原文名称: OpenStack Juno Scripted Installation on CentOS 7

Step I:  本机信息配置

CONTROLLER_IP=192.168.173.133
ADMIN_TOKEN=ADMIN123
SERVICE_PWD=Service123
ADMIN_PWD=password

#this host IP info
THISHOST_NAME=juno-controller
THISHOST_IP=192.168.173.133
THISHOST_NETMASK=255.255.255.0
THISHOST_GATEWAY=192.168.173.2
THISHOST_DNS=192.168.173.2

+++++++++++++++++++++++++++++++我是分割线+++++++++++++++++++++++++++++

另存文件为: config

Step III:  本机IP 设定

#!/bin/bash

#get config info

source config

#enumerate NICs

for i in $(ls /sys/class/net); do

    NIC=$i

    MY_MAC=$(cat /sys/class/net/$i/address)

    if [ "$(cat /sys/class/net/$i/ifindex)" == '2' ]; then

        #setup the IP configuration for 1st NIC

        sed -i.bak "s/dhcp/none/g" /etc/sysconfig/network-scripts/ifcfg-$NIC

        sed -i "s/HWADDR/#HWADDR/g" /etc/sysconfig/network-scripts/ifcfg-$NIC

        sed -i "/#HWADDR/a HWADDR=\"$MY_MAC\"" /etc/sysconfig/network-scripts/ifcfg-$NIC

        sed -i "s/UUID/#UUID/g" /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "IPADDR=\"$THISHOST_IP\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "NETMASK=\"$THISHOST_NETMASK\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "GATEWAY=\"$THISHOST_GATEWAY\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "DNS1=\"$THISHOST_DNS\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        mv /etc/sysconfig/network-scripts/ifcfg-$NIC.bak .

    fi

    if [ "$(cat /sys/class/net/$i/ifindex)" == '3' ]; then

        #create config file for 2nd NIC

        echo "HWADDR=\"$MY_MAC\"" > /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "TYPE=\"Ethernet\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "BOOTPROTO=\"none\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "IPV4_FAILURE_FATAL=\"no\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "NAME=\"$NIC\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "ONBOOT=\"yes\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

    fi

done

#setup hostname

echo "$THISHOST_NAME" > /etc/hostname

echo "$THISHOST_IP    $THISHOST_NAME" >> /etc/hosts

reboot
+++++++++++++++++++++++++++++++我是分割线+++++++++++++++++++++++++++++
sudo ./ipconfig.sh

Step III:  安装配置 OpenStack controller services

#!/bin/bash

#get the configuration info

source config

#install ntp

yum -y install ntp

systemctl enable ntpd.service

systemctl start ntpd.service

#openstack repos

yum -y install yum-plugin-priorities

yum -y install epel-release

yum -y install http://rdo.fedorapeople.org/openstack-juno/rdo-release-juno.rpm

yum -y upgrade

#yum -y install openstack-selinux

#loosen things up

systemctl stop firewalld.service

systemctl disable firewalld.service

sed -i 's/enforcing/disabled/g' /etc/selinux/config

echo 0 > /sys/fs/selinux/enforce

#install database server

yum -y install mariadb mariadb-server MySQL-python

#edit /etc/my.cnf

sed -i.bak "10i\\

bind-address = $CONTROLLER_IP\n\

default-storage-engine = innodb\n\

innodb_file_per_table\n\

collation-server = utf8_general_ci\n\

init-connect = 'SET NAMES utf8'\n\

character-set-server = utf8\n\

" /etc/my.cnf

#start database server

systemctl enable mariadb.service

systemctl start mariadb.service

echo 'now run through the mysql_secure_installation'

mysql_secure_installation

#create databases

echo 'Enter the new MySQL root password'

mysql -u root -p <<EOF

CREATE DATABASE nova;

CREATE DATABASE cinder;

CREATE DATABASE glance;

CREATE DATABASE keystone;

GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'localhost' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'localhost' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'localhost' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'localhost' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'%' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'%' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'%' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'%' IDENTIFIED BY '$SERVICE_PWD';

FLUSH PRIVILEGES;

EOF

#install messaging service

yum -y install rabbitmq-server

systemctl enable rabbitmq-server.service

systemctl start rabbitmq-server.service

#install keystone

yum -y install openstack-keystone python-keystoneclient

#edit /etc/keystone.conf

sed -i.bak "s/#admin_token=ADMIN/admin_token=$ADMIN_TOKEN/g" /etc/keystone/keystone.conf

sed -i "/\[database\]/a \

connection = mysql://keystone:$SERVICE_PWD@$CONTROLLER_IP/keystone" /etc/keystone/keystone.conf

sed -i "/\[token\]/a \

provider = keystone.token.providers.uuid.Provider\n\

driver = keystone.token.persistence.backends.sql.Token\n" /etc/keystone/keystone.conf

#finish keystone setup

keystone-manage pki_setup --keystone-user keystone --keystone-group keystone

chown -R keystone:keystone /var/log/keystone

chown -R keystone:keystone /etc/keystone/ssl

chmod -R o-rwx /etc/keystone/ssl

su -s /bin/sh -c "keystone-manage db_sync" keystone

#start keystone

systemctl enable openstack-keystone.service

systemctl start openstack-keystone.service

#schedule token purge

(crontab -l -u keystone 2>&1 | grep -q token_flush) || \

  echo '@hourly /usr/bin/keystone-manage token_flush >/var/log/keystone/keystone-tokenflush.log 2>&1' \

  >> /var/spool/cron/keystone

#create users and tenants

export OS_SERVICE_TOKEN=$ADMIN_TOKEN

export OS_SERVICE_ENDPOINT=http://$CONTROLLER_IP:35357/v2.0

keystone tenant-create --name admin --description "Admin Tenant"

keystone user-create --name admin --pass $ADMIN_PWD

keystone role-create --name admin

keystone user-role-add --tenant admin --user admin --role admin

keystone role-create --name _member_

keystone user-role-add --tenant admin --user admin --role _member_

keystone tenant-create --name demo --description "Demo Tenant"

keystone user-create --name demo --pass password

keystone user-role-add --tenant demo --user demo --role _member_

keystone tenant-create --name service --description "Service Tenant"

keystone service-create --name keystone --type identity \

  --description "OpenStack Identity"

keystone endpoint-create \

  --service-id $(keystone service-list | awk '/ identity / {print $2}') \

  --publicurl http://$CONTROLLER_IP:5000/v2.0 \

  --internalurl http://$CONTROLLER_IP:5000/v2.0 \

  --adminurl http://$CONTROLLER_IP:35357/v2.0 \

  --region regionOne

unset OS_SERVICE_TOKEN OS_SERVICE_ENDPOINT

#create credentials file

echo "export OS_TENANT_NAME=admin" > creds

echo "export OS_USERNAME=admin" >> creds

echo "export OS_PASSWORD=$ADMIN_PWD" >> creds

echo "export OS_AUTH_URL=http://$CONTROLLER_IP:35357/v2.0" >> creds

source creds

#create keystone entries for glance

keystone user-create --name glance --pass $SERVICE_PWD

keystone user-role-add --user glance --tenant service --role admin

keystone service-create --name glance --type image \

  --description "OpenStack Image Service"

keystone endpoint-create \

  --service-id $(keystone service-list | awk '/ image / {print $2}') \

  --publicurl http://$CONTROLLER_IP:9292 \

  --internalurl http://$CONTROLLER_IP:9292 \

  --adminurl http://$CONTROLLER_IP:9292 \

  --region regionOne

#install glance

yum -y install openstack-glance python-glanceclient

#edit /etc/glance/glance-api.conf

sed -i.bak "/\[database\]/a \

connection = mysql://glance:$SERVICE_PWD@$CONTROLLER_IP/glance" /etc/glance/glance-api.conf

sed -i "/\[keystone_authtoken\]/a \

auth_uri = http://$CONTROLLER_IP:5000/v2.0\n\

identity_uri = http://$CONTROLLER_IP:35357\n\

admin_tenant_name = service\n\

admin_user = glance\n\

admin_password = $SERVICE_PWD" /etc/glance/glance-api.conf

sed -i "/\[paste_deploy\]/a \

flavor = keystone" /etc/glance/glance-api.conf

sed -i "/\[glance_store\]/a \

default_store = file\n\

filesystem_store_datadir = /var/lib/glance/images/" /etc/glance/glance-api.conf

#edit /etc/glance/glance-registry.conf

sed -i.bak "/\[database\]/a \

connection = mysql://glance:$SERVICE_PWD@$CONTROLLER_IP/glance" /etc/glance/glance-registry.conf

sed -i "/\[keystone_authtoken\]/a \

auth_uri = http://$CONTROLLER_IP:5000/v2.0\n\

identity_uri = http://$CONTROLLER_IP:35357\n\

admin_tenant_name = service\n\

admin_user = glance\n\

admin_password = $SERVICE_PWD" /etc/glance/glance-registry.conf

sed -i "/\[paste_deploy\]/a \

flavor = keystone" /etc/glance/glance-registry.conf

#start glance

su -s /bin/sh -c "glance-manage db_sync" glance

systemctl enable openstack-glance-api.service openstack-glance-registry.service

systemctl start openstack-glance-api.service openstack-glance-registry.service

#upload the cirros image to glance

yum -y install wget

wget http://cdn.download.cirros-cloud.net/0.3.3/cirros-0.3.3-x86_64-disk.img

glance image-create --name "cirros-0.3.3-x86_64" --file cirros-0.3.3-x86_64-disk.img \

  --disk-format qcow2 --container-format bare --is-public True --progress

#create the keystone entries for nova

keystone user-create --name nova --pass $SERVICE_PWD

keystone user-role-add --user nova --tenant service --role admin

keystone service-create --name nova --type compute \

  --description "OpenStack Compute"

keystone endpoint-create \

  --service-id $(keystone service-list | awk '/ compute / {print $2}') \

  --publicurl http://$CONTROLLER_IP:8774/v2/%\(tenant_id\)s \

  --internalurl http://$CONTROLLER_IP:8774/v2/%\(tenant_id\)s \

  --adminurl http://$CONTROLLER_IP:8774/v2/%\(tenant_id\)s \

  --region regionOne

#install the nova controller components

yum -y install openstack-nova-api openstack-nova-cert openstack-nova-conductor \

  openstack-nova-console openstack-nova-novncproxy openstack-nova-scheduler \

  python-novaclient

#edit /etc/nova/nova.conf

sed -i.bak "/\[database\]/a \

connection = mysql://nova:$SERVICE_PWD@$CONTROLLER_IP/nova" /etc/nova/nova.conf

sed -i "/\[DEFAULT\]/a \

rpc_backend = rabbit\n\

rabbit_host = $CONTROLLER_IP\n\

auth_strategy = keystone\n\

my_ip = $CONTROLLER_IP\n\

vncserver_listen = $CONTROLLER_IP\n\

vncserver_proxyclient_address = $CONTROLLER_IP\n\

network_api_class = nova.network.api.API\n\

security_group_api = nova" /etc/nova/nova.conf

sed -i "/\[keystone_authtoken\]/i \

[database]\nconnection = mysql://nova:Service123@$CONTROLLER_IP/nova" /etc/nova/nova.conf

sed -i "/\[keystone_authtoken\]/a \

auth_uri = http://$CONTROLLER_IP:5000/v2.0\n\

identity_uri = http://$CONTROLLER_IP:35357\n\

admin_tenant_name = service\n\

admin_user = nova\n\

admin_password = $SERVICE_PWD" /etc/nova/nova.conf

sed -i "/\[glance\]/a host = $CONTROLLER_IP" /etc/nova/nova.conf

#start nova

su -s /bin/sh -c "nova-manage db sync" nova

systemctl enable openstack-nova-api.service openstack-nova-cert.service \

  openstack-nova-consoleauth.service openstack-nova-scheduler.service \

  openstack-nova-conductor.service openstack-nova-novncproxy.service

systemctl start openstack-nova-api.service openstack-nova-cert.service \

  openstack-nova-consoleauth.service openstack-nova-scheduler.service \

  openstack-nova-conductor.service openstack-nova-novncproxy.service

#install dashboard

yum -y install openstack-dashboard httpd mod_wsgi memcached python-memcached

#edit /etc/openstack-dashboard/local_settings

sed -i.bak "s/ALLOWED_HOSTS = \['horizon.example.com', 'localhost'\]/ALLOWED_HOSTS = ['*']/" /etc/openstack-dashboard/local_settings

sed -i 's/OPENSTACK_HOST = "127.0.0.1"/OPENSTACK_HOST = "'"$CONTROLLER_IP"'"/' /etc/openstack-dashboard/local_settings

#start dashboard

setsebool -P httpd_can_network_connect on

chown -R apache:apache /usr/share/openstack-dashboard/static

systemctl enable httpd.service memcached.service

systemctl start httpd.service memcached.service

#create keystone entries for cinder

keystone user-create --name cinder --pass $SERVICE_PWD

keystone user-role-add --user cinder --tenant service --role admin

keystone service-create --name cinder --type volume \

  --description "OpenStack Block Storage"

keystone service-create --name cinderv2 --type volumev2 \

  --description "OpenStack Block Storage"

keystone endpoint-create \

  --service-id $(keystone service-list | awk '/ volume / {print $2}') \

  --publicurl http://$CONTROLLER_IP:8776/v1/%\(tenant_id\)s \

  --internalurl http://$CONTROLLER_IP:8776/v1/%\(tenant_id\)s \

  --adminurl http://$CONTROLLER_IP:8776/v1/%\(tenant_id\)s \

  --region regionOne

keystone endpoint-create \

  --service-id $(keystone service-list | awk '/ volumev2 / {print $2}') \

  --publicurl http://$CONTROLLER_IP:8776/v2/%\(tenant_id\)s \

  --internalurl http://$CONTROLLER_IP:8776/v2/%\(tenant_id\)s \

  --adminurl http://$CONTROLLER_IP:8776/v2/%\(tenant_id\)s \

  --region regionOne

#install cinder controller

yum -y install openstack-cinder python-cinderclient python-oslo-db

#edit /etc/cinder/cinder.conf

sed -i.bak "/\[database\]/a connection = mysql://cinder:$SERVICE_PWD@$CONTROLLER_IP/cinder" /etc/cinder/cinder.conf

sed -i "/\[DEFAULT\]/a \

rpc_backend = rabbit\n\

rabbit_host = $CONTROLLER_IP\n\

auth_strategy = keystone\n\

my_ip = $CONTROLLER_IP" /etc/cinder/cinder.conf

sed -i "/\[keystone_authtoken\]/a \

auth_uri = http://$CONTROLLER_IP:5000/v2.0\n\

identity_uri = http://$CONTROLLER_IP:35357\n\

admin_tenant_name = service\n\

admin_user = cinder\n\

admin_password = $SERVICE_PWD" /etc/cinder/cinder.conf

#start cinder controller

su -s /bin/sh -c "cinder-manage db sync" cinder

systemctl enable openstack-cinder-api.service openstack-cinder-scheduler.service

systemctl start openstack-cinder-api.service openstack-cinder-scheduler.service

+++++++++++++++++++++++++++++++我是分割线+++++++++++++++++++++++++++++
sudo ./controller-node.sh

应该安装好。

一键安装openstack juno 之controller node.的更多相关文章

  1. 使用openshit在ubuntu14.04下一键部署openstack(juno版本)

    一.基本介绍 本实验是在vmware workstation上虚拟机ubuntu14.04(64bit,desktop)上部署openstack(Juno版本).采用的工具是openshit.open ...

  2. Linux(CentOS、Ububtu)一键安装Openstack及其它参考文档汇总

    原文链接  http://www.aboutyun.com/thread-10920-1-1.html openstack相关资料 CentOS下一键安装Openstack  http://blog. ...

  3. CentOS下一键安装Openstack

    CentOS下一键安装Openstack 系统环境:Oracle VirtualBox 4.38CentOS-6.5-x86_64-bin-DVD1.iso 安装前需要修改 /etc/hosts文件, ...

  4. [openStack]使用Fuel安装OpenStack juno的fuel_master

    安装OpenStack是一件很复杂的事情,特别是在想目中,如果一个组件一个组件,一台一台的coding部署,估计太消耗时间,而且出错的概率很高,所以使用工具推送部署的效率就很高了,而且必须得可靠.mi ...

  5. kolla-ansible 一键安装openstack

    官网地址https://docs.openstack.org/kolla-ansible/latest/user/quickstart.html 参考:https://www.jianshu.com/ ...

  6. RHEL7.1 安装openstack juno 一个BUG

    错误提示: -- :: ERROR nova.compute.manager [-] [instance: 887e5e40-ebd8--b2f7-afa2a37bdef8] Instance fai ...

  7. ubuntu16.0 安装 openstack

    主要参考官方文档:https://docs.openstack.org/liberty/zh_CN/install-guide-ubuntu/environment-nosql-database.ht ...

  8. 10分钟安装OpenStack

    1 OpenStack初学者的苦恼 2 OpenStack最低配置要求 3 配置UOS环境 3.1 设置网络 3.1.1 创建路由器 3.1.2 创建网络 3.1.3 创建两个子网 3.2 创建UOS ...

  9. Openstack组件部署 — Networking service_安装并配置Controller Node

    目录 目录 前文列表 前提条件 网络环境 完成下面的步骤以创建数据库 创建service credentials服务凭证 创建Neutron的API Endpoints 配置自服务网络 安装网络组件 ...

随机推荐

  1. express安装及使用(windows系统)

    npm install express //安装express命令 npm install express-generator -g //Express 应用生成器,通过应用生成器工具 express ...

  2. iptables相关操作以及简单理解端口和服务之间关系

    一般CentOS7默认安装的是firewall不是iptables 1.查看firewall状态 firewall-cmd --state 关闭后显示not running,开启后显示running ...

  3. Python easyGUI 猜数字

    import easygui as g import random d=random.randint(0,10) while 1: g.msgbox("现在开始猜数字小游戏:") ...

  4. 【安全开发】Perl安全编码规范

    多年以来,Perl已经成为用于系统管理和WebCGI开发的功能最强的编程语言之一(几乎可以使用Perl做任何功能的程序).但其扩展应用,即作为Internet上CGI的开发工具,使得它经常成为Web服 ...

  5. IIS6独立用户建立网站的方法,提高网站安全性

    在Windows server 2003系统下,用IIS架设Web服务器,合理的为每个站点配置独立的Internet来宾账号,这样可以限制Internet 来宾账号的访问权限,只允许其可以读取和执行运 ...

  6. 查询mssql 密码

    select name,password from syslogins Select master.dbo.fn_varbintohexstr(password_hash) from sys.sql_ ...

  7. urllib 简介

    (1) urllib 是 Python 内置的 HTTP 请求库,用来向服务器发送 HTTP 请求(2) 在 Python2.x 中,有 urllib 和 urllib2 两个模块:在 Python3 ...

  8. DOM的学习

    今天学习了DOM,感觉学习起来真的没那么简单啦,这不是一个好现象啊,只有依靠自己大补课,嘿嘿,具体的总结了一下,今天学习的其实并不多,仅仅学习了不同的节点类型,但是知识还是蛮碎的,要一点一点的总结,昨 ...

  9. codeforces水题100道 第二十六题 Codeforces Beta Round #95 (Div. 2) A. cAPS lOCK (strings)

    题目链接:http://www.codeforces.com/problemset/problem/131/A题意:字符串大小写转换.C++代码: #include <cstdio> #i ...

  10. 【Java并发编程四】关卡

    一.什么是关卡? 关卡类似于闭锁,它们都能阻塞一组线程,直到某些事件发生. 关卡和闭锁关键的不同在于,所有线程必须同时到达关卡点,才能继续处理.闭锁等待的是事件,关卡等待的是其他线程. 二.Cycli ...