required fields are name and regex. JSON and Logfmt required field | |
| ## is name. | |
| regex: [] | |
| logfmt: [] | |
| ## json parser config can be defined by providing an extraEntries field. | |
| ## The following entry: | |
| ## json: | |
| ## - extraEntries: | | |
| ## Decode_Field_As escaped log do_next | |
| ## Decode_Field_As json log | |
| ## | |
| ## translates into | |
| ## | |
| ## Command | Decoder | Field | Optional Action | | |
| ## ==============|===========|=======|===================| | |
| ## Decode_Field_As escaped log do_next | |
| ## Decode_Field_As json log | |
| ## | |
| json: [] | |
| env: [] | |
| ## Annotations to add to the DaemonSet's Pods | |
| podAnnotations: {} | |
| ## By default there different 'files' provides in the config | |
| ## (fluent-bit.conf, custom_parsers.conf). This defeats | |
| ## changing a configmap (since it uses subPath). If this | |
| ## variable is set, the user is assumed to have provided, | |
| ## in 'existingConfigMap' the entire config (etc/*) of fluent-bit, | |
| ## parsers and system config. In this case, no subPath is | |
| ## used | |
| fullConfigMap: false | |
| ## ConfigMap override where fullname is {{.Release.Name}}-{{.Values.existingConfigMap}} | |
| ## Defining existingConfigMap will cause templates/config.yaml | |
| ## to NOT generate a ConfigMap resource | |
| ## | |
| existingConfigMap: "" | |
| # NOTE If you want to add extra sections, add them here, inbetween the includes, | |
| # wherever they need to go. Sections order matters. | |
| rawConfig: |- | |
| @INCLUDE fluent-bit-service.conf | |
| @INCLUDE fluent-bit-input.conf | |
| @INCLUDE fluent-bit-filter.conf | |
| @INCLUDE fluent-bit-output.conf | |
| # WARNING!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! | |
| # This is to add extra entries to an existing section, NOT for adding new sections | |
| # Do not submit bugs against indent being wrong. Add your new sections to rawConfig | |
| # instead. | |
| # | |
| extraEntries: | |
| input: |- | |
| # # >=1 additional Key/Value entrie(s) for existing Input section | |
| audit: |- | |
| # # >=1 additional Key/Value entrie(s) for existing Input section | |
| filter: |- | |
| # # >=1 additional Key/Value entrie(s) for existing Filter section | |
| output: |- | |
| # # >=1 additional Key/Value entrie(s) for existing Ouput section | |
| # WARNING!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! | |
| ## Extra ports to add to the daemonset ports section | |
| extraPorts: [] | |
| ## Extra volumes containing additional files required for fluent-bit to work | |
| ## (eg. CA certificates) | |
| ## Ref: https://kubernetes.io/docs/concepts/storage/volumes/ | |
| ## | |
| extraVolumes: [] | |
| ## Extra volume mounts for the fluent-bit pod. | |
| ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-volume-storage/ | |
| ## | |
| extraVolumeMounts: [] | |
| resources: {} | |
| # limits: | |
| # cpu: 100m | |
| # memory: 128Mi | |
| # requests: | |
| # cpu: 10m | |
| # memory: 8Mi | |
| # When enabled, pods will bind to the node's network namespace. | |
| hostNetwork: false | |
| # Which DNS policy to use for the pod. | |
| # Consider switching to 'ClusterFirstWithHostNet' when 'hostNetwork' is enabled. | |
| dnsPolicy: ClusterFirst | |
| ## Node tolerations for fluent-bit scheduling to nodes with taints | |
| ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/ | |
| ## | |
| tolerations: [] | |
| # - key: "key" | |
| # operator: "Equal|Exists" | |
| # value: "value" | |
| # effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)" | |
| ## Node labels for fluent-bit pod assignment | |
| ## Ref: https://kubernetes.io/docs/user-guide/node-selection/ | |
| ## | |
| nodeSelector: {} | |
| affinity: {} | |
| service: | |
| flush: 1 | |
| logLevel: info | |
| input: | |
| tail: | |
| memBufLimit: 5MB | |
| parser: docker | |
| path: /var/log/containers/*.log | |
| ignore_older: "" | |
| systemd: | |
| enabled: false | |
| filters: | |
| systemdUnit: | |
| - docker.service | |
| - kubelet.service | |
| - node-problem-detector.service | |
| maxEntries: 1000 | |
| readFromTail: true | |
| stripUnderscores: false | |
| tag: host.* | |
| audit: | |
| enable: false | |
| input: | |
| memBufLimit: 35MB | |
| parser: docker | |
| tag: audit.* | |
| path: /var/log/kube-apiserver-audit.log | |
| bufferChunkSize: 2MB | |
| bufferMaxSize: 10MB | |
| skipLongLines: On | |
| key: kubernetes-audit | |
| filter: | |
| kubeURL: https://kubernetes.default.svc:443 | |
| kubeCAFile: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt | |
| kubeTokenFile: /var/run/secrets/kubernetes.io/serviceaccount/token | |
| kubeTag: kube | |
| kubeTagPrefix: kube.var.log.containers. | |
| # If true, check to see if the log field content is a JSON string map, if so, | |
| # it append the map fields as part of the log structure. | |
| mergeJSONLog: true | |
| # If set, all unpacked keys from mergeJSONLog (Merge_Log) will be packed under | |
| # the key name specified on mergeLogKey (Merge_Log_Key) | |
| mergeLogKey: "" | |
| # If true, enable the use of monitoring for a pod annotation of | |
| # fluentbit.io/parser: parser_name. parser_name must be the name | |
| # of a parser contained within parsers.conf | |
| enableParser: true | |
| # If true, enable the use of monitoring for a pod annotation of | |
| # fluentbit.io/exclude: true. If present, discard logs from that pod. | |
| enableExclude: true | |
| # If true, the filter reads logs coming in Journald format. | |
| useJournal: false | |
| rbac: | |
| # Specifies whether RBAC resources should be created | |
| create: true | |
| # Specifies whether a PodSecurityPolicy should be created | |
| pspEnabled: false | |
| taildb: | |
| directory: /var/lib/fluent-bit | |
| serviceAccount: | |
| # Specifies whether a ServiceAccount should be created | |
| create: true | |
| # Annotations to add to the service account | |
| annotations: {} | |
| # The name of the ServiceAccount to use. | |
| # If not set and create is true, a name is generated using the fullname template | |
| name: | |
| ## Specifies security settings for a container | |
| ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container | |
| securityContext: {} | |
| # securityContext: | |
| # privileged: true | |
| ## Specifies security settings for a pod | |
| ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod | |
| podSecurityContext: {} | |
| # podSecurityContext: | |
| # runAsUser: 1000 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment