flywithu/community-catalog
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Merge pull request #540 from garyduan/master

Browse Source 
Update NeuVector security container release version to rancher1.2.
This commit is contained in:
Raúl Sánchez 2017-07-03 18:11:05 +02:00 committed by GitHub
commit b51d7fd885
4 changed files with 9 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
templates/neuvector/0/README.md
View File

@ -2,9 +2,9 @@
### Info: ### Info:
NeuVector provides continuous network security for application containers. NeuVector provides continuous network security for application containers. Deploy the NeuVector containers to get network visibility, application layer segmentation, Docker Bench auditing, and run-time vulnerability scanning.
Deploy the NeuVector containers to protect running containers from violations, threats, and vulnerabilities. NeuVector also detects host and container privilege escalations / break outs. NeuVector also detects host and container privilege escalations / break outs and application threats such as DDoS and DNS attacks.
NeuVector can be deployed on greenfield or brownfield (already running) application environments. NeuVector can be deployed on greenfield or brownfield (already running) application environments.

6
templates/neuvector/0/docker-compose.yml
View File

@ -1,5 +1,5 @@
allinone: allinone:
image: neuvector/allinone:1.1.0 image: neuvector/allinone:rancher1.2
container_name: neuvector.allinone container_name: neuvector.allinone
restart: always restart: always
privileged: true privileged: true
@ -9,6 +9,7 @@ allinone:
ports: ports:
- 8443:8443 - 8443:8443
volumes: volumes:
- /var/neuvector:/var/neuvector
- /var/run/docker.sock:/var/run/docker.sock - /var/run/docker.sock:/var/run/docker.sock
- /proc:/host/proc:ro - /proc:/host/proc:ro
- /sys/fs/cgroup:/host/cgroup:ro - /sys/fs/cgroup:/host/cgroup:ro
@ -17,7 +18,7 @@ allinone:
io.rancher.scheduler.affinity:host_label: ${NV_ALLINONE_LABEL} io.rancher.scheduler.affinity:host_label: ${NV_ALLINONE_LABEL}
io.rancher.container.hostname_override: container_name io.rancher.container.hostname_override: container_name
enforcer: enforcer:
image: neuvector/enforcer:1.1.0 image: neuvector/enforcer:rancher1.2
container_name: neuvector.enforcer container_name: neuvector.enforcer
restart: always restart: always
privileged: true privileged: true
@ -25,6 +26,7 @@ enforcer:
- affinity:com.myself.name!=neuvector - affinity:com.myself.name!=neuvector
- CLUSTER_JOIN_ADDR=allinone - CLUSTER_JOIN_ADDR=allinone
volumes: volumes:
- /var/neuvector:/var/neuvector
- /var/run/docker.sock:/var/run/docker.sock - /var/run/docker.sock:/var/run/docker.sock
- /proc:/host/proc:ro - /proc:/host/proc:ro
- /sys/fs/cgroup/:/host/cgroup/:ro - /sys/fs/cgroup/:/host/cgroup/:ro

2
templates/neuvector/0/rancher-compose.yml
View File

@ -1,6 +1,6 @@
.catalog: .catalog:
name: "NeuVector" name: "NeuVector"
version: "v1.1.0" version: "rancher1.2"
description: "Container Security Solution" description: "Container Security Solution"
questions: questions:
- variable: "NV_ALLINONE_LABEL" - variable: "NV_ALLINONE_LABEL"

4
templates/neuvector/config.yml
View File

@ -1,6 +1,6 @@
name: NeuVector name: NeuVector
description: | description: |
Container Application Security Container Security Solution
version: v1.1.0 version: rancher1.2
category: Security category: Security
maintainer: neuvector support <support@neuvector.com> maintainer: neuvector support <support@neuvector.com>