Skip to content

neuvector values.yaml📜

domain📜

Type: string

Default value
"dev.bigbang.mil"

istio.enabled📜

Type: bool

Default value
true

istio.injection📜

Type: string

Default value
"enabled"

istio.mtls.mode📜

Type: string

Default value
"STRICT"

istio.sidecar.enabled📜

Type: bool

Default value
true

istio.sidecar.outboundTrafficPolicyMode📜

Type: string

Default value
"REGISTRY_ONLY"

istio.authorizationPolicies.enabled📜

Type: bool

Default value
true

istio.authorizationPolicies.generateFromNetpol📜

Type: bool

Default value
true

routes.inbound.neuvector.enabled📜

Type: bool

Default value
true

routes.inbound.neuvector.gateways[0]📜

Type: string

Default value
"istio-system/public"

routes.inbound.neuvector.hosts[0]📜

Type: string

Default value
"neuvector.{{ .Values.domain }}"

routes.inbound.neuvector.service📜

Type: string

Default value
"neuvector-service-webui"

routes.inbound.neuvector.port📜

Type: int

Default value
8443

routes.inbound.neuvector.selector.app📜

Type: string

Default value
"neuvector-manager-pod"

networkPolicies.enabled📜

Type: bool

Default value
false

networkPolicies.egress.from.controller.podSelector.matchLabels.app📜

Type: string

Default value
"neuvector-controller-pod"

networkPolicies.egress.from.controller.to.definition.kubeAPI📜

Type: bool

Default value
true

networkPolicies.egress.from.updater.podSelector.matchLabels.app📜

Type: string

Default value
"neuvector-updater-pod"

networkPolicies.egress.from.updater.to.definition.kubeAPI📜

Type: bool

Default value
true

networkPolicies.egress.from.cert-upgrader.podSelector.matchLabels.app📜

Type: string

Default value
"neuvector-cert-upgrader-pod"

networkPolicies.egress.from.cert-upgrader.to.definition.kubeAPI📜

Type: bool

Default value
true

networkPolicies.egress.from.enforcer.podSelector.matchLabels.app📜

Type: string

Default value
"neuvector-enforcer-pod"

networkPolicies.egress.from.enforcer.to.definition.kubeAPI📜

Type: bool

Default value
true

networkPolicies.egress.from.scanner.podSelector.matchLabels.app📜

Type: string

Default value
"neuvector-scanner-pod"

networkPolicies.egress.from.scanner.to.definition.kubeAPI📜

Type: bool

Default value
true

networkPolicies.ingress.to.exporter:8068.podSelector.matchLabels.app📜

Type: string

Default value
"neuvector-prometheus-exporter-pod"

networkPolicies.ingress.to.exporter:8068.from.k8s.monitoring/prometheus📜

Type: bool

Default value
true

monitoring.enabled📜

Type: bool

Default value
false

monitoring.namespace📜

Type: string

Default value
"monitoring"

bbtests.enabled📜

Type: bool

Default value
false

bbtests.cypress.artifacts📜

Type: bool

Default value
true

bbtests.cypress.envs.cypress_url📜

Type: string

Default value
"http://neuvector-service-webui.{{ .Release.Namespace }}.svc.cluster.local:8443"

bbtests.cypress.resources.requests.cpu📜

Type: string

Default value
"2"

bbtests.cypress.resources.requests.memory📜

Type: string

Default value
"4Gi"

bbtests.cypress.resources.limits.cpu📜

Type: string

Default value
"2"

bbtests.cypress.resources.limits.memory📜

Type: string

Default value
"4Gi"

bbtests.scripts.envs.URL📜

Type: string

Default value
"http://neuvector-service-webui.{{ .Release.Namespace }}.svc.cluster.local:8443"

global.imagePullSecrets📜

Type: string

Default value
nil

global.images.neuvector_csp_pod.tag📜

Type: string

Default value
"latest"

global.images.neuvector_csp_pod.image📜

Type: string

Default value
"neuvector-billing-azure-by-suse-llc"

global.images.neuvector_csp_pod.registry📜

Type: string

Default value
"registry.suse.de/suse/sle-15-sp5/update/pubclouds/images"

global.images.neuvector_csp_pod.imagePullPolicy📜

Type: string

Default value
"Always"

global.images.controller.tag📜

Type: string

Default value
"5.4.7"

global.images.controller.image📜

Type: string

Default value
"controller"

global.images.controller.registry📜

Type: string

Default value
"registry1.dso.mil/ironbank/neuvector/neuvector"

global.images.manager.tag📜

Type: string

Default value
"5.4.7"

global.images.manager.image📜

Type: string

Default value
"manager"

global.images.manager.registry📜

Type: string

Default value
"registry1.dso.mil/ironbank/neuvector/neuvector"

global.images.enforcer.tag📜

Type: string

Default value
"5.4.7"

global.images.enforcer.image📜

Type: string

Default value
"enforcer"

global.images.enforcer.registry📜

Type: string

Default value
"registry1.dso.mil/ironbank/neuvector/neuvector"

monitor.imagePullSecrets📜

Type: string

Default value
"private-registry"

monitor.install📜

Type: bool

Default value
false

monitor.serviceAccount📜

Type: string

Default value
"default"

monitor.registry📜

Type: string

Default value
"registry1.dso.mil"

monitor.exporter.enabled📜

Type: bool

Default value
false

monitor.exporter.serviceMonitor.enabled📜

Type: bool

Default value
false

monitor.exporter.svc.enabled📜

Type: bool

Default value
false

monitor.exporter.image.repository📜

Type: string

Default value
"ironbank/neuvector/neuvector/prometheus-exporter"

monitor.exporter.image.tag📜

Type: string

Default value
"1-1.0.0"

monitor.exporter.image.imagePullPolicy📜

Type: string

Default value
"Always"

monitor.exporter.containerSecurityContext.runAsUser📜

Type: int

Default value
1001

monitor.exporter.containerSecurityContext.runAsGroup📜

Type: int

Default value
1001

monitor.exporter.containerSecurityContext.capabilities.drop[0]📜

Type: string

Default value
"ALL"