Ubuntu1204OpenStack Grizzly 多节点安装.docx
- 文档编号:9730381
- 上传时间:2023-02-06
- 格式:DOCX
- 页数:41
- 大小:27.32KB
Ubuntu1204OpenStack Grizzly 多节点安装.docx
《Ubuntu1204OpenStack Grizzly 多节点安装.docx》由会员分享,可在线阅读,更多相关《Ubuntu1204OpenStack Grizzly 多节点安装.docx(41页珍藏版)》请在冰豆网上搜索。
Ubuntu1204OpenStackGrizzly多节点安装
控制节点
控制节点信息:
eth0:
10.1.1.222/24eth1:
192.168.1.222/24
网络设置
cat/etc/network/interfaces
autoeth0
ifaceeth0inetstatic
address10.1.1.222
netmask255.255.255.0
gateway10.1.1.1
autoeth1
ifaceeth1inetstatic
address192.168.1.222
netmask255.255.255.0
重启网络
/etc/init.d/networkingrestart
添加Grizzly源
默认Ubuntu12.04的源是Essex版本,我们需要增加Grizzly的源。
不过需要你手工添加。
apt-getupdate
apt-getinstallubuntu-cloud-keyringpython-software-propertiessoftware-properties-commonpython-keyring
添加Grizzly源
cat<
debhttp:
//ubuntu-precise-proposed/grizzlymain
debhttp:
//ubuntu-precise-updates/grizzlymain
EOF
运行下面命令进行更新
apt-getupdate&&apt-get-ydist-upgrade
Hostname
Hostname设置,其实不是必须的,不过养成一个习惯,也方便自己.
root@control:
~#cat/etc/hostname
control
root@control:
~#cat/etc/hosts
127.0.0.1localhost
127.0.1.1control
10.1.1.222control
192.168.1.222control
IP转发
sed-i-r's/^\s*#(net\.ipv4\.ip_forward=1.*)/\1/'/etc/sysctl.conf
echo1>/proc/sys/net/ipv4/ip_forward
检查修改结果
#sysctl-p
net.ipv4.ip_forward=1
添加环境变量
cat.bashrc
exportOS_TENANT_NAME=admin
exportOS_USERNAME=admin
exportOS_PASSWD=passwd
exportOS_AUTH_URL="http:
//10.1.1.222:
5000/v2.0/"
exportSERVICE_ENDPOINT="http:
//10.1.1.222:
35357/v2.0"
exportSERVICE_TOKEN=ADMIN
使环境变量生效
source.bashrc
安装ntp
apt-getinstallntp
编辑/etc/ntp.conf
server127.127.1.0
fudge127.127.1.0stratum8
启动服务
servicentprestart
安装mysql
apt-getinstall-ymysql-serverpython-mysqldb
配置mysql账户,root的登录密码为passwd
配置mysql监听地址:
sed-i's/127.0.0.1/0.0.0.0/g'/etc/mysql/f
sed-i'44iskip-name-resolve'/etc/mysql/f
(使用sed编辑/etc/mysql/f文件,更改绑定地址(0.0.0.0)从本地主机(127.0.0.1),禁止mysql做域名解析,防止连接mysql出现错误和远程连接mysql慢的现象。
然后重新启动mysql服务)
重启mysql服务
servicemysqlrestart
安装rabbitmq
apt-getinstall-yrabbitmq-server
安装Keystone
apt-getinstall–ykeystone
查看keystone运行状态
servicekeystonestatus
在mysql里创建keystone数据库并授权:
mysql-uroot-ppasswd
createdatabasekeystone;
grantallonkeystone.*to'keystone'@'localhost'identifiedby'passwd';
showdatabases;
quit;
修改/etc/keystone/keystone.conf配置文件
admin_token=ADMIN(去掉注释)
[sql]
#connection=sqlite:
////var/lib/keystone/keystone.db
connection=mysql:
//keystone:
passwd@localhost/keystone
[signing]
#token_format=PKI
token_format=UUID
重启服务和初始化数据库
servicekeystonerestart
keystone-managedb_sync
创建租间
使用以下命令创建四个租间,admin、service、demo、invisible_to_admin
keystonetenant-create--nameadmin
keystonetenant-create--nameservice
keystonetenant-create--namedemo
keystonetenant-create--nameinvisible_to_admin
创建用户
执行以下命令,创建七个用户admin、demo、nova、glance、swift、quantum、cinder
keystoneuser-create--nameadmin--passpasswd--emailadmin@
keystoneuser-create--namedemo--passpasswd--emaildemo@
keystoneuser-create--namenova--passpasswd--emailnova@
keystoneuser-create--nameglance--passpasswd--emailglance@
keystoneuser-create--nameswift--passpasswd--emailswift@
keystoneuser-create--namequantum--passpasswd--emailquantum@
keystoneuser-create--namecinder--passpasswd--emailcinder@
创建角色
使用命令创建五个角色,admin、KeystoneAdmin、KeystoneServiceAdmin、Member、ResellerAdmin(译者注:
注意是大写M):
keystonerole-create--nameadmin
keystonerole-create--nameMember
keystonerole-create--nameKeystoneAdmin
keystonerole-create--nameKeystoneServiceAdmin
keystonerole-create--nameResellerAdmin
查看租间、用户和角色
刚才建立的租间、用户和角色可以通过如下命令进行查看:
keystonetenant-list
+----------------------------------+--------------------+---------+
|id|name|enabled|
+----------------------------------+--------------------+---------+
|d69e67a82e644076974c16a9ea334916|admin|True|
|ac832889e18e43deab41132679f34924|demo|True|
|70acc9d08c8645229b1f357d1098c0e1|invisible_to_admin|True|
|ebeb61c144eb49068044dbac18d85315|service|True|
+----------------------------------+--------------------+---------+
keystoneuser-list
+----------------------------------+---------+---------+--------------------+
|id|name|enabled|email|
+----------------------------------+---------+---------+--------------------+
|e21538ee1eb54204953400a71fd73832|admin|True|admin@|
|c90a33876da44f20ade3fb0d90a27493|cinder|True|cinder@|
|b192341bff4d49149a54157e6e7fd94d|demo|True|demo@|
|8eb7eda27bc64378983578ff32158bc8|glance|True|glance@|
|636641845a54472b9e3b3cc35f7acf12|nova|True|nova@|
|80b3b9604f664861a3de77a4ed80ef73|quantum|True|quantum@|
|1fe8ac3fcaad440bb0a599cded95a27c|swift|True|swift@|
+----------------------------------+---------+---------+--------------------+
keystonerole-list
+----------------------------------+----------------------+
|id|name|
+----------------------------------+----------------------+
|948e7472d6bc4e7786e61c49d1c1f69f|KeystoneAdmin|
|ca9cd614a9704d90aaf82ec130be3396|KeystoneServiceAdmin|
|28d86b8c02a8434aabf08cd924c1a42c|Member|
|51fb3f06ca684335997ba5655b0b968b|ResellerAdmin|
|9fe2ff9ee4384b1894a90878d3e92bab|_member_|
|3661c992811c42ab83910938ad021036|admin|
+----------------------------------+----------------------+
请大家格外注意id列中的值,虽然很长,但随后为用户绑定角色,继而把用户配入租间中时可全靠它们了
为特定租间中的用户绑定角色
现在我们先为刚刚创建的用户绑定角色,通过如下命令可以将特定租间中的特定用户增加角色,其中id字段可以通过keystoneuser-list,keystonerole-list和keystonetenant-list命令获得。
下面开始为“admin”租间中的“admin”用户绑定“admin”角色:
keystoneuser-role-add--usere21538ee1eb54204953400a71fd73832--role3661c992811c42ab83910938ad021036--tenant_idd69e67a82e644076974c16a9ea334916
下面开始为“demo”租间中的“admin”用户绑定“admin”角色:
keystoneuser-role-add--usere21538ee1eb54204953400a71fd73832--role3661c992811c42ab83910938ad021036--tenant_idac832889e18e43deab41132679f34924
下面开始为“admin”租间中的“admin”用户绑定“KeystoneAdmin”角色:
keystoneuser-role-add--usere21538ee1eb54204953400a71fd73832--role948e7472d6bc4e7786e61c49d1c1f69f--tenant_idd69e67a82e644076974c16a9ea334916
下面开始为“admin”租间中的“admin”用户绑定“KeystoneServiceAdmin”角色:
keystoneuser-role-add--usere21538ee1eb54204953400a71fd73832--roleca9cd614a9704d90aaf82ec130be3396--tenant_idd69e67a82e644076974c16a9ea334916
下面开始为“demo”租间中的“demo”用户绑定“Member”角色:
keystoneuser-role-add--userb192341bff4d49149a54157e6e7fd94d--role28d86b8c02a8434aabf08cd924c1a42c--tenant_idac832889e18e43deab41132679f34924
下面开始为“invisible_to_admin”租间中的“demo”用户绑定“Member”角色:
keystoneuser-role-add--userb192341bff4d49149a54157e6e7fd94d--role28d86b8c02a8434aabf08cd924c1a42c--tenant_id70acc9d08c8645229b1f357d1098c0e1
接着执行如下命令,为“service”租间中的nova、glance、swift、quantum、cinder用户绑定“admin”角色:
keystoneuser-role-add--user636641845a54472b9e3b3cc35f7acf12--role3661c992811c42ab83910938ad021036--tenant_idebeb61c144eb49068044dbac18d85315
keystoneuser-role-add--user8eb7eda27bc64378983578ff32158bc8--role3661c992811c42ab83910938ad021036--tenant_idebeb61c144eb49068044dbac18d85315
keystoneuser-role-add--user1fe8ac3fcaad440bb0a599cded95a27c--role3661c992811c42ab83910938ad021036--tenant_idebeb61c144eb49068044dbac18d85315
keystoneuser-role-add--user80b3b9604f664861a3de77a4ed80ef73--role3661c992811c42ab83910938ad021036--tenant_idebeb61c144eb49068044dbac18d85315
keystoneuser-role-add--userc90a33876da44f20ade3fb0d90a27493--role3661c992811c42ab83910938ad021036--tenant_idebeb61c144eb49068044dbac18d85315
为“service”租间中的nova用户绑定“ResellerAdmin”角色:
keystoneuser-role-add--user636641845a54472b9e3b3cc35f7acf12--role51fb3f06ca684335997ba5655b0b968b--tenant_idebeb61c144eb49068044dbac18d85315
创建服务
至此,我们该创建授权用户可以享用的服务了,创建nova-compute、cinder、glance、swift、keystone及ec2服务:
keystoneservice-create--namenova--typecompute--description'OpenStackComputeService'
keystoneservice-create--namecinder--typevolume--description'OpenStackVolumeService'
keystoneservice-create--nameglance--typeimage--description'OpenStackImageService'
keystoneservice-create--nameswift--typeobject-store--description'OpenStackStorageService'
keystoneservice-create--namekeystone--typeidentity--description'OpenStackIdentityService'
keystoneservice-create--nameec2--typeec2--description'EC2Service'
keystoneservice-create--namequantum--typenetwork--description'OpenStackNetworkingservice'
刚才创建的每个服务都拥有唯一的id,要查看服务id,使用如下命令即可:
keystoneservice-list
+----------------------------------+----------+--------------+-------------------------------+
|id|name|type|description|
+----------------------------------+----------+--------------+-------------------------------+
|5b5c4d4c71534523973933566723d117|cinder|volume|OpenStackVolumeService|
|ce13204b533e4ef8b0fa01a70a45994b|ec2|ec2|EC2Service|
|c45720fb0fae457bb6e5833dff29003f|glance|image|OpenStackImageService|
|30577779844146d09b4689726d5e8e38|keystone|identity|OpenStackIdentityService|
|1d8a4a57f25c4e38a1c0a9d8d2698622|nova|compute|OpenStackComputeService|
|0dcad8b8b10f4174a6294fc80e6921f1|quantum|network|OpenStackNetworkingservice|
|8f617bdd43ab476384b35e805368eb15|swift|object-store|OpenStackStorageService|
+----------------------------------+----------+--------------+-------------------------------+
这些id将被用于定义所属服务的入口(endpoint)。
创建入口
使用如下命令创建nova-compute入口:
keystoneendpoint-create--regionmyregion--service_id1d8a4a57f25c4e38a1c0a9d8d2698622--publicurl'http:
//10.1.1.222:
8774/v2/$(tenant_id)s'--adminurl'http:
//10.1.1.222:
8774/v2/$(tenant_id)s'--internalurl'http:
//10.1.1.222:
8774/v2/$(tenant_id)s'
使用如下命令创建nova-volume入口:
keystoneendpoint-create--regionmyregion--service_id5b5c4d4c71534523973933566723d117--publicurl'http:
//10.1.1.2
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- Ubuntu1204OpenStack Grizzly 多节点安装 节点 安装