sridhargaddam/deployNexdAgent

## deployNexdAgent
oc create namespace nexodus
oc project nexodus
oc create serviceaccount -n nexodus nexodus
oc adm policy add-scc-to-user -z nexodus privileged

cat <<EOF | oc apply -f -
---
apiVersion: apps/v1
kind: DaemonSet
metadata:
  name: nexd
  namespace: nexodus
  labels:
    name: nexd
spec:
  selector:
    matchLabels:
      name: nexd
  template:
    metadata:
      labels:
        name: nexd
    spec:
      restartPolicy: Always
      nodeSelector:
        submariner.io/gateway: "true"
      hostNetwork: true
      hostAliases:
        # IP of the machine running the Nexodus Service
        - ip: 18.223.99.224
          hostnames:
            - try.nexodus.127.0.0.1.nip.io
            - api.try.nexodus.127.0.0.1.nip.io
            - auth.try.nexodus.127.0.0.1.nip.io
      tolerations:
        - key: node-role.kubernetes.io/control-plane
          operator: Exists
          effect: NoSchedule
        - key: node-role.kubernetes.io/master
          operator: Exists
          effect: NoSchedule
      containers:
        - name: nexd
          image: quay.io/sridhargaddam/nexd:pr1247
          securityContext:
            allowPrivilegeEscalation: true
            capabilities:
              add: [NET_ADMIN, NET_RAW, SYS_MODULE]
            runAsNonRoot: false
            privileged: true
            readOnlyRootFilesystem: false
          command:
            - nexd
          args:
            - --username
            - admin
            - --password
            - floofykittens
            - --insecure-skip-tls-verify
            - router
            - --child-prefix
            - "10.140.0.0/14"
            - --child-prefix
            - "172.40.0.0/16"
            - https://try.nexodus.127.0.0.1.nip.io
      serviceAccountName: nexodus
EOF
	oc create namespace nexodus
	oc project nexodus
	oc create serviceaccount -n nexodus nexodus
	oc adm policy add-scc-to-user -z nexodus privileged

	cat <<EOF \| oc apply -f -
	---
	apiVersion: apps/v1
	kind: DaemonSet
	metadata:
	name: nexd
	namespace: nexodus
	labels:
	name: nexd
	spec:
	selector:
	matchLabels:
	name: nexd
	template:
	metadata:
	labels:
	name: nexd
	spec:
	restartPolicy: Always
	nodeSelector:
	submariner.io/gateway: "true"
	hostNetwork: true
	hostAliases:
	# IP of the machine running the Nexodus Service
	- ip: 18.223.99.224
	hostnames:
	- try.nexodus.127.0.0.1.nip.io
	- api.try.nexodus.127.0.0.1.nip.io
	- auth.try.nexodus.127.0.0.1.nip.io
	tolerations:
	- key: node-role.kubernetes.io/control-plane
	operator: Exists
	effect: NoSchedule
	- key: node-role.kubernetes.io/master
	operator: Exists
	effect: NoSchedule
	containers:
	- name: nexd
	image: quay.io/sridhargaddam/nexd:pr1247
	securityContext:
	allowPrivilegeEscalation: true
	capabilities:
	add: [NET_ADMIN, NET_RAW, SYS_MODULE]
	runAsNonRoot: false
	privileged: true
	readOnlyRootFilesystem: false
	command:
	- nexd
	args:
	- --username
	- admin
	- --password
	- floofykittens
	- --insecure-skip-tls-verify
	- router
	- --child-prefix
	- "10.140.0.0/14"
	- --child-prefix
	- "172.40.0.0/16"
	- https://try.nexodus.127.0.0.1.nip.io
	serviceAccountName: nexodus
	EOF