API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Feb 22nd, 2019
139
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
YAML 7.46 KB | None | 0 0
raw download clone embed print report
  1. auto_last_hop: disabled
  2. bgp_dag_egw_peer_ip: 192.168.11.104
  3. bgp_dag_pgw_peer_ip: 192.168.1.103
  4. bgp_egw_peer_as: '300'
  5. bgp_pgw_peer_as: '200'
  6. bgp_vnf_pgw_peer_ip: 192.168.21.11
  7. big_iq_host: 10.50.50.101
  8. big_iq_lic_pool: pool_vnfm
  9. bigip_os_ssh_key: karolRHOS
  10. centos_image_id: c32f9684-aed0-455f-ab25-76035a21be56
  11. cm_ip: 10.50.50.105
  12. manager_mgmt_host: 10.50.50.105
  13. ctrl_net: control
  14. ctrl_sg_name: control_sg
  15. ctrl_subnet: control_subnet
  16. dag_group_cpu_threshold: '89'
  17. dag_group_cpu_threshold_check_interval: '1'
  18. default_gateway: 10.50.50.1
  19. floating_network_id: fa541932-4156-4185-8344-a961cf4c8e41
  20. ha_net: ha_net
  21. ha_subnet: ha_net_subnet
  22. max_heal_vnf_layer: 10
  23. ntp_server: 216.239.35.0
  24. timezone: America/Los_Angeles
  25.  
  26. max_heal_vnf_slave_ve: 10
  27. max_heal_vnfd_dag_ve: 10
  28. max_scale_dag_group: 10
  29. max_scale_vnf_group: 10
  30.  
  31. # manager_rest_tenant: default_tenant
  32. # manager_rest_password: admin
  33. # manager_rest_username: admin
  34. # manager_rest_host: 127.0.0.1
  35.  
  36. mgmt_net: mgmt
  37. mgmt_sg_name: mgmt_sg
  38. mgmt_subnet: mgmt-subnet
  39. nagios_flavor_id: e752819a-095c-450f-a3c7-87c10cd7ae25
  40. pdn_dag_net: pdn_dag_net
  41. pdn_dag_subnet: pdn_dag_net_subnet
  42. pdn_dag_subnet_cidr: 10.10.4.0/24
  43. pdn_net: pdn
  44. pdn_sg_name: pdn_sg
  45. pdn_subnet: pdn_subnet
  46. pgw_dag_net: pgw_dag_net
  47. pgw_dag_subnet: pgw_dag_net_subnet
  48. pgw_dag_subnet_cidr: 10.10.2.0/24
  49. pgw_dag_subnet_mask: /24
  50. pgw_net: pgw
  51. pgw_sg_name: pgw_sg
  52. pgw_subnet: pgw_subnet
  53. ric_purchasing_model: subscription
  54. ric_throughput: 5
  55. ric_vnfm_serial: '12345'
  56. snmp_sg_name: snmp_sg
  57. sw_ref_dag:
  58.   data: {flavor: f5.cloudify, image: BIGIP-13.1.0.7-0.0.1.ALL_1SLOT}
  59.   revision: 0
  60. sw_ref_vnf:
  61.   data: {flavor: f5.cloudify, image: BIGIP-13.1.0.7-0.0.1.ALL_1SLOT}
  62.   revision: 0
  63.  
  64.  
  65. # VNF Layer scaling inputs
  66. vnf_layer_cpu_threshold: '85'
  67. vnf_layer_cpu_threshold_check_interval: '1'
  68. # VNF Group scaling inputs
  69. vnf_group_throughput: '20'
  70. vnf_group_throughput_threshold: '75'
  71. vnf_group_throughput_check_interval: '1'
  72. # DAG Group scaling inputs
  73. dag_group_cpu_threshold: '89'
  74. dag_group_cpu_threshold_check_interval: '1'
  75.  
  76.  
  77. vnf_as3_nsd_payload:
  78.   class: AS3
  79.   action: deploy
  80.   persist: True
  81.   declaration:
  82.     class: ADC
  83.     schemaVersion: 3.0.0
  84.     id: cfy_vnf_01
  85.     label: vnf
  86.     remark: VNF
  87.     f5vnf:
  88.       class: Tenant
  89.       Shared:
  90.         class: Application
  91.         template: shared
  92.         fwAllowedAddressList:
  93.           addresses:
  94.          - 10.0.0.0/8
  95.           - 172.20.0.0/16
  96.           - 192.168.0.0/16
  97.           class: Firewall_Address_List
  98.         fwAllowedPortList:
  99.           class: Firewall_Port_List
  100.           ports:
  101.          - 8080-8081
  102.           - 22
  103.           - 443
  104.           - 53
  105.           - 80
  106.         fwDefaultDenyAddressList:
  107.           addresses:
  108.          - 0.0.0.0/0
  109.           class: Firewall_Address_List
  110.         fwLogDestinationHsl:
  111.           class: Log_Destination
  112.           distribution: adaptive
  113.           pool:
  114.             use: poolHsl
  115.           protocol: tcp
  116.           type: remote-high-speed-log
  117.         fwLogDestinationSyslog:
  118.           class: Log_Destination
  119.           format: rfc5424
  120.           remoteHighSpeedLog:
  121.             use: fwLogDestinationHsl
  122.           type: remote-syslog
  123.         fwLogPublisher:
  124.           class: Log_Publisher
  125.           destinations:
  126.           - use: fwLogDestinationSyslog
  127.         fwPolicy:
  128.           class: Firewall_Policy
  129.           rules:
  130.           - use: fwRuleList
  131.         fwRuleList:
  132.           class: Firewall_Rule_List
  133.           rules:
  134.           - action: accept
  135.             destination:
  136.               portLists:
  137.               - use: fwAllowedPortList
  138.             loggingEnabled: True
  139.             name: tcpAllow
  140.             protocol: tcp
  141.             source:
  142.               addressLists:
  143.               - use: fwAllowedAddressList
  144.           - action: accept
  145.             loggingEnabled: True
  146.             name: udpAllow
  147.             protocol: udp
  148.             source:
  149.               addressLists:
  150.               - use: fwAllowedAddressList
  151.           - action: drop
  152.             loggingEnabled: True
  153.             name: defaultDeny
  154.             protocol: any
  155.             source:
  156.               addressLists:
  157.               - use: fwDefaultDenyAddressList
  158.         fwSecurityLogProfile:
  159.           class: Security_Log_Profile
  160.           network:
  161.             logIpErrors: True
  162.             logRuleMatchAccepts: True
  163.             logRuleMatchDrops: True
  164.             logRuleMatchRejects: True
  165.             logTcpErrors: True
  166.             logTcpEvents: True
  167.             logTranslationFields: True
  168.             publisher:
  169.               use: fwLogPublisher
  170.             storageFormat:
  171.               fields:
  172.              - action
  173.               - bigip-hostname
  174.               - context-name
  175.               - context-type
  176.               - date-time
  177.               - dest-ip
  178.               - dest-port
  179.               - drop-reason
  180.               - protocol
  181.               - src-ip
  182.               - src-port
  183.         poolHsl:
  184.           class: Pool
  185.           members:
  186.           - enable: true
  187.             serverAddresses:
  188.            - 255.255.255.254
  189.             servicePort: 514
  190.           monitors:
  191.           - bigip: /Common/udp
  192.         lbSelectedRule:
  193.           class: iRule
  194.           iRule: when LB_SELECTED {log local0. "Selected server [LB::server]"}
  195.           remark: Log load balanced server
  196.         profileL4:
  197.           class: L4_Profile
  198.         serviceAddress:
  199.           class: Service_Address
  200.           arpEnabled: False
  201.           spanningEnabled: True
  202.           virtualAddress: 0.0.0.0
  203.       firewall_any:
  204.         class: Application
  205.         template: generic
  206.         serviceMain:
  207.           allowVlans:
  208.           - bigip: /Common/pgw_dag_net
  209.           class: Service_Generic
  210.           iRules:
  211.          - /f5vnf/Shared/lbSelectedRule
  212.           layer4: any
  213.           policyFirewallEnforced:
  214.             use: /f5vnf/Shared/fwPolicy
  215.           profileL4:
  216.             use: /f5vnf/Shared/profileL4
  217.           securityLogProfiles:
  218.           - use: /f5vnf/Shared/fwSecurityLogProfile
  219.           snat: none
  220.           lastHop: disable
  221.           translateServerAddress: False
  222.           translateServerPort: False
  223.           virtualAddresses:
  224.           - use: /f5vnf/Shared/serviceAddress
  225.           virtualPort: 0
  226.       firewall_fastL4:
  227.         class: Application
  228.         template: l4
  229.         serviceMain:
  230.           class: Service_L4
  231.           layer4: tcp
  232.           allowVlans:
  233.             - bigip: /Common/pgw_dag_net
  234.           profileL4:
  235.             use: /f5vnf/Shared/profileL4
  236.           virtualAddresses:
  237.           - use: /f5vnf/Shared/serviceAddress
  238.           virtualPort: 0
  239.           translateServerAddress: False
  240.           translateServerPort: False
  241.           snat: none
  242.           lastHop: disable
  243.           iRules:
  244.            - /f5vnf/Shared/lbSelectedRule
  245.           policyFirewallEnforced:
  246.               use: /f5vnf/Shared/fwPolicy
  247.           securityLogProfiles:
  248.            - use: /f5vnf/Shared/fwSecurityLogProfile
  249.       firewall_inbound:
  250.         class: Application
  251.         template: generic
  252.         serviceMain:
  253.           allowVlans:
  254.           - bigip: /Common/pdn_dag_net
  255.           class: Service_Generic
  256.           iRules:
  257.          - /f5vnf/Shared/lbSelectedRule
  258.           layer4: any
  259.           profileL4:
  260.             use: /f5vnf/Shared/profileL4
  261.           snat: none
  262.           translateServerAddress: False
  263.           translateServerPort: False
  264.           virtualAddresses:
  265.           - use: /f5vnf/Shared/serviceAddress
  266.           virtualPort: 0
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!