Ben Vincent
198cee27c2
- attempting to send to http:// fails as vlstorage is using tls - enable tls on vlselect/vlinsert when writing to vlstorage - add retention period to vlstorage Reviewed-on: #376
52 lines
1.3 KiB
YAML
52 lines
1.3 KiB
YAML
---
|
|
hiera_include:
|
|
- victorialogs::node
|
|
|
|
victorialogs::node::enable: true
|
|
victorialogs::node::options:
|
|
httpListenAddr: ':9428'
|
|
tls: 'true'
|
|
tlsCertFile: '/etc/pki/tls/vault/certificate.crt'
|
|
tlsKeyFile: '/etc/pki/tls/vault/private.key'
|
|
tlsMinVersion: 'TLS12'
|
|
memory.allowedBytes: '1GiB'
|
|
metrics.exposeMetadata: 'true'
|
|
envflag.enable: 'true'
|
|
select.disable: 'undef'
|
|
storageNode.tls: 'undef'
|
|
storageNode:
|
|
- ausyd1nxvm2108.main.unkin.net:9428
|
|
- ausyd1nxvm2109.main.unkin.net:9428
|
|
- ausyd1nxvm2110.main.unkin.net:9428
|
|
- ausyd1nxvm2111.main.unkin.net:9428
|
|
- ausyd1nxvm2112.main.unkin.net:9428
|
|
|
|
# additional altnames
|
|
profiles::pki::vault::alt_names:
|
|
- vlinsert.main.unkin.net
|
|
- vlinsert.service.consul
|
|
- vlinsert.query.consul
|
|
- "vlinsert.service.%{facts.country}-%{facts.region}.consul"
|
|
|
|
consul::services:
|
|
vlinsert:
|
|
service_name: 'vlinsert'
|
|
tags:
|
|
- 'metrics'
|
|
- 'metrics_scheme=https'
|
|
- 'metrics_job=vlinsert'
|
|
address: "%{facts.networking.ip}"
|
|
port: 9428
|
|
checks:
|
|
- id: 'vlinsert_http_check'
|
|
name: 'vlinsert HTTP Check'
|
|
http: "https://%{facts.networking.fqdn}:9428/health"
|
|
method: 'GET'
|
|
tls_skip_verify: true
|
|
interval: '10s'
|
|
timeout: '1s'
|
|
profiles::consul::client::node_rules:
|
|
- resource: service
|
|
segment: vlinsert
|
|
disposition: write
|