kolla-kubernetes/etc/kolla-kubernetes/kolla-kubernetes.yml

---
# Any config options specified here will overwrite anything in globals.yml
# at run time.

##############################
# Kolla Kubernetes options
##############################
# For now, set kolla_internal_vip_address in /etc/kolla/globals.yml to use as
# the ip address for all the services.
# kolla_internal_vip_address: "10.10.10.254"
# This address is used in ALL public endpoints and it serves as an entry point
# into kolla kubernetes cluster, needs to be changed by the operator.
kolla_kubernetes_external_vip: "10.57.120.254"

########################
# Kubernetes Cluster
########################
keystone_replicas: "1"  # may be > 1
memcached_replicas: "1"  # must == 1 even for multinode
rabbitmq_replicas: "1"  # must == 1 even for multinode
horizon_replicas: "1"  # may be > 1
glance_api_replicas: "1"  # may be > 1
glance_registry_replicas: "1"  # must == 1 even for multinode
neutron_control_replicas: "1"  # may be > 1
nova_api_replicas: "1"
nova_conductor_replicas: "1"
nova_scheduler_replicas: "1"

enable_openvswitch_tcp: "no"
enable_libvirt_tcp: "no"

#################################
# Kubernetes Cluster DNS setting
#################################
dns_replicas: "1"
#dns_server_ip: ""
dns_domain_name: "openstack.kolla"

########################
# Persistent Storage
########################
storage_provider: "host"  # host, ceph, gce, aws
storage_ceph:
  # - WARNING: These sample defaults configure ceph access using the
  #   ceph "admin" user/key, because it involves the least amount of
  #   work for the a user to get ceph volumes working.  However, it is
  #   highly recommended that the operator create a dedicated ceph
  #   user/key with access only to the ceph pool to be used by this
  #   Kubernetes cluster.
  #
  # Kubernetes nodes act as ceph clients because they must mount ceph
  #   volumes on behalf of pods.  For a particular ceph user, there
  #   are two ways to pass the ceph secret keyring to Kubernetes.
  #
  #   1) The ceph user secret keyring may be loaded as a kubernetes
  #      secret.  The base64-encoded secret must be referenced by
  #      storage_ceph.key.  To disable this method, comment out the
  #      storage_ceph.key definition or set the value to "".  The
  #      encoded secret may be created with this command:
  #      $ ssh ceph-mon cat /etc/ceph/path/to/ceph.client.keyring \
  #          | grep key | awk '{print $3}' | base64
  #
  #   2) The ceph user secret keyring may be stored on the Kubernetes
  #      node's filesystem, and then referenced by
  #      storage_ceph.keyring.  To disable this method, comment out
  #      the storage_ceph.keyring definition or set the value to "".
  #
  # If both configurations are defined, Method 1) above takes
  #   precedence over method 2).  Prefer using Method 1) to avoid
  #   provisioning the ceph key on every node, which is difficult if
  #   using cloud provider auto-provisioning.
  #
  # List of ceph monitor nodes
  monitors:
  - x.x.x.x
  - y.y.y.y
  # Default ceph user for authenticated access
  user: admin
  # The default pool to locate ceph volumes
  pool: rbd
  # Default user to use in order to run remote SSH commands
  #   e.g. kolla-kubernetes may execute:
  #        ssh root@ceph-mon rbd create pool/resourceName --size 1024
  ssh_user: root
  # Any unique secret string within the kube env
  secretName: ceph-secret
  # The base64-encoded secret key which nodes need for mounting ceph volumes
  key: EXAMPLEEXAMPLEEXAMPLEEXAMPLEEXAMPLEEXAMPLE=
  # The ceph keyring file location on each kubernetes node's filesystem
  keyring: /etc/ceph/ceph.client.admin.keyring

################################
# Persistent volumes sizes in GB
################################
#glance_volume_size: ""
keystone_auth_url: "http://keystone-admin:35357"

########################
# Glance variables
########################
openstack_glance_auth: "{'auth_url':'{{ keystone_auth_url }}','username':'{{ openstack_auth.username }}','password':'$KEYSTONE_ADMIN_PASSWORD','project_name':'{{ openstack_auth.project_name }}','domain_name':'default'}"
glance_admin_endpoint: "http://glance-api:{{ glance_api_port }}"
glance_public_endpoint: "http://{{ kolla_kubernetes_external_vip }}:{{ glance_api_port }}"
glance_internal_endpoint: "http://glance-api:{{ glance_api_port }}"

########################
# Neutron variables
########################
openstack_neutron_auth: "{'auth_url':'{{ keystone_auth_url }}','username':'{{ openstack_auth.username }}','password':'$KEYSTONE_ADMIN_PASSWORD','project_name':'{{ openstack_auth.project_name }}','domain_name':'default'}"
neutron_admin_endpoint: "http://neutron:{{ neutron_server_port }}"
neutron_public_endpoint: "http://{{ kolla_kubernetes_external_vip }}:{{ neutron_server_port }}"
neutron_internal_endpoint: "http://neutron:{{ neutron_server_port }}"

########################
# Keystone variables
########################
keystone_admin_url: "{{ admin_protocol }}://keystone-admin:{{ keystone_admin_port }}/v3"
keystone_internal_url: "{{ internal_protocol }}://keystone-internal:{{ keystone_public_port }}/v3"
keystone_public_url: "{{ public_protocol }}://{{ kolla_kubernetes_external_vip }}:{{ keystone_public_port }}/v3"
keystone_database_address: "mariadb"

########################
# NOVA variables
########################
openstack_nova_auth: "{'auth_url':'{{ keystone_auth_url }}','username':'{{ openstack_auth.username }}','password':'$KEYSTONE_ADMIN_PASSWORD','project_name':'{{ openstack_auth.project_name }}','domain_name':'default'}"
nova_admin_endpoint: "http://nova-api:{{ nova_api_port }}/v2/%(tenant_id)s"
nova_public_endpoint: "http://{{ kolla_kubernetes_external_vip }}:{{ nova_api_port }}/v2/%(tenant_id)s"
nova_internal_endpoint: "http://nova-api:{{ nova_api_port }}/v2/%(tenant_id)s"