1 heat_template_version: 2015-04-30
4 HOT template to create network stack
11 description: int oam network
12 int_oam_int_net_gateway:
14 description: gateway for int oam
17 description: int oam dhcp
23 description: apps db int cidr
24 apps_db_int_net_gateway:
26 description: apps db int gateway
29 description: apps db int dhcp
33 description: lb3 network
34 lb3_kms_int_net_gateway:
36 description: lb3 gateway
39 description: lb3 kms dhcp
42 app1_kms_int_net_cidr:
44 description: app1_kms network
45 app1_kms_int_net_gateway:
47 description: app1_kms gateway
48 app1_kms_int_net_dhcp:
50 description: app1_kms dhcp
55 description: apps int net
58 description: apps int gateway
61 description: apps int dhcp
64 lb1_gwaf_int_net_cidr:
67 lb1_gwaf_int_net_gateway:
69 description: lb1 gwaf gateway
72 description: lb1 gwaf description
74 gwaf_lb2_int_net_cird:
76 description: epc_sctp_a subnet
77 gwaf_lb2_int_net_gateway:
79 description: GWAF_LB2 network gateway
80 gwaf_lb2_int_net_pool_start:
82 description: GWAF_LB2 network ip pool start IP address
83 gwaf_lb2_int_net_pool_end:
85 description: GWAF_LB2 network ip pool end IP address
95 type: OS::Neutron::Net
99 template: VF_NAME_apps_db_int_net
101 VF_NAME: {get_param: vnf_name}
104 type: OS::Neutron::Subnet
106 network: { get_resource: apps_db_int_net }
107 cidr: { get_param: apps_db_int_net_cidr }
108 gateway_ip: { get_param: apps_db_int_net_gateway}
109 enable_dhcp: { get_param: apps_db_int_net_dhcp }
113 type: OS::Neutron::Net
117 template: VF_NAME_app1_kms_int_net
119 VF_NAME: {get_param: vnf_name}
123 type: OS::Neutron::Subnet
125 network: { get_resource: app1_kms_int_net }
126 cidr: { get_param: app1_kms_int_net_cidr }
127 gateway_ip: { get_param: app1_kms_int_net_gateway}
128 enable_dhcp: { get_param: app1_kms_int_net_dhcp }
133 type: OS::Neutron::Net
137 template: VF_NAME_apps_int_net
139 VF_NAME: {get_param: vnf_name}
143 type: OS::Neutron::Subnet
145 network: { get_resource: apps_int_net }
146 cidr: { get_param: apps_int_net_cidr }
147 gateway_ip: { get_param: apps_int_net_gateway }
148 enable_dhcp: { get_param: apps_int_net_dhcp }
151 type: OS::Neutron::Net
155 template: VF_NAME_lb1_gwaf_int_net
157 VF_NAME: {get_param: vnf_name}
161 type: OS::Neutron::Subnet
163 network: { get_resource: lb1_gwaf_int_net }
164 cidr: { get_param: lb1_gwaf_int_net_cidr }
165 gateway_ip: { get_param: lb1_gwaf_int_net_gateway }
166 enable_dhcp: { get_param: lb_gwaf_int_net_dhcp }
170 type: OS::Neutron::Net
174 template: VF_NAME_gwaf_lb2_int_net
176 VF_NAME: {get_param: vnf_name}
180 type: OS::Neutron::Subnet
182 network: { get_resource: gwaf_lb2_int_net }
183 cidr: { get_param: gwaf_lb2_int_net_cird }
184 gateway_ip: { get_param: gwaf_lb2_int_net_gateway }
186 - start: { get_param: gwaf_lb2_int_net_pool_start }
187 end: { get_param: gwaf_lb2_int_net_pool_end }
191 type: OS::Neutron::Net
195 template: VF_NAME_lb3_kms_int_net
197 VF_NAME: {get_param: vnf_name}
201 type: OS::Neutron::Subnet
203 network: { get_resource: lb3_kms_int_net }
204 cidr: { get_param: lb3_kms_int_net_cidr }
205 enable_dhcp: { get_param: lb3_kms_int_net_dhcp }
206 gateway_ip: { get_param: lb3_kms_int_net_gateway }
209 type: OS::Neutron::Net
213 template: VF_NAME_int_oam_int_net
215 VF_NAME: {get_param: vnf_name}
219 type: OS::Neutron::Subnet
221 network: { get_resource: int_oam_int_net }
222 cidr: { get_param: int_oam_int_net_cidr }
223 enable_dhcp: { get_param: int_oam_int_net_dhcp }
224 gateway_ip: { get_param: int_oam_int_net_gateway }
229 type: OS::Neutron::SecurityGroup
231 description: oam security group
234 template: VF_NAME-oam_sec_group
236 VF_NAME: {get_param: vnf_name}
237 rules: [{"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
238 {"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
239 {"direction": egress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0},
240 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
241 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
242 {"direction": ingress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0}
245 int_oam_int_sec_group:
246 type: OS::Neutron::SecurityGroup
248 description: oam security group
251 template: VF_NAME-int_oam_sec_group
253 VF_NAME: {get_param: vnf_name}
254 rules: [{"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
255 {"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
256 {"direction": egress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0},
257 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
258 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
259 {"direction": ingress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0}
264 type: OS::Neutron::SecurityGroup
266 description: db core security group
269 template: VF_NAME-db_core_sec_group
271 VF_NAME: {get_param: vnf_name}
272 rules: [{"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
273 {"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
274 {"direction": egress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0},
275 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
276 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
277 {"direction": ingress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0}
280 otacs_core_sec_group:
281 type: OS::Neutron::SecurityGroup
283 description: otacs core security group
286 template: VF_NAME-otacs_core_sec_group
288 VF_NAME: {get_param: vnf_name}
289 rules: [{"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
290 {"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
291 {"direction": egress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0},
292 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
293 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
294 {"direction": ingress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0}
299 type: OS::Neutron::SecurityGroup
301 description: apps security group
304 template: VF_NAME-apps_int_sec_group
306 VF_NAME: {get_param: vnf_name}
307 rules: [{"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
308 {"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
309 {"direction": egress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0},
310 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
311 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
312 {"direction": ingress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0}
315 apps_db_int_sec_group:
316 type: OS::Neutron::SecurityGroup
318 description: apps db security group
321 template: VF_NAME-apps_db_int_sec_group
323 VF_NAME: {get_param: vnf_name}
324 rules: [{"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
325 {"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
326 {"direction": egress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0},
327 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
328 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
329 {"direction": ingress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0}
333 lb1_gwaf_int_sec_group:
334 type: OS::Neutron::SecurityGroup
336 description: fromexternal gwaf security group
339 template: VF_NAME-lb1_gwaf_int_sec_group
341 VF_NAME: {get_param: vnf_name}
342 rules: [{"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
343 {"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
344 {"direction": egress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0},
345 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
346 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
347 {"direction": ingress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0}
352 type: OS::Neutron::SecurityGroup
354 description: gwaf1_app1 security group
357 template: VF_NAME-gwaf_lb2_sec_group
359 VF_NAME: {get_param: vnf_name}
360 rules: [{"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
361 {"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
362 {"direction": egress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0},
363 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
364 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
365 {"direction": ingress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0}
368 app1_kms_int_sec_group:
369 type: OS::Neutron::SecurityGroup
371 description: app1 kms security group
374 template: VF_NAME-app1_kms_int_sec_group
376 VF_NAME: {get_param: vnf_name}
377 rules: [{"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
378 {"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
379 {"direction": egress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0},
380 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
381 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
382 {"direction": ingress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0}
387 type: OS::Neutron::SecurityGroup
389 description: LB1 all security group
392 template: VF_NAME-lb1_oam_sec_group
394 VF_NAME: {get_param: vnf_name}
395 rules: [{"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
396 {"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
397 {"direction": egress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0},
398 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
399 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
400 {"direction": ingress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0}
403 lb3_kms_int_sec_group:
404 type: OS::Neutron::SecurityGroup
406 description: lb3_kms_int_sec_group
409 template: VF_NAME-lb3_kms_int_sec_group
411 VF_NAME: {get_param: vnf_name}
412 rules: [{"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
413 {"direction": egress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
414 {"direction": egress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0},
415 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": tcp, "remote_ip_prefix": 0.0.0.0/0},
416 {"direction": ingress, "ethertype": IPv4, "port_range_min": 1, "port_range_max": 65535, "protocol": udp, "remote_ip_prefix": 0.0.0.0/0},
417 {"direction": ingress, "ethertype": IPv4, "protocol": icmp, "remote_ip_prefix": 0.0.0.0/0}
424 description: uuid of the network
425 value: {get_resource: apps_db_int_net }
428 description: uuid of the network
429 value: {get_resource: app1_kms_int_net }
432 description: uuid of the network
433 value: {get_resource: apps_int_net }
436 description: uuid of the network
437 value: {get_resource: lb1_gwaf_int_net }
440 description: uuid of the network
441 value: {get_resource: gwaf_lb2_int_net }
444 description: uuid of the network
445 value: {get_resource: lb3_kms_int_net }
448 description: uuid of the network
449 value: {get_resource: int_oam_int_net }
451 oam_protected_sec_group_id:
452 description: uuid of the security group
453 value: {get_resource: oam_sec_group }
455 int_oam_int_sec_group_id:
456 description: uuid of the security group
457 value: {get_resource: int_oam_int_sec_group }
459 db_core_sec_group_id:
460 description: uuid of the security group
461 value: {get_resource: db_core_sec_group }
463 otacs_core_sec_group_id:
464 description: uuid of the security group
465 value: {get_resource: otacs_core_sec_group }
467 apps_int_sec_group_id:
468 description: uuid of the security group
469 value: {get_resource: apps_int_sec_group }
471 apps_db_int_sec_group_id:
472 description: uuid of the security group
473 value: {get_resource: apps_db_int_sec_group }
475 lb1_gwaf_int_sec_group_id:
476 description: uuid of the security group
477 value: {get_resource: lb1_gwaf_int_sec_group }
479 gwaf_lb2_int_sec_group_id:
480 description: uuid of the security group
481 value: {get_resource: gwaf_lb2_sec_group }
483 app1_kms_int_sec_group_id:
484 description: uuid of the security group
485 value: {get_resource: app1_kms_int_sec_group }
487 lb1_oam_protected_sec_group_id:
488 description: uuid of the security group
489 value: {get_resource: lb1_oam_sec_group }
491 lb3_kms_int_sec_group_id:
492 description: uuid of the security group
493 value: {get_resource: lb3_kms_int_sec_group }