You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
247 lines
6.5 KiB
247 lines
6.5 KiB
restartPolicy: Always
|
|
|
|
kind: Deployment
|
|
|
|
podDisruptionBudget: {}
|
|
# maxUnavailable: 0
|
|
|
|
## Additional blackbox-exporter container environment variables
|
|
## For instance to add a http_proxy
|
|
##
|
|
## extraEnv:
|
|
## HTTP_PROXY: "http://superproxy.com:3128"
|
|
## NO_PROXY: "localhost,127.0.0.1"
|
|
extraEnv: {}
|
|
|
|
extraVolumes: []
|
|
# - name: secret-blackbox-oauth-htpasswd
|
|
# secret:
|
|
# defaultMode: 420
|
|
# secretName: blackbox-oauth-htpasswd
|
|
# - name: storage-volume
|
|
# persistentVolumeClaim:
|
|
# claimName: example
|
|
|
|
extraContainers: []
|
|
# - name: oAuth2-proxy
|
|
# args:
|
|
# - -https-address=:9116
|
|
# - -upstream=http://localhost:9115
|
|
# - -skip-auth-regex=^/metrics
|
|
# - -openshift-delegate-urls={"/":{"group":"monitoring.coreos.com","resource":"prometheuses","verb":"get"}}
|
|
# image: openshift/oauth-proxy:v1.1.0
|
|
# ports:
|
|
# - containerPort: 9116
|
|
# name: proxy
|
|
# resources:
|
|
# limits:
|
|
# memory: 16Mi
|
|
# requests:
|
|
# memory: 4Mi
|
|
# cpu: 20m
|
|
# volumeMounts:
|
|
# - mountPath: /etc/prometheus/secrets/blackbox-tls
|
|
# name: secret-blackbox-tls
|
|
|
|
## Enable pod security policy
|
|
pspEnabled: true
|
|
|
|
strategy:
|
|
rollingUpdate:
|
|
maxSurge: 1
|
|
maxUnavailable: 0
|
|
type: RollingUpdate
|
|
|
|
image:
|
|
repository: prom/blackbox-exporter
|
|
tag: v0.18.0
|
|
pullPolicy: IfNotPresent
|
|
|
|
## Optionally specify an array of imagePullSecrets.
|
|
## Secrets must be manually created in the namespace.
|
|
## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
|
|
##
|
|
# pullSecrets:
|
|
# - myRegistrKeySecretName
|
|
|
|
## User to run blackbox-exporter container as
|
|
runAsUser: 1000
|
|
readOnlyRootFilesystem: true
|
|
runAsNonRoot: true
|
|
|
|
|
|
livenessProbe:
|
|
httpGet:
|
|
path: /health
|
|
port: http
|
|
|
|
readinessProbe:
|
|
httpGet:
|
|
path: /health
|
|
port: http
|
|
|
|
nodeSelector: {}
|
|
tolerations: []
|
|
affinity: {}
|
|
|
|
# if the configuration is managed as secret outside the chart, using SealedSecret for example,
|
|
# provide the name of the secret here. If secretConfig is set to true, configExistingSecretName will be ignored
|
|
# in favor of the config value.
|
|
configExistingSecretName: ""
|
|
# Store the configuration as a `Secret` instead of a `ConfigMap`, useful in case it contains sensitive data
|
|
secretConfig: false
|
|
config:
|
|
modules:
|
|
http_2xx:
|
|
prober: http
|
|
http:
|
|
http_post_2xx:
|
|
prober: http
|
|
http:
|
|
method: POST
|
|
tcp_connect:
|
|
prober: tcp
|
|
pop3s_banner:
|
|
prober: tcp
|
|
tcp:
|
|
query_response:
|
|
- expect: "^+OK"
|
|
tls: true
|
|
tls_config:
|
|
insecure_skip_verify: false
|
|
ssh_banner:
|
|
prober: tcp
|
|
tcp:
|
|
query_response:
|
|
- expect: "^SSH-2.0-"
|
|
irc_banner:
|
|
prober: tcp
|
|
tcp:
|
|
query_response:
|
|
- send: "NICK prober"
|
|
- send: "USER prober prober prober :prober"
|
|
- expect: "PING :([^ ]+)"
|
|
send: "PONG ${1}"
|
|
- expect: "^:[^ ]+ 001"
|
|
icmp:
|
|
prober: icmp
|
|
|
|
extraConfigmapMounts: []
|
|
# - name: certs-configmap
|
|
# mountPath: /etc/secrets/ssl/
|
|
# subPath: certificates.crt # (optional)
|
|
# configMap: certs-configmap
|
|
# readOnly: true
|
|
# defaultMode: 420
|
|
|
|
## Additional secret mounts
|
|
# Defines additional mounts with secrets. Secrets must be manually created in the namespace.
|
|
extraSecretMounts: []
|
|
# - name: secret-files
|
|
# mountPath: /etc/secrets
|
|
# secretName: blackbox-secret-files
|
|
# readOnly: true
|
|
# defaultMode: 420
|
|
|
|
allowIcmp: true
|
|
|
|
resources: {}
|
|
# limits:
|
|
# memory: 300Mi
|
|
# requests:
|
|
# memory: 50Mi
|
|
|
|
priorityClassName: ""
|
|
|
|
service:
|
|
annotations: {}
|
|
labels: {}
|
|
type: ClusterIP
|
|
port: 9115
|
|
targetPort: 9115
|
|
serviceAccount:
|
|
# Specifies whether a ServiceAccount should be created
|
|
create: true
|
|
# The name of the ServiceAccount to use.
|
|
# If not set and create is true, a name is generated using the fullname template
|
|
name:
|
|
annotations: {}
|
|
|
|
## An Ingress resource can provide name-based virtual hosting and TLS
|
|
## termination among other things for CouchDB deployments which are accessed
|
|
## from outside the Kubernetes cluster.
|
|
## ref: https://kubernetes.io/docs/concepts/services-networking/ingress/
|
|
ingress:
|
|
enabled: false
|
|
hosts: []
|
|
# - chart-example.local
|
|
path: '/'
|
|
annotations: {}
|
|
# kubernetes.io/ingress.class: nginx
|
|
# kubernetes.io/tls-acme: "true"
|
|
tls: []
|
|
# Secrets must be manually created in the namespace.
|
|
# - secretName: chart-example-tls
|
|
# hosts:
|
|
# - chart-example.local
|
|
|
|
podAnnotations: {}
|
|
|
|
pod:
|
|
labels: {}
|
|
|
|
extraArgs: []
|
|
# --history.limit=1000
|
|
|
|
replicas: 1
|
|
|
|
serviceMonitor:
|
|
## If true, a ServiceMonitor CRD is created for a prometheus operator
|
|
## https://github.com/coreos/prometheus-operator
|
|
##
|
|
enabled: false
|
|
|
|
# Default values that will be used for all ServiceMonitors created by `targets`
|
|
defaults:
|
|
additionalMetricsRelabels: {}
|
|
labels: {}
|
|
interval: 30s
|
|
scrapeTimeout: 30s
|
|
module: http_2xx
|
|
## scheme: HTTP scheme to use for scraping. Can be used with `tlsConfig` for example if using istio mTLS.
|
|
scheme: http
|
|
## tlsConfig: TLS configuration to use when scraping the endpoint. For example if using istio mTLS.
|
|
## Of type: https://github.com/coreos/prometheus-operator/blob/master/Documentation/api.md#tlsconfig
|
|
tlsConfig: {}
|
|
bearerTokenFile:
|
|
|
|
targets:
|
|
# - name: example # Human readable URL that will appear in Prometheus / AlertManager
|
|
# url: http://example.com/healthz # The URL that blackbox will scrape
|
|
# labels: {} # Map of labels for ServiceMonitor. Overrides value set in `defaults`
|
|
# interval: 60s # Scraping interval. Overrides value set in `defaults`
|
|
# scrapeTimeout: 60s # Scrape timeout. Overrides value set in `defaults`
|
|
# module: http_2xx # Module used for scraping. Overrides value set in `defaults`
|
|
# additionalMetricsRelabels: {} # Map of metric labels and values to add
|
|
|
|
## Custom PrometheusRules to be defined
|
|
## ref: https://github.com/coreos/prometheus-operator#customresourcedefinitions
|
|
prometheusRule:
|
|
enabled: false
|
|
additionalLabels: {}
|
|
namespace: ""
|
|
rules: []
|
|
|
|
## Network policy for chart
|
|
networkPolicy:
|
|
# Enable network policy and allow access from anywhere
|
|
enabled: false
|
|
# Limit access only from monitoring namespace
|
|
allowMonitoringNamespace: false
|
|
|
|
## dnsPolicy and dnsConfig for Deployments and Daemonsets if you want non-default settings.
|
|
## These will be passed directly to the PodSpec of same.
|
|
dnsPolicy:
|
|
dnsConfig:
|
|
|