blob: 301a5619ec4924bd06d79914c1576075bdd51d7d [file] [log] [blame]
DR695H96c1f6f2017-08-17 17:13:48 -04001# Project Clearwater - IMS in the Cloud
2# Copyright (C) 2015 Metaswitch Networks Ltd
3#
4# This program is free software: you can redistribute it and/or modify it
5# under the terms of the GNU General Public License as published by the
6# Free Software Foundation, either version 3 of the License, or (at your
7# option) any later version, along with the "Special Exception" for use of
8# the program along with SSL, set forth below. This program is distributed
9# in the hope that it will be useful, but WITHOUT ANY WARRANTY;
10# without even the implied warranty of MERCHANTABILITY or FITNESS FOR
11# A PARTICULAR PURPOSE. See the GNU General Public License for more
12# details. You should have received a copy of the GNU General Public
13# License along with this program. If not, see
14# <http://www.gnu.org/licenses/>.
15#
16# The author can be reached by email at clearwater@metaswitch.com or by
17# post at Metaswitch Networks Ltd, 100 Church St, Enfield EN2 6BQ, UK
18#
19# Special Exception
20# Metaswitch Networks Ltd grants you permission to copy, modify,
21# propagate, and distribute a work formed by combining OpenSSL with The
22# Software, or a work derivative of such a combination, even if such
23# copying, modification, propagation, or distribution would otherwise
24# violate the terms of the GPL. You must comply with the GPL in all
25# respects for all of the code used other than OpenSSL.
26# "OpenSSL" means OpenSSL toolkit software distributed by the OpenSSL
27# Project and licensed under the OpenSSL Licenses, or a work based on such
28# software and licensed under the OpenSSL Licenses.
29# "OpenSSL Licenses" means the OpenSSL License and Original SSLeay License
30# under which the OpenSSL Project distributes the OpenSSL toolkit software,
31# as those licenses appear in the file LICENSE-OPENSSL.
32
33heat_template_version: 2013-05-23
34
35description: >
36 Clearwater Ralf node
37
38parameters:
39 vnf_id:
40 type: string
41 label: VNF ID
42 description: The VNF ID provided by ONAP
43 vf_module_id:
44 type: string
45 label: VNF module ID
46 description: The VNF module ID provided by ONAP
47 public_net_id:
48 type: string
49 description: ID of public network
50 constraints:
51 - custom_constraint: neutron.network
52 description: Must be a valid network ID
53 ralf_flavor_name:
54 type: string
55 description: Flavor to use
56 constraints:
57 - custom_constraint: nova.flavor
58 description: Must be a valid flavor name
59 ralf_image_name:
60 type: string
61 description: Name of image to use
62 key_name:
63 type: string
64 description: Name of keypair to assign
65 constraints:
66 - custom_constraint: nova.keypair
67 description: Must be a valid keypair name
68# base_mgmt_security_group:
69# type: string
70# description: ID of base security group for all Clearwater nodes (management)
71# ralf_sig_security_group:
72# type: string
73# description: ID of security group for Ralf nodes (signaling)
74 repo_url:
75 type: string
76 description: URL for Clearwater repository
77 default: http://repo.cw-ngv.com/stable
78 zone:
79 type: string
80 description: DNS zone
81 default: example.com
82 dns_ip:
83 type: string
84 description: IP address for DNS server
85 dnssec_key:
86 type: string
87 description: DNSSEC private key (Base64-encoded)
88 constraints:
89 - allowed_pattern: "[0-9A-Za-z+/=]+"
90 description: Must be Base64-encoded
91 etcd_ip:
92 type: string
93 description: IP address of an existing member of the etcd cluster
94 default: ""
95 index:
96 type: number
97 description: Index of this Ralf node in the Ralf cluster
98 default: 0
99
100resources:
101 server:
102 type: OS::Nova::Server
103 properties:
104 name: { str_replace: { params: { __index__: { get_param: index }, __zone__: { get_param: zone } }, template: ralf-__index__.__zone__ } }
105 image: { get_param: ralf_image_name }
106 flavor: { get_param: ralf_flavor_name }
107 key_name: { get_param: key_name }
108 networks:
109 - network: { get_param: public_net_id }
110 metadata: {vnf_id: { get_param: vnf_id }, vf_module_id: { get_param: vf_module_id }}
111 user_data_format: RAW
112 user_data:
113 str_replace:
114 params:
115 __repo_url__: { get_param: repo_url }
116 __zone__: { get_param: zone }
117 __dns_ip__: { get_param: dns_ip }
118 __dnssec_key__: { get_param: dnssec_key }
119 __etcd_ip__ : { get_param: etcd_ip }
120 __index__ : { get_param: index }
121 template: |
122 #!/bin/bash
123
124 # Log all output to file.
125 exec > >(tee -a /var/log/clearwater-heat-ralf.log) 2>&1
126 set -x
127
128 # Configure the APT software source.
129 echo 'deb __repo_url__ binary/' > /etc/apt/sources.list.d/clearwater.list
130 curl -L http://repo.cw-ngv.com/repo_key | apt-key add -
131 apt-get update
132
133 # Get the public IP address from eth0
134 sudo apt-get install ipcalc
135 ADDR=`ip addr show eth0 | awk '/inet /{print $2}'`
136 PUBLIC_ADDR=`ipcalc -n -b $ADDR | awk '/Address:/{print $2}'`
137
138 # Configure /etc/clearwater/local_config.
139 mkdir -p /etc/clearwater
140 etcd_ip=__etcd_ip__
141 [ -n "$etcd_ip" ] || etcd_ip=$PUBLIC_ADDR
142 cat > /etc/clearwater/local_config << EOF
143 management_local_ip=$PUBLIC_ADDR
144 local_ip=$PUBLIC_ADDR
145 public_ip=$PUBLIC_ADDR
146 public_hostname=ralf-__index__.__zone__
147 etcd_cluster=$etcd_ip
148 EOF
149
150 # Create /etc/chronos/chronos.conf.
151 mkdir -p /etc/chronos
152 cat > /etc/chronos/chronos.conf << EOF
153 [http]
154 bind-address = $PUBLIC_ADDR
155 bind-port = 7253
156 threads = 50
157
158 [logging]
159 folder = /var/log/chronos
160 level = 2
161
162 [alarms]
163 enabled = true
164
165 [exceptions]
166 max_ttl = 600
167 EOF
168
169 # Now install the software.
170 DEBIAN_FRONTEND=noninteractive apt-get install ralf-node --yes --force-yes
171 DEBIAN_FRONTEND=noninteractive apt-get install clearwater-management --yes --force-yes
172
173 # Function to give DNS record type and IP address for specified IP address
174 ip2rr() {
175 if echo $1 | grep -q -e '[^0-9.]' ; then
176 echo AAAA $1
177 else
178 echo A $1
179 fi
180 }
181
182 # Update DNS
183 retries=0
184 while ! { nsupdate -y "__zone__:__dnssec_key__" -v << EOF
185 server __dns_ip__
186 update add ralf-__index__.__zone__. 30 $(ip2rr $PUBLIC_ADDR)
187 update add ralf.__zone__. 30 $(ip2rr $PUBLIC_ADDR)
188 send
189 EOF
190 } && [ $retries -lt 10 ]
191 do
192 retries=$((retries + 1))
193 echo 'nsupdate failed - retrying (retry '$retries')...'
194 sleep 5
195 done
196
197 # Use the DNS server.
198 echo 'nameserver __dns_ip__' > /etc/dnsmasq.resolv.conf
199 echo 'RESOLV_CONF=/etc/dnsmasq.resolv.conf' >> /etc/default/dnsmasq
200 service dnsmasq force-reload
201
202outputs:
203 public_ip:
204 description: IP address in public network
205 value: { get_attr: [ server, accessIPv4 ] }