-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathdocker-compose.yml
89 lines (83 loc) · 2.2 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
version: "3.5"
services:
gvm-postgres:
image: registry.gitlab.developers.cam.ac.uk/uis/infra/fps/gvm-deployment/gvm-postgres
environment:
- PGDATA=/var/lib/postgresql/data
- POSTGRES_DB=gvmd
- POSTGRES_PASSWORD=mypassword
- POSTGRES_USER=gvmduser
volumes:
- postgres-data:/var/lib/postgresql/data
networks:
- gvm-network
gvmd:
image: registry.gitlab.developers.cam.ac.uk/uis/infra/fps/gvm-deployment/gvmd
environment:
- GVMD_POSTGRESQL_URI=postgresql://gvmduser:mypassword@gvm-postgres:5432/gvmd?application_name=gvmd
volumes:
- gvm-var-lib:/var/lib/gvm
- run-redis:/var/run/redis
- openvas-var-lib:/var/lib/openvas
- run-ospd:/var/run/ospd
- ./certs:/usr/var/lib/gvm
depends_on:
- "gvm-postgres"
networks:
- gvm-network
gsad:
image: registry.gitlab.developers.cam.ac.uk/uis/infra/fps/gvm-deployment/gsad
ports:
- 8080:80
environment:
- GVMD_HOST=gvmd
- GVMD_PORT=9390
depends_on:
- "gvmd"
networks:
- gvm-network
# Default scanner connected through Unix domain socket.
openvas:
# LISTENING /var/run/ospd/ospd.sock
# CONNECTED /var/run/redis/redis.sock
image: registry.gitlab.developers.cam.ac.uk/uis/infra/fps/gvm-deployment/openvas
privileged: true
sysctls:
net.core.somaxconn: '2048'
volumes:
- run-redis:/var/run/redis
- openvas-var-lib:/opt/gvm/var/lib/openvas
- run-ospd:/var/run/ospd
depends_on:
- "gvm-postgres"
networks:
- gvm-network
# It is recommended to add vm.overcommit_memory=1 into
# /etc/systcl.conf on the host
redis:
# LISTENING /var/run/redis/redis.sock
image: redis:6.0.9
volumes:
- run-redis:/var/run/redis
- redis-data:/data
- ./chart/redis/redis-openvas.conf:/redis-openvas.conf
command: redis-server /redis-openvas.conf
privileged: true
sysctls:
net.core.somaxconn: '2048'
depends_on:
- "openvas"
networks:
- gvm-network
volumes:
redis-data:
gvm-var-lib:
postgres-data:
run-redis:
openvas-var-lib:
run-ospd:
certs:
networks:
gvm-network:
# external: true
name: gvm-network