| classes: |
| - system.etcd.server.cluster |
| - system.salt.minion.cert.k8s_server |
| - service.kubernetes.control.cluster |
| - system.haproxy.proxy.listen.kubernetes.apiserver |
| - system.linux.system.repo.docker_legacy |
| - system.kubernetes.pool.cluster |
| - system.salt.minion.cert.k8s_client |
| - system.salt.minion.cert.etcd_client |
| - system.salt.minion.cert.etcd_server |
| - system.kubernetes.master.cluster |
| - system.kubernetes.master.auth.rbac |
| - system.kubernetes.control.roles.cluster-admin |
| - cluster.k8s-ha-contrail-40.infra |
| - cluster.overrides |
| parameters: |
| _param: |
| keepalived_k8s_apiserver_vip_interface: ens4 |
| keepalived_k8s_apiserver_vip_address: ${_param:kubernetes_control_address} |
| |
| linux: |
| network: |
| interface: |
| ens3: |
| enabled: true |
| type: eth |
| mtu: 1500 |
| proto: dhcp |
| ens4: |
| enabled: true |
| type: eth |
| mtu: 1500 |
| netmask: '255.255.255.0' |
| address: ${_param:single_address} |
| pre_up_cmds: |
| - ip addr flush dev ens4 |
| etcd: |
| server: |
| bind: |
| host: ${_param:single_address} |
| source: |
| engine: docker_hybrid |
| ssl: |
| enabled: true |
| docker: |
| host: |
| options: |
| bip: 172.31.255.1/24 |
| kubernetes: |
| pool: |
| kubelet: |
| fail_on_swap: ${_param:kubelet_fail_on_swap} |
| enabled: true |
| network: |
| engine: none |
| opencontrail: |
| enabled: false |
| kube_proxy: |
| enabled: false |
| common: |
| addons: |
| dashboard: |
| enabled: ${_param:kubernetes_dashboard} |
| image: ${_param:kubernetes_dashboard_image} |
| helm: |
| enabled: ${_param:kubernetes_helm_enabled} |
| netchecker: |
| enabled: ${_param:kubernetes_netchecker_enabled} |
| agent_image: ${_param:kubernetes_netchecker_agent_image} |
| server_image: ${_param:kubernetes_netchecker_server_image} |
| dns: |
| enabled: ${_param:kubernetes_dns} |
| kubedns_image: ${_param:kubernetes_kubedns_image} |
| dnsmasq_image: ${_param:kubernetes_dnsmasq_image} |
| sidecar_image: ${_param:kubernetes_sidecar_image} |
| autoscaler: |
| image: ${_param:kubernetes_dns_autoscaler_image} |
| coredns: |
| enabled: ${_param:kubernetes_coredns_enabled} |
| externaldns: |
| enabled: ${_param:kubernetes_externaldns_enabled} |
| image: ${_param:kubernetes_externaldns_image} |
| provider: ${_param:kubernetes_externaldns_provider} |
| ingress-nginx: |
| enabled: ${_param:kubernetes_ingressnginx_enabled} |
| hyperkube: |
| image: ${_param:kubernetes_hyperkube_image} |
| master: |
| kubelet: |
| address: ${_param:single_address} |
| fail_on_swap: ${_param:kubelet_fail_on_swap} |
| etcd: |
| ssl: |
| enabled: true |
| network: |
| opencontrail: |
| enabled: true |
| version: 4.0 |
| host: ${_param:keepalived_vip_address} |
| port: 8082 |
| default_domain: default-domain |
| default_project: default-domain:default |
| public_network: default-domain:default:Public |
| public_ip_range: 185.22.97.128/26 |
| public_network: default-domain:default-project:Public |
| private_ip_range: 10.150.0.0/16 |
| network_manager: |
| image: docker-prod-local.artifactory.mirantis.com/opencontrail-oc40/opencontrail-kube-manager |
| config: |
| api: |
| host: ${_param:keepalived_vip_address} |
| identity: |
| auth_user: admin |
| auth_password: contrail123 |
| auth_tenant: admin |
| message_queue: |
| host: ${_param:single_address} |
| database: |
| members: |
| - host: ${_param:kubernetes_control_node01_address} |
| port: 9161 |
| - host: ${_param:kubernetes_control_node02_address} |
| port: 9161 |
| - host: ${_param:kubernetes_control_node03_address} |
| port: 9161 |
| collector: |
| members: |
| - host: ${_param:kubernetes_control_node01_address} |
| - host: ${_param:kubernetes_control_node02_address} |
| - host: ${_param:kubernetes_control_node03_address} |