tripleo-heat-templates/environments
Giulio Fidente af905a541d Add parameter and CI config to enable Ceph OTW encryption
Starting with Ceph Nautilus it is possible to enable on-wire
encryption between daemons and clients.

This change adds a setting to optionally configure Ceph with OTW
encryption and a setting in scenario001-standalone to test it.

Change-Id: I5d046b814a211aec9051f5278f98a3e81580057c
(cherry picked from commit 89e35393db)
2020-09-04 15:17:19 +02:00
..
backup-and-restore Adding ReaR THT 2020-01-09 15:19:13 +01:00
ceph-ansible Add parameter and CI config to enable Ceph OTW encryption 2020-09-04 15:17:19 +02:00
composable-roles Specify multiple NtpServers by default 2018-12-04 08:31:55 -07:00
lifecycle Remove ffwd-upgrade leftovers from THT. 2020-08-13 01:31:20 +00:00
messaging flatten qdrouterd service configs 2019-02-15 12:53:15 -07:00
metrics Disable presettled metrics 2020-06-17 21:28:41 +00:00
predictable-placement Revert "Switch public endpoints to use FQDNs by default" 2018-05-16 21:45:42 +00:00
services Remove skydive 2020-08-28 10:58:38 -04:00
services-baremetal Changes in env files due to new SRIOV roles 2020-05-06 09:41:33 +01:00
ssl Fix endpoint map tls - zaqar wss port 2020-08-21 21:28:00 +00:00
standalone Add new composable service for IpaClient 2020-04-08 09:47:15 -05:00
storage Use container_file_t for Cinder*NfsMountOptions by default 2020-09-01 08:52:48 +00:00
undercloud Remove skydive 2020-08-28 10:58:38 -04:00
updates Switch default neutron ML2 mechanism driver to OVN 2019-02-14 15:58:27 +01:00
veritas-hyperscale Move vpp, and veritas-hyperscale into deployment 2019-05-30 20:37:33 +00:00
README.md Add a directory for overcloud heat environments 2015-05-15 12:28:00 +02:00
auditd.yaml Move auditd, ca-cert, certmonger to deployment 2019-05-30 20:37:25 +00:00
barbican-backend-dogtag.yaml flatten the barbican service configurations 2019-02-18 08:06:21 -05:00
barbican-backend-kmip.yaml flatten the barbican service configurations 2019-02-18 08:06:21 -05:00
barbican-backend-pkcs11-atos.yaml flatten the barbican service configurations 2019-02-18 08:06:21 -05:00
barbican-backend-pkcs11-lunasa.yaml Add new Luna HSM parameter for Barbican 2020-08-19 10:57:36 -05:00
barbican-backend-pkcs11-thales.yaml flatten the barbican service configurations 2019-02-18 08:06:21 -05:00
barbican-backend-pkcs11.yaml flatten the barbican service configurations 2019-02-18 08:06:21 -05:00
barbican-backend-simple-crypto.yaml flatten the barbican service configurations 2019-02-18 08:06:21 -05:00
cadf.yaml Enable keystone cadf notifications 2017-03-06 18:10:55 +01:00
cavium-liquidio.yaml flatten the cavium liquidio service 2019-03-19 13:53:46 -04:00
cinder-backup.yaml flatten cinder service configuration 2019-01-18 08:55:26 -05:00
cinder-dellemc-powermax-config.yaml Support for PowerMax Cinder Backend 2020-04-20 10:29:52 -05:00
cinder-dellemc-sc-config.yaml Support for SC Cinder Backend 2020-05-12 12:17:49 -05:00
cinder-dellemc-unity-config.yaml flatten cinder service configuration 2019-01-18 08:55:26 -05:00
cinder-dellemc-vmax-iscsi-config.yaml flatten cinder service configuration 2019-01-18 08:55:26 -05:00
cinder-dellemc-vnx-config.yaml flatten cinder service configuration 2019-01-18 08:55:26 -05:00
cinder-dellemc-vxflexos-config.yaml Support for Dell EMC VXFlexOS Backend 2020-06-15 12:15:04 -05:00
cinder-dellemc-xtremio-config.yaml Support for Xtremio Cinder Backend 2020-06-10 14:10:19 -05:00
cinder-dellemc-xtremio-iscsi-config.yaml flatten cinder service configuration 2019-01-18 08:55:26 -05:00
cinder-dellps-config.yaml flatten cinder service configuration 2019-01-18 08:55:26 -05:00
cinder-dellsc-config.yaml flatten cinder service configuration 2019-01-18 08:55:26 -05:00
cinder-hpelefthand-config.yaml flatten cinder service configuration 2019-01-18 08:55:26 -05:00
cinder-iser.yaml Added support for pass-through iSER configuration 2016-09-23 09:51:41 -04:00
cinder-netapp-config.yaml Use container_file_t for Cinder*NfsMountOptions by default 2020-09-01 08:52:48 +00:00
cinder-nvmeof-config.yaml flatten cinder service configuration 2019-01-18 08:55:26 -05:00
cinder-pure-config.yaml Support deploying multiple Cinder Pure Storage backends 2019-09-13 07:36:42 -07:00
cinder-scaleio-config.yaml flatten cinder service configuration 2019-01-18 08:55:26 -05:00
cinder-volume-active-active.yaml Support cinder-volume running active-active 2019-03-04 14:58:51 -05:00
compute-instanceha.yaml Move compute-instanceha, neutron-ovn-dvr-ha to deployments 2019-05-30 20:37:36 +00:00
compute-real-time-example.yaml roles: Remove use of NovaVcpuPinSet from ComputeRealTime 2020-01-21 09:42:22 +00:00
computealt.yaml Disable legacy telemetry by default 2019-11-20 20:30:24 +00:00
config-debug.yaml Fix paunch logs verbosity control 2019-01-16 15:06:32 +00:00
container-image-prepare-debug.yaml Introduce ContainerImagePrepareDebug parameter 2019-02-14 09:06:33 -05:00
containerized-control-plane-dellemc-scaleio.yaml Containerized control plane with Dell EMC ScaleIO storage 2018-05-29 13:41:29 -04:00
dcn-hci.yaml Add NovaCrossAZAttach parameter 2020-04-21 11:17:09 +01:00
dcn.yaml Add NovaCrossAZAttach parameter 2020-04-21 11:17:09 +01:00
debug.yaml Add new environment for debug 2016-10-07 17:27:22 +00:00
deployed-server-deployed-neutron-ports.yaml Use static environment for deployed-server neutron mappings 2017-07-18 20:01:06 -04:00
deployed-server-environment.j2.yaml Default all roles for deployed-server to net-config-static-bridge 2020-02-07 21:16:23 +00:00
deployed-server-noop-ctlplane.yaml Add deployed server bootstrap to noop-ctlplane 2017-01-17 18:34:47 -05:00
designate-config-ha.yaml Split designate envs 2018-10-11 15:15:16 +00:00
designate-config.yaml Split designate envs 2018-10-11 15:15:16 +00:00
disable-panko.yaml Revert "Remove panko" 2020-01-30 20:34:27 +00:00
disable-paunch.yaml Add an environment to disable Paunch 2020-02-19 21:49:09 +00:00
disable-swift.yaml Introduce environments/disable-swift.yaml 2020-03-24 16:21:05 +00:00
disable-telemetry.yaml Revert "Remove panko" 2020-01-30 20:34:27 +00:00
docker-ha.yaml HA: enable cluster-common-tag naming scheme by default 2019-12-17 22:01:53 +00:00
docker-network.yaml container ovs-agent, ensure br-ex exists 2017-08-28 19:47:16 +00:00
docker-uc-light.yaml Replace git.openstack.org URLs with opendev.org URLs 2019-06-26 02:43:46 +00:00
docker.yaml Deprecate Docker 2019-02-20 21:58:28 +00:00
enable-designate.yaml Merge "Trim whitespace in multi-line env descriptions" 2019-04-16 05:28:25 +00:00
enable-federation-openidc.yaml add support for enabling oauth in keystone openidc integration 2019-07-02 10:21:36 -03:00
enable-legacy-telemetry.yaml Revert "Remove panko" 2020-01-30 20:34:27 +00:00
enable-stf.yaml Disable presettled metrics 2020-06-17 21:28:41 +00:00
enable-swap-partition.yaml Fix for AllNodesExtraConfig and fix environment files to create swap files/partitions 2017-01-16 15:47:50 +01:00
enable-swap.yaml Fix for AllNodesExtraConfig and fix environment files to create swap files/partitions 2017-01-16 15:47:50 +01:00
enable_tempest.yaml move tempest to deployment 2019-03-21 07:29:46 -04:00
external-loadbalancer-vip-v6-all.yaml Disable haproxy when using external LB 2019-11-05 16:46:16 +00:00
external-loadbalancer-vip-v6.yaml Disable haproxy when using external LB 2019-11-05 16:46:16 +00:00
external-loadbalancer-vip.yaml Disable haproxy when using external LB 2019-11-05 16:46:16 +00:00
fixed-ip-vips-v6.yaml Give the OVN DBS service a separate Vip 2019-09-23 13:05:39 +00:00
fixed-ip-vips.yaml Give the OVN DBS service a separate Vip 2019-09-23 13:05:39 +00:00
horizon_password_validation.yaml Fix a spelling mistake 2018-09-15 14:42:07 +08:00
host-config-and-reboot.j2.yaml Move KernelArgs and OvS-DPDK deployment to ansible role 2019-11-08 04:36:06 +00:00
hyperconverged-ceph.yaml Remove skydive 2020-08-28 10:58:38 -04:00
ips-from-pool-all.yaml Fix networking settings for ObjectStorage role 2017-10-25 20:57:17 +02:00
ips-from-pool-ctlplane.yaml Remove invalid comment in ips-from-pool-ctlplane 2018-12-10 10:14:27 -05:00
ips-from-pool.yaml Add sample environment file to document usage of predictable IPs 2015-12-15 12:52:15 +01:00
ipsec.yaml Remove extraconfig/services directory 2019-07-18 14:44:14 -04:00
kubernetes.yaml Deprecate kubespray kubernetes install 2019-10-15 08:16:38 -04:00
logging-environment-rsyslog.yaml Rsyslog composable service 2019-07-18 15:41:28 +00:00
login-defs.yaml Use login-defs role from tripleo-ansible in sc004 2019-08-10 13:25:16 +03:00
low-memory-usage.yaml Override ovn::controller::hostname to use hiera:fqdn_canonical 2019-05-22 14:48:21 +05:30
manila-cephfsganesha-config.yaml Allow for configuration of the Manila CephFS backend with a remote Ceph 2019-07-19 08:31:02 +00:00
manila-cephfsnative-config.yaml Move Manila backends into deployment 2019-04-22 08:44:39 -04:00
manila-isilon-config.yaml Move Manila backends into deployment 2019-04-22 08:44:39 -04:00
manila-netapp-config.yaml Fix netapp deployment manifest 2019-05-30 16:03:55 -04:00
manila-unity-config.yaml Move Manila backends into deployment 2019-04-22 08:44:39 -04:00
manila-vmax-config.yaml Move Manila backends into deployment 2019-04-22 08:44:39 -04:00
manila-vnx-config.yaml Move Manila backends into deployment 2019-04-22 08:44:39 -04:00
multipathd.yaml Configure the Multipathd service 2019-06-24 12:03:55 -07:00
net-2-linux-bonds-with-vlans.j2.yaml Fix comments in environments/net-* network configuration envs 2019-04-01 17:12:28 -07:00
net-bond-with-vlans-no-external.j2.yaml Fix comments in environments/net-* network configuration envs 2019-04-01 17:12:28 -07:00
net-bond-with-vlans.j2.yaml Remove legacy controller-v6.yaml NIC config templates 2019-07-26 14:07:29 -04:00
net-dpdkbond-with-vlans.j2.yaml Fix comments in environments/net-* network configuration envs 2019-04-01 17:12:28 -07:00
net-multiple-nics-vlans.j2.yaml Add a version of the multiple-nics templates with tagged VLANs 2019-11-27 11:33:51 +00:00
net-multiple-nics.j2.yaml Remove legacy controller-v6.yaml NIC config templates 2019-07-26 14:07:29 -04:00
net-noop.j2.yaml Add environments/net-noop.yaml 2018-06-12 21:52:39 +00:00
net-single-nic-linux-bridge-with-vlans.j2.yaml Fix comments in environments/net-* network configuration envs 2019-04-01 17:12:28 -07:00
net-single-nic-with-vlans-no-external.j2.yaml Fix comments in environments/net-* network configuration envs 2019-04-01 17:12:28 -07:00
net-single-nic-with-vlans.j2.yaml Remove legacy controller-v6.yaml NIC config templates 2019-07-26 14:07:29 -04:00
network-environment-v6-all.j2.yaml Change vxlan to geneve for network environment files 2019-02-20 16:59:12 -03:30
network-environment-v6.j2.yaml Fix TenantInterfaceDefaultRoute in net-env-v6 2020-03-13 15:51:59 +00:00
network-environment.j2.yaml Change vxlan to geneve for network environment files 2019-02-20 16:59:12 -03:30
network-isolation-no-tunneling.j2.yaml Give the OVN DBS service a separate Vip 2019-09-23 13:05:39 +00:00
network-isolation-v6-all.j2.yaml Remove OpenDaylight templates and environments 2019-11-06 06:19:15 +00:00
network-isolation-v6.j2.yaml Remove OpenDaylight templates and environments 2019-11-06 06:19:15 +00:00
network-isolation.j2.yaml Give the OVN DBS service a separate Vip 2019-09-23 13:05:39 +00:00
network-management-v6.yaml Fix networking settings for ObjectStorage role 2017-10-25 20:57:17 +02:00
network-management.yaml Fix networking settings for ObjectStorage role 2017-10-25 20:57:17 +02:00
networks-disable.j2.yaml Environment to disable Neutron networks 2018-01-24 20:59:14 -05:00
neutron-bgpvpn-bagpipe.yaml step3: flatten the neutron service configurations 2019-02-27 15:17:32 -05:00
neutron-bgpvpn.yaml step3: flatten the neutron service configurations 2019-02-27 15:17:32 -05:00
neutron-l2gw.yaml step3: flatten the neutron service configurations 2019-02-27 15:17:32 -05:00
neutron-linuxbridge.yaml Move neutron base, plugins to deployment 2019-05-13 10:05:46 -04:00
neutron-ml2-ansible.yaml Change NeutronMechanismDrivers in ml2-ansible environments 2019-07-29 15:10:23 +05:30
neutron-ml2-bigswitch.yaml Move neutron base, plugins to deployment 2019-05-13 10:05:46 -04:00
neutron-ml2-cisco-vts.yaml Add cisco VTS ML2 template for a dockerized service and default environment settings 2018-02-20 21:11:19 +01:00
neutron-ml2-fujitsu-cfab.yaml Move neutron base, plugins to deployment 2019-05-13 10:05:46 -04:00
neutron-ml2-fujitsu-fossw.yaml Move neutron base, plugins to deployment 2019-05-13 10:05:46 -04:00
neutron-ml2-mlnx-sdn.yaml Moving NeutronMechanismDrivers value to be list in neutron-ml2-mlnx-sdn.yaml 2019-07-29 06:34:39 +00:00
neutron-ml2-vpp.yaml Move vpp, and veritas-hyperscale into deployment 2019-05-30 20:37:33 +00:00
neutron-nsx.yaml Remove Neutron LBaaS 2019-06-04 15:12:38 +02:00
neutron-nuage-config.yaml Parameterizing Puppet Tags 2018-04-23 21:24:52 -04:00
neutron-ovs-dvr.yaml Replace git.openstack.org URLs with opendev.org URLs 2019-06-26 02:43:46 +00:00
neutron-sfc.yaml step5: flatten the neutron service configurations 2019-02-28 10:24:51 -05:00
nonha-arch.yaml flatten database service Redis 2019-03-01 10:58:31 -05:00
noop-deploy-steps.yaml Add noop-deploy-steps.yaml environment 2017-11-22 18:48:21 +00:00
nova-api-policy.yaml Allow to configure policy.json for OpenStack projects 2017-03-28 22:21:28 +00:00
nova-az-config.yaml Add OS::TripleO::NovaAZConfig 2019-04-15 17:46:22 -04:00
nova-nuage-config.yaml Drop extraconfig for nova-nuage 2017-08-16 07:46:00 -04:00
nsx-config.yaml step5: flatten the neutron service configurations 2019-02-28 10:24:51 -05:00
overcloud-baremetal.j2.yaml Consistent hostname format env for split-stack 2017-07-24 14:42:28 -04:00
overcloud-services.yaml Consistent hostname format env for split-stack 2017-07-24 14:42:28 -04:00
overcloud-steps.yaml Rename -puppet.yaml templates. 2015-09-22 08:30:01 -04:00
ovs-hw-offload.yaml Modifying the ovs-hw-offlaod file to adapt new changes 2019-04-15 11:00:32 +00:00
podman.yaml Disable docker template in podman env 2019-08-14 19:38:06 +03:00
public-tls-undercloud.yaml Add new parameter PublicTLSCACert 2020-06-29 20:44:51 +00:00
puppet-tenant-vlan.yaml Remove NeutronEnableTunnelling from templates 2016-08-12 20:46:38 -02:30
rhsm.yaml rhsm: add rhsm_release in environment for doc purpose 2020-05-27 20:24:59 +00:00
securetty.yaml Configure securetty using tripleo-ansible 2019-09-04 01:22:40 +00:00
split-stack-consistent-hostname-format.j2.yaml Consistent hostname format env for split-stack 2017-07-24 14:42:28 -04:00
sshd-banner.yaml SSHD Service extensions 2017-04-19 18:03:02 +01:00
standalone.yaml Deploy /etc/openstack/clouds.yaml with Ansible 2020-02-15 18:35:15 +00:00
stdout-logging.yaml Revert "Remove panko" 2020-01-30 20:34:27 +00:00
storage-environment-external.yaml Disable legacy telemetry by default 2019-11-20 20:30:24 +00:00
storage-environment.yaml Use container_file_t for Cinder*NfsMountOptions by default 2020-09-01 08:52:48 +00:00
swift-external.yaml swift-external: deprecate External*Url 2020-04-15 17:41:20 +02:00
tripleo-validations.yaml Use tripleo-validations-package role instead of puppet 2019-08-26 08:56:35 +00:00
tuned-ceph-filestore-hci.yaml Add TunedCustomProfile parameter and HCI Ceph filestore environment 2018-12-10 22:26:06 +00:00
undercloud-disable-nova.yaml Revert "Revert "Fixes for deploying nova-less undercloud"" 2019-09-02 01:38:30 +00:00
undercloud.yaml undercloud/heat: set YAQL memory quota to 200000 2020-07-07 13:43:42 +00:00
use-dns-for-vips.yaml Stop using puppet to configure VIPs in /etc/hosts 2016-11-27 13:20:33 -05:00

README.md

This directory contains Heat environment file snippets which can be used to enable features in the Overcloud.

Configuration

These can be enabled using the -e [path to environment yaml] option with heatclient.

Below is an example of how to enable the Ceph template using devtest_overcloud.sh:

export OVERCLOUD\_CUSTOM\_HEAT\_ENV=$TRIPLEO\_ROOT/tripleo-heat-templates/environments/ceph_devel.yaml