Container 설치 가이드

1. 문서 개요

1.1. 목적

본 문서(Container 서비스팩 설치 가이드)는 개방형 PaaS 플랫폼 고도화 및 개발자 지원 환경 기반의 Open PaaS에서 제공되는 서비스팩인 Container 서비스팩을 Bosh를 이용하여 설치 및 서비스 등록하는 방법을 기술하였다.
PaaS-TA 3.5 버전부터는 Bosh 2.0 기반으로 배포(deploy)를 진행한다. 기존 Bosh 1.0 기반으로 설치를 원할 경우에는 PaaS-TA 3.1 이하 버전의 문서를 참고한다.

1.2. 범위

설치 범위는 Container 서비스팩을 검증하기 위한 기본 설치를 기준으로 작성하였다.

1.3. 시스템 구성도

본 문서의 설치된 시스템 구성도이다. Container 서비스 Server, Container 서비스 브로커, Private Image Registry 로 최소사항을 구성하였다.
VM명
인스턴스수
vCPU 수
메모리(GB)
디스크(GB)
master
1
1
4G
Root 4G + 영구디스크 50G
worker
N
8
16G
Root 4G + 영구디스크 100G
container-service-api
N
1
1G
Root 4G
container-service-common-api
N
1
1G
Root 4G
container-service-broker
N
1
1G
Root 4G
container-service-dashboard
1
1
1G
Root 4G
private-image-repository
1
1
1G
Root 4G + 영구디스크 10G
DBMS (MariaDB)
1
1
2G
Root 4G + 영구디스크 20G
HAProxy
1
1
2G
Root 4G

1.4. 참고 자료

2. Container 서비스팩 설치

2.1. 설치 전 준비사항

본 설치 가이드는 Linux 환경에서 설치하는 것을 기준으로 하였다. 서비스팩 설치를 위해서는 BOSH 2.0과 PaaS-TA 5.0, PaaS-TA 포털이 설치되어 있어야 한다.
  • Container 서비스팩 설치 전 Bosh 2.0 배포 주의사항
IaaS 환경이 OPENSTACK 인 경우 bosh deploy 시 /home/{user_name}/workspace/paasta-5.0/deployment/bosh-deployment/openstack/disable-readable-vm-names.yml 파일을 옵션으로 추가한 후 배포한다.

2.1.1. Container 서비스 Deployment 및 Release 파일 다운로드

Container 서비스 설치에 필요한 Deployment 및 릴리즈 파일을 다운로드 받아 서비스 설치 작업 경로로 위치시킨다.
  • 설치 파일 다운로드 위치 : https://paas-ta.kr/download/package
  • Release, deployment 파일은 /home/{user_name}/workspace/paasta-5.0 이하에 다운로드 받아야 한다.
  • 설치 작업 경로 생성 및 파일 다운로드
Deployment 파일
paasta-container-service-2.0
Release 파일
bosh-dns-release-1.12.0.tgz bpm-release-1.0.4.tgz cfcr-etcd-release-1.11.1.tgz docker-35.2.1.tgz kubo-release-0.34.1.tgz paasta-container-service-projects-release-2.0.tgz
1
- Deployment 다운로드 파일 위치 경로 생성
2
$ mkdir -p ~/workspace/paasta-5.0/deployment/service-deployment/paasta-container-service-2.0
3
4
- 릴리즈 다운로드 파일 위치 경로 생성
5
$ mkdir -p ~/workspace/paasta-5.0/release/service
Copied!
  • Deployment 파일을 다운로드 받아 ~/workspace/paasta-5.0/deployment/service-deployment/paasta-container-service-2.0 이하 디렉토리에 이동한다.
  • Release 파일을 다운로드 받아 ~/workspace/paasta-5.0/release/service 이하 디렉토리에 이동한다.

2.2. Stemcell 업로드

  • Deploy시 사용할 Stemcell을 확인한다.
Stemcell 목록이 존재 하지 않을 경우, BOSH 설치 가이드 문서를 참고하여 Stemcell을 업로드를 해야 한다. (Stemcell 315.64 버전 사용, PaaSTA-Stemcell.zip)
1
**사용 예시**
2
3
$ bosh -e micro-bosh stemcells
4
Using environment '10.0.1.6' as client 'admin'
5
6
Name Version OS CPI CID
7
bosh-openstack-kvm-ubuntu-xenial-go_agent 315.64* ubuntu-xenial - a2d704b0-2768-4e55-84a6-4f3b1311e6f9
8
9
(*) Currently deployed
10
11
1 stemcells
Copied!

2.3. Container 서비스 릴리즈 Deployment 파일 수정 및 배포

BOSH Deployment manifest는 Components 요소 및 배포의 속성을 정의한 YAML 파일이다.
Deployment 파일에서 사용하는 network, vm_type 등은 Cloud config를 활용하고 해당 가이드는 BOSH 2.0 가이드를 참고한다.
  • Cloud config 내용 조회
1
Using environment '10.0.1.6' as client 'admin'
2
3
azs:
4
- cloud_properties:
5
availability_zone: nova
6
name: z1
7
- cloud_properties:
8
availability_zone: nova
9
name: z2
10
- cloud_properties:
11
availability_zone: nova
12
name: z3
13
- cloud_properties:
14
availability_zone: nova
15
name: z4
16
- cloud_properties:
17
availability_zone: nova
18
name: z5
19
- cloud_properties:
20
availability_zone: nova
21
name: z6
22
- cloud_properties:
23
availability_zone: nova
24
name: z7
25
compilation:
26
az: z3
27
network: default
28
reuse_compilation_vms: true
29
vm_type: large
30
workers: 5
31
disk_types:
32
- disk_size: 1024
33
name: default
34
- disk_size: 1024
35
name: 1GB
36
- disk_size: 2048
37
name: 2GB
38
- disk_size: 4096
39
name: 4GB
40
- disk_size: 5120
41
name: 5GB
42
- disk_size: 8192
43
name: 8GB
44
- disk_size: 10240
45
name: 10GB
46
- disk_size: 20480
47
name: 20GB
48
- disk_size: 30720
49
name: 30GB
50
- disk_size: 51200
51
name: 50GB
52
- disk_size: 102400
53
name: 100GB
54
- disk_size: 1048576
55
name: 1TBB
56
- cloud_properties:
57
type: SSD1
58
disk_size: 2000
59
name: 2GB_GP2
60
- cloud_properties:
61
type: SSD1
62
disk_size: 5000
63
name: 5GB_GP2
64
- cloud_properties:
65
type: SSD1
66
disk_size: 10000
67
name: 10GB_GP2
68
- cloud_properties:
69
type: SSD1
70
disk_size: 50000
71
name: 50GB_GP2
72
networks:
73
- name: default
74
subnets:
75
- az: z1
76
cloud_properties:
77
name: random
78
net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
79
security_groups:
80
- paasta-v50-security
81
dns:
82
- 8.8.8.8
83
gateway: 10.0.1.1
84
range: 10.0.1.0/24
85
reserved:
86
- 10.0.1.1 - 10.0.1.9
87
static:
88
- 10.0.1.10 - 10.0.1.120
89
- az: z2
90
cloud_properties:
91
name: random
92
net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
93
security_groups:
94
- paasta-v50-security
95
dns:
96
- 8.8.8.8
97
gateway: 10.0.41.1
98
range: 10.0.41.0/24
99
reserved:
100
- 10.0.41.1 - 10.0.41.9
101
static:
102
- 10.0.41.10 - 10.0.41.120
103
- az: z3
104
cloud_properties:
105
name: random
106
net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
107
security_groups:
108
- paasta-v50-security
109
dns:
110
- 8.8.8.8
111
gateway: 10.0.81.1
112
range: 10.0.81.0/24
113
reserved:
114
- 10.0.81.1 - 10.0.81.9
115
static:
116
- 10.0.81.10 - 10.0.81.120
117
- az: z4
118
cloud_properties:
119
name: random
120
net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
121
security_groups:
122
- paasta-v50-security
123
dns:
124
- 8.8.8.8
125
gateway: 10.0.121.1
126
range: 10.0.121.0/24
127
reserved:
128
- 10.0.121.1 - 10.0.121.9
129
static:
130
- 10.0.121.10 - 10.0.121.120
131
- az: z5
132
cloud_properties:
133
name: random
134
net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
135
security_groups:
136
- paasta-v50-security
137
dns:
138
- 8.8.8.8
139
gateway: 10.0.161.1
140
range: 10.0.161.0/24
141
reserved:
142
- 10.0.161.1 - 10.0.161.9
143
static:
144
- 10.0.161.10 - 10.0.161.120
145
- az: z6
146
cloud_properties:
147
name: random
148
net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
149
security_groups:
150
- paasta-v50-security
151
dns:
152
- 8.8.8.8
153
gateway: 10.0.201.1
154
range: 10.0.201.0/24
155
reserved:
156
- 10.0.201.1 - 10.0.201.9
157
static:
158
- 10.0.201.10 - 10.0.201.120
159
- az: z7
160
cloud_properties:
161
name: random
162
net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
163
security_groups:
164
- paasta-v50-security
165
dns:
166
- 8.8.8.8
167
gateway: 10.0.0.1
168
range: 10.0.0.0/24
169
reserved:
170
- 10.0.0.1 - 10.0.0.9
171
static:
172
- 10.0.0.10 - 10.0.0.120
173
- name: vip
174
type: vip
175
vm_extensions:
176
- cloud_properties:
177
ports:
178
- host: 3306
179
name: mysql-proxy-lb
180
- name: cf-router-network-properties
181
- name: cf-tcp-router-network-properties
182
- name: diego-ssh-proxy-network-properties
183
- name: cf-haproxy-network-properties
184
- cloud_properties:
185
ephemeral_disk:
186
size: 51200
187
type: gp2
188
name: small-50GB
189
- cloud_properties:
190
ephemeral_disk:
191
size: 102400
192
type: gp2
193
name: small-highmem-100GB
194
vm_types:
195
- cloud_properties:
196
instance_type: m1.tiny
197
name: minimal
198
- cloud_properties:
199
instance_type: m1.medium
200
name: default
201
- cloud_properties:
202
instance_type: m1.small
203
name: small
204
- cloud_properties:
205
instance_type: m1.medium
206
name: medium
207
- cloud_properties:
208
instance_type: m1.medium
209
name: medium-memory-8GB
210
- cloud_properties:
211
instance_type: m1.large
212
name: large
213
- cloud_properties:
214
instance_type: m1.xlarge
215
name: xlarge
216
- cloud_properties:
217
instance_type: m1.medium
218
name: small-50GB
219
- cloud_properties:
220
instance_type: m1.medium
221
name: small-50GB-ephemeral-disk
222
- cloud_properties:
223
instance_type: m1.large
224
name: small-100GB-ephemeral-disk
225
- cloud_properties:
226
instance_type: m1.large
227
name: small-highmem-100GB-ephemeral-disk
228
- cloud_properties:
229
instance_type: m1.large
230
name: small-highmem-16GB
231
- cloud_properties:
232
instance_type: m1.medium
233
name: service_medium
234
- cloud_properties:
235
instance_type: m1.medium
236
name: service_medium_2G
237
- cloud_properties:
238
instance_type: m1.tiny
239
name: portal_small
240
- cloud_properties:
241
instance_type: m1.small
242
name: portal_medium
243
- cloud_properties:
244
instance_type: m1.small
245
name: portal_large
246
247
Succeeded
Copied!
  • Deployment 를 하기 전에 remove-all-addons.sh 을 환경에 맞게 수정한다.
    ```
    $ cd ~/workspace/paasta-5.0/deployment/service-deployment/paasta-container-service-2.0
    $ vi remove-all-addons.sh

!/bin/bash

director_name='micro-bosh'
bosh -e ${director_name} update-runtime-config manifests/ops-files/paasta-container-service/remove-all-addons.yml
1
- Deployment YAML에서 사용하는 변수들을 서버 환경에 맞게 수정한다.
2
3
>*<CREDHUB_ADMIN_CLIENT_SECRET> 에는 /home/{user_name}/workspace/paasta-5.0/deployment/bosh-deployment/{각 iaas}/creds.yml 의 'credhub_admin_client_secret' key 값의 value 를 입력한다.*
4
<br>
5
6
> vSphere용
Copied!
$ cd ~/workspace/paasta-5.0/deployment/service-deployment/paasta-container-service-2.0 $ vi ./manifests/paasta-container-service-vars-vsphere.yml

INCEPTION OS USER NAME

inception_os_user_name: "inception"

REQUIRED FILE PATH VARIABLE

paasta_version: "5.0"

RELEASE

caas_projects_release_name: "paasta-container-service-projects-release" caas_projects_release_version: "2.0" cfcr_release_name: "kubo-release" cfcr_release_version: "0.34.1"

IAAS

vcenter_master_user: "" vcenter_master_password: "" vcenter_ip: "" vcenter_dc: "" vcenter_ds: "" vcenter_vms: ""

STEMCELL

stemcell_os: "ubuntu-xenial" stemcell_version: "315.64" stemcell_alias: "xenial"

VM_TYPE

vm_type_small: "small" vm_type_small_highmem_16GB: "small-highmem-16GB" vm_type_small_highmem_16GB_100GB: "small-highmem-16GB" vm_type_caas_small: "small" vm_type_caas_small_api: "small"

NETWORK

service_private_networks_name: "service_private" service_public_networks_name: "service_public"

IPS

caas_master_public_url: "" haproxy_public_url: ""

CREDHUB

credhub_server_url: "10.30.50.1:8844" credhub_admin_client_secret: ""

CF

cf_uaa_oauth_uri: "https://uaa..xip.io" cf_api_url: "https://api..xip.io" cf_uaa_oauth_client_id: "" # caasclient (2.5. Container 서비스 UAA Client Id 등록 부분의 client 계정 id 와 같아야 한다.) cf_uaa_oauth_client_secret: "" # clientsecret (2.5. Container 서비스 UAA Client Id 등록 부분의 client 계정 password 와 같아야 한다.)

HAPROXY

haproxy_http_port: 8080 haproxy_azs: [z1]

MARIADB

mariadb_port: "3306" mariadb_azs: [z2] mariadb_persistent_disk_type: "10GB" mariadb_admin_user_id: "" mariadb_admin_user_password: "" mariadb_role_set_administrator_code_name: "Administrator" mariadb_role_set_administrator_code: "RS0001" mariadb_role_set_regular_user_code_name: "Regular User" mariadb_role_set_regular_user_code: "RS0002" mariadb_role_set_init_user_code_name: "Init User" mariadb_role_set_init_user_code: "RS0003"

DASHBOARD

caas_dashboard_instances: 1 caas_dashboard_port: 8091 caas_dashboard_azs: [z3] caas_dashboard_management_security_enabled: false caas_dashboard_logging_level: "INFO"

API

caas_api_instances: 1 caas_api_port: 3333 caas_api_azs: [z1] caas_api_management_security_enabled: false caas_api_logging_level: "INFO"

COMMON API

caas_common_api_instances: 1 caas_common_api_port: 3334 caas_common_api_azs: [z2] caas_common_api_logging_level: "INFO"

SERVICE BROKER

caas_service_broker_instances: 1 caas_service_broker_port: 8888 caas_service_broker_azs: [z3]

PRIVATE IMAGE REPOSITORY

private_image_repository_azs: [z1] private_image_repository_port: 5000 private_image_repository_root_directory: "/var/vcap/data/private-image-repository" private_image_repository_public_url: "" private_image_repository_persistent_disk_type: "10GB"

ADDON

caas_apply_addons_azs: [z2]

MASTER

caas_master_backend_port: 8443 caas_master_port: 8443 caas_master_azs: [z3] caas_master_persistent_disk_type: 51200

WORKER

caas_worker_instances: 3 caas_worker_azs: [z1,z2,z3]

JENKINS

jenkins_broker_instances: 1 jenkins_broker_port: 8787 jenkins_broker_azs: [z3] jenkins_namespace: "paasta-jenkins" jenkins_secret_file: "/var/vcap/jobs/container-jenkins-broker/data/docker-secret.yml" jenkins_namespace_file: "/var/vcap/jobs/container-jenkins-broker/data/create-namespace.yml"
1
> AWS용
Copied!
$ cd ~/workspace/paasta-5.0/deployment/service-deployment/paasta-container-service-2.0 $ vi ./manifests/paasta-container-service-vars-aws.yml

INCEPTION OS USER NAME

inception_os_user_name: "ubuntu"

REQUIRED FILE PATH VARIABLE

paasta_version: "5.0"

RELEASE

caas_projects_release_name: "paasta-container-service-projects-release" caas_projects_release_version: "2.0" cfcr_release_name: "kubo-release" cfcr_release_version: "0.34.1"

IAAS

aws_access_key_id_master: '' aws_secret_access_key_master: '' aws_access_key_id_worker: '' aws_secret_access_key_worker: '' kubernetes_cluster_tag: 'kubernetes' # Do not update!

STEMCELL

stemcell_os: "ubuntu-xenial" stemcell_version: "315.64" stemcell_alias: "xenial"

VM_TYPE

vm_type_small: "small" vm_type_small_highmem_16GB: "small-highmem-16GB" vm_type_small_highmem_16GB_100GB: "small-highmem-16GB" vm_type_caas_small: "small" vm_type_caas_small_api: "small"

NETWORK

service_private_nat_networks_name: "default" service_private_networks_name: "default" service_public_networks_name: "vip"

IPS

caas_master_public_url: "" haproxy_public_url: ""

CREDHUB

credhub_server_url: "10.0.1.6:8844" credhub_admin_client_secret: ""

CF

cf_uaa_oauth_uri: "https://uaa..xip.io" cf_api_url: "https://api..xip.io" cf_uaa_oauth_client_id: "" # caasclient (2.5. Container 서비스 UAA Client Id 등록 부분의 client 계정 id 와 같아야 한다.) cf_uaa_oauth_client_secret: "" # clientsecret (2.5. Container 서비스 UAA Client Id 등록 부분의 client 계정 password 와 같아야 한다.)

HAPROXY

haproxy_http_port: 8080 haproxy_azs: [z7]

MARIADB

mariadb_port: "3306" mariadb_azs: [z5] mariadb_persistent_disk_type: "10GB" mariadb_admin_user_id: "" mariadb_admin_user_password: "" mariadb_role_set_administrator_code_name: "Administrator" mariadb_role_set_administrator_code: "RS0001" mariadb_role_set_regular_user_code_name: "Regular User" mariadb_role_set_regular_user_code: "RS0002" mariadb_role_set_init_user_code_name: "Init User" mariadb_role_set_init_user_code: "RS0003"

DASHBOARD

caas_dashboard_instances: 1 caas_dashboard_port: 8091 caas_dashboard_azs: [z6] caas_dashboard_management_security_enabled: false caas_dashboard_logging_level: "INFO"

API

caas_api_instances: 1 caas_api_port: 3333 caas_api_azs: [z6] caas_api_management_security_enabled: false caas_api_logging_level: "INFO"

COMMON API

caas_common_api_instances: 1 caas_common_api_port: 3334 caas_common_api_azs: [z6] caas_common_api_logging_level: "INFO"

SERVICE BROKER

caas_service_broker_instances: 1 caas_service_broker_port: 8888 caas_service_broker_azs: [z6]

PRIVATE IMAGE REPOSITORY

private_image_repository_azs: [z7] private_image_repository_port: 5000 private_image_repository_root_directory: "/var/vcap/data/private-image-repository" private_image_repository_public_url: "" private_image_repository_persistent_disk_type: "10GB"

ADDON

caas_apply_addons_azs: [z5]

MASTER

caas_master_backend_port: "8443" caas_master_port: "8443" caas_master_azs: [z7] caas_master_persistent_disk_type: 51200

WORKER

caas_worker_instances: 3 caas_worker_azs: [z4,z5,z6]

JENKINS

jenkins_broker_instances: 1 jenkins_broker_port: 8787 jenkins_broker_azs: [z6] jenkins_namespace: "paasta-jenkins" jenkins_secret_file: "/var/vcap/jobs/container-jenkins-broker/data/docker-secret.yml" jenkins_namespace_file: "/var/vcap/jobs/container-jenkins-broker/data/create-namespace.yml"
1
> OpenStack용
Copied!
$ cd ~/workspace/paasta-5.0/deployment/service-deployment/paasta-container-service-2.0 $ vi ./manifests/paasta-container-service-vars-openstack.yml

INCEPTION OS USER NAME

inception_os_user_name: "ubuntu"

REQUIRED FILE PATH VARIABLE

paasta_version: "5.0"

RELEASE

caas_projects_release_name: "paasta-container-service-projects-release" caas_projects_release_version: "2.0" cfcr_release_name: "kubo-release" cfcr_release_version: "0.34.1"

IAAS

auth_url: 'http://:5000/v3' openstack_domain: '' openstack_username: '' openstack_password: '' openstack_project_id: '' region: '' ignore-volume-az: true

STEMCELL

stemcell_os: "ubuntu-xenial" stemcell_version: "315.64" stemcell_alias: "xenial"

VM_TYPE

vm_type_small: "small" vm_type_small_highmem_16GB: "small-highmem-16GB" vm_type_small_highmem_16GB_100GB: "small-highmem-16GB" vm_type_caas_small: "small" vm_type_caas_small_api: "small"

NETWORK

service_private_networks_name: "default" service_public_networks_name: "vip"

IPS

caas_master_public_url: "" haproxy_public_url: ""

CREDHUB

credhub_server_url: "10.0.1.6:8844" credhub_admin_client_secret: ""

CF

cf_uaa_oauth_uri: "https://uaa..xip.io" cf_api_url: "https://api..xip.io" cf_uaa_oauth_client_id: "" # caasclient (2.5. Container 서비스 UAA Client Id 등록 부분의 client 계정 id 와 같아야 한다.) cf_uaa_oauth_client_secret: "" # clientsecret (2.5. Container 서비스 UAA Client Id 등록 부분의 client 계정 password 와 같아야 한다.)

HAPROXY

haproxy_http_port: 8080 haproxy_azs: [z7]

MARIADB

mariadb_port: "3306" #"" mariadb_azs: [z5] mariadb_persistent_disk_type: "10GB" mariadb_admin_user_id: "root" #"" mariadb_admin_user_password: "[email protected]" #"" mariadb_role_set_administrator_code_name: "Administrator" mariadb_role_set_administrator_code: "RS0001" mariadb_role_set_regular_user_code_name: "Regular User" mariadb_role_set_regular_user_code: "RS0002" mariadb_role_set_init_user_code_name: "Init User" mariadb_role_set_init_user_code: "RS0003"

DASHBOARD

caas_dashboard_instances: 1 caas_dashboard_port: 8091 caas_dashboard_azs: [z6] caas_dashboard_management_security_enabled: false caas_dashboard_logging_level: "INFO"

API

caas_api_instances: 1 caas_api_port: 3333 caas_api_azs: [z5] caas_api_management_security_enabled: false caas_api_logging_level: "INFO"

COMMON API

caas_common_api_instances: 1 caas_common_api_port: 3334 caas_common_api_azs: [z5] caas_common_api_logging_level: "INFO"

SERVICE BROKER

caas_service_broker_instances: 1 caas_service_broker_port: "8888" caas_service_broker_azs: [z6]

PRIVATE IMAGE REPOSITORY

private_image_repository_azs: [z7] private_image_repository_port: 5000 private_image_repository_root_directory: "/var/vcap/data/private-image-repository" private_image_repository_public_url: "" private_image_repository_persistent_disk_type: "10GB"

ADDON

caas_apply_addons_azs: [z5]

MASTER

caas_master_backend_port: 8443 caas_master_port: 8443 caas_master_azs: [z7] caas_master_persistent_disk_type: 51200

WORKER

caas_worker_instances: 3 caas_worker_azs: [z4,z5,z6]

JENKINS

jenkins_broker_instances: 1 jenkins_broker_port: 8787 jenkins_broker_azs: [z2] jenkins_namespace: "paasta-jenkins" jenkins_secret_file: "/var/vcap/jobs/container-jenkins-broker/data/docker-secret.yml" jenkins_namespace_file: "/var/vcap/jobs/container-jenkins-broker/data/create-namespace.yml"
1
> GCP용
Copied!
$ cd ~/workspace/paasta-5.0/deployment/service-deployment/paasta-container-service-2.0 $ vi ./manifests/paasta-container-service-vars-gcp.yml

INCEPTION OS USER NAME

inception_os_user_name: "inception"

REQUIRED FILE PATH VARIABLE

paasta_version: "5.0"

RELEASE

caas_projects_release_name: "paasta-container-service-projects-release" caas_projects_release_version: "2.0" cfcr_release_name: "kubo-release" cfcr_release_version: "0.34.1"

IAAS

project_id: "" network: "" director_name: "" deployment_name: ""

STEMCELL

stemcell_os: "ubuntu-xenial" stemcell_version: "315.64" stemcell_alias: "xenial"

VM_TYPE

vm_type_small: "small" vm_type_small_highmem_16GB: "small-highmem-16GB" vm_type_small_highmem_16GB_100GB: "small-highmem-16GB" vm_type_caas_small: "small" vm_type_caas_small_api: "small"

NETWORK

service_private_nat_networks_name: "default" service_private_networks_name: "default" service_public_networks_name: "vip"

IPS

caas_master_public_url: "" haproxy_public_url: ""

CREDHUB

credhub_server_url: "10.174.0.3:8844" credhub_admin_client_secret: ""

CF

cf_uaa_oauth_uri: "https://uaa..xip.io" cf_api_url: "https://api..xip.io" cf_uaa_oauth_client_id: "" # caasclient (2.5. Container 서비스 UAA Client Id 등록 부분의 client 계정 id 와 같아야 한다.) cf_uaa_oauth_client_secret: "" # clientsecret (2.5. Container 서비스 UAA Client Id 등록 부분의 client 계정 password 와 같아야 한다.)

HAPROXY

haproxy_http_port: 8080 haproxy_azs: [z7]

MARIADB

mariadb_port: "3306" mariadb_azs: [z5] mariadb_persistent_disk_type: "10GB" mariadb_admin_user_id: "" mariadb_admin_user_password: "" mariadb_role_set_administrator_code_name: "Administrator" mariadb_role_set_administrator_code: "RS0001" mariadb_role_set_regular_user_code_name: "Regular User" mariadb_role_set_regular_user_code: "RS0002" mariadb_role_set_init_user_code_name: "Init User" mariadb_role_set_init_user_code: "RS0003"

DASHBOARD

caas_dashboard_instances: 1 caas_dashboard_port: 8091 caas_dashboard_azs: [z5] caas_dashboard_management_security_enabled: false caas_dashboard_logging_level: "INFO"

API

caas_api_instances: 1 caas_api_port: 3333 caas_api_azs: [z5] caas_api_management_security_enabled: false caas_api_logging_level: "INFO"

COMMON API

caas_common_api_instances: 1 caas_common_api_port: 3334 caas_common_api_azs: [z5] caas_common_api_logging_level: "INFO"

SERVICE BROKER

caas_service_broker_instances: 1 caas_service_broker_port: 8888 caas_service_broker_azs: [z5]

PRIVATE IMAGE REPOSITORY

private_image_repository_azs: [z7] private_image_repository_port: 5000 private_image_repository_root_directory: "/var/vcap/data/private-image-repository" private_image_repository_public_url: "" private_image_repository_persistent_disk_type: "10GB"

ADDON

caas_apply_addons_azs: [z6]

MASTER

caas_master_backend_port: 8443 caas_master_port: 8443 caas_master_azs: [z7] caas_master_persistent_disk_type: 51200

WORKER

caas_worker_instances: 3 caas_worker_azs: [z4,z5,z6]

JENKINS

jenkins_broker_instances: 1 jenkins_broker_port: 8787 jenkins_broker_azs: [z5] jenkins_namespace: "paasta-jenkins" jenkins_secret_file: "/var/vcap/jobs/container-jenkins-broker/data/docker-secret.yml" jenkins_namespace_file: "/var/vcap/jobs/container-jenkins-broker/data/create-namespace.yml"
1
> Azure용
Copied!
$ cd ~/workspace/paasta-5.0/deployment/service-deployment/paasta-container-service-2.0 $ vi ./manifests/paasta-container-service-vars-azure.yml

INCEPTION OS USER NAME

inception_os_user_name: "ubuntu"

REQUIRED FILE PATH VARIABLE

paasta_version: "5.0"

RELEASE

caas_projects_release_name: "paasta-container-service-projects-release" caas_projects_release_version: "2.0" cfcr_release_name: "kubo-release" cfcr_release_version: "0.34.1"

IAAS

azure_cloud_name: "" location: "" primary_availability_set: "" resource_group_name: "" default_security_group: "" subnet_name: "" subscription_id: "" tenant_id: "" vnet_name: "" vnet_resource_group_name: ""

STEMCELL

stemcell_os: "ubuntu-xenial" stemcell_version: "315.64" stemcell_alias: "xenial"

VM_TYPE

vm_type_small: "small" vm_type_small_highmem_16GB: "small-highmem-16GB" vm_type_small_highmem_16GB_100GB: "small-highmem-16GB" vm_type_caas_small: "small" vm_type_caas_small_api: "small"

NETWORK

service_private_nat_networks_name: "default" service_private_networks_name: "default" service_public_networks_name: "vip"

IPS

caas_master_public_url: "" haproxy_public_url: ""

CREDHUB

credhub_server_url: "10.0.1.6:8844" credhub_admin_client_secret: ""

CF

cf_uaa_oauth_uri: "https://uaa..xip.io" cf_api_url: "https://api..xip.io" cf_uaa_oauth_client_id: "" # caasclient (2.5. Container 서비스 UAA Client Id 등록 부분의 client 계정 id 와 같아야 한다.) cf_uaa_oauth_client_secret: "" # clientsecret (2.5. Container 서비스 UAA Client Id 등록 부분의 client 계정 password 와 같아야 한다.)

HAPROXY

haproxy_http_port: 8080 haproxy_azs: [z7]

MARIADB

mariadb_port: "3306" mariadb_azs: [z5] mariadb_persistent_disk_type: "10GB" mariadb_admin_user_id: "" mariadb_admin_user_password: "" mariadb_role_set_administrator_code_name: "Administrator" mariadb_role_set_administrator_code: "RS0001" mariadb_role_set_regular_user_code_name: "Regular User" mariadb_role_set_regular_user_code: "RS0002" mariadb_role_set_init_user_code_name: "Init User" mariadb_role_set_init_user_code: "RS0003"

DASHBOARD

caas_dashboard_instances: 1 caas_dashboard_port: 8091 caas_dashboard_azs: [z6] caas_dashboard_management_security_enabled: false caas_dashboard_logging_level: "INFO"

API

caas_api_instances: 1 caas_api_port: 3333 caas_api_azs: [z6] caas_api_management_security_enabled: false caas_api_logging_level: "INFO"

COMMON API

caas_common_api_instances: 1 caas_common_api_port: 3334 caas_common_api_azs: [z6] caas_common_api_logging_level: "INFO"

SERVICE BROKER

caas_service_broker_instances: 1 caas_service_broker_port: 8888 caas_service_broker_azs: [z6]

PRIVATE IMAGE REPOSITORY

private_image_repository_azs: [z7] private_image_repository_port: 5000 private_image_repository_root_directory: "/var/vcap/data/private-image-repository" private_image_repository_public_url: "" private_image_repository_persistent_disk_type: "10GB"

ADDON

caas_apply_addons_azs: [z5]

MASTER

caas_master_backend_port: "8443" caas_master_port: "8443" caas_master_azs: [z7] caas_master_persistent_disk_type: 51200

WORKER

caas_worker_instances: 3 caas_worker_azs: [z4,z5,z6]

JENKINS

jenkins_broker_instances: 1 jenkins_broker_port: 8787 jenkins_broker_azs: [z6] jenkins_namespace: "paasta-jenkins" jenkins_secret_file: "/var/vcap/jobs/container-jenkins-broker/data/docker-secret.yml" jenkins_namespace_file: "/var/vcap/jobs/container-jenkins-broker/data/create-namespace.yml"
1
- Deploy 스크립트 파일을 서버 환경에 맞게 수정한다.
2
- vSphere : **deploy-vsphere.sh**
3
- AWS : **deploy-aws.sh**
4
- OpenStack : **deploy-openstack.sh**
5
- GCP : **deploy-gcp.sh**
6
- Azure : **deploy-azure.sh**
Copied!
$ cd ~/workspace/paasta-5.0/deployment/service-deployment/paasta-container-service-2.0 $ vi deploy-vsphere.sh

!/bin/bash

SET VARIABLES

export CAAS_DEPLOYMENT_NAME='paasta-container-service' export CAAS_BOSH2_NAME='micro-bosh' export CAAS_BOSH2_UUID=bosh int <(bosh -e ${CAAS_BOSH2_NAME} environment --json) --path=/Tables/0/Rows/0/uuid

DEPLOY

bosh -e ${CAAS_BOSH2_NAME} -n -d ${CAAS_DEPLOYMENT_NAME} deploy --no-redact manifests/paasta-container-service-deployment-vsphere.yml -l manifests/paasta-container-service-vars-vsphere.yml -o manifests/ops-files/paasta-container-service/network-vsphere.yml -o manifests/ops-files/iaas/vsphere/cloud-provider.yml -o manifests/ops-files/iaas/vsphere/set-working-dir-no-rp.yml -o manifests/ops-files/rename.yml -o manifests/ops-files/misc/single-master.yml -o manifests/ops-files/misc/first-time-deploy.yml -v director_uuid=${CAAS_BOSH2_UUID} -v director_name=${CAAS_BOSH2_NAME} -v deployment_name=${CAAS_DEPLOYMENT_NAME}
1
- Container 서비스팩을 배포한다.
Copied!
$ ./remove-all-addons.sh $ ./deploy-openstack.sh
Using environment '10.0.1.6' as client 'admin'
Using deployment 'paasta-container-service'
################################################## 100.00% 177.74 KiB/s 0s
#################################################### 100.00% 5.57 KiB/s 0s
################################################### 100.00% 30.84 KiB/s 0s
################################################## 100.00% 770.66 KiB/s 0s
Task 611 Task 613 Task 612 Task 611 | 08:11:56 | Extracting release: Extracting release (00:00:00) Task 611 | 08:11:56 | Verifying manifest: Verifying manifest Task 610 | 08:11:56 | Extracting release: Extracting release (00:00:00) Task 610 | 08:11:56 | Verifying manifest: Verifying manifest (00:00:00) Task 611 | 08:11:56 | Verifying manifest: Verifying manifest (00:00:00) Task 611 | 08:11:57 | Resolving package dependencies: Resolving package dependencies Task 613 | 08:11:57 | Extracting release: Extracting release (00:00:00) Task 613 | 08:11:57 | Verifying manifest: Verifying manifest Task 610 | 08:11:57 | Resolving package dependencies: Resolving package dependencies Task 611 | 08:11:57 | Resolving package dependencies: Resolving package dependencies (00:00:00) Task 611 | 08:11:57 | Processing 3 existing jobs: Processing 3 existing jobs (00:00:00) Task 611 | 08:11:57 | Compiled Release has been created: bpm/1.0.4 (00:00:00)
Task 611 Started Fri Nov 22 08:11:56 UTC 2019 Task 611 Finished Fri Nov 22 08:11:57 UTC 2019 Task 611 Duration 00:00:01 Task 611 done
Task 613 | 08:11:57 | Verifying manifest: Verifying manifest (00:00:00) Task 613 | 08:11:57 | Resolving package dependencies: Resolving package dependencies (00:00:00) Task 613 | 08:11:58 | Processing 6 existing jobs: Processing 6 existing jobs (00:00:00) Task 613 | 08:11:58 | Compiled Release has been created: docker/35.2.1 (00:00:00)
Task 613 Started Fri Nov 22 08:11:57 UTC 2019 Task 613 Finished Fri Nov 22 08:11:58 UTC 2019 Task 613 Duration 00:00:01 Task 613 done
Task 610 | 08:11:57 | Resolving package dependencies: Resolving package dependencies (00:00:00) Task 610 | 08:11:57 | Processing 4 existing jobs: Processing 4 existing jobs (00:00:00) Task 610 | 08:11:57 | Compiled Release has been created: cfcr-etcd/1.11.1 (00:00:00)
Task 610 Started Fri Nov 22 08:11:56 UTC 2019 Task 610 Finished Fri Nov 22 08:11:57 UTC 2019 Task 610 Duration 00:00:01 Task 610 done
Task 612 | 08:11:58 | Extracting release: Extracting release (00:00:00) Task 612 | 08:11:58 | Verifying manifest: Verifying manifest (00:00:00) Task 612 | 08:11:58 | Resolving package dependencies: Resolving package dependencies (00:00:00) Task 612 | 08:11:58 | Processing 6 existing packages: Processing 6 existing packages (00:00:02) Task 612 | 08:12:00 | Processing 4 existing jobs: Processing 4 existing jobs (00:00:00) Task 612 | 08:12:00 | Release has been created: bosh-dns/1.12.0 (00:00:00)
Task 612 Started Fri Nov 22 08:11:58 UTC 2019 Task 612 Finished Fri Nov 22 08:12:00 UTC 2019 Task 612 Duration 00:00:02 Task 612 done
################################################### 100.00% 96.30 MiB/s 4s
Task 614
Task 614 | 08:12:26 | Extracting release: Extracting release (00:00:02) Task 614 | 08:12:29 | Verifying manifest: Verifying manifest (00:00:00) Task 614 | 08:12:29 | Resolving package dependencies: Resolving package dependencies (00:00:00) Task 614 | 08:12:29 | Creating new packages: cifs-utils/5cdcfa2be82cf12c60e1d18cac67b2edd460e3dce1c309496e9aafb5e969cb31 (00:00:00) Task 614 | 08:12:29 | Creating new packages: cni/733d130f18b3988a8a2dac37e66e886cbd368116b4fbf56438946795b59b8409 (00:00:01) Task 614 | 08:12:30 | Creating new packages: conntrack/a4fcc71e14eba1dd1f27115fb3647bc9d913a13ef3842d312c8ab288954d6899 (00:00:00) Task 614 | 08:12:30 | Creating new packages: etcdctl/fb69bb4734751c6ad5e4d1e019c4c7edc1727994dcdc24404f116d3e1064ceaf (00:00:00) Task 614 | 08:12:30 | Creating new packages: flanneld/5b571d993714ca9563d1f2fdeeae1c2db71835ce548a9b75cdc4e8bd8bb20621 (00:00:01) Task 614 | 08:12:31 | Creating new packages: golang-1.12-linux/2566cc8c8b3c0f3ccf6c832a6a4657a14f938197a70c2d2b6243be051439a395 (00:00:01) Task 614 | 08:12:32 | Creating new packages: ipset/238365bbfb0001eb0ea16431c05f6b76845c101c78a905c31299f32cc820dc5a (00:00:01) Task 614 | 08:12:33 | Creating new packages: jq/5ac19aae3c9b3648140589b03b673db4ce896733505562b4c0d9e64b9a880b38 (00:00:00) Task 614 | 08:12:33 | Creating new packages: kubernetes/208b979e87b52a5cc64bcc4bc82e54532edab3f13377b24f5baa83d73a51957d (00:00:08) Task 614 | 08:12:41 | Creating new packages: nfs/9e30f53d1743d5ae1898520bc1c501b28647cd2f7e5bd5eddd2c34c560763771 (00:00:00) Task 614 | 08:12:41 | Creating new packages: pid_utils/a2a905d267548c461ccf91937963ff7d26356f8f2edd928490ba529d0cc94aa4 (00:00:00) Task 614 | 08:12:41 | Creating new packages: prometheus/641a811c8b53b4572daff1c857b052cfa41e44f8700f31503623f99c1e78a6a9 (00:00:00) Task 614 | 08:12:41 | Creating new packages: smoke-tests/0f3e7c3d8594c6f5bff2e0e54b0390fa57c95d99aba0f3fef54a85f9242b985b (00:00:00) Task 614 | 08:12:41 | Creating new packages: socat/5737907822eb2c5ab7aa509d699acc566f349b7e86d8a8d176037b90d3427dbe (00:00:00) Task 614 | 08:12:41 | Creating new jobs: apply-specs/16f5acd86b9cf75db5326a8d61739ac6296b728341e681f3dc2eca47f99cb512 (00:00:00) Task 614 | 08:12:41 | Creating new jobs: bbr-kube-apiserver/56cbb995f6cdac6d27577f4ffd166b148aad57ff44ecf9b2c687bdbdf403e9a1 (00:00:00) Task 614 | 08:12:41 | Creating new jobs: cifs-utils/41efca0df09260293d95b618d4858e6f18aab226d64a7e6f80951134ea82bcdd (00:00:01) Task 614 | 08:12:42 | Creating new jobs: cloud-provider/ce4e4103d4560fa3ddbd267e7456f4883ebe3340cd97cc1fe0c827d01d4b095d (00:00:00) Task 614 | 08:12:42 | Creating new jobs: flanneld/c9fa0facf6840eb82562c5d1714963ca24a8d430d2681db861cc93085070ab0a (00:00:01) Task 614 | 08:12:43 | Creating new jobs: kube-apiserver/b6cb4e9cc04f9ee4221def47265ce0074bec1412941e79de659ca670d83b105d (00:00:00) Task 614 | 08:12:43 | Creating new jobs: kube-controller-manager/2cc0863c2fc4f218d90eff06882872015341aa8eaa8bdbaee4e5a7a70c8e2bb7 (00:00:00) Task 614 | 08:12:43 | Creating new jobs: kube-proxy/65e036f59b63b3a160ccf456f3819b220e101e230206ad27a96dbaa4bb4b0975 (00:00:00) Task 614 | 08:12:43 | Creating new jobs: kube-scheduler/575969aff53426e9fa25041f0e599ec9b1e9758c28d94ab8795e2b6af6226b38 (00:00:00) Task 614 | 08:12:44 | Creating new jobs: kubelet/691a8fe39a9943cfe8887d818e222d5e58a2385abcf62bf7cb128a257efe427b (00:00:00) Task 614 | 08:12:44 | Creating new jobs: kubernetes-dependencies/40fdea1f8d3818418c9bd3216cc633a583f0537b30ec2b9957f24ab5a32b2971 (00:00:05) Task 614 | 08:12:51 | Creating new jobs: kubernetes-roles/1a2882b6abb4abfa60a118cf8268e8518312a5b3f367787e6aab72286e2c4ea7 (00:00:01) Task 614 | 08:12:52 | Creating new jobs: kubo-dns-aliases/0b18a6e6006651877e1df15d8c8f3b2e1e5a8ebf33f24622d5bad47bf2d91979 (00:00:00) Task 614 | 08:12:52 | Creating new jobs: prometheus/a71ed7b138391f2a69e4f64126bef2a04e918567126720bb24c9da014a41d106 (00:00:00) Task 614 | 08:12:52 | Creating new jobs: smoke-tests/9b7bcb34e0a2c16d40a61af1f76d68ced53b9abd9db4e50d2310d5419389679d (00:00:00) Task 614 | 08:12:52 | Release has been created: kubo/0.34.1 (00:00:00)
Task 614 Started Fri Nov 22 08:12:26 UTC 2019 Task 614 Finished Fri Nov 22 08:12:52 UTC 2019 Task 614 Duration 00:00:26 Task 614 done
################################################# 100.00% 104.13 MiB/s 10s
Task 615
Task 615 | 08:13:18 | Extracting release: Extracting release (00:00:08) Task 615 | 08:13:26 | Verifying manifest: Verifying manifest (00:00:00) Task 615 | 08:13:26 | Resolving package dependencies: Resolving package dependencies (00:00:00) Task 615 | 08:13:26 | Creating new packages: container-jenkins-broker/61402977c04a852d4fc225647de0552311ca93d5af34623b5dbb11f270f6955c (00:00:03) Task 615 | 08:13:29 | Creating new packages: container-service-api/799d2307a495ac31a2814a117caf6654f8a3c97b9a737fe0f28b82b1cf9424d1 (00:00:01) Task 615 | 08:13:30 | Creating new packages: container-service-broker/dec15d1e9a681abd3028dbc6178e03502318945bdf2569677dec9f903ef4fac4 (00:00:04) Task 615 | 08:13:34 | Creating new packages: container-service-common-api/d4bed1a591fdc156ed6b382ae29bd4c78e4aa7dc611d250e8d118ad8b6f98462 (00:00:00) Task 615 | 08:13:34 | Creating new packages: container-service-dashboard/fddb96e48b6ccd9e31fbcaa2bf9f1c3c3d1183e9c10f1c3bb1bcb27119fe32c7 (00:00:01) Task 615 | 08:13:35 | Creating new packages: docker-images/6569c8e4d1dcbfa24ebdeefdca566812ed973836f38b4caa5adeced5a3ccf259 (00:00:17) Task 615 | 08:13:52 | Creating new packages: docker-repository-setting/a12df48ea6f42617b66ff0f009ac777ad624b072187e53015ee09ef1b75c3fbd (00:00:00) Task 615 | 08:13:52 | Creating new packages: private-image-repository/afe545b792d56af9fb744a7b123b8cd53d394567ea73d58b6a590a9626dc9e17 (00:00:00) Task 615 | 08:13:52 | Processing 3 existing packages: Processing 3 existing packages (00:00:00) Task 615 | 08:13:52 | Creating new jobs: container-jenkins-broker/7836667a306cf2ae27d8d815db4ede086b5006339d785bbf90bf546d56336e2a (00:00:00) Task 615 | 08:13:52 | Creating new jobs: container-service-api/1ecc773f9a717baefb637a2339a6ae5612908e388788fb3bf2025c94e5e1284c (00:00:01) Task 615 | 08:13:53 | Creating new jobs: container-service-broker/b3e5bc10e34861f964e9bcedc7d4bc0e67906c4bf0d05f8b564e58589c623624 (00:00:00) Task 615 | 08:13:53 | Creating new jobs: container-service-common-api/393810cc14247d14f2b1094306189c95a6bbb9b2ddbd4d222ee0e2fe05fa348b (00:00:00) Task 615 | 08:13:53 | Creating new jobs: container-service-dashboard/cbe4393d6939f633f7664932a2bbf0aab213b9fad43d0f09cb64267d03178674 (00:00:00) Task 615 | 08:13:53 | Creating new jobs: docker-images/5da3804d51358c1d2b5a57c4b85f678424c2585f493cabe7c9fd5b657f02b13b (00:00:00) Task 615 | 08:13:53 | Creating new jobs: docker-repository-setting/24a4331a89f7443f22f7de69f3ccce6c58d10913fd53d3f727a6049d53620934 (00:00:01) Task 615 | 08:13:55 | Creating new jobs: haproxy/5ca9c27b4c0732f6d9aac1312f5e978d265e3cc0b3a6f6d2d193e769f5bffe1f (00:00:00) Task 615 | 08:13:55 | Creating new jobs: mariadb/c10857a8792cf9eb095a3548ba63f1905f2e5537351213e6b3858d8a5b878be2 (00:00:00) Task 615 | 08:13:55 | Creating new jobs: private-image-repository/85821934521b807641d6ce64b357ad4b381c324b7b066035dd300f137c1b922e (00:00:00) Task 615 | 08:13:55 | Release has been created: paasta-container-service-projects-release/2.0 (00:00:01)
Task 615 Started Fri Nov 22 08:13:18 UTC 2019 Task 615 Finished Fri Nov 22 08:13:56 UTC 2019 Task 615 Duration 00:00:38 Task 615 done
  • azs:
    • cloud_properties:
  • availability_zone: nova
  • name: z1
    • cloud_properties:
  • availability_zone: nova
  • name: z2
    • cloud_properties:
  • availability_zone: nova
  • name: z3
    • cloud_properties:
  • availability_zone: nova
  • name: z4
    • cloud_properties:
  • availability_zone: nova
  • name: z5
    • cloud_properties:
  • availability_zone: nova
  • name: z6
    • cloud_properties:
  • availability_zone: nova
  • name: z7
  • vm_types:
    • cloud_properties:
  • instance_type: m1.tiny
  • name: minimal
    • cloud_properties:
  • instance_type: m1.medium
  • name: default
    • cloud_properties:
  • instance_type: m1.small
  • name: small
    • cloud_properties:
  • instance_type: m1.medium
  • name: medium
    • cloud_properties:
  • instance_type: m1.medium
  • name: medium-memory-8GB
    • cloud_properties:
  • instance_type: m1.large
  • name: large
    • cloud_properties:
  • instance_type: m1.xlarge
  • name: xlarge
    • cloud_properties:
  • instance_type: m1.medium
  • name: small-50GB
    • cloud_properties:
  • instance_type: m1.medium
  • name: small-50GB-ephemeral-disk
    • cloud_properties:
  • instance_type: m1.large
  • name: small-100GB-ephemeral-disk
    • cloud_properties:
  • instance_type: m1.large
  • name: small-highmem-100GB-ephemeral-disk
    • cloud_properties:
  • instance_type: m1.large
  • name: small-highmem-16GB
    • cloud_properties:
  • instance_type: m1.medium
  • name: service_medium
    • cloud_properties:
  • instance_type: m1.medium
  • name: service_medium_2G
    • cloud_properties:
  • instance_type: m1.tiny
  • name: portal_small
    • cloud_properties:
  • instance_type: m1.small
  • name: portal_medium
    • cloud_properties:
  • instance_type: m1.small
  • name: portal_large
  • vm_extensions:
    • cloud_properties:
  • ports:
    • host: 3306
  • name: mysql-proxy-lb
    • name: cf-router-network-properties
    • name: cf-tcp-router-network-properties
    • name: diego-ssh-proxy-network-properties
    • name: cf-haproxy-network-properties
    • cloud_properties:
  • ephemeral_disk:
  • size: 51200
  • type: gp2
  • name: small-50GB
    • cloud_properties:
  • ephemeral_disk:
  • size: 102400
  • type: gp2
  • name: small-highmem-100GB
  • compilation:
  • az: z3
  • network: default
  • reuse_compilation_vms: true
  • vm_type: large
  • workers: 5
  • networks:
    • name: default
  • subnets:
    • az: z1
  • cloud_properties:
  • name: random
  • net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
  • security_groups:
    • paasta-v50-security
  • dns:
    • 8.8.8.8
  • gateway: 10.0.1.1
  • range: 10.0.1.0/24
  • reserved:
    • 10.0.1.1 - 10.0.1.9
  • static:
    • 10.0.1.10 - 10.0.1.120
    • az: z2
  • cloud_properties:
  • name: random
  • net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
  • security_groups:
    • paasta-v50-security
  • dns:
    • 8.8.8.8
  • gateway: 10.0.41.1
  • range: 10.0.41.0/24
  • reserved:
    • 10.0.41.1 - 10.0.41.9
  • static:
    • 10.0.41.10 - 10.0.41.120
    • az: z3
  • cloud_properties:
  • name: random
  • net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
  • security_groups:
    • paasta-v50-security
  • dns:
    • 8.8.8.8
  • gateway: 10.0.81.1
  • range: 10.0.81.0/24
  • reserved:
    • 10.0.81.1 - 10.0.81.9
  • static:
    • 10.0.81.10 - 10.0.81.120
    • az: z4
  • cloud_properties:
  • name: random
  • net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
  • security_groups:
    • paasta-v50-security
  • dns:
    • 8.8.8.8
  • gateway: 10.0.121.1
  • range: 10.0.121.0/24
  • reserved:
    • 10.0.121.1 - 10.0.121.9
  • static:
    • 10.0.121.10 - 10.0.121.120
    • az: z5
  • cloud_properties:
  • name: random
  • net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
  • security_groups:
    • paasta-v50-security
  • dns:
    • 8.8.8.8
  • gateway: 10.0.161.1
  • range: 10.0.161.0/24
  • reserved:
    • 10.0.161.1 - 10.0.161.9
  • static:
    • 10.0.161.10 - 10.0.161.120
    • az: z6
  • cloud_properties:
  • name: random
  • net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
  • security_groups:
    • paasta-v50-security
  • dns:
    • 8.8.8.8
  • gateway: 10.0.201.1
  • range: 10.0.201.0/24
  • reserved:
    • 10.0.201.1 - 10.0.201.9
  • static:
    • 10.0.201.10 - 10.0.201.120
    • az: z7
  • cloud_properties:
  • name: random
  • net_id: 9950af59-daf2-43d6-967c-ad445bfe2cb2
  • security_groups:
    • paasta-v50-security
  • dns:
    • 8.8.8.8
  • gatew