Core Daemon
To correctly set up this service the cluster’s internal endpoint is required to allow Core Daemon to connect to Node Persistence and Circuit Storage. The default values are usually enough, unless each service is deployed in its own dedicated namespace.
If not using AWS, an key must be generated and mounted inside the pods of core-daemon:
openssl ecparam -name secp256k1 -genkey -noout -out private.pem
openssl ec -in private.pem -pubout -out public.pem
kubectl create secret generic keypair -n <core-daemon-namespace> --from-file=tls.crt=public.pem --from-file=tls.key=private.pem
global:
namespace: <core-daemon-namespace>
image:
tag: 1.49.2
configMap:
# -- Node Persistence URI
apiNodePersistenceBasePath: http://node-persistence/
# -- Circuit Storage URI
apiCircuitStorageBasePath: http://circuit-storage/
# -- Environment
coreDaemonConfigEnvironment: <environment>
# -- REQUIRED IF NOT USING AWS
keysFileSystemPublicPath: /etc/ssl/keypair/tls.crt
keysFileSystemPrivatePath: /etc/ssl/keypair/tls.key
# -- REQUIRED IF NOT USING AWS
certificates:
- name: keypair
mountPath: /etc/ssl/keypair
readOnly: true
# -- Suggested sizing
resources:
## -- Limits
limits:
cpu: 1800m
memory: 2048Mi
## -- Requests
requests:
cpu: 100m
memory: 512Mi
Last updated
Was this helpful?