2018-06-30 03:18:07 +00:00
# Ubiqiti Network's Unifi Controller
This is a helm chart for [Ubiqiti Network's ](https://www.ubnt.com/ ) [Unifi Controller ](https://unifi-sdn.ubnt.com/ )
## TL;DR;
```console
2018-09-20 12:50:51 +00:00
helm install stable/unifi
2018-06-30 03:18:07 +00:00
```
## Introduction
This code is adopted from [this original repo ](https://github.com/jacobalberty/unifi-docker )
## Installing the Chart
To install the chart with the release name `my-release` :
```console
2018-09-20 12:50:51 +00:00
helm install --name my-release stable/unifi
2018-06-30 03:18:07 +00:00
```
2018-09-20 12:50:51 +00:00
2018-06-30 03:18:07 +00:00
## Uninstalling the Chart
To uninstall/delete the `my-release` deployment:
```console
2018-09-20 12:50:51 +00:00
helm delete my-release --purge
2018-06-30 03:18:07 +00:00
```
The command removes all the Kubernetes components associated with the chart and deletes the release.
## Configuration
The following tables lists the configurable parameters of the Sentry chart and their default values.
| Parameter | Description | Default |
|----------------------------|-------------------------------------|---------------------------------------------------------|
| `image.repository` | Image repository | `jacobalberty/unifi` |
| `image.tag` | Image tag. Possible values listed [here ](https://hub.docker.com/r/jacobalberty/unifi/tags/ ).| `5.8.23` |
| `image.pullPolicy` | Image pull policy | `IfNotPresent` |
| `guiService.type` | Kubernetes service type for the Unifi GUI | `ClusterIP` |
| `guiService.port` | Kubernetes port where the Unifi GUI is exposed| `8443` |
| `guiService.annotations` | Service annotations for the Unifi GUI | `{}` |
2018-09-20 12:50:51 +00:00
| `guiService.labels` | Custom labels | `{}` |
2018-06-30 03:18:07 +00:00
| `guiService.loadBalancerIP` | Loadbalance IP for the Unifi GUI | `{}` |
2018-09-20 12:50:51 +00:00
| `guiService.loadBalancerSourceRanges` | List of IP CIDRs allowed access to load balancer (if supported) | None
| `guiService.externalTrafficPolicy` | Set the externalTrafficPolicy in the Service to either Cluster or Local | `Cluster`
2018-06-30 03:18:07 +00:00
| `controllerService.type` | Kubernetes service type for the Unifi Controller communication | `NodePort` |
| `controllerService.port` | Kubernetes port where the Unifi Controller is exposed - this needs to be reachable by the unifi devices on the network | `8080` |
| `controllerService.annotations` | Service annotations for the Unifi Controller | `{}` |
2018-09-20 12:50:51 +00:00
| `controllerService.labels` | Custom labels | `{}` |
2018-06-30 03:18:07 +00:00
| `controllerService.loadBalancerIP` | Loadbalance IP for the Unifi Controller | `{}` |
2018-09-20 12:50:51 +00:00
| `controllerService.loadBalancerSourceRanges` | List of IP CIDRs allowed access to load balancer (if supported) | None
| `controllerService.externalTrafficPolicy` | Set the externalTrafficPolicy in the Service to either Cluster or Local | `Cluster`
2018-06-30 03:18:07 +00:00
| `stunService.type` | Kubernetes service type for the Unifi STUN | `NodePort` |
| `stunService.port` | Kubernetes UDP port where the Unifi STUN is exposed | `3478` |
| `stunService.annotations` | Service annotations for the Unifi STUN | `{}` |
2018-09-20 12:50:51 +00:00
| `stunService.labels` | Custom labels | `{}` |
2018-06-30 03:18:07 +00:00
| `stunService.loadBalancerIP` | Loadbalance IP for the Unifi STUN | `{}` |
2018-09-20 12:50:51 +00:00
| `stunService.loadBalancerSourceRanges` | List of IP CIDRs allowed access to load balancer (if supported) | None
| `stunService.externalTrafficPolicy` | Set the externalTrafficPolicy in the Service to either Cluster or Local | `Cluster`
2018-06-30 03:18:07 +00:00
| `discoveryService.type` | Kubernetes service type for AP discovery | `NodePort` |
| `discoveryService.port` | Kubernetes UDP port for AP discovery | `10001` |
| `discoveryService.annotations` | Service annotations for AP discovery | `{}` |
2018-09-20 12:50:51 +00:00
| `discoveryService.labels` | Custom labels | `{}` |
2018-06-30 03:18:07 +00:00
| `discoveryService.loadBalancerIP` | Loadbalance IP for AP discovery | `{}` |
2018-09-20 12:50:51 +00:00
| `discoveryService.loadBalancerSourceRanges` | List of IP CIDRs allowed access to load balancer (if supported) | None
| `discoveryService.externalTrafficPolicy` | Set the externalTrafficPolicy in the Service to either Cluster or Local | `Cluster`
2018-06-30 03:18:07 +00:00
| `ingress.enabled` | Enables Ingress | `false` |
| `ingress.annotations` | Ingress annotations | `{}` |
| `ingress.labels` | Custom labels | `{}`
| `ingress.path` | Ingress path | `/` |
| `ingress.hosts` | Ingress accepted hostnames | `chart-example.local` |
| `ingress.tls` | Ingress TLS configuration | `[]` |
| `timezone` | Timezone the Unifi controller should run as, e.g. 'America/New York' | `UTC` |
2018-09-11 14:29:08 +00:00
| `runAsRoot` | Run the controller as UID0 (root user) | `false` |
2018-06-30 03:18:07 +00:00
| `mongodb.enabled` | Use external MongoDB for data storage | `false` |
2018-09-11 14:29:08 +00:00
| `mongodb.dbUri` | external MongoDB URI | `mongodb://mongo/unifi` |
| `mongodb.statDbUri` | external MongoDB statdb URI | `mongodb://mongo/unifi_stat` |
| `mongodb.databaseName` | external MongoDB database name | `unifi` |
2018-08-02 03:19:40 +00:00
| `persistence.enabled` | Use persistent volume to store data | `true` |
2018-06-30 03:18:07 +00:00
| `persistence.size` | Size of persistent volume claim | `5Gi` |
| `persistence.existingClaim` | Use an existing PVC to persist data | `nil` |
| `persistence.storageClass` | Type of persistent volume claim | `-` |
| `persistence.accessModes` | Persistence access modes | `[]` |
| `resources` | CPU/Memory resource requests/limits | `{}` |
| `nodeSelector` | Node labels for pod assignment | `{}` |
| `tolerations` | Toleration labels for pod assignment | `[]` |
| `affinity` | Affinity settings for pod assignment | `{}` |
Specify each parameter using the `--set key=value[,key=value]` argument to `helm install` . For example,
```console
helm install --name my-release \
2018-08-02 03:19:40 +00:00
--set timezone="America/New York" \
stable/unifi
2018-06-30 03:18:07 +00:00
```
Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart. For example,
```console
2018-08-02 03:19:40 +00:00
helm install --name my-release -f values.yaml stable/unifi
2018-06-30 03:18:07 +00:00
```
Read through the [values.yaml ](values.yaml ) file. It has several commented out suggested values.
## Regarding the services
* `guiService` : represents the main web UI and is what one would normally point the ingress to
* `controllerService` : This is needed in order for the unifi devices to talk to the controller and must be otherwise exposed to the network where the unifi devices run. If you run this as a NodePort (the default setting), make sure that there is an external loadbalancer that is directing traffic from port 8080 to the NodePort for this service
* `discoveryService` : This needs to be reachable by the unifi devices on the network similar to the controllerService but only during the discovery phase. This is a UDP service
2018-08-02 03:19:40 +00:00
* `stunService` : Also used periodically by the unifi devices to communicate with the controller using UDP. See [this article ](https://help.ubnt.com/hc/en-us/articles/204976094-UniFi-What-protocol-does-the-controller-use-to-communicate-with-the-UAP- ) and [this other article ](https://help.ubnt.com/hc/en-us/articles/115015457668-UniFi-Troubleshooting-STUN-Communication-Errors ) for more information
