3 # starts ovn NB/SB ovsdb daemons, each in a separate container
4 # it is running on master node for now, but does not need to be the case
9 # namespace set up by install
10 namespace: ovn-kubernetes
12 kubernetes.io/description: |
13 This daemonset launches the OVN NB/SB ovsdb service components.
15 progressDeadlineSeconds: 600
17 revisionHistoryLimit: 10
32 openshift.io/component: network
33 beta.kubernetes.io/os: "linux"
35 scheduler.alpha.kubernetes.io/critical-pod: ''
37 # Requires fairly broad permissions - ability to read all services and network functions as well
39 serviceAccountName: ovn
42 # firewall rules for ovn - assumed to be setup
43 # iptables -A OS_FIREWALL_ALLOW -p tcp -m state --state NEW -m tcp --dport 6641 -j ACCEPT
44 # iptables -A OS_FIREWALL_ALLOW -p tcp -m state --state NEW -m tcp --dport 6642 -j ACCEPT
48 image: "{{ ovn_image | default('docker.io/ovnkube/ovn-daemonset:latest') }}"
49 imagePullPolicy: "{{ ovn_image_pull_policy | default('IfNotPresent') }}"
51 command: ["/root/ovnkube.sh", "nb-ovsdb"]
59 # ovn db is stored in the pod in /etc/openvswitch
60 # and on the host in /var/lib/openvswitch/
61 - mountPath: /etc/openvswitch/
62 name: host-var-lib-ovs
63 - mountPath: /var/log/openvswitch/
64 name: host-var-log-ovs
71 - name: OVN_DAEMONSET_VERSION
74 value: "-vconsole:info -vfile:info"
80 - name: OVN_KUBERNETES_NAMESPACE
83 fieldPath: metadata.namespace
87 # TODO: Temporarily disabled until we determine how to wait for clean default
90 # initialDelaySeconds: 10
100 image: "{{ ovn_image | default('docker.io/ovnkube/ovn-daemonset:latest') }}"
101 imagePullPolicy: "{{ ovn_image_pull_policy | default('IfNotPresent') }}"
103 command: ["/root/ovnkube.sh", "sb-ovsdb"]
111 # ovn db is stored in the pod in /etc/openvswitch
112 # and on the host in /var/lib/openvswitch/
113 - mountPath: /etc/openvswitch/
114 name: host-var-lib-ovs
115 - mountPath: /var/log/openvswitch/
116 name: host-var-log-ovs
123 - name: OVN_DAEMONSET_VERSION
126 value: "-vconsole:info -vfile:info"
127 - name: K8S_APISERVER
132 - name: OVN_KUBERNETES_NAMESPACE
135 fieldPath: metadata.namespace
139 # TODO: Temporarily disabled until we determine how to wait for clean default
142 # initialDelaySeconds: 10
151 node-role.kubernetes.io/master: ""
152 beta.kubernetes.io/os: "linux"
154 - name: host-var-lib-ovs
156 path: /var/lib/openvswitch
157 - name: host-var-log-ovs
159 path: /var/log/openvswitch