Merge pull request #1 from splunk/deploy

Deploy

Author: Ryan Faircloth

deploy/k8s/mib-server-deployment.yaml

@@ -0,0 +1,27 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: mib-server
+  labels:
+    app: sc4-snmp-mib-server
+    environment: production
+    tier: backend
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: sc4-snmp-mib-server
+      environment: production
+  template:
+    metadata:
+      labels:
+        app: sc4-snmp-mib-server
+        environment: production
+        tier: backend
+    spec:
+      containers:
+        - name: mib-server
+          image: ghcr.io/splunk/splunk-connect-for-snmp-mib-server:1.0.0
+          ports:
+            - containerPort: 9000
+---

deploy/k8s/mib-server-static.yaml

@@ -0,0 +1,16 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: mib-server
+  labels:
+    app: sc4-snmp-mib-server
+    environment: production
+    tier: backend
+spec:
+  ports:
+    - port: 9000
+      targetPort: 9000
+  selector:
+    app: sc4-snmp-mib-server
+---
+

deploy/k8s/traps-deployment.yaml

@@ -0,0 +1,54 @@
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: traps
+  labels:
+    app: sc4-snmp-traps
+    environment: production
+    tier: frontend
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: sc4-snmp-traps
+      environment: production
+      tier: frontend
+  template:
+    metadata:
+      labels:
+        app: sc4-snmp-traps
+        environment: production
+        tier: frontend
+    spec:
+      containers:
+        - name: traps
+          image: ghcr.io/splunk/splunk-connect-for-snmp-traps:0.1.10
+          args: ["--log=DEBUG"]
+          resources:
+            requests:
+              memory: "2Gi"
+              cpu: "1"
+            limits:
+              memory: "8Gi"
+              cpu: "4"
+          ports:
+            - containerPort: 2162
+          env:
+            - name: SPLUNK_HEC_URL
+              valueFrom:
+                secretKeyRef:
+                  name: remote-splunk
+                  key: SPLUNK_HEC_URL
+            - name: SPLUNK_HEC_TOKEN
+              valueFrom:
+                secretKeyRef:
+                  name: remote-splunk
+                  key: SPLUNK_HEC_TOKEN
+            - name: SPLUNK_HEC_TLS_VERIFY
+              valueFrom:
+                secretKeyRef:
+                  name: remote-splunk
+                  key: SPLUNK_HEC_TLS_VERIFY
+---
+

deploy/k8s/traps-static.yaml

@@ -0,0 +1,30 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: sc4snmp-env-file
+data:
+  SPLUNK_HEC_URL: https://splunk-s1-standalone-headless:8088
+  SC4SNMP_DEST_SPLUNK_HEC_TLS_VERIFY: "yes"
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: traps
+  labels:
+    app: sc4-snmp-traps-svc
+    environment: production
+    tier: frontend
+  annotations:
+    metallb.universe.tf/allow-shared-ip: sedge
+spec:
+  loadBalancerIP: replace-me
+  ports:
+    - port: 162
+      targetPort: 2162
+      protocol: UDP
+  selector:
+    app: sc4-snmp-traps
+  type: LoadBalancer
+  externalTrafficPolicy: Local
+---
+

docs/requirements.txt

@@ -0,0 +1 @@
+sphinx-material==0.0.32

docs/source/gettingstarted.rst

@@ -0,0 +1,66 @@
+... Getting Started
+
+Getting Started
+===================================================
+
+Requirements (Splunk Enterprise/Enterprise Cloud)
+---------------------------------------------------
+
+1. Splunk index for events "netops"
+2. Splunk index for metrics "net_metrics"
+3. Splunk hec token with no index restriction *OR* Splunk hec token with access to _internal, netops and net_metrics
+4. Known Splunk URL with trusted certificate (must be trusted by standard red hat trusted chain)
+5. Physical or virtual linux host (Prefer Ubuntu or RHEL 8.1) RHEL hosts must have snap support enabled see https://snapcraft.io/docs/installing-snapd
+6. One IP allocation in addition to the ip allocated to the host. *Note: In the future clustering (scale out) will use this IP as a shared resource
+
+Setup Micro K8s
+---------------------------------------------------
+
+The following setup instructions are validated for release 1.20x but are subject to change.
+
+1. Install MicroK8s ``sudo snap install microk8s --classic``
+2. Check completion status ``sudo microk8s status --wait-ready``
+3. Install optional modules ``sudo microk8s enable dashboard dns registry metallb``
+4. Alias kubectl ``alias kubectl="microk8s kubectl"``
+
+Setup Secrets
+---------------------------------------------------
+
+Execute the following commands, use the correct values for your env:
+
+* Setup URL and token secret
+
+.. code-block:: bash
+
+   kubectl create secret generic remote-splunk \
+   --from-literal=SPLUNK_HEC_URL=https://fqdn:8088/services/collector \
+   --from-literal=SPLUNK_HEC_TLS_VERIFY=yes \
+   --from-literal=SPLUNK_HEC_TOKEN=sometoken
+   
+
+* Get the manifests
+
+.. code-block:: bash
+
+   git clone https://github.com/splunk/splunk-connect-for-snmp.git
+
+* Apply the manifests, replace the ip ``10.0.101.22`` with the shared IP noted above
+
+.. code-block:: bash
+
+    cat splunk-connect-for-snmp/deploy/k8s/*.yaml  | sed 's/loadBalancerIP: replace-me/loadBalancerIP: 10.0.101.22/' | kubectl apply -f -
+
+* Confirm deployment using ``kubectl get pods`` two(2) instances of mib-server and one (1) instance of traps example
+
+.. code-block:: bash
+
+    NAME                          READY   STATUS    RESTARTS   AGE
+    mib-server-54557f5846-rzg9q   1/1     Running   0          1m
+    mib-server-54557f5846-pbt2h   1/1     Running   0          1m
+    traps-676859cb8d-tnc7v        1/1     Running   0          1m
+
+* Test the trap from a linux system with snmp installed replace the ip ``10.0.101.22`` with the shared ip above
+
+.. code-block:: bash
+
+    snmptrap -v2c -c public 10.0.101.22 123 1.3.6.1.6.3.1.1.5.1 1.3.6.1.2.1.1.5.0 s test

docs/source/index.rst

@@ -9,8 +9,10 @@ collection of SNMP data for Splunk Enterprise, Splunk Enterprise Cloud and Splun
 
 
 .. toctree::
-   :maxdepth: 2
-   :caption: Contents:
+   :caption: Table of Contents
+   :maxdepth: 1
+
+   gettingstarted