1 docker部署kafka单机版
Kafka官网:https://kafka.apache.org/
1.1 部署环境准备
linux环境、docker环境
部署环境配置 | 版本 | 下载链接 |
---|---|---|
ECS | CentOS 7.6 | 一台2vCPUs|4GiB |
docker | 19.03.9 | 脚本 |
1.2 脚本使用
保存下面脚本内容到文件:install-kafka.sh
vim install-kafka.sh chmod +x install-kafka.sh source install-kafka.sh #一键安装完成后可输入docker ps -a查看
1.3 脚本内容
#!/bin/bash
##################### 准备工作 #####################
#1.镜像拉取速度慢的话加镜像加速器脚本
#2.镜像加速器地址https://console.huaweicloud.com/swr/?region=cn-north-4#/swr/mirror
#3.注意修改IP地址&&根据自己需要修改挂载文件和文件变量
#4.修改broker的配置文件
#5.开启下面表格里的端口
#6.可视化的账户密码和端口视情况修改
#IP
ip=172.16.20.200
#宿主机文件(可修改)与容器文件(不可修改)
file=/opt/zookeeper #可修改
file1=/opt/bitnami/kafka #不可修改
#更改brokerid=0.1.2
VAR='broker.id=0' #节点id修改
#########################################################################################
#创建网络
docker network create app-tier
#拉取镜像
docker pull bitnami/kafka:latest
#启动zookeeper
docker run -d --name zookeeper \
--network app-tier \
-p 2181:2181 \
-e ALLOW_ANONYMOUS_LOGIN=yes \
bitnami/kafka:latest \
$file1/bin/zookeeper-server-start.sh $file1/config/zookeeper.properties
#启动kafka
docker run -d --name kafka \
--network app-tier \
-p 9092:9092 \
-e ALLOW_PLAINTEXT_LISTENER=yes \
-e KAFKA_CFG_ZOOKEEPER_CONNECT=zookeeper:2181 \
-e KAFKA_CFG_BROKER_ID=0 \
-e KAFKA_CFG_LISTENERS=PLAINTEXT://:9092 \
-e KAFKA_CFG_ADVERTISED_LISTENERS=PLAINTEXT://$ip:9092 \
bitnami/kafka:latest \
$file1/bin/kafka-server-start.sh $file1/config/server.properties
#复制kafka容器里的文件
docker cp kafka:$file1 $file
#删除容器
docker stop zookeeper
docker rm zookeeper
docker stop kafka
docker rm kafka
#更换kafka配置文件名并添加sasl认证
mv $file/config/server.properties.original $file/config/server.properties
sed -i -e "s/broker.id=0/$VAR/g" $file/config/server.properties
sed -i -e '35a \listeners=PLAINTEXT://:9092' $file/config/server.properties
sed -i -e '39a \advertised.listeners=PLAINTEXT://'$ip':9092' $file/config/server.properties
sed -i -e 's|zookeeper.connect=.*|zookeeper.connect='$ip':2181|g' $file/config/server.properties
sed -i '$a \listeners=SASL_PLAINTEXT://:9092 \nadvertised.listeners=SASL_PLAINTEXT://'$ip':9092 \nsecurity.inter.broker.protocol=SASL_PLAINTEXT \nsasl.mechanism.inter.broker.protocol=PLAIN \nsasl.enabled.mechanisms=PLAIN \nauthorizer.class.name=kafka.security.authorizer.AclAuthorizer \nsuper.users=User:admin \nallow.everyone.if.no.acl.found=false' $file/config/server.properties
#部署zookeeper
sed -i -e '$a \server.1='$ip':2881:3881' $file/config/zookeeper.properties
#编辑kafka_server_jaas.conf
touch $file/config/kafka_server_jaas.conf
echo 'KafkaServer {' >> $file/config/kafka_server_jaas.conf
sed -i -e 'aorg.apache.kafka.common.security.plain.PlainLoginModule required \nusername="admin" \npassword="admin" \nuser_admin="admin" \nuser_kafka="kafka"; \n}; \nClient { \norg.apache.zookeeper.server.auth.DigestLoginModule required \nusername="kafka" \npassword="kafka"; \n};' $file/config/kafka_server_jaas.conf
#编辑kafka_client_jaas.conf
touch $file/config/kafka_client_jaas.conf
echo 'KafkaClient {' >> $file/config/kafka_client_jaas.conf
sed -i -e 'aorg.apache.kafka.common.security.plain.PlainLoginModule required \nusername="admin" \npassword="admin"; \n}; \nClient { \norg.apache.zookeeper.server.auth.DigestLoginModule required \nusername="admin" \npassword="admin"; \n};' $file/config/kafka_client_jaas.conf
#编辑zk_server_jaas.conf
touch $file/config/zk_server_jaas.conf
echo 'Server {' >> $file/config/zk_server_jaas.conf
sed -i -e '$a org.apache.zookeeper.server.auth.DigestLoginModule required \nusername="kafka" \npassword="kafka” \nuser_kafka="kafka"; \n};' $file/config/zk_server_jaas.conf
sed -i -e '29a \ export KAFKA_OPTS="-Djava.security.auth.login.config='$file1'/config/zk_server_jaas.conf -Dzookeeper.authProvider.1=org.apache.zookeeper.server.auth.SASLAuthenticationProvider -Dzookeeper.requireClientAuthScheme=sasl"' $file/bin/zookeeper-server-start.sh
#编辑内部客户端工具
sed -i -e '$a security.protocol=SASL_PLAINTEXT \nsasl.mechanism=PLAIN' $file/config/consumer.properties
sed -i -e '$a security.protocol=SASL_PLAINTEXT \nsasl.mechanism=PLAIN' $file/config/producer.properties
#修改Broker启动脚本
sed -i -e '30a \ export KAFKA_OPTS=" -Djava.security.auth.login.config='$file1'/config/kafka_server_jaas.conf"' $file/bin/kafka-server-start.sh
sed -i -e '18a \ export KAFKA_OPTS=" -Djava.security.auth.login.config='$file1'/config/kafka_client_jaas.conf"' $file/bin/kafka-console-producer.sh
sed -i -e '18a \ export KAFKA_OPTS=" -Djava.security.auth.login.config='$file1'/config/kafka_client_jaas.conf"' $file/bin/kafka-console-consumer.sh
#Topic_JAAS 文件加载 SASL 凭证
touch $file/config/config.properties
echo 'sasl.jaas.config=org.apache.kafka.common.security.plain.PlainLoginModule required username="admin" password="admin";' >> $file/config/config.properties
sed -i -e '$a security.protocol=SASL_PLAINTEXT \nsasl.mechanism=PLAIN' $file/config/config.properties
#JMX监控
sed -i -e '214,220c JMX_PORT=9997 \nJMX_RMI_PORT=9996 \nISKAFKASERVER="false" \nif [[ "$*" =~ "kafka.Kafka" ]]; then \n ISKAFKASERVER="true" \nfi \nif [ $JMX_PORT ] && [ "true" == "$ISKAFKASERVER" ]; then \n KAFKA_JMX_OPTS="$KAFKA_JMX_OPTS -Dcom.sun.management.jmxremote.port=$JMX_PORT -Dcom.sun.management.jmxremote.rmi.port=$JMX_RMI_PORT " \n echo set KAFKA_JMX_PORT:$KAFKA_JMX_OPTS \nfi' $file/bin/kafka-run-class.sh
docker run -d --name zookeeper \
--network app-tier \
-p 2181:2181 \
-v $file:$file1 \
-e ALLOW_ANONYMOUS_LOGIN=yes \
-e KAFKA_OPTS="-Djava.security.auth.login.config=$file1/config/zk_server_jaas.conf" \
bitnami/kafka:latest \
$file1/bin/zookeeper-server-start.sh $file1/config/zookeeper.properties
docker run -d --name kafka \
--network app-tier \
-p 9092:9092 \
-p 9997:9997 \
-v $file:$file1 \
-e ALLOW_PLAINTEXT_LISTENER=yes \
-e JMX_PORT=9997 \
-e KAFKA_OPTS="-Djava.security.auth.login.config=$file1/config/kafka_server_jaas.conf" \
-e KAFKA_JMX_OPTS="-Dcom.sun.management.jmxremote=true -Dcom.sun.management.jmxremote.authenticate=false -Dcom.sun.management.jmxremote.ssl=false -Djava.rmi.server.hostname=$ip -Dcom.sun.management.jmxremote.port=9997" \
bitnami/kafka:latest \
$file1/bin/kafka-server-start.sh $file1/config/server.properties
#(注意更换主路径)
#启动生产者
#/opt/bitnami/kafka/bin/kafka-console-producer.sh --broker-list 172.16.20.142:9092 --topic test --producer.config /opt/bitnami/kafka/config/producer.properties
#创建消费者
#/opt/bitnami/kafka/bin/kafka-console-consumer.sh --bootstrap-server 172.16.20.142:9092 --topic test --from-beginning --consumer.config /opt/bitnami/kafka/config/consumer.properties
#创建topic
#/opt/bitnami/kafka/bin/kafka-topics.sh --create --bootstrap-server 172.16.20.142:9092 --partitions 2 --replication-factor 1 --topic test --command-config /opt/bitnami/kafka/config/config.properties
#查看topic
#/opt/bitnami/kafka/bin/kafka-topics.sh --list --bootstrap-server 172.16.20.142:9092 --command-config /opt/bitnami/kafka/config/config.properties
1.4 参数说明
zookeeper容器启动参数
参数 | 说明 |
---|---|
-d | 以守护进程的方式启动 |
--name zookeeper | 把容器的名字设置为kafka |
--network app-tier | 创建网络 |
-p 2181:2181 | 把容器内的端口2181挂载到宿主机2181上面,宿主机端口:容器内部端口 |
-v /opt/zookeeper:/opt/bitnami/kafka | 挂载启动文件 |
-e KAFKA_OPTS="-Djava.security.auth.login.config=/opt/bitnami/kafka/config/zk_server_jaas.conf" | sasl开启 |
bitnami/kafka:latest | 使用的镜像名称+版本 |
/opt/bitnami/kafka/bin/zookeeper-server-start.sh /opt/bitnami/kafka/config/zookeeper.properties | 启动zookeeper服务 |
kafka容器启动参数
参数 | 说明 |
---|---|
-d | 以守护进程的方式启动 |
--name kafka | 把容器的名字设置为kafka |
--network app-tier | 创建网络 |
-p 9092:9092 | 把容器内的端口9092 挂载到宿主机9092 上面,宿主机端口:容器内部端口 |
-v /opt/zookeeper:/opt/bitnami/kafka | 挂载启动配置文件 |
-e KAFKA_OPTS="-Djava.security.auth.login.config=/opt/bitnami/kafka/config/kafka_server_jaas.conf" | sasl文件启动 |
-e JMX_PORT=9997 \ | 监控端口 |
-e KAFKA_JMX_OPTS="-Dcom.sun.management.jmxremote=true -Dcom.sun.management.jmxremote.authenticate=false -Dcom.sun.management.jmxremote.ssl=false -Djava.rmi.server.hostname=$ip -Dcom.sun.management.jmxremote.port=9997" \ | 监控启动配置 |
bitnami/kafka:latest | 使用的镜像名称+版本 |
/opt/bitnami/kafka/bin/kafka-server-start.sh /opt/bitnami/kafka/config/server.properties | 启动kafka配置文件 |
1.5 部署完成和生产消费测试
docker logs 【容器名字】查看kafka的日志信息
查找Cluster ID
Topic创建
生产测试
消费测试