-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathnode_guard.yaml
82 lines (82 loc) · 1.77 KB
/
node_guard.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
apiVersion: extensions/v1beta1
kind: DaemonSet
metadata:
name: node-guard
labels:
app: node-guard
spec:
selector:
matchLabels:
app: node-guard
template:
metadata:
labels:
app: node-guard
spec:
hostNetwork: true
volumes:
- name: conf
configMap:
name: node-guard-conf
- name: host
hostPath:
path: /
containers:
- name: node-guard
image: node-guard:1.0
imagePullPolicy: Always
args:
- -p=2376
- -m=/host
- -c=/etc/node-guard/conf.yaml
ports:
- containerPort: 2376
resources:
limits:
memory: 64Mi
cpu: 10m
requests:
memory: 64Mi
cpu: 10m
volumeMounts:
- name: conf
mountPath: /etc/node-guard
- name: host
mountPath: /host
---
apiVersion: v1
kind: ConfigMap
metadata:
name: node-guard-conf
data:
conf.yaml: |
checkers:
disable:
- fake
os:
checkInterval: 1m
kernel.parameters:
- vm.dirty_background_ratio
- vm.dirty_ratio
- vm.max_map_count
units:
- network.service
- kubelet.service
- ambari-agent.service
- firewalld.service
- ntpd.service
- docker.service
- etcd.service
kubernetes:
checkInterval: 1m
network:
checkInterval: 1m
etc.hosts.concerned:
- localhost
kernel.parameters:
- net.bridge.bridge-nf-call-iptables
- net.bridge.bridge-nf-call-ip6tables
- net.ipv4.ip_local_reserved_ports
- net.ipv4.ip_forward
hadoop:
checkInterval: 1m