Gitiles
Code Review Sign In
gerrit.opencord.org / platform-install / c989f26c89e1b2e829810bf359da4c59f7db474a / . / profile_manifests / opencloud.yml
blob: 296d5405663b3465198a93374b5051aa13152ace [file] [log] [blame]
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]1---
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]2# profile_manifests/opencloud.yml
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]3# Generic OpenCloud Site
4
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]5# redefined here for running XOS start/config on localhost
6cord_profile: opencloud
7
8# These are source paths, used only on the config host, and should be redefined
9# on a per-pod basis when installing multiple pods
10config_cord_dir: "{{ ansible_user_dir + '/cord' }}"
11config_cord_profile_dir: "{{ ansible_user_dir + '/cord_profile' }}"
12
13# Locations on head node (same on all pods)
14head_cord_dir: "/opt/cord"
15head_cord_profile_dir: "/opt/cord_profile"
16head_onos_cord_dir: "/opt/onos-cord"
17
18# Credentials and PKI
19credentials_dir: "{{ playbook_dir }}/credentials"
20pki_dir: "{{ playbook_dir }}/pki"
21ssh_pki_dir: "{{ playbook_dir }}/ssh_pki"
22
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]23# site configuration
24site_name: generic_opencloud
25site_humanname: "Generic OpenCloud"
26deployment_type: campus
27
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]28xos_admin_user: "xosadmin@opencord.org"
29xos_admin_pass: "{{ lookup('password', credentials_dir ~ '/xosadmin@opencord.org chars=ascii_letters,digits') }}"
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]30xos_admin_first: XOS
31xos_admin_last: Admin
32
33xos_users: []
34
35use_vtn: True
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]36use_openstack: True
37use_fabric: False
38
39headnode_name: head1
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]40
41xos_tosca_config_templates:
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]42 - vtn-service.yaml
43 - management-net.yaml
44
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]45build_xos_base_image: True
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]46
47xos_docker_volumes:
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]48 - host: "/opt/cord_profile/images"
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]49 container: /opt/xos/images
50
51# GUI Branding
52# Not neeeded, default is OpenCloud
53
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]54# GUI Config [new GUI], used in app.config.js.j2 and style.config.js.j2
55gui_project_name: "OpenCloud"
56gui_favicon: "opencloud-favicon.png"
57gui_background: "opencloud-bg.jpg"
58gui_payoff: "A Value-Added Cloud for the Internet2 Community"
59gui_logo: "opencloud-logo.png"
60
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]61# paths defined in manifest/default.xml
62xos_services:
63 - name: vtn
64 path: onos-apps/apps/vtn
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]65 keypair: vsg_rsa
66 - name: openstack
67 path: orchestration/xos_services/openstack
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]68 - name: onos
69 path: orchestration/xos_services/onos-service
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]70 keypair: onos_rsa
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]71 - name: vrouter
72 path: orchestration/xos_services/vrouter
73
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]74profile_library: "rcord"
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]75
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]76# SSL certificate generation
77ssl_cert_subj_prefix: "/C=US/ST=California/L=Menlo Park/O=ON.Lab/OU={{ site_humanname }} Deployment"
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]78
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]79server_certs:
80 - cn: "keystone.{{ site_suffix }}"
81 subj: "{{ ssl_cert_subj_prefix }}/CN=keystone.{{ site_suffix }}"
82 altnames:
83 - "DNS:keystone.{{ site_suffix }}"
84 - "DNS:keystone"
85 - cn: "xos-core.{{ site_suffix }}"
86 subj: "{{ ssl_cert_subj_prefix }}/CN=xos-core.{{ site_suffix }}"
87 altnames:
88 - "DNS:xos-core.{{ site_suffix }}"
89 - cn: "docker.{{ site_suffix }}"
90 subj: "{{ ssl_cert_subj_prefix }}/CN=docker.{{ site_suffix }}"
91 altnames:
92 - "DNS:docker.{{ site_suffix }}"
93 - "DNS:head.{{ site_suffix }}"
94 - "IP:127.0.0.1"
95 - "IP:{{ mgmt_ipv4_first_octets }}.1"
96 - "IP:{{ hostvars[headnode_name].ansible_default_ipv4.address }}"
97 - cn: "registry.{{ site_suffix }}"
98 subj: "{{ ssl_cert_subj_prefix }}/CN=registry.{{ site_suffix }}"
99 altnames:
100 - "DNS:registry.{{ site_suffix }}"
101 - "DNS:head.{{ site_suffix }}"
102 - "IP:127.0.0.1"
103 - "IP:{{ mgmt_ipv4_first_octets }}.1"
104 - "IP:{{ hostvars[headnode_name].ansible_default_ipv4.address }}"
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]105
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]106client_certs:
107 - cn: "dockerclient"
108 subj: "{{ ssl_cert_subj_prefix }}/CN=dockerclient"
109 altnames:
110 - "email:dockerclient@{{ site_suffix }}"
111 - cn: "dockerbuildhost"
112 subj: "{{ ssl_cert_subj_prefix }}/CN=dockerbuildhost"
113 altnames:
114 - "email:dockerbuildhost@{{ site_suffix }}"
115
116# docker registry users
117docker_registry_users:
118 - name: "{{ xos_admin_user }}"
119 password: "{{ xos_admin_pass }}"
120
121# Network/DNS settings
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]122site_suffix: generic.infra.opencloud.us
123
124dns_search:
125 - "{{ site_suffix }}"
126
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]127mgmt_ipv4_first_octets: "192.168.200"
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]128
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]129dns_servers:
130 - "{{ mgmt_ipv4_first_octets }}.1"
131
132headnode_user: vagrant
133
134# DNS settings for NSD/Unbound
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]135nsd_zones:
136 - name: "{{ site_suffix }}"
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]137 ipv4_first_octets: "{{ mgmt_ipv4_first_octets }}"
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]138 name_reverse_unbound: "168.192.in-addr.arpa"
139 soa: ns1
140 ns:
141 - { name: ns1 }
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]142 nodelists:
143 - head_lxd_list
144 - physical_node_list
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]145 aliases:
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]146 - { name: "apt-cache", dest: "head1" }
147 - { name: "cordloghost", dest: "head1" }
148 - { name: "docker", dest: "head1" }
149 - { name: "ns", dest: "head1" }
150 - { name: "ns1", dest: "head1" }
151 - { name: "onos-cord", dest: "head1" }
152 - { name: "xos", dest: "head1" }
153 - { name: "xos-chameleon", dest: "head1" }
154 - { name: "xos-rest-gw", dest: "head1" }
155 - { name: "xos-spa-gui", dest: "head1" }
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]156
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]157unbound_listen_all: True
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]158
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]159unbound_interfaces:
160 - "{{ mgmt_ipv4_first_octets }}.1/24"
161
162dhcpd_subnets:
163 - interface: mgmtbr
164 cidr: "{{ mgmt_ipv4_first_octets }}.1/24"
165 dhcp_first: 129
166 dhcp_last: 254
167 other_static:
168 - physical_node_list
169 - head_lxd_list
170
171# network interface setup
172mgmt_interface: eth1
173
174physical_node_list:
175 - name: head1
176 ipv4_last_octet: 1
177 aliases:
178 - head
179 - name: compute1
180 ipv4_last_octet: 20
181 - name: compute2
182 ipv4_last_octet: 21
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]183
184# VTN network configuration
185management_network_cidr: 172.27.0.0/24
186management_network_ip: 172.27.0.1/24
187data_plane_ip: 10.168.0.253/24
188
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]189# ONOS version
190onos_docker_image: "opencord/onos:1.8.2"
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]191
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]192on_maas: False
193on_cloudlab: False
194
195run_dist_upgrade: False
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]196
197openstack_version: kilo
198
199juju_config_name: opencloud
200juju_config_path: /usr/local/src/juju_config.yml
201
202keystone_admin_password: "{{ lookup('password', 'credentials/generic_opencloud_keystone_admin chars=ascii_letters,digits') }}"
203
204deployment_flavors:
205 - m1.small
206 - m1.medium
207 - m1.large
208 - m1.xlarge
209
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]210charm_versions:
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]211 ceilometer-agent: "cs:trusty/ceilometer-agent-13"
212 ceilometer: "cs:trusty/ceilometer-17"
213 glance: "cs:trusty/glance-28"
214 keystone: "cs:trusty/keystone-33"
215 mongodb: "cs:trusty/mongodb-33"
216 neutron-api: "cs:~cordteam/trusty/neutron-api-5"
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]217 nova-compute: "cs:~cordteam/trusty/nova-compute-2"
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]218 ntp: "cs:trusty/ntp-14"
219 openstack-dashboard: "cs:trusty/openstack-dashboard-19"
220 percona-cluster: "cs:trusty/percona-cluster-31"
221 rabbitmq-server: "cs:trusty/rabbitmq-server-42"
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]222
223head_lxd_list:
224 - name: "juju-1"
225 service: "juju"
226 aliases:
227 - "juju"
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]228 ipv4_last_octet: 50
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]229
230 - name: "ceilometer-1"
231 service: "ceilometer"
232 aliases:
233 - "ceilometer"
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]234 ipv4_last_octet: 51
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]235 forwarded_ports:
236 - { ext: 8777, int: 8777 }
237
238 - name: "glance-1"
239 service: "glance"
240 aliases:
241 - "glance"
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]242 ipv4_last_octet: 52
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]243 forwarded_ports:
244 - { ext: 9292, int: 9292 }
245
246 - name: "keystone-1"
247 service: "keystone"
248 aliases:
249 - "keystone"
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]250 ipv4_last_octet: 53
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]251 forwarded_ports:
252 - { ext: 35357, int: 35357 }
253 - { ext: 4990, int: 4990 }
254 - { ext: 5000, int: 5000 }
255
256 - name: "percona-cluster-1"
257 service: "percona-cluster"
258 aliases:
259 - "percona-cluster"
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]260 ipv4_last_octet: 54
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]261
262 - name: "neutron-api-1"
263 service: "neutron-api"
264 aliases:
265 - "neutron-api"
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]266 ipv4_last_octet: 55
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]267 forwarded_ports:
268 - { ext: 9696, int: 9696 }
269
270 - name: "nova-cloud-controller-1"
271 service: "nova-cloud-controller"
272 aliases:
273 - "nova-cloud-controller"
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]274 ipv4_last_octet: 56
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]275 forwarded_ports:
276 - { ext: 8774, int: 8774 }
277
278 - name: "openstack-dashboard-1"
279 service: "openstack-dashboard"
280 aliases:
281 - "openstack-dashboard"
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]282 ipv4_last_octet: 57
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]283 forwarded_ports:
284 - { ext: 8080, int: 80 }
285
286 - name: "rabbitmq-server-1"
287 service: "rabbitmq-server"
288 aliases:
289 - "rabbitmq-server"
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]290 ipv4_last_octet: 58
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]291
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]292 - name: "mongodb-1"
293 service: "mongodb"
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]294 aliases:
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]295 - "mongodb"
296 ipv4_last_octet: 59
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]297
298lxd_service_list:
299 - ceilometer
300 - glance
301 - keystone
Zack Williamsc989f262017-05-11 13:02:59 -0700[diff] [blame^]302 - mongodb
Zack Williamsa2763112017-01-03 11:38:38 -0700[diff] [blame]303 - neutron-api
304 - nova-cloud-controller
305 - openstack-dashboard
306 - percona-cluster
307 - rabbitmq-server
308
309standalone_service_list:
310 - ceilometer-agent
311 - ntp
312
313service_relations:
314 - name: keystone
315 relations: [ "percona-cluster", ]
316
317 - name: nova-cloud-controller
318 relations: [ "percona-cluster", "rabbitmq-server", "glance", "keystone", ]
319
320 - name: glance
321 relations: [ "percona-cluster", "keystone", ]
322
323 - name: neutron-api
324 relations: [ "keystone", "percona-cluster", "rabbitmq-server", "nova-cloud-controller", ]
325
326 - name: openstack-dashboard
327 relations: [ "keystone", ]
328
329 - name: ceilometer
330 relations: [ "mongodb", "rabbitmq-server" ]
331
332 - name: "ceilometer:identity-service"
333 relations: [ "keystone:identity-service", ]
334
335 - name: "ceilometer:ceilometer-service"
336 relations: [ "ceilometer-agent:ceilometer-service", ]
337
338
339compute_relations:
340 - name: nova-compute
341 relations: [ "ceilometer-agent", "glance", "nova-cloud-controller", ]
342
343 - name: "nova-compute:shared-db"
344 relations: [ "percona-cluster:shared-db", ]
345
346 - name: "nova-compute:amqp"
347 relations: [ "rabbitmq-server:amqp", ]
348
349 - name: ntp
350 relations: [ "nova-compute", ]
351
352
353xos_images:
354 - name: "trusty-server-multi-nic"
355 url: "http://www.vicci.org/opencloud/trusty-server-cloudimg-amd64-disk1.img"
356 checksum: "sha256:c2d0ffc937aeb96016164881052a496658efeb98959dc68e73d9895c5d9920f7"
357