public/geek-cookbook
1
0
Fork 0
mirror of https://github.com/funkypenguin/geek-cookbook/ synced 2025-12-13 01:36:23 +00:00
Code Issues Releases Wiki Activity

Added recipe for ceph

Browse Source
This commit is contained in:
David Young
2017-07-28 10:25:38 +12:00
parent a09d73c35b
commit 22fbf25cfb
7 changed files with 277 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
docs/ha-docker-swarm/design.md
View File

@@ -24,6 +24,20 @@ This means that:
* Services are defined using docker-compose v3 YAML syntax
* Services are portable, meaning a particular stack could be shut down and moved to a new provider with minimal effort.
## Security
Under this design, the only inbound connections we're permitting to our docker swarm are:
### Network Flows
* HTTP (TCP 80) : Redirects to https
* HTTPS (TCP 443) : Serves individual docker containers via SSL-encrypted reverse proxy
### Authentication
* Where the proxied application provides a trusted level of authentication, or where the application requires public exposure,
## High availability
### Normal function