This Helm chart will install NeuVector (GitHub).
💡 Kubernetes objects will be installed in neuvector namespace
# (only once) adds official chart repository
helm repo add neuvector https://neuvector.github.io/neuvector-helm/
# updates repository information
helm repo update
# lists available charts
helm search repo neuvector
# updates Chart.yaml with the lastest version available# installs locally the related charts
helm dependency update
# checks the Kubernetes objects generated from the chart
helm template neuvector . -f values.yaml \
--namespace neuvector > temp.yaml
# get ingress controller public IP
NGINX_PUBLIC_IP=`kubectl get service -n ingress-nginx ingress-nginx-controller --output jsonpath='{.status.loadBalancer.ingress[0].ip}'`
# installs the chart with helm
helm upgrade --install --create-namespace \
--set core.manager.ingress.host=neuvector.${NGINX_PUBLIC_IP}.sslip.io \
--set core.containerd.enabled=true \
-f values.yaml --namespace neuvector neuvector .
# watchs objects being created
kubectl get all -n neuvector
# open https://neuvector.40.115.47.172.sslip.io/ and do first login with login/login (if connection timeout, wait a little and retry)
# if needed, deletes the chart and deletes the namespace
helm uninstall neuvector -n neuvector
kubectl delete ns neuvector- RKE2 cluster
core:
k3s:
enabled: true- AKS cluster
core:
containerd:
enabled: true- NGINX Ingress Controller with a cert-manager ClusterIssue
core:
manager:
ingress:
enabled: true
ingressClassName: nginx
annotations:
cert-manager.io/cluster-issuer: selfsigned-cluster-issuer
nginx.ingress.kubernetes.io/backend-protocol: "HTTPS"
tls: true
secretName: neuvector-tls-secret