-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathfortinet-openstack.yaml
112 lines (100 loc) · 3.79 KB
/
fortinet-openstack.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
tosca_definitions_version: cloudify_dsl_1_3
imports:
- http://www.getcloudify.org/spec/cloudify/5.0.0/types.yaml
- plugin:cloudify-utilities-plugin
- plugin:cloudify-openstack-plugin?version= >=2.14.7 , <3
inputs:
openstack-external-network:
type: string
description: >
the openstack network name or Id to connect for external management
default: { get_secret: external_network_name }
portforward-port:
type: string
description: >
port to configure on the firewall
default: 5555
keystone-url:
type: string
description: >
openstack region
default: { get_secret: keystone_url }
node_templates:
openstack-network:
type: cloudify.nodes.ServiceComponent
properties:
resource_config:
blueprint:
external_resource: false
id: openstack-network-bp
blueprint_archive: https://github.com/arikyakir/openstack-example-network/archive/master.zip
main_file_name: simple-blueprint.yaml
deployment:
id: openstack-network
auto_inc_suffix: false
inputs:
external_network_name: { get_input: [ openstack-external-network ] }
auth_url: { get_input: keystone-url }
nodecellar-app:
type: cloudify.nodes.ServiceComponent
properties:
resource_config:
blueprint:
external_resource: false
id: nodecller-app-bp
# blueprint_archive: https://github.com/Cloudify-PS/nodecellar-blueprint/archive/master.zip
blueprint_archive: https://github.com/arikyakir/nodecellar-auto-scale-auto-heal-blueprint/archive/master.zip
main_file_name: openstack.yaml
deployment:
id: private-webserver
auto_inc_suffix: false
inputs:
network_blueprint_name: openstack-network-bp
network_blueprint_archive: https://github.com/arikyakir/openstack-example-network/archive/master.zip
network_deployment_name: openstack-network
network_blueprint_main_yaml: simple-blueprint.yaml
use_existing_network_deployment: true
relationships:
- type: cloudify.relationships.connected_to
target: openstack-network
fortigate-infra:
type: cloudify.nodes.ServiceComponent
properties:
resource_config:
blueprint:
external_resource: false
id: fortigate-vm-bp
blueprint_archive: https://github.com/arikyakir/fortigate-pf-vnf-blueprint/archive/master.zip
main_file_name: fortigate-vnf-baseline-bp.yaml
deployment:
id: fortigate-firewall
auto_inc_suffix: false
inputs:
network_blueprint_name: openstack-network-bp
network_blueprint_archive: https://github.com/arikyakir/openstack-example-network/archive/master.zip
network_deployment_name: openstack-network
network_blueprint_main_yaml: simple-blueprint.yaml
use_existing_network_deployment: true
flavor: { get_secret: small_image_flavor }
relationships:
- type: cloudify.relationships.connected_to
target: openstack-network
port-forwarding:
type: cloudify.nodes.ServiceComponent
properties:
resource_config:
blueprint:
external_resource: false
id: fortigate-config-bp
blueprint_archive: https://github.com/arikyakir/fortigate-pf-vnf-blueprint/archive/master.zip
main_file_name: fortigate-vnf-portforward-bp.yaml
deployment:
id: pf-config
auto_inc_suffix: false
inputs:
configuration:
port_forward_destination: { get_input: portforward-port }
baseline-deployment-name: fortigate-firewall
relationships:
- type: cloudify.relationships.connected_to
target: fortigate-infra