-
Notifications
You must be signed in to change notification settings - Fork 9
/
Copy pathdocker-compose.yml
40 lines (37 loc) · 1.06 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
version: '2'
services:
consul:
image: "consul:1.1.0"
hostname: "consul"
command: "agent -dev -client 0.0.0.0"
ports:
- "8400:8400"
- "8500:8500"
- "8600:53/udp"
vault:
depends_on:
- consul
# Venafi plugin image
#image: venafi/vault-pki-monitor-venafi:build
build: .
hostname: "vault"
links:
- "consul:consul"
environment:
VAULT_ADDR: http://127.0.0.1:8200
TRUST_BUNDLE: /opt/venafi/bundle.pem
ports:
- "8200:8200"
extra_hosts:
- "ha-tpp1.sqlha.com:192.168.6.23"
volumes:
# If you want to use trust bundle file option
- /opt/venafi/bundle.pem:/opt/venafi/bundle.pem
entrypoint: /scripts/wait-for-it.sh -t 20 -h consul -p 8500 -s -- vault server -config=/config/vault-config-with-consul.hcl -log-level=debug
#TODO: this is a workaround to avoid internal network conflict. Need to find a better solution when the network is not specified in the docker-compose file.
networks:
default:
ipam:
driver: default
config:
- subnet: "192.168.84.1/24"