1.三台虚拟机设置

ansible

内存    2GB

处理器    4

硬盘    40GB

光盘iso    centos1804

网络适配器    仅主机模式

显示器    自动检测

controller

内存    5.3GB

处理器    4

硬盘    100GB

光盘iso    centos1804

网络适配器    仅主机模式

网络适配器    NAT模式

显示器    自动检测

compute

内存    5.3GB

处理器    4

硬盘    100GB

硬盘2    100GB

光盘iso    centos1804

网络适配器    仅主机模式

网络适配器    NAT模式

显示器    自动检测

密码必须是000000

2.配置三台虚拟机的网络,主机名,域名解析

使用192.168.100.0网段

主机名 ansible controller compute

域名解析: (三台都需要配置)

[root@ansible ansible]# cat /etc/hosts

127.0.0.1   localhost localhost.localdomain localhost4 localhost4.localdomain4

::1         localhost localhost.localdomain localhost6 localhost6.localdomain6

192.168.100.128  ansible

192.168.100.130  controller

192.168.100.129  compute

[root@ansible ansible]#

3.下载ansible并配置免密登录

上传ansible.tar.gz 解压

[root@ansible ansible]# cd /opt/

[root@ansible opt]# ls

ansible  ansible.tar.gz  CentOS-7-x86_64-DVD-1804.iso  chinaskills_cloud_iaas.iso  rh

[root@ansible opt]#

[root@ansible opt]# tar -xzvf ansible.tar.gz -C ./

配置yum源安装ansible

配置列表清单

[root@ansible ansible]# cat hosts

controller

Compute

配置ansible

1.不检查公钥

2.hosts主机清单与roles在当前目录

3.远程用户为root

生成秘钥ssh-keygen使用

ssh-copy-id使ansible能够免密登录 compute controller

4.上传文件iaas镜像与centos1804镜像至ansible ansible将文件发送给被控节点

windows cmd上传镜像

scp  CentOS-7-x86_64-DVD-1804.iso  root@192.168.100.128:/opt

scp  chinaskills_cloud_iaas.iso  root@192.168.100.128:/opt

ansible 将文件传给被控节点

ansible  all  -m copy -a 'src=/opt/chinaskills_cloud_iaas.iso  dest=/opt/'  &&  ansible  all  -m copy  -a  'src=/opt/CentOS-7-x86_64-DVD-1804.iso  dest=/opt/'

5.ansible-playbook初始化操作

Controller

(1).挂载镜像拷贝出镜像的文件到/opt/iaas /opt/centos

(2).配置yum源

(3).下载vsftpd开启服务并共享/opt目录

Compute

(1).配置ftp yum源

(2).分区sdb

Controller/Compute

(1).关闭防火墙,不自启

(2).永久关闭selinux

(3).下载xiandian

生成init角色

ansible-galaxy init roles/init

编写playbook openstack_start.yml

- hosts: all

  roles:

    - init

编写roles init

- name: if

  block:

      - name: centos

        file:

            state: directory

            name: /opt/centos

      - name: mountchinaskills

        mount:

            path: /media

            src: /opt/chinaskills_cloud_iaas.iso

            state: mounted

            fstype: iso9660

      - name: mv

        shell: "cp -rvf /media/*  /opt/"

      - name: umount

        mount:

            path: /media

            state: unmounted

            fstype: iso9660

      - name: mountcentos

        mount:

            path: /media

            src: /opt/CentOS-7-x86_64-DVD-1804.iso

            state: mounted

            fstype: iso9660

      - name: mv

        shell: "cp -rvf /media/*  /opt/centos"

      - name: umount

        mount:

            path: /media

            state: unmounted

            fstype: iso9660

      - name: mv yum_all

        shell: "mv /etc/yum.repos.d/*  /tmp"

      - name: yumrepo

        yum_repository:

            name: centos

            description: centos repo

            file: local

            baseurl: file:///opt/centos

            gpgcheck: no

            enabled: yes

      - name: yumrepo2

        yum_repository:

            name: iaas

            description: iaas repo

            file: local

            baseurl: file:///opt/iaas-repo

            gpgcheck: no

            enabled: yes

      - name: installvsftpd

        yum:

            name: vsftpd

            state: present

      - name: share

        shell: 'sed -i "1ianon_root=/opt" /etc/vsftpd/vsftpd.conf'

      - name: vsftpdstart

        systemd:

                name: vsftpd

                state: restarted

                enabled: yes

      - name: input

        debug:

                msg: "controller is already"

  when: ansible_hostname == 'controller'

- name: if2

  block: 

      - name: mv yum_all

        shell: "mv /etc/yum.repos.d/*  /tmp"

      - name: yumcompute

        yum_repository:

                name: iaas

                description: iaas repo

                file: local

                baseurl: ftp://192.168.100.130/iaas-repo

                gpgcheck: no

                enabled: yes

      - name: yumcompute2

        yum_repository:

            name: centos

            description: centos repo

            file: local

            baseurl: ftp://192.168.100.130/centos

            gpgcheck: no

            enabled: yes

      - name: part

        parted:

                device: /dev/sdb

                number: 1

                state: present

                part_end: 40GiB

      - name: part

        parted:

                device: /dev/sdb

                number: 2

                state: present

                part_start: 42GiB

                part_end: 92GiB

      - name: input

        debug:

                msg: "compute is already"

  when: ansible_hostname == 'compute'

- name: down firewalld

    systemd:

        name: firewalld

        state: stopped

        enabled: no

  - name: shutdown  setenforce

    shell: setenforce 0

    shell: 'sed  -i "s/SELINUX=enforcing/SELINUX=disabled/g"  /etc/selinux/config'

  - name: install

    yum:

        name: iaas-xiandian

        state: present

ansible-playbook openstack_start.yml

运行剧本

6.编写jinjia2模板 渲染openrc.sh文件

(1).创建角色jinja2

ansible-galaxy  init  roles/jinja2

(2).控制节点Ansible下载iaas-xiandian并把openrc.sh做成模板文件

openrc.sh需要复制到jinji2角色的templates目录下

注意配置yum获取controller的ftp仓库

[root@ansible templates]# cp /etc/xiandian/openrc.sh ./openrc.sh.j2

[root@ansible templates]# ls

openrc.sh.j2

(3).去除变量信息的#

sed -i 's/^#//g' openrc.sh.j2

(4).写入变量

#--------------------system Config--------------------##

#Controller Server Manager IP. example:x.x.x.x

HOST_IP={{controller_ip}}

#Controller HOST Password. example:000000

HOST_PASS={{PASSWD}}

#Controller Server hostname. example:controller

HOST_NAME={{controller_name}}

#Compute Node Manager IP. example:x.x.x.x

HOST_IP_NODE={{compute_ip}}

#Compute HOST Password. example:000000

HOST_PASS_NODE={{PASSWD}}

#Compute Node hostname. example:compute

HOST_NAME_NODE={{compute_name}}

#--------------------Chrony Config-------------------##

#Controller network segment IP.  example:x.x.0.0/16(x.x.x.0/24)

network_segment_IP={{network_segment_IP}}/24

#--------------------Rabbit Config ------------------##

#user for rabbit. example:openstack

RABBIT_USER=openstack

#Password for rabbit user .example:000000

RABBIT_PASS={{PASSWD}}

#--------------------MySQL Config---------------------##

#Password for MySQL root user . exmaple:000000

DB_PASS={{PASSWD}}

#--------------------Keystone Config------------------##

#Password for Keystore admin user. exmaple:000000

DOMAIN_NAME=demo

ADMIN_PASS={{PASSWD}}

DEMO_PASS={{PASSWD}}

#Password for Mysql keystore user. exmaple:000000

KEYSTONE_DBPASS={{PASSWD}}

#--------------------Glance Config--------------------##

#Password for Mysql glance user. exmaple:000000

GLANCE_DBPASS={{PASSWD}}

#Password for Keystore glance user. exmaple:000000

GLANCE_PASS={{PASSWD}}

#--------------------Nova Config----------------------##

#Password for Mysql nova user. exmaple:000000

NOVA_DBPASS={{PASSWD}}

#Password for Keystore nova user. exmaple:000000

NOVA_PASS={{PASSWD}}

#--------------------Neturon Config-------------------##

#Password for Mysql neutron user. exmaple:000000

NEUTRON_DBPASS={{PASSWD}}

#Password for Keystore neutron user. exmaple:000000

NEUTRON_PASS={{PASSWD}}

#metadata secret for neutron. exmaple:000000

METADATA_SECRET={{PASSWD}}

#Tunnel Network Interface. example:x.x.x.x

{% if ansible_hostname == 'controller' %}

INTERFACE_IP={{controller_ip}}

{% elif ansible_fqdn == 'compute' %}

INTERFACE_IP={{compute_ip}}

{% endif %}

#External Network Interface. example:eth1

INTERFACE_NAME={{External_Network}}

#External Network The Physical Adapter. example:provider

Physical_NAME={{Physical_NAME}}

#First Vlan ID in VLAN RANGE for VLAN Network. exmaple:101

minvlan=101

#Last Vlan ID in VLAN RANGE for VLAN Network. example:200

maxvlan=200

#--------------------Cinder Config--------------------##

#Password for Mysql cinder user. exmaple:000000

CINDER_DBPASS={{PASSWD}}

#Password for Keystore cinder user. exmaple:000000

CINDER_PASS={{PASSWD}}

#Cinder Block Disk. example:md126p3

BLOCK_DISK={{cinder_disk}}

#--------------------Swift Config---------------------##

#Password for Keystore swift user. exmaple:000000

SWIFT_PASS={{PASSWD}}

#The NODE Object Disk for Swift. example:md126p4.

OBJECT_DISK={{swift_disk}}

#The NODE IP for Swift Storage Network. example:x.x.x.x.

STORAGE_LOCAL_NET_IP={{STORAGE_LOCAL_NET_IP}}

#--------------------Heat Config----------------------##

#Password for Mysql heat user. exmaple:000000

HEAT_DBPASS={{PASSWD}}

#Password for Keystore heat user. exmaple:000000

HEAT_PASS={{PASSWD}}

#--------------------Zun Config-----------------------##

#Password for Mysql Zun user. exmaple:000000

ZUN_DBPASS={{PASSWD}}

#Password for Keystore Zun user. exmaple:000000

ZUN_PASS={{PASSWD}}

#Password for Mysql Kuryr user. exmaple:000000

KURYR_DBPASS={{PASSWD}}

#Password for Keystore Kuryr user. exmaple:000000

KURYR_PASS={{PASSWD}}

#--------------------Ceilometer Config----------------##

#Password for Gnocchi ceilometer user. exmaple:000000

CEILOMETER_DBPASS={{PASSWD}}

#Password for Keystore ceilometer user. exmaple:000000

CEILOMETER_PASS={{PASSWD}}

#--------------------AODH Config----------------##

#Password for Mysql AODH user. exmaple:000000

AODH_DBPASS={{PASSWD}}

#Password for Keystore AODH user. exmaple:000000

AODH_PASS={{PASSWD}}

#--------------------Barbican Config----------------##

#Password for Mysql Barbican user. exmaple:000000

BARBICAN_DBPASS={{PASSWD}}

#Password for Keystore Barbican user. exmaple:000000

BARBICAN_PASS={{PASSWD}}

(5).渲染变量

被定义的变量放进jinja2角色模板里的vars

剧本运行时playbook的template模块用vars里的变量渲染jinja2模板

[root@ansible ansible]# cat roles/jinja2/vars/main.yml

controller_ip: 192.168.100.130

controller_name: controller

compute_ip: 192.168.100.129

compute_name: compute

PASSWD: '000000'

cinder_disk: sdb1

swift_disk: sdb2

network_segment_IP: 192.168.100.0

External_Network: ens33

Physical_NAME: provider

STORAGE_LOCAL_NET_IP: 192.168.100.129

[root@ansible ansible]#

(6).编写并运行playbook

[root@ansible ansible]# cat jinja2.yml

- hosts: all

  roles:

    - jinja2

[root@ansible ansible]# ansible-playbook jinja2.yml

7.跑xiandian里的脚本完成openstack的安装

(1).生成所需要的角色

[root@ansible ansible]# for i in {mariadb,keystone,glance,nova-controller,neutron-controller,dashboard,cinder-controller,swift-controller,heat,nova-compute,neutron-compute,cinder-compute,swift-compute};do ansible-galaxy init roles/$i ;done

- Role roles/mariadb was created successfully

- Role roles/keystone was created successfully

- Role roles/glance was created successfully

- Role roles/nova-controller was created successfully

- Role roles/neutron-controller was created successfully

- Role roles/dashboard was created successfully

- Role roles/cinder-controller was created successfully

- Role roles/swift-controller was created successfully

- Role roles/heat was created successfully

- Role roles/nova-compute was created successfully

- Role roles/neutron-compute was created successfully

- Role roles/cinder-compute was created successfully

- Role roles/swift-compute was created successfully

[root@ansible ansible]#

每个角色对应着自己的名字的脚本任务

(2).写上每个角色对应的命令

controller

mariadb/tasks/main.yml

- name: install mysql

  shell: iaas-install-mysql.sh

keystone/tasks/main.yml

- name: install keystone

  shell: iaas-install-keystone.sh

glance/tasks/main.yml

- name: install glance

  shell: iaas-install-glance.sh

nova-controller/tasks/main.yml

- name: install nova-controller

  shell: iaas-install-nova-controller.sh

neutron/tasks/main.yml

- name: install neutron-controller

  shell: iaas-install-neutron-controller.sh

dashboard/tasks/main.yml

- name: install dashboard

  shell: iaas-install-dashboard.sh

cinder/tasks/main.yml

- name: install cinder-controller

  shell: iaas-install-cinder-controller.sh

swift/tasks/main.yml

- name: install swift-controller

  shell: iaas-install-swift-controller.sh

heat/tasks/main.yml

- name: install heat

  shell: iaas-install-heat.sh

compute

nova/tasks/main.yml

- name: install nova-compute

  shell: iaas-install-nova-compute.sh

neutron/tasks/main.yml

- name: install neutron-compute

  shell: iaas-install-neutron-compute.sh

cinder/tasks/main.yml

- name: install cinder-compute

  shell: iaas-install-cinder-compute.sh

swift/tasks/main.yml

- name: install swift-compute

  shell: iaas-install-swift-compute.sh

(3).剧本内容

[root@ansible ansible]# cat openstack_shell.yml

- hosts: controller

  remote_user: root

  pre_tasks:

      - name: init

        shell: iaas-pre-host.sh

  roles:

       - mariadb

       - keystone

       - glance

       - nova-controller

       - neutron-controller

       - dashboard

       - cinder-controller

       - swift-controller

       - heat

- hosts: compute

  remote_user: root

  pre_tasks:

     - name: init

       shell: iaas-pre-host.sh

  roles:

     - nova-compute

     - neutron-compute

     - cinder-compute

     - swift-compute

7.合并剧本

[root@ansible ansible]# cat final.yml

- hosts: all

  tasks:

        - name: cp iaas

          copy:

            src: /opt/chinaskills_cloud_iaas.iso

            dest: /opt/

        - name: cp centos

          copy:

            src: /opt/CentOS-7-x86_64-DVD-1804.iso

            dest: /opt/       # 这一步可以代替第标题4的ansible

- hosts: all

  roles:

        - init

- hosts: all

  roles:

    - jinja2   

- hosts: controller

  remote_user: root

  pre_tasks:

    - name: init

        shell: iaas-pre-host.sh

  roles:

    - mariadb

    - keystone

    - glance

    - nova-controller

    - neutron-controller

    - dashboard

    - cinder-controller

    - swift-controller

    - heat

- hosts: compute

  remote_user: root

  pre_tasks:

    - name: init

      shell: iaas-pre-host.sh

  roles:

    - nova-compute

    - neutron-compute

    - cinder-compute

    - swift-compute

ansible-playbook final.yml

至此一键部署openstack完成

被控节点只需要修改主机名,配好网络,密码000000,可以被ansible免密登录

8.验证

[root@compute ~]# systemctl status openstack* | grep active

  Active: active (running) since Thu 2022-04-14 04:49:24 EDT; 22min ago

  Active: active (running) since Thu 2022-04-14 04:49:11 EDT; 23min ago

  Active: active (running) since Thu 2022-04-14 04:49:24 EDT; 22min ago

  Active: active (running) since Thu 2022-04-14 04:49:22 EDT; 22min ago

  Active: active (running) since Thu 2022-04-14 04:49:23 EDT; 22min ago

  Active: active (running) since Thu 2022-04-14 04:49:23 EDT; 22min ago

  Active: active (running) since Thu 2022-04-14 04:49:24 EDT; 22min ago

  Active: active (running) since Thu 2022-04-14 04:49:23 EDT; 22min ago

  Active: active (running) since Thu 2022-04-14 04:49:22 EDT; 22min ago

  Active: active (running) since Thu 2022-04-14 04:49:22 EDT; 22min ago

  Active: active (running) since Thu 2022-04-14 04:49:22 EDT; 22min ago

  Active: active (running) since Thu 2022-04-14 04:49:18 EDT; 22min ago

  Active: active (running) since Thu 2022-04-14 04:49:24 EDT; 22min ago

  Active: active (running) since Thu 2022-04-14 04:49:23 EDT; 22min ago

[root@compute ~]# 

[root@controller ~]# systemctl status openstack* | grep active

Active: active (running) since Thu 2022-04-14 16:45:57 CST; 26min ago

Active: active (running) since Thu 2022-04-14 16:45:34 CST; 27min ago

Active: active (running) since Thu 2022-04-14 16:43:23 CST; 29min ago

Active: active (running) since Thu 2022-04-14 16:46:38 CST; 26min ago

Active: active (running) since Thu 2022-04-14 16:42:29 CST; 30min ago

Active: active (running) since Thu 2022-04-14 16:43:26 CST; 29min ago

Active: active (running) since Thu 2022-04-14 16:45:34 CST; 27min ago

Active: active (running) since Thu 2022-04-14 16:43:26 CST; 29min ago

Active: active (running) since Thu 2022-04-14 16:46:37 CST; 26min ago

Active: active (running) since Thu 2022-04-14 16:46:38 CST; 26min ago

Active: active (running) since Thu 2022-04-14 16:43:26 CST; 29min ago

Active: active (running) since Thu 2022-04-14 16:45:34 CST; 27min ago

Active: active (running) since Thu 2022-04-14 16:42:29 CST; 30min ago

[root@controller ~]#

ansible 一键部署openstack (双节点)的更多相关文章

  1. ansible一键部署k8s单机环境

    一.虚拟机准备 干净的Centsot7.4.4G内存.2个CPU 最小化安装,最好带虚拟化 二.执行初始化脚本 注意:脚本中配置静态网卡根据实际网卡名称配置,我用的是ens33 可以用 sed -i ...

  2. OpenStack(四)——使用Kolla部署OpenStack多节点云

    (1).实验环境 主机名 IP地址 角色 内存 网卡 CPU 磁盘 OpenStack-con 192.168.128.110 controller(控制) 8G 桥接网卡ens32和ens33 4核 ...

  3. kolla部署openstack多节点高可用并对接ceph后端存储(17)

    部署节点执行: 安装基础包和docker yum install python-devel libffi-devel gcc openssl-devel git python-pip -y 升级一下 ...

  4. fuel一键部署openstack

    一.安装环境: 1. 所需物理主机的要求如下 内存:8GB+,推荐16GB:(少于8GB的就免谈了) 磁盘:500GB+: 物理机OS:ubuntu-desktop-amd64 14.04(推荐) 或 ...

  5. centos6.5部署OpenStack单节点

    环境 最小化安装的centos6.5 设置如下: 一.修改基本配置 1.修改主机名为controller [root@localhost ~]# hostname controller [root@l ...

  6. 使用openshit在ubuntu14.04下一键部署openstack(juno版本)

    一.基本介绍 本实验是在vmware workstation上虚拟机ubuntu14.04(64bit,desktop)上部署openstack(Juno版本).采用的工具是openshit.open ...

  7. ansible一键部署LAMP

    一.实现ansible跟节点间无密码访问,不会配置的请看 文章 . 二.创建目录 $ mkdir -p playbooks/{files,templates}   三.创建php测试文件index.p ...

  8. 通过ansible一键部署集群ntp时间同步

    环境准备 [root@server ~]# cat /etc/redhat-release CentOS Linux release (Core) [root@server ~]# uname -r  ...

  9. ansible 一键部署

    start install: rpm   -Uvh   https://mirrors.aliyun.com/epel/epel-release-latest-7.noarch.rpm yum  in ...

  10. 使用Ansible部署openstack平台

    使用Ansible部署openstack平台 本周没啥博客水了,就放个云计算的作业上来吧(偷个懒) 案例描述 1.了解高可用OpenStack平台架构 2.了解Ansible部署工具的使用 3.使用A ...

随机推荐

  1. 「C++」深度分析C++中i++与++i的区别

    大家好,我是Charzie.在C++编程中,i++和++i是两个常见的自增运算符,用于将变量的值增加1(有时与i+=1效果一样).然而,虽然它们的功能看似相似,但在实际使用中却存在显著的区别.本博客将 ...

  2. 剑指Offer-56.删除链表中重复的结点(C++/Java)

    题目: 在一个排序的链表中,存在重复的结点,请删除该链表中重复的结点,重复的结点不保留,返回链表头指针. 例如,链表1->2->3->3->4->4->5 处理后为 ...

  3. 使用 Promise.withResolvers() 来简化你将函数 Promise 化的实现~~

    引言 在JavaScript编程中,Promise 是一种处理异步操作的常用机制.Promise 对象代表了一个尚未完成但预期将来会完成的操作的结果.在本文中,我们将探讨如何通过使用 ES2024 的 ...

  4. 微信支付普通商户与AppID账号关联管理-授权

    微信支付普通商户与AppID账号关联管理 二.名词解释 名词 释义 微信支付普通商户 公司企业.政府机关.事业单位.社会组织.个体工商户.个人卖家.小微商户.(微信支付商户接入指引) AppID 已通 ...

  5. JavaScript:Function:函数(方法)对象

    <!DOCTYPE html><html>    <head>        <meta charset="utf-8">      ...

  6. vue中手写table的升降序

    有些时候,我们总是无可避免的需要自己去手撸一些东西,因为需求总是在不断的变化.例如,最开始的需求,我们只是在首页展示一个数据列表,此时,我们可能直接就自己手写了一个table,后来,突然增加了一个需求 ...

  7. MySQL bit类型增加索引后查询结果不正确案例浅析

    昨天同事遇到的一个案例,这里简单描述一下:一个表里面有一个bit类型的字段,同事在优化相关SQL的过程中,给这个表的bit类型的字段新增了一个索引,然后测试验证 时,居然发现SQL语句执行结果跟不加索 ...

  8. CLR via C# 笔记 -- 线程基础(26)

    1. Microsoft 设计这个OS内核时,决定在一个进程中运行应用程序的每个实例.进程实际是应用程序的实例要使用的资源的集合.每个进程都被赋予了一个虚拟地址空间,确保在一个进程中使用的代码和数据无 ...

  9. Java的运行机制和JDK,JRE,JVM的区别

    源文件(Java文件)   >  编译器  > 字节码(class文件)  >  JVM(java虚拟机)  >  操作系统  1.java首先利用文本编辑器写java源程序, ...

  10. mysql子查询不支持limit问题解决

    如果sql语句中的子查询包含limit 例如: select * from table where id in (select id from table limit 3) 会报错: This ver ...