Tuesday, January 9, 2018

Concourse Pipeline for PCF 2.0 + NSX-T Add-on Tile

Users of Pivotal Cloud Foundry 2.0 ( renamed from ERT to PAS) and VMware NSX-T Container Plug-in Tile can use the nsx-t-ci-pipeline Concourse pipeline and scripts to bring up a fully configured Ops Mgr 2.0 with PAS and NSX-T. Users can choose to go either with just the base install of PAS or the full install of MySQL, Rabbit MQ and SCS service tiles in addition to the PAS install.





Versions installed:

Pivotal Operations Manager: 2.0.x
Pivotal Application Service (formerly ERT): 2.0.x
NSX-T Container Plug-in Tile: 2.1.x
Spring Cloud Service: 1.5.x
MySQL: 1.10.x
RabbitMQ: 1.11.x

Steps:
  1. Install and configure NSX-T with T0 Router and T1 Routers along with separate logical switches for Infra, Ert, Services, Dynamic-Services (following the standard PCF NSX Reference arch).  The concourse pipeline does not install or configure NSX-T.
  2. Clone the repo or just create local copy.
  3. Use an existing concourse install or bring up a new concourse instance (scripts available to create one). The concourse install can use github based auth to allow access. Configure the bosh director and cloud configs first to bring up Bosh director followed by configuring the concourse portion and bring up Concourse.
  4. Configure the parameters required for the pipeline (sample params file available in the repo under pipelines/params.sample.yml).
  5. NSX-T Container Plug-in tile is available from VMware site but not yet on network.pivotal.io. Till it becomes directly available for download as a Pivnet resource, download it from other sources (VMware or friendly SE contacts) and upload it to a S3 bucket for reference from the pipeline.
  6. Register and run the pipeline. Edit the pipelines/setup.sh script as needed to edit the concourse endpoint and pipeline, params etc.


4 comments:

  1. Would you please show more details on the prerequisites before PAS2.0 installation: How's the NSX-T 2.1 loadbalancer configured for PAS (GoRouter, SSH Proxy, and Mysql Proxy)? should the PAS foundation named tagged as "ncp/cluster" on T0 logical routers, transport zones, and Infra_logical_switch/ert_logical_switch/service_logical_switch?

    Thanks a lot!

    ReplyDelete
    Replies
    1. sure, will try to create a separate blog entry on the configuration steps. Thanks.

      Delete
    2. Hi Yun Bao,

      I have added a new post on nsx-t-gen that can help automate the whole install and configuration of nsx-t. Wrt to your question, for PAS, the T0 Router along with the container ip block, external ip pool, HA Spoofguard profile and the NSX-T tile itself should all have the ncp/cluster tagged with the same foundation name or identifier. For LBR, use auto-map in server pool config so natting is handled automatically to reach the gorouter, ssh proxy etc.

      Delete
  2. This comment has been removed by the author.

    ReplyDelete