-
Notifications
You must be signed in to change notification settings - Fork 21
/
Copy pathjumpbox.yml
84 lines (75 loc) · 1.64 KB
/
jumpbox.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
---
name: jumpbox
releases:
- name: os-conf
version: 20
url: https://bosh.io/d/github.com/cloudfoundry/os-conf-release?v=20
sha1: 42b1295896c1fbcd36b55bfdedfe86782b2c9fba
resource_pools:
- name: vms
network: private
env:
bosh:
blobstores:
- provider: local
options:
blobstore_path: /var/vcap/micro_bosh/data/cache
password: "*"
mbus:
cert: ((mbus_bootstrap_ssl))
networks:
- name: private
type: manual
subnets:
- range: ((internal_cidr))
gateway: ((internal_gw))
static: [((internal_ip))]
dns: [8.8.8.8]
- name: public
type: vip
instance_groups:
- name: jumpbox
instances: 1
jobs:
- name: disable_agent
release: os-conf
properties: {}
- name: user_add
release: os-conf
properties:
users:
- name: jumpbox
public_key: ((jumpbox_ssh.public_key))
resource_pool: vms
networks:
- name: private
static_ips: [((internal_ip))]
default: [dns, gateway]
- name: public
static_ips: [((external_ip))]
cloud_provider:
mbus: https://mbus:((mbus_bootstrap_password))@((external_ip)):6868
cert: ((mbus_bootstrap_ssl))
properties:
agent: {mbus: "https://mbus:((mbus_bootstrap_password))@0.0.0.0:6868"}
ntp:
- time1.google.com
- time2.google.com
- time3.google.com
- time4.google.com
variables:
- name: mbus_bootstrap_password
type: password
- name: jumpbox_ssh
type: ssh
- name: default_ca
type: certificate
options:
is_ca: true
common_name: ca
- name: mbus_bootstrap_ssl
type: certificate
options:
ca: default_ca
common_name: ((external_ip))
alternative_names: [((external_ip))]