-
Notifications
You must be signed in to change notification settings - Fork 23
/
Copy pathdeclarative-example.yaml
121 lines (121 loc) · 3.54 KB
/
declarative-example.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
---
# In order to effectively use this file you must familiarize youself with the
# the stucture of the config.xml structure of the HAProxy in pfSense. Most of
# the values are just directly passed through.
apiVersion: v1
kind: ConfigMap
metadata:
namespace: kube-system
name: declarative-example
labels:
pfsense.org/type: declarative
data:
data: |
resources:
- type: backend
ha_servers:
# declare dynamic nodes by using the backing service
- type: node-service
# serviceNamespace: optional, uses namespace of the ConfigMap by default
# service must be type NodePort or LoadBalancer
serviceName: traefik-ingress-service
servicePort: 80
# pass through directly to mimic config.xml structure
definition:
status: active
forwardto:
ssl:
weight:
sslserververify:
verifyhost:
ssl-server-ca:
ssl-server-crl:
ssl-server-clientcert:
cookie:
maxconn:
advanced:
# declare static nodes
- type: node-static
# pass through directly to mimic config.xml structure
definition:
status: active
name: node04
address: 172.29.2.14
port: 80
forwardto:
ssl:
weight:
sslserververify:
verifyhost:
ssl-server-ca:
ssl-server-crl:
ssl-server-clientcert:
cookie:
maxconn:
advanced:
# pass through directly to mimic config.xml structure
definition:
a_acl:
a_actionitems:
advanced:
advanced_backend:
name: traefik
balance: leastconn
balance_urilen:
balance_uridepth:
balance_uriwhole:
transparent_clientip:
transparent_interface:
check_type: Basic
checkinter:
log-health-checks:
httpcheck_method:
monitor_uri:
monitor_httpversion:
monitor_username:
monitor_domain:
monitor_agentport:
agent_check:
agent_port:
agent_inter:
connection_timeout:
server_timeout: 10800000
retries:
stats_enabled:
stats_username:
stats_password:
stats_uri:
stats_scope:
stats_realm:
stats_admin:
stats_node:
stats_desc:
stats_refresh:
persist_stick_expire:
persist_stick_tablesize:
persist_stick_length:
persist_stick_cookiename:
persist_sticky_type: none
persist_cookie_enabled:
persist_cookie_name:
persist_cookie_mode: passive
persist_cookie_cachable:
strict_transport_security:
cookie_attribute_secure:
email_level:
email_to:
errorfiles:
- type: frontend
# pass through directly to mimic config.xml structure
# many more options available, review your config.xml for more detail
definition:
name: some-frontend-name
type: http
forwardfor: "yes"
status: active
backend_serverpool: some-backend-name
a_extaddr:
item:
- extaddr: wan_ipv4
extaddr_port: 443
extaddr_ssl: "yes"