mirror of
https://github.com/gravitational/teleport
synced 2024-10-21 09:44:51 +00:00
114 lines
3.2 KiB
YAML
114 lines
3.2 KiB
YAML
version: '2'
|
|
services:
|
|
etcd0:
|
|
image: quay.io/coreos/etcd:v3.1.16
|
|
ports:
|
|
- 2379
|
|
networks:
|
|
etcd:
|
|
ipv4_address: 172.11.1.1
|
|
volumes:
|
|
- /tmp/data/0:/etcd_data
|
|
- ./certs:/certs
|
|
command:
|
|
- /usr/local/bin/etcd
|
|
- -name
|
|
- etcd0
|
|
- --data-dir
|
|
- /etcd_data
|
|
- -advertise-client-urls
|
|
- https://172.11.1.1:2379
|
|
- -listen-client-urls
|
|
- https://0.0.0.0:2379
|
|
- -initial-advertise-peer-urls
|
|
- https://172.11.1.1:2380
|
|
- -listen-peer-urls
|
|
- https://0.0.0.0:2380
|
|
- -initial-cluster
|
|
- etcd0=https://172.11.1.1:2380,etcd1=https://172.11.1.2:2380,etcd2=https://172.11.1.3:2380
|
|
- --trusted-ca-file=/certs/ca-cert.pem
|
|
- --cert-file=/certs/server-cert.pem
|
|
- --key-file=/certs/server-key.pem
|
|
- --peer-cert-file=/certs/server-cert.pem
|
|
- --peer-key-file=/certs/server-key.pem
|
|
- --peer-trusted-ca-file=/certs/ca-cert.pem
|
|
- --client-cert-auth
|
|
- --peer-client-cert-auth
|
|
etcd1:
|
|
image: quay.io/coreos/etcd:v3.1.16
|
|
ports:
|
|
- 2379
|
|
networks:
|
|
etcd:
|
|
ipv4_address: 172.11.1.2
|
|
volumes:
|
|
- /tmp/data/1:/etcd_data
|
|
- ./certs:/certs
|
|
command:
|
|
- /usr/local/bin/etcd
|
|
- -name
|
|
- etcd1
|
|
- --data-dir
|
|
- /etcd_data
|
|
- -advertise-client-urls
|
|
- https://172.11.1.2:2379
|
|
- -listen-client-urls
|
|
- https://0.0.0.0:2379
|
|
- -initial-advertise-peer-urls
|
|
- https://172.11.1.2:2380
|
|
- -listen-peer-urls
|
|
- https://0.0.0.0:2380
|
|
- -initial-cluster
|
|
- etcd0=https://172.11.1.1:2380,etcd1=https://172.11.1.2:2380,etcd2=https://172.11.1.3:2380
|
|
- --trusted-ca-file=/certs/ca-cert.pem
|
|
- --cert-file=/certs/server-cert.pem
|
|
- --key-file=/certs/server-key.pem
|
|
- --peer-cert-file=/certs/server-cert.pem
|
|
- --peer-key-file=/certs/server-key.pem
|
|
- --peer-trusted-ca-file=/certs/ca-cert.pem
|
|
- --client-cert-auth
|
|
- --peer-client-cert-auth
|
|
etcd2:
|
|
image: quay.io/coreos/etcd:v3.1.16
|
|
networks:
|
|
etcd:
|
|
ipv4_address: 172.11.1.3
|
|
ports:
|
|
- 2379
|
|
volumes:
|
|
- /tmp/data/2:/etcd_data
|
|
- ./certs:/certs
|
|
command:
|
|
- /usr/local/bin/etcd
|
|
- -name
|
|
- etcd2
|
|
- --data-dir
|
|
- /etcd_data
|
|
- -advertise-client-urls
|
|
- https://172.11.1.3:2379
|
|
- -listen-client-urls
|
|
- https://0.0.0.0:2379
|
|
- -initial-advertise-peer-urls
|
|
- https://172.11.1.3:2380
|
|
- -listen-peer-urls
|
|
- https://0.0.0.0:2380
|
|
- -initial-cluster
|
|
- etcd0=https://172.11.1.1:2380,etcd1=https://172.11.1.2:2380,etcd2=https://172.11.1.3:2380
|
|
- --trusted-ca-file=/certs/ca-cert.pem
|
|
- --cert-file=/certs/server-cert.pem
|
|
- --key-file=/certs/server-key.pem
|
|
- --peer-cert-file=/certs/server-cert.pem
|
|
- --peer-key-file=/certs/server-key.pem
|
|
- --peer-trusted-ca-file=/certs/ca-cert.pem
|
|
- --client-cert-auth
|
|
- --peer-client-cert-auth
|
|
networks:
|
|
etcd:
|
|
driver: bridge
|
|
ipam:
|
|
driver: default
|
|
config:
|
|
- subnet: 172.11.1.0/16
|
|
ip_range: 172.11.1.0/24
|
|
gateway: 172.11.1.254
|