23019da8e5
After node2 OOM incident, right-size memory across the cluster by setting requests=limits based on max_over_time(container_memory_working_set_bytes[7d]) with 1.3x headroom. Eliminates ~37Gi overcommit gap. Categories: - Safe equalization (50 containers): set req=lim where max7d well within target - Limit increases (8 containers): raise limits for services spiking above current - No Prometheus data (12 containers): conservatively set lim=req - Exception: nextcloud keeps req=256Mi/lim=8Gi due to Apache memory spikes Also increased dbaas namespace quota from 12Gi to 16Gi to accommodate mysql 4Gi limits across 3 replicas.
119 lines
2.3 KiB
YAML
119 lines
2.3 KiB
YAML
nextcloud:
|
|
host: nextcloud.viktorbarzin.me
|
|
trustedDomains:
|
|
- nextcloud.viktorbarzin.me
|
|
# mail:
|
|
# enabled: true
|
|
# # the user we send email as
|
|
# fromAddress: nextcloud@viktorbarzin.me
|
|
# # the domain we send email from
|
|
# domain: viktorbarzin.me
|
|
# smtp:
|
|
# host: mail.viktorbarzin.me
|
|
# secure: starttls
|
|
# port: 587
|
|
# authtype: LOGIN
|
|
# name: nextcloud@viktorbarzin.me
|
|
# password:
|
|
extraEnv:
|
|
- name: TRUSTED_PROXIES
|
|
value: "10.0.0.0/8"
|
|
- name: PHP_MEMORY_LIMIT
|
|
value: "512M"
|
|
- name: PHP_UPLOAD_LIMIT
|
|
value: "16G"
|
|
# - name: mail_smtpdebug
|
|
# value: "true"
|
|
# - name: loglevel
|
|
# value: "0"
|
|
configs:
|
|
performance.config.php: |
|
|
<?php
|
|
$CONFIG = array(
|
|
'loglevel' => 2,
|
|
'mail_smtpdebug' => false,
|
|
);
|
|
phpConfigs:
|
|
zzz-custom.ini: |
|
|
max_execution_time = 300
|
|
max_input_time = 300
|
|
default_socket_timeout = 300
|
|
opcache.enable_file_override = 1
|
|
apc.shm_size = 128M
|
|
extraVolumes:
|
|
- name: apache-tuning
|
|
configMap:
|
|
name: nextcloud-apache-tuning
|
|
extraVolumeMounts:
|
|
- name: apache-tuning
|
|
mountPath: /etc/apache2/mods-available/mpm_prefork.conf
|
|
subPath: mpm_prefork.conf
|
|
|
|
internalDatabase:
|
|
enabled: false
|
|
|
|
externalRedis:
|
|
enabled: true
|
|
host: ${redis_host}
|
|
|
|
externalDatabase:
|
|
enabled: true
|
|
type: mysql
|
|
host: ${mysql_host}
|
|
user: nextcloud
|
|
password: ${db_password}
|
|
database: nextcloud
|
|
|
|
persistence:
|
|
enabled: true
|
|
existingClaim: nextcloud-data-iscsi
|
|
|
|
accessMode: ReadWriteOnce
|
|
size: 20Gi
|
|
|
|
startupProbe:
|
|
enabled: true
|
|
initialDelaySeconds: 30
|
|
periodSeconds: 10
|
|
timeoutSeconds: 30
|
|
failureThreshold: 60
|
|
successThreshold: 1
|
|
|
|
livenessProbe:
|
|
enabled: true
|
|
initialDelaySeconds: 30
|
|
periodSeconds: 60
|
|
timeoutSeconds: 30
|
|
failureThreshold: 10
|
|
successThreshold: 1
|
|
|
|
readinessProbe:
|
|
enabled: true
|
|
initialDelaySeconds: 30
|
|
periodSeconds: 60
|
|
timeoutSeconds: 30
|
|
failureThreshold: 5
|
|
successThreshold: 1
|
|
|
|
podAnnotations:
|
|
diun.enable: "true"
|
|
diun.include_tags: "^[0-9]+(?:.[0-9]+)?(?:.[0-9]+)?.*"
|
|
|
|
collabora:
|
|
enabled: false # Using onlyoffice instead
|
|
|
|
resources:
|
|
limits:
|
|
memory: 8Gi
|
|
requests:
|
|
cpu: 50m
|
|
memory: 256Mi
|
|
|
|
cronjob:
|
|
enabled: true
|
|
resources:
|
|
limits:
|
|
memory: 384Mi
|
|
requests:
|
|
cpu: 25m
|
|
memory: 384Mi
|