OpenStack环境设计和系统准备
基础环境构建
selinux(关闭高级安全功能),firewalld(关闭firewalld防火墙,iptables),network(网络IP配置),hostname(主机名),yum(网络安装仓库),安装iaas-xiandian,/etc/xiandian/openrc.sh
基础服务构建
ntp(时间服务器),mariadb(关系数据库),rabbitmq(qpid消息服务),mongodb(非结构化数据库的支持ceilometor),memcache(非结构化缓存数据库),
httpd(提供http的API服务)
chrony比ntp精度更高
mariadb: mysql创始人创立的另一个版本.命令还用mysql
rabbitmq:中心化服务,避免网络拥塞。queen队列
mongodb:主要给ceilometor提供服务
mamcache : 服务器提速用的
httpd: 用途:1.keystone python wsgi httpd,python+django:dashboard)
setenforce 0 临时状态命令 vi /etc/sysconfig/selinux 重启以后生效 SELINUX=disabled systemctl stop firewalld;systemctl disable firewalld 重启以后生效 systemctl start iptables;systemctl enable iptables systemctl stop NetworkManager;systemctl disable NetworkManager systemctl restart network vi /etc/sysconfig/network-scripts/ifcfg-eth0
vi /etc/sysconfig/network-scripts/ifcfg-eth0 http://10.10.1.X/dashboard 10.10.1.X/24
vi /etc/sysconfig/network-scripts/ifcfg-eth1 http://172.16.180.100/dashboard 172.16.180.100/24 172.16.180.254 8.8.8.8
systemctl restart network hostname controller 改主机名状态 hostnamectl set-hostname controller (centos6:vi /etc/sysconfig/network HOSTNAME=controller)改主机名配置
OpenStack社区一般不用NetWork-manager
第1块网卡用
基础模块构建
keystone,glance,neutron,nova,cinder,swift,ceilometer,heat,trove.... 1、配置基础环境2、安装和配置基础服务3、自底层向上层安装Openstack组件 Keystone:认证服务1 Glance:镜像服务2 Nova:计算服务3 Neutron:网络服务4 Horizon:仪表盘服务5 Cinder:块存储服务 Swift:对象存储服务 Ceilometor:监控服务(效率低) Heat:编排服务 Aodh:告警服务 Trove:数据库服务 Zun:容器管理服务
部署方式: https://docs.openstack.org/mitaka/zh_CN/install-guide-rdo 1、在斗学网服务器上搭建: (1)搭建基础环境 手工配置,脚本配置: yum,IP地址,iaas-xiandian,operc.sh iaas-pre-host.sh 防火墙,selinux,hostname,ntp,iptables
- /bin/bash 脚本标示
source /etc/xiandian/openrc.sh 导入环境变量
- config env network配置环境网络
关闭防火墙 systemctl stop firewalld.service systemctl disable firewalld.service >> /dev/null 2>&1 关闭传统网络管理器->network systemctl stop NetworkManager >> /dev/null 2>&1 systemctl disable NetworkManager >> /dev/null 2>&1 sed修改selinux的设置为permissive sed -i 's/SELINUX=.*/SELINUX=permissive/g' /etc/selinux/config 关闭selinux setenforce 0 删除软件包 yum remove -y NetworkManager firewalld 启动传统网络管理 service network restart
- ---- ntp ---------------------------------
安装NTP服务器,安装iptables管理器 yum install ntp iptables-services -y 检测仓库是否正常 if [ 0 -ne $? ]; then
echo -e "\033[31mThe installation source configuration errors\033[0m"
exit 1
fi 启动iptables防火墙 systemctl enable iptables systemctl restart iptables 清空并保存防火墙 iptables -F iptables -X iptables -Z service iptables save sshd优化
- install package
sed -i -e 's/#UseDNS yes/UseDNS no/g' -e 's/GSSAPIAuthentication yes/GSSAPIAuthentication no/g' /etc/ssh/sshd_config 升级系统软件 yum upgrade -y 安装新版本yum软件 /etc/yum.repos.d/ rm -rf /etc/yum.repos.d/CentOS* 安装openstack基础客户端包,crudini(openstack-config) crudini --set 配置文件名 配置段[centos] 配置关键字name 配置值centos yum -y install openstack-selinux python-openstackclient crudini -y 设置主机名 if grep -w $HOST_IP ` != ;then
hostnamectl set-hostname $HOST_NAME
elif grep -w $HOST_IP_NODE ` != ;then
hostnamectl set-hostname $HOST_NAME_NODE
else
hostnamectl set-hostname $HOST_NAME
fi sed -i -e "/$HOST_NAME/d" -e "/$HOST_NAME_NODE/d" /etc/hosts echo "$HOST_IP $HOST_NAME" >> /etc/hosts echo "$HOST_IP_NODE $HOST_NAME_NODE" >> /etc/hosts printf "\033[35mPlease Reboot or Reconnect the terminal\n\033[0m" 配置流程: 1、配置IP X 云主机的IP由openstack平台自己分配
hostname controller
hostname compute 2、yum 仓库 mitaka rm -rf /etc/yum.repos.d/* vi /etc/yum.repos.d/mitaka.repo [centos] name=centos baseurl=ftp://10.10.0.101/centos/7.2/ enabled=1 gpgcheck=0 [iaas] name=iaas-repo baseurl=ftp://10.10.0.101/iaas/v2.0/iaas-repo/ enabled=1 gpgcheck=0
yum repolist 3、安装先电包 yum -y install iaas-xiandian 增加/etc/xiandian/openrc.sh,/usr/local/bin/iaas-*.sh 20-30脚本文件 4、vi /etc/xiandian/openrc.sh的环境变量 把所有的注释的#去掉 控制节点:主机名controller,IP:192.168.96.125 计算节点:compute,IP:192.168.96.126 Domain=demo PASS=000000 外网卡:eth1 5、iaas-pre-host.sh yum update -y后面再加一行: rm -rf /etc/yum.repos.d/Cent* 把它再删一遍
6、exit,确认主机名是否修改成功
7、上面的操作现在controller上完成,在compute完成 rm -rf /etc/yum.repos.d/*
scp 192.168.96.125:/etc/yum.repos.d/mitaka.repo /etc/yum.repos.d (将它复制到计算节点)
yum -y install iaas-xiandian scp 192.168.96.125:/etc/xiandian/openrc.sh /etc/xiandian
iaas-pre-host.sh
yum update -y后面
rm -rf /etc/yum.repos.d/Cent*
exit 学会检查: hostname,systemctl status network iptables firewalld,getenfoce,yum repolist (getenforce这里最好重启一下,再去) grep -v ^# /etc/xiandian/openrc.sh | uniq -u ping controller ping compute 演示: 8、部署openstack controller: iaas-install-mysql.sh iaas-install-keystone.sh iaas-install-glance.sh iaas-install-nova-controller.sh iaas-install-neutron-controller.sh iaas-install-neutron-controller-flat.sh iaas-install-dashboard.sh compute: iaas-install-nova-compute.sh iaas-install-neutron-compute.sh iaas-install-neutron-compute-flat.sh
