{"id":6811,"date":"2022-03-07T00:49:25","date_gmt":"2022-03-07T08:49:25","guid":{"rendered":"https:\/\/www.xh86.me\/?p=6811"},"modified":"2022-03-07T00:49:25","modified_gmt":"2022-03-07T08:49:25","slug":"installation-kolla-multinode","status":"publish","type":"post","link":"https:\/\/www.xh86.me\/?p=6811","title":{"rendered":"Installation-kolla-multinode"},"content":{"rendered":"
# \u786c\u4ef6\u73af\u5883\u51c6\u5907\r\n\r\n1. \u6700\u5c11\u8282\u70b9\u4e2a\u65703\u4e2a\r\n2. \u6700\u4f4e\u914d\u7f6e8C\/16G\/100G\u6d4b\u8bd5\u73af\u5883\r\n3. \u6700\u4f4e\u7f51\u5361\u4e2a\u65702\u4e2a\r\n4. \u78c1\u76d8\u4e2a\u6570\uff0c\u6bcf\u53f0\u8282\u70b9\u4e0a3\u5757\u7a7a\u4f59\u7684\u76d8\uff0c\u7528\u4f5cceph\uff0c\u5927\u5c0f\u65e0\u6240\u8c13\uff08\u6d4b\u8bd5\u73af\u5883\uff09\r\n5. centos\u64cd\u4f5c\u7cfb\u7edf\uff0c\u6700\u597d\u4f7f\u7528\u76ee\u524d\u6700\u65b0\u7cfb\u7edfcentos7.7\r\n6. \u7cfb\u7edf\u80fd\u591f\u8bbf\u95ee\u5916\u90e8\u7f51\u7edc\r\n\r\n# \u5b89\u88c5 kolla-ansible \u524d\u7684\u51c6\u5907\r\n\r\n1. \u5173\u95edselinux\u548cfirewalld\uff08\u6240\u6709\u8282\u70b9\uff09\r\n2. \u4fee\u6539\u5bf9\u5e94\u7684host\u548cip\u5730\u5740\uff08control01\uff09\r\n\r\n   \r\n    [root@control01 ~]# cat \/etc\/hosts\r\n    127.0.0.1   localhost localhost.localdomain localhost4 localhost4.localdomain4\r\n    ::1         localhost localhost.localdomain localhost6 localhost6.localdomain6\r\n    10.211.55.13  control01\r\n    10.211.55.14  control02\r\n    10.211.55.15  control03\r\n    \r\n3. \u5728control01\u8282\u70b9\u4e0a\u5b89\u88c5 epel\r\n\r\n    \r\n    sudo yum install epel-release -y\r\n    \r\n4. \u5b89\u88c5python\u4f9d\u8d56(control01)\r\n\r\n    \r\n    sudo yum install -y python-devel libffi-devel gcc openssl-devel libselinux-python\r\n    \r\n5. \u5b89\u88c5ansible\uff082.5+\u7248\u672c\uff09(control01\u8282\u70b9\u4e0a)\r\n    - \u76ee\u524d kolla \u5df2\u7ecf\u4e0d\u518d\u652f\u6301 2.5 \u4ee5\u4e0b\u7684 ansible \u7684\u7248\u672c\r\n\r\n        \r\n        yum install -y python-pip    \/\/\u5b89\u88c5pip\r\n        pip install -U pip  \/\/\u786e\u4fdd\u4f7f\u7528\u6700\u65b0\u7684pip\r\n        pip install ansible  \/\/\u5b89\u88c5ansible\r\n        \r\n    - \u56fd\u5185 pip \u5b89\u88c5\u901f\u5ea6\u8f83\u6162\u7684\u8bdd\uff0c\u53ef\u4ee5\u4f7f\u7528\u56fd\u5185\u7684 pip \u6e90\r\n\r\n        \r\n        pip install ansible  -i https:\/\/pypi.tuna.tsinghua.edu.cn\/simple\r\n        \r\n6. \u9a8c\u8bc1ansible\u7248\u672c\r\n\r\n    \r\n    [root@control01 ~]# ansible --version\r\n    ansible 2.8.2\r\n    config file = None\r\n    configured module search path = [u'\/root\/.ansible\/plugins\/modules', u'\/usr\/share\/ansible\/plugins\/modules']\r\n    ansible python module location = \/usr\/lib\/python2.7\/site-packages\/ansible\r\n    executable location = \/usr\/bin\/ansible\r\n    python version = 2.7.5 (default, Jun 20 2019, 20:27:34) [GCC 4.8.5 20150623 (Red Hat 4.8.5-36)]\r\n    \r\n7. \u8bbe\u7f6edeploy\u8282\u70b9(control01)\u514d\u5bc6\u767b\u5f55\u5176\u4ed6\u7684\u8282\u70b9\r\n    - \u9996\u5148\u521b\u5efa\u4e34\u65f6host\u6587\u4ef6\uff0c\u5185\u5bb9\u4e3a\u6240\u6709\u7684\u8282\u70b9\u4e3b\u673a\u540d\r\n\r\n        \r\n        [root@control01 ~]# cat host\r\n        control01\r\n        control02\r\n        control03\r\n        \r\n    - \u751f\u6210ssh\u516c\u94a5\uff08control01\uff09\r\n\r\n        \r\n        [root@control01 ~]# ssh-keygen \/\/\u4e00\u76f4\u56de\u8f66\u5373\u53ef\r\n        \r\n    - \u6279\u91cf\u8bbe\u7f6e\u514d\u5bc6\uff08control01\uff09\r\n\r\n        \r\n        [root@control01 ~]# ssh-copy-id root@control01\r\n        [root@control01 ~]# ssh-copy-id root@control02\r\n        [root@control01 ~]# ssh-copy-id root@control03\r\n        \r\n    - \u6d4b\u8bd5\u514d\u5bc6\u662f\u5426\u901a\u8fc7\r\n\r\n        \r\n        [root@control01 ~]# ansible all -i ~\/host  -m ping\r\n        \r\n8. \u62f7\u8d1dhosts\u6587\u4ef6\u5230\u5176\u4ed6\u7684\u8282\u70b9\u4e0a\r\n\r\n    \r\n    ansible all -i ~\/host  -m copy -a \"src=\/etc\/hosts dest=\/etc\/hosts\"\r\n    \r\n\r\n# \u5b89\u88c5 kolla-ansible \u5de5\u5177\r\n\r\n1. \u672c\u6b21\u5b89\u88c5\u6700\u65b0\u7684\u53d1\u5e03\u7248\u672c stein \u7248\u672c\uff0c\u6240\u4ee5\u6211\u4eec\u4f7f\u7528 stein \u7248\u672c\u7684 kolla-ansible\r\n2. \u5982\u679c\u64cd\u4f5c\u7cfb\u7edf\u6ca1\u6709\u5b89\u88c5 git \u9700\u8981\u9996\u5148\u5b89\u88c5 git\r\n\r\n    \r\n    yum install -y git\r\n    \r\n3. \u4e4b\u540e\u514b\u9686 kolla-ansible \u7684\u4ee3\u7801\r\n\r\n    \r\n    git clone https:\/\/github.com\/openstack\/kolla-ansible.git -b stable\/stein\r\n    \r\n4. \u8be5\u6b65\u9aa4\u5982\u679c\u514b\u9686\u8f83\u6162\uff0c\u53ef\u4ee5\u81ea\u5df1\u4e0b\u8f7d\u538b\u7f29\u5305\uff0c\u6216\u8005\u914d\u7f6e git \u4ee3\u7406\r\n\r\n    \r\n    [root@openstack-allinone kolla-ansible]# git branch \/\/\u68c0\u67e5\u5206\u652f\r\n    * stable\/stein\r\n    [root@openstack-allinone kolla-ansible]# pwd\r\n    \/root\/kolla-ansible\r\n    [root@openstack-allinone kolla-ansible]#\r\n    \r\n5. \u5b89\u88c5 kolla-ansible\r\n\r\n    \r\n    cd ~\/kolla-ansible\r\n    pip install . -i https:\/\/pypi.tuna.tsinghua.edu.cn\/simple\r\n    \r\n6. \u521b\u5efa\u914d\u7f6e\u6587\u4ef6\u76ee\u5f55\r\n\r\n    \r\n    sudo mkdir -p \/etc\/kolla\r\n    sudo chown $USER:$USER \/etc\/kolla\r\n    \r\n7. \u62f7\u8d1d globals.yml \u548c passwords.yml \u6587\u4ef6\u5230 \/etc\/kolla \u76ee\u5f55\u4e0b\r\n\r\n    \r\n    cp -r \/usr\/share\/kolla-ansible\/etc_examples\/kolla\/* \/etc\/kolla\r\n    \r\n8. \u62f7\u8d1d allinone \u548c mutinode \u6587\u4ef6\u5230\u5f53\u524d\u5bb6\u76ee\u5f55\u4e0b\r\n\r\n    \r\n    cp \/usr\/share\/kolla-ansible\/ansible\/inventory\/* ~\/\r\n    \r\n\r\n# \u90e8\u7f72 OpenStack \u524d\u7684\u914d\u7f6e\r\n\r\n1. \u4fee\u6539multinode\u6587\u4ef6\r\n\r\n    \r\n    vi ~\/multinode\r\n    [control]\r\n    # These hostname must be resolvable from your deployment host\r\n    control01\r\n    control02\r\n    control03\r\n    # The above can also be specified as follows:\r\n    #control[01:03]     ansible_user=kolla\r\n    # The network nodes are where your l3-agent and loadbalancers will run\r\n    # This can be the same as a host in the control group\r\n    [network]\r\n    control01\r\n    control02\r\n    control03\r\n    [compute]\r\n    control01\r\n    control02\r\n    control03\r\n    [monitoring]\r\n    #monitoring01\r\n    # When compute nodes and control nodes use different interfaces,\r\n    # you need to comment out \"api_interface\" and other interfaces from the globals.yml\r\n    # and specify like below:\r\n    #compute01 neutron_external_interface=eth0 api_interface=em1 storage_interface=em1tunnel_interface=em1\r\n    [storage]\r\n    control01\r\n    control02\r\n    control03\r\n    \r\n2. \u4fee\u6539globals.yml\u6587\u4ef6\r\n\r\n    \r\n    vi \/etc\/kolla\/globals.yml\r\n    \u4fee\u6539\u5982\u4e0b\u9009\u9879\r\n    kolla_install_type: \"source\"\r\n    openstack_release: \"stein\"\r\n    kolla_internal_vip_address: \"10.211.55.200\" \/\/\u8fd9\u4e2aip\u9700\u8981\u662f\u7ba1\u7406\u7f51\u540c\u4e00\u4e2a\u7f51\u6bb5\u7684\r\n    network_interface: \"eth0\"\r\n    neutron_external_interface: \"eth1\"\r\n    enable_cinder: \"yes\"\r\n    enable_ceph: \"yes\"\r\n    enable_ceph_dashboard: \"no\"\r\n       ......\u5176\u4ed6\u7684\u9ed8\u8ba4\u5373\u53ef\r\n    enable_neutron_provider_networks: \"yes\" \/\/\u5982\u679c\u5f00\u542foctavia\uff0c\u6700\u597d\u5f00\u542fneutron\u7684\u4e8c\u5c42\u7f51\u7edc\u529f\u80fd\uff0c\u5426\u5219octavia\u7684boot_network\u4e0d\u597d\u5904\u7406\u3002\r\n    ceph_osd_store_type: \"filestore\" \/\/\u5728\u6587\u4ef6\u4e2d\u6dfb\u52a0\u8be5\u884c\uff0c\u9ed8\u8ba4\u662fbulesotre\r\n    \r\n3. \u51c6\u5907ceph\r\n    - \u67e5\u770b\u8981\u88abceph\u4f7f\u7528\u7684\u76d8\uff0c\u672c\u4f8b\u662fsdb sdc sdd\r\n\r\n        \r\n        [root@control01 kolla-ansible]# lsblk\r\n        NAME                 MAJ:MIN RM   SIZE RO TYPE MOUNTPOINT\r\n        sda                    8:0    0   100G  0 disk\r\n        \u251c\u2500sda1                 8:1    0   500M  0 part \/boot\r\n        \u2514\u2500sda2                 8:2    0  99.5G  0 part\r\n          \u251c\u2500VolGroup-lv_root 253:0    0    50G  0 lvm  \/\r\n          \u251c\u2500VolGroup-lv_swap 253:1    0     2G  0 lvm  [SWAP]\r\n          \u2514\u2500VolGroup-lv_home 253:2    0  47.6G  0 lvm  \/home\r\n        sdb                    8:16   0    10G  0 disk\r\n        sdc                    8:32   0    10G  0 disk\r\n        sdd                    8:48   0    10G  0 disk\r\n        sr0                   11:0    1 119.3M  0 rom\r\n        sr1                   11:1    1   918M  0 rom\r\n        \r\n    - \u7ed9\u78c1\u76d8\u6253\u4e0a\u6807\u7b7e(\u5728\u6240\u6709\u7684\u5b58\u50a8\u8282\u70b9\u4e0a)\r\n\r\n        \r\n        parted \/dev\/sdb -s -- mklabel gpt mkpart KOLLA_CEPH_OSD_BOOTSTRAP 1 -1\r\n        parted \/dev\/sdc -s -- mklabel gpt mkpart KOLLA_CEPH_OSD_BOOTSTRAP 1 -1\r\n        parted \/dev\/sdd -s -- mklabel gpt mkpart KOLLA_CEPH_OSD_BOOTSTRAP 1 -1\r\n        ```\r\n    - \u68c0\u67e5\u78c1\u76d8\u662f\u5426\u6253\u6807\u8bb0\u6210\u529f\uff0c\u68c0\u67e5\u662f\u5426\u591a\u4e00\u4e2a\u5206\u533a\r\n\r\n        \r\n        [root@control01 kolla-ansible]# lsblk\r\n        NAME                 MAJ:MIN RM   SIZE RO TYPE MOUNTPOINT\r\n        sda                    8:0    0   100G  0 disk\r\n        \u251c\u2500sda1                 8:1    0   500M  0 part \/boot\r\n        \u2514\u2500sda2                 8:2    0  99.5G  0 part\r\n          \u251c\u2500VolGroup-lv_root 253:0    0    50G  0 lvm  \/\r\n          \u251c\u2500VolGroup-lv_swap 253:1    0     2G  0 lvm  [SWAP]\r\n          \u2514\u2500VolGroup-lv_home 253:2    0  47.6G  0 lvm  \/home\r\n        sdb                    8:16   0    10G  0 disk\r\n        \u2514\u2500sdb1                 8:17   0    10G  0 part\r\n        sdc                    8:32   0    10G  0 disk\r\n        \u2514\u2500sdc1                 8:33   0    10G  0 part\r\n        sdd                    8:48   0    10G  0 disk\r\n        \u2514\u2500sdd1                 8:49   0    10G  0 part\r\n        sr0                   11:0    1 119.3M  0 rom\r\n        sr1                   11:1    1   918M  0 rom\r\n        \r\n\r\n# \u90e8\u7f72 openstack\r\n\r\n1. \u6267\u884c bootstrap\uff0c\u4f1a\u5b89\u88c5 docker \u4e00\u7c7b\u6240\u9700\u8981\u7684\u5de5\u5177(control01\u8282\u70b9\u4e0a)\r\n\r\n    \r\n    kolla-ansible  -i ~\/multinode bootstrap-servers\r\n    \r\n2. \u786e\u8ba4cpu\u662f\u5426\u652f\u6301\u786c\u4ef6\u865a\u62df\u5316\uff08control01\uff09\r\n\r\n    \r\n    grep -E 'svm|vmx' \/proc\/cpuinfo\r\n    #\u5982\u679c\u6709\u56de\u663e\uff0c\u5219\u4e0b\u9762\u7684\u64cd\u4f5c\u4e0d\u9700\u8981\uff0c\u5982\u679c\u6ca1\u6709\u56de\u663e\uff0c\u8bf4\u660ecpu\u4e0d\u652f\u6301\u786c\u4ef6\u865a\u62df\u5316\uff0c\u9700\u8981\u4fee\u6539virt_type\r\n    mkdir -p \/etc\/kolla\/config\/nova\r\n    cat << EOF > \/etc\/kolla\/config\/nova\/nova-compute.conf\r\n    [libvirt]\r\n    virt_type=qemu\r\n    cpu_mode = none\r\n    EOF\r\n    \r\n3. docker \u662f\u4ece docker hub \u4e0a\u9762 pull openstack \u955c\u50cf\uff0c\u56fd\u5185\u7684\u73af\u5883\u6709\u70b9\u6162\uff0c\u6240\u4ee5\u8fd9\u91cc\u914d\u7f6e\u4e86 docker \u52a0\u901f\uff0c\u5f53\u7136\u4e5f\u53ef\u4ee5\u4e0d\u914d\u7f6e\u8fd9\u4e2a\u6b65\u9aa4(\u6240\u6709\u8282\u70b9)\r\n\r\n    \r\n    sudo mkdir -p \/etc\/docker\r\n         sudo tee \/etc\/docker\/daemon.json <<-'EOF'\r\n    {\r\n      \"registry-mirrors\": [\"https:\/\/registry.docker-cn.com\"]\r\n    }\r\n    EOF\r\n    sudo systemctl daemon-reload\r\n    sudo systemctl restart docker\r\n    \r\n4. \u751f\u6210 kolla \u5bc6\u7801\r\n\r\n    \r\n    kolla-genpwd\r\n    \r\n5. \u6267\u884c precheck\r\n\r\n    \r\n    kolla-ansible -i ~\/multinode prechecks\r\n    \r\n6. \u6267\u884c pull\uff08\u53ef\u4ee5\u4e0d\u6267\u884c\uff0cdeploy \u7684\u65f6\u5019\u4f1a\u81ea\u52a8 pull\uff09\r\n\r\n    \r\n    kolla-ansible -i ~\/multinode pull\r\n    \r\n7. \u6267\u884cdeploy\r\n\r\n    \r\n    kolla-ansible -i ~\/multinode deploy\r\n    \r\n\r\n# \u8c03\u6574 ceph\r\n\r\n1. \u67e5\u770bceph\u72b6\u6001\r\n\r\n    \r\n    [root@control01 ~]# docker exec ceph_mon ceph -s\r\n      cluster:\r\n        id:     8b0dd7b5-da1e-434c-bbc2-aa1963c3bdaf\r\n        health: HEALTH_WARN\r\n                too few PGs per OSD (10 < min 30)\r\n      services:\r\n        mon: 3 daemons, quorum 10.211.55.13,10.211.55.14,10.211.55.15    (age 44m)\r\n        mgr: control01(active, since 44m), standbys: control02,control03\r\n        osd: 9 osds: 9 up (since 43m), 9 in (since 43m)\r\n      data:\r\n        pools:   4 pools, 32 pgs\r\n        objects: 0 objects, 0 B\r\n        usage:   9.0 GiB used, 81 GiB \/ 90 GiB avail\r\n        pgs:     32 active+clean\r\n    \r\n2. \u8ba1\u7b97pg\u6570\r\n    - \u53c2\u8003[ceph\u5b98\u7f51\u7684pg\u8ba1\u7b97\u5668](https:\/\/ceph.com\/pgcalc\/)\uff0c\u8c03\u6574`pg_num`\u548c`pgp_num`\r\n    - ![image](\/img\/ceph-calc.png)\r\n\r\n    \r\n    [root@control01 ~]# docker exec -it -u root ceph_mon bash\r\n    (ceph-mon)[root@control01 \/]# ceph osd pool set images pg_num 128\r\n    set pool 1 pg_num to 128\r\n    (ceph-mon)[root@control01 \/]# ceph osd pool set images pgp_num 128\r\n    set pool 1 pgp_num to 128\r\n    (ceph-mon)[root@control01 \/]# ceph osd pool set volumes pg_num 128\r\n    set pool 2 pg_num to 128\r\n    (ceph-mon)[root@control01 \/]# ceph osd pool set volumes pgp_num 128\r\n    set pool 2 pgp_num to 128\r\n    (ceph-mon)[root@control01 \/]# ceph osd pool set backups pg_num 32\r\n    set pool 3 pg_num to 32\r\n    (ceph-mon)[root@control01 \/]# ceph osd pool set backups pgp_num 32\r\n    set pool 3 pgp_num to 32\r\n    (ceph-mon)[root@control01 \/]# ceph osd pool set vms pg_num 32\r\n    set pool 4 pg_num to 32\r\n    (ceph-mon)[root@control01 \/]# ceph osd pool set vms pgp_num 32\r\n    set pool 4 pgp_num to 32\r\n    (ceph-mon)[root@control01 \/]# ceph -s\r\n    cluster:\r\n        id:     8b0dd7b5-da1e-434c-bbc2-aa1963c3bdaf\r\n       health: HEALTH_OK\r\n\r\n    services:\r\n       mon: 3 daemons, quorum 10.211.55.13,10.211.55.14,10.211.55.15     (age 52m)\r\n       mgr: control01(active, since 52m), standbys: control02, control03\r\n       osd: 9 osds: 9 up (since 51m), 9 in (since 51m)\r\n\r\n    data:\r\n        pools:   4 pools, 320 pgs\r\n       objects: 0 objects, 0 B\r\n       usage:   9.1 GiB used, 81 GiB \/ 90 GiB avail\r\n       pgs:     320 active+clean\r\n\r\n    (ceph-mon)[root@control01 \/]#\r\n    \r\n\r\n# \u4f7f\u7528 openstack\r\n\r\n1. \u5b89\u88c5openstack client\r\n\r\n    \r\n    pip install python-openstackclient -i https:\/\/pypi.tuna.tsinghua.edu.cn\/simple\r\n    \r\n2. \u751f\u6210admin-rc\u6587\u4ef6\r\n\r\n    \r\n    kolla-ansible -i ~\/multinode post-deploy\r\n    \u9ed8\u8ba4\u662f\u751f\u6210\u7684\u6587\u4ef6\u540d\u662f: \/etc\/kolla\/admin-openrc.sh\r\n    \r\n\r\n# \u914d\u7f6e octavia\r\n\r\n1. \u514b\u9686octavia\u4ed3\u5e93\r\n\r\n    \r\n    git clone https:\/\/github.com\/openstack\/octavia.git -b stable\/stein\r\n    \r\n2. \u521b\u5efa\u8bc1\u4e66\r\n\r\n    \r\n    [root@control01 ~]# cd octavia\/\r\n    [root@control01 ~]# grep octavia_ca \/etc\/kolla\/passwords.yml\r\n    octavia_ca_password: OgY7o4XSLqRIrEWkQOJPeuGeDZgMI8zpyYPIlxvE\r\n    [root@control01 octavia]# sed -i 's\/foobar\/OgY7o4XSLqRIrEWkQOJPeuGeDZgMI8zpyYPIlxvE\/g' bin\/create_certificates.sh\r\n    [root@control01 octavia]# .\/bin\/create_certificates.sh cert $(pwd)\/etc\/certificates\/openssl.cnf\r\n    \r\n    - \u4e4b\u540e\u4f1a\u5f97\u5230\u4e00\u4e2acert\u6587\u4ef6\u5939\r\n\r\n    \r\n    [root@control01 octavia]# ls -al cert\/\r\n    \u603b\u7528\u91cf 60\r\n    drwxr-xr-x.  4 root root 4096 7\u6708  22 02:45 .\r\n    drwxr-xr-x. 19 root root 4096 7\u6708  22 02:45 ..\r\n    -rw-r--r--.  1 root root 1294 7\u6708  22 02:45 ca_01.pem\r\n    -rw-r--r--.  1 root root  989 7\u6708  22 02:45 client.csr\r\n    -rw-r--r--.  1 root root 1704 7\u6708  22 02:45 client.key\r\n    -rw-r--r--.  1 root root 4405 7\u6708  22 02:45 client-.pem\r\n    -rw-r--r--.  1 root root 6109 7\u6708  22 02:45 client.pem\r\n    -rw-r--r--.  1 root root   71 7\u6708  22 02:45 index.txt\r\n    -rw-r--r--.  1 root root   21 7\u6708  22 02:45 index.txt.attr\r\n    -rw-r--r--.  1 root root    0 7\u6708  22 02:45 index.txt.old\r\n    drwxr-xr-x.  2 root root 4096 7\u6708  22 02:45 newcerts\r\n    drwx------.  2 root root 4096 7\u6708  22 02:45 private\r\n    -rw-r--r--.  1 root root    3 7\u6708  22 02:45 serial\r\n    -rw-r--r--.  1 root root    3 7\u6708  22 02:45 serial.old\r\n    ```\r\n    - \u63a5\u4e0b\u6765\u5c06\u8ba4\u8bc1\u6587\u4ef6\u653e\u5230kolla\u90e8\u7f72\u8282\u70b9\u4e0a\u7684\/etc\/kolla\/octavia\u76ee\u5f55\u91cc\r\n\r\n    \r\n    [root@control01 octavia]# mkdir \/etc\/kolla\/config\/octavia\r\n    [root@control01 octavia]# cp cert\/{private\/cakey.pem,ca_01.pem,client.pem} \/etc\/kolla\/config\/octavia\/\r\n    [root@control01 octavia]# ls -al \/etc\/kolla\/config\/octavia\/\r\n    \u603b\u7528\u91cf 24\r\n    drwxr-xr-x. 2 root root 4096 7\u6708  22 02:59 .\r\n    drwxr-xr-x. 4 root root 4096 7\u6708  22 02:57 ..\r\n    -rw-r--r--. 1 root root 1294 7\u6708  22 02:59 ca_01.pem\r\n    -rw-r--r--. 1 root root 1743 7\u6708  22 02:59 cakey.pem\r\n    -rw-r--r--. 1 root root 6109 7\u6708  22 02:59 client.pem\r\n    \r\n3. \u6784\u5efa\u955c\u50cf\r\n\r\n    \r\n    [root@control01 ~]# cd ~\r\n    [root@control01 ~]# git clone https:\/\/github.com\/openstack\/diskimage-builder\r\n    #\u514b\u9686disk-builder\u5de5\u5177\uff0c\u76ee\u5f55\u5728\/root\/diskimage-builder\u4e0b\r\n    [root@control01 ~]# pip install diskimage-builder\/ -i https:\/\/pypi.tuna.tsinghua.edu.cn\/simple\r\n    [root@control01 ~]# pwd\r\n    \/root\r\n    [root@control01 ~]# yum install qemu-img -y\r\n    #\u6784\u5efa\u955c\u50cf\u7684\u65f6\u5019\u9700\u8981\u6539\u5de5\u5177\r\n    [root@control01 ~]# cd octavia\/diskimage-create\/\r\n    [root@control01 diskimage-create]# .\/diskimage-create.sh  -i centos -s 3\r\n    \r\n    - \u6784\u5efa\u5b8c\u6210\u540e\uff0c\u5f53\u524d\u76ee\u5f55\u4e0b\u4f1a\u751f\u6210`amphora-x64-haproxy.qcow2`\u6587\u4ef6\u3002\u6539\u6b65\u9aa4\u8fc7\u7a0b\u8f83\u6162\uff0c\u4f7f\u7528\u7684\u662f\u56fd\u5916\u7684\u6e90\uff0c\u800c\u4e14\u53ef\u80fd\u4f1a\u5931\u8d25\u3002\u5b9e\u9645\u4e0a\u6ca1\u5fc5\u8981\u6bcf\u6b21\u53bb\u6784\u5efa\u8fd9\u4e2a\u955c\u50cf\uff0c\u76f4\u63a5\u4f7f\u7528\u73b0\u6709\u7684\u955c\u50cf\u5373\u53ef\u3002[\u955c\u50cf\u4e0b\u8f7d\u5730\u5740](ftp:\/\/99cloudftp@172.16.20.14\/builder-images\/octavia\/amphora-x64-haproxy.raw)\r\n4. \u4e0a\u4f20\u955c\u50cf\u5230openstack\u4e2d\r\n\r\n    \r\n    source  \/etc\/kolla\/\/admin-openrc.sh\r\n    openstack image create --container-format bare --disk-format qcow2 --private --file amphora-x64-haproxy.qcow2 --tag amphora amphora\r\n    [root@control01 ~]# openstack image list\r\n    +--------------------------------------+--------- +--------+\r\n    | ID                                   | Name    |  Status |\r\n    +--------------------------------------+--------- +--------+\r\n    | 16c35d86-9e05-4a24-94ec-0884ea69ccef | amphora |  active |\r\n    +--------------------------------------+--------- +--------+\r\n    \r\n5. \u521b\u5efaopenstack\u7f51\u7edc\uff0c\u8be5\u7f51\u7edc\u5fc5\u987b\u8981\u548cnetwork\u8282\u70b9\uff0c\u53cc\u5411\u901a\u4fe1\u3002\r\n\r\n    \r\n    [root@control01 ~]# openstack network create --provider-physical-network physnet1 --provider-network-type flat --external --share lb-net\r\n    [root@control01 ~]# openstack subnet create --allocation-pool start=10.211.55.150,end=10.211.55.200 --network lb-net --subnet-range 10.211.55.0\/24 --gateway 10.211.55.1 lb-subnet\r\n    \r\n    - \u6839\u636e\u56de\u663e\uff0c\u6211\u4eec\u62ff\u5230\u8be5\u7f51\u7edc\u7684id\uff08\u800c\u4e0d\u662f\u5b50\u7f51\u7684id\uff09\uff0c\u540e\u9762\u4f1a\u7528\u5230\uff0c\u672c\u6b21\u7684id\uff1a`21f243d8-606d-4430-8bfd-16e9e0d3acab`\r\n6. \u521b\u5efaoctavia\u865a\u62df\u673aflavor\r\n\r\n    \r\n    [root@control01 ~]# openstack flavor create --disk 40 --private --ram 1024 --vcpus 1 octavia_flavor\r\n    \r\n    - \u62ff\u5230\u8be5flavor\u7684id\uff0c\u540e\u9762\u4f1a\u7528\u5230\uff0c\u672c\u4f8b\u4e3a\uff1a`2354f1c2-fc2d-487e-bef0-b12b7f095718`\r\n7. \u521b\u5efa\u5b89\u5168\u7ec4\u5e76\u914d\u7f6e\u5b89\u5168\u7ec4\u89c4\u5219\r\n\r\n    \r\n    [root@control01 ~]# openstack security group create --description 'used by Octavia amphora instance' octavia\r\n    [root@control01 ~]# openstack security group rule create --protocol icmp ec40be6f-bad2-4c2c-b014-a95c362d24a1\r\n    [root@control01 ~]# openstack security group rule create --protocol tcp --dst-port 5555 --egress ec40be6f-bad2-4c2c-b014-a95c362d24a1\r\n    [root@control01 ~]# openstack security group rule create --protocol tcp --dst-port 9443 --ingress ec40be6f-bad2-4c2c-b014-a95c362d24a1\r\n    \r\n    - \u5176\u4e2dec40be6f-bad2-4c2c-b014-a95c362d24a1\u4e3a\u5b89\u5168\u7ec4\u7684id\u3002\r\n8. \u90e8\u7f72octavia\uff08\u4e3b\u8981\u76ee\u7684\u662f\u4e3a\u4e86\u521b\u5efaoctavia\u7684\u7528\u6237\uff09\r\n    - \u4fee\u6539vim \/etc\/kolla\/globals.yml\r\n\r\n        \r\n        enable_octavia: \"yes\"\r\n        \r\n    - \u5f00\u59cb\u90e8\u7f72octaiva\r\n\r\n        \r\n        [root@control01 ~]# kolla-ansible deploy -i ~\/multinode  --tags octavia,horizon,haproxy\r\n        \r\n9. \u521b\u5efaoctavia\u865a\u62df\u673a\u7684key\uff0c\u5176\u4e2dkey\u7684\u540d\u5b57\u5fc5\u987b\u4e3a`octavia_ssh_key`\r\n\r\n    \r\n    [root@control01 ~]# grep octavia_keystone_password \/etc\/kolla\/passwords.yml\r\n    octavia_keystone_password:       5RPTorrBeNeLt5a0WBG5OXAPGHTsnSv7jqpxnD0O\r\n    [root@control01 ~]# openstack --os-username octavia --os-password 5RPTorrBeNeLt5a0WBG5OXAPGHTsnSv7jqpxnD0O  keypair create --public-key ~\/.ssh\/id_rsa.pub octavia_ssh_key\r\n    \r\n10. \u66f4\u65b0globas.yml\u6587\u4ef6\u5e76reconfigure\r\n    - vim \/etc\/kolla\/globals.yml\u5728\u6587\u4ef6\u6700\u540e\u589e\u52a0\u5982\u4e0b\u5b57\u6bb5\r\n\r\n        \r\n        octavia_loadbalancer_topology: \"ACTIVE_STANDBY\"\r\n        octavia_amp_boot_network_list: 21f243d8-606d-4430-8bfd-16e9e0d3acab\r\n        octavia_amp_secgroup_list: ec40be6f-bad2-4c2c-b014-a95c362d24a1\r\n        octavia_amp_flavor_id: 2354f1c2-fc2d-487e-bef0-b12b7f095718\r\n        \r\n    - reconfigure octavia\r\n\r\n        \r\n        [root@control01 ~]# kolla-ansible -i ~\/multinode  reconfigure --tags octavia\r\n        \r\n\r\n# octavia \u7684\u4f7f\u7528\r\n\r\n1. \u767b\u5f55\u5230horizon\u521b\u5efarouter\u548c\u5b50\u7f51\uff0c\u5e76\u628a\u5b50\u7f51\u7ed1\u5b9a\u5230router\u4e0a\r\n    - \u9879\u76ee->\u7f51\u7edc->\u8def\u7531->\u521b\u5efa\r\n    - \u9879\u76ee->\u7f51\u7edc->\u7f51\u7edc->\u521b\u5efa\u7f51\u7edc\u548c\u5b50\u7f51\r\n    - \u9879\u76ee->\u7f51\u7edc->\u8def\u7531->\u9009\u4e2d\u8def\u7531\u5668->\u63a5\u53e3->\u6dfb\u52a0\u63a5\u53e3\r\n2. \u521b\u5efaloadbalancer\r\n    - \u9879\u76ee->\u7f51\u7edc->\u8d1f\u8f7d\u5747\u8861\u5668\u4e2d\u6839\u636e\u63d0\u793a\u521b\u5efa\u5373\u53ef\u3002<\/pre>\n","protected":false},"excerpt":{"rendered":"
# \u786c\u4ef6\u73af\u5883\u51c6\u5907 1. \u6700\u5c11\u8282\u70b9\u4e2a\u65703\u4e2a 2. \u6700\u4f4e\u914d\u7f6e8C\/16G\/100G\u6d4b\u8bd5\u73af\u5883 3. \u6700\u4f4e\u7f51\u5361\u4e2a\u65702\u4e2a […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[12,3],"tags":[],"class_list":["post-6811","post","type-post","status-publish","format-standard","hentry","category-linux","category-system"],"_links":{"self":[{"href":"https:\/\/www.xh86.me\/index.php?rest_route=\/wp\/v2\/posts\/6811","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.xh86.me\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.xh86.me\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.xh86.me\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.xh86.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=6811"}],"version-history":[{"count":2,"href":"https:\/\/www.xh86.me\/index.php?rest_route=\/wp\/v2\/posts\/6811\/revisions"}],"predecessor-version":[{"id":6813,"href":"https:\/\/www.xh86.me\/index.php?rest_route=\/wp\/v2\/posts\/6811\/revisions\/6813"}],"wp:attachment":[{"href":"https:\/\/www.xh86.me\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=6811"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.xh86.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=6811"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.xh86.me\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=6811"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}