81 lines
1.9 KiB
YAML
81 lines
1.9 KiB
YAML
kind: Pod
|
|
apiVersion: v1
|
|
metadata:
|
|
name: console
|
|
namespace: sangge
|
|
labels:
|
|
app: console
|
|
spec:
|
|
volumes:
|
|
- name: kube-api-access-zj4cn
|
|
projected:
|
|
sources:
|
|
- serviceAccountToken:
|
|
expirationSeconds: 3607
|
|
path: token
|
|
- configMap:
|
|
name: kube-root-ca.crt
|
|
items:
|
|
- key: ca.crt
|
|
path: ca.crt
|
|
- downwardAPI:
|
|
items:
|
|
- path: namespace
|
|
fieldRef:
|
|
apiVersion: v1
|
|
fieldPath: metadata.namespace
|
|
defaultMode: 420
|
|
containers:
|
|
- name: container-ezl95t
|
|
image: 'reg.sre.victor-core.top/cobalt-strike/console:1.3.0'
|
|
imagePullPolicy: Always
|
|
ports:
|
|
- name: console
|
|
protocol: TCP
|
|
containerPort: 4444
|
|
volumeMounts:
|
|
- name: kube-api-access-zj4cn
|
|
readOnly: true
|
|
mountPath: /var/run/secrets/kubernetes.io/serviceaccount
|
|
terminationMessagePath: /dev/termination-log
|
|
terminationMessagePolicy: File
|
|
restartPolicy: Always
|
|
terminationGracePeriodSeconds: 30
|
|
dnsPolicy: ClusterFirst
|
|
serviceAccountName: default
|
|
serviceAccount: default
|
|
nodeName: 172.22.161.246
|
|
securityContext: {}
|
|
schedulerName: default-scheduler
|
|
tolerations:
|
|
- key: node.kubernetes.io/not-ready
|
|
operator: Exists
|
|
effect: NoExecute
|
|
tolerationSeconds: 300
|
|
- key: node.kubernetes.io/unreachable
|
|
operator: Exists
|
|
effect: NoExecute
|
|
tolerationSeconds: 300
|
|
priority: 0
|
|
enableServiceLinks: true
|
|
preemptionPolicy: PreemptLowerPriority
|
|
|
|
---
|
|
apiVersion: v1
|
|
kind: Service
|
|
metadata:
|
|
labels:
|
|
app: console-service
|
|
name: console-service
|
|
namespace: sangge
|
|
spec:
|
|
ports:
|
|
- name: 80-4444-tcp
|
|
port: 80
|
|
protocol: TCP
|
|
targetPort: 4444
|
|
selector:
|
|
app: console-service
|
|
sessionAffinity: None
|
|
type: ClusterIP
|