From 4c20e480312440d89bd194cd759a38c3be1dc433 Mon Sep 17 00:00:00 2001 From: Jaehyun Nam Date: Mon, 10 May 2021 15:58:34 +0000 Subject: [PATCH] update yaml files --- deployments/GKE/kubearmor.yaml | 20 ++++--------------- deployments/generic-containerd/kubearmor.yaml | 11 +++------- deployments/generic-docker/kubearmor.yaml | 11 +++------- deployments/microk8s/kubearmor.yaml | 11 +++------- 4 files changed, 13 insertions(+), 40 deletions(-) diff --git a/deployments/GKE/kubearmor.yaml b/deployments/GKE/kubearmor.yaml index c267296691..1199cc3d99 100644 --- a/deployments/GKE/kubearmor.yaml +++ b/deployments/GKE/kubearmor.yaml @@ -60,8 +60,10 @@ spec: imagePullPolicy: Always securityContext: privileged: true - args: ["-gRPC=32767", "-logPath=/tmp/kubearmor.log"] - # args: ["-gRPC=32767", "-logPath=/tmp/kubearmor.log", "-enableHostPolicy"] + args: ["-gRPC=32767", "-logPath=/tmp/kubearmor.log", "-enableEnforcerPerPod"] + env: + - name: CLUSTER_NAME + value: "Default" # UPDATE THIS DEPENDING ON YOUR ENVIRONMENT ports: - containerPort: 32767 volumeMounts: @@ -97,13 +99,6 @@ spec: fi; initialDelaySeconds: 60 periodSeconds: 10 - # resources: - # limits: - # cpu: "1" - # memory: 500Mi - # requests: - # cpu: 100m - # memory: 200Mi terminationMessagePolicy: File terminationMessagePath: /dev/termination-log terminationGracePeriodSeconds: 30 @@ -193,13 +188,6 @@ spec: readOnly: true - name: var-log-path mountPath: /var/log - # resources: - # limits: - # cpu: "1" - # memory: 500Mi - # requests: - # cpu: 100m - # memory: 200Mi terminationMessagePolicy: File terminationMessagePath: /dev/termination-log terminationGracePeriodSeconds: 30 diff --git a/deployments/generic-containerd/kubearmor.yaml b/deployments/generic-containerd/kubearmor.yaml index c93252f1c9..aabfe97974 100644 --- a/deployments/generic-containerd/kubearmor.yaml +++ b/deployments/generic-containerd/kubearmor.yaml @@ -61,7 +61,9 @@ spec: securityContext: privileged: true args: ["-gRPC=32767", "-logPath=/tmp/kubearmor.log"] - # args: ["-gRPC=32767", "-logPath=/tmp/kubearmor.log", "-enableHostPolicy"] + env: + - name: CLUSTER_NAME + value: "Default" # UPDATE THIS DEPENDING ON YOUR ENVIRONMENT ports: - containerPort: 32767 volumeMounts: @@ -97,13 +99,6 @@ spec: fi; initialDelaySeconds: 60 periodSeconds: 10 - # resources: - # limits: - # cpu: "1" - # memory: 500Mi - # requests: - # cpu: 100m - # memory: 200Mi terminationMessagePolicy: File terminationMessagePath: /dev/termination-log terminationGracePeriodSeconds: 30 diff --git a/deployments/generic-docker/kubearmor.yaml b/deployments/generic-docker/kubearmor.yaml index 7b9b89125c..1761f3f0a1 100644 --- a/deployments/generic-docker/kubearmor.yaml +++ b/deployments/generic-docker/kubearmor.yaml @@ -61,7 +61,9 @@ spec: securityContext: privileged: true args: ["-gRPC=32767", "-logPath=/tmp/kubearmor.log"] - # args: ["-gRPC=32767", "-logPath=/tmp/kubearmor.log", "-enableHostPolicy"] + env: + - name: CLUSTER_NAME + value: "Default" # UPDATE THIS DEPENDING ON YOUR ENVIRONMENT ports: - containerPort: 32767 volumeMounts: @@ -97,13 +99,6 @@ spec: fi; initialDelaySeconds: 60 periodSeconds: 10 - # resources: - # limits: - # cpu: "1" - # memory: 500Mi - # requests: - # cpu: 100m - # memory: 200Mi terminationMessagePolicy: File terminationMessagePath: /dev/termination-log terminationGracePeriodSeconds: 30 diff --git a/deployments/microk8s/kubearmor.yaml b/deployments/microk8s/kubearmor.yaml index 8745a2db9d..7551be6537 100644 --- a/deployments/microk8s/kubearmor.yaml +++ b/deployments/microk8s/kubearmor.yaml @@ -61,7 +61,9 @@ spec: securityContext: privileged: true args: ["-gRPC=32767", "-logPath=/tmp/kubearmor.log"] - # args: ["-gRPC=32767", "-logPath=/tmp/kubearmor.log", "-enableHostPolicy"] + env: + - name: CLUSTER_NAME + value: "Default" # UPDATE THIS DEPENDING ON YOUR ENVIRONMENT ports: - containerPort: 32767 volumeMounts: @@ -97,13 +99,6 @@ spec: fi; initialDelaySeconds: 60 periodSeconds: 10 - # resources: - # limits: - # cpu: "1" - # memory: 500Mi - # requests: - # cpu: 100m - # memory: 200Mi terminationMessagePolicy: File terminationMessagePath: /dev/termination-log terminationGracePeriodSeconds: 30