playbook优化

最新推荐文章于 2022-11-02 20:40:45 发布
最新推荐文章于 2022-11-02 20:40:45 发布
阅读量179 收藏
点赞数
分类专栏: Linux云计算运维工程师
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/Lem0n_Tree/article/details/106243197
版权
1.使用变量

1.ansible先实现rsync

[root@manager ~]# cd ansible_tasks/
uid = www
gid = www
port = 873
fake super = yes
use chroot = no
max connections = 200
timeout = 600
ignore errors
read only = false
list = false
auth users = rsync_backup
secrets file = /etc/rsync.passwd
log file = /var/log/rsyncd.log
################################
[backup]
path = /backup
[root@manager ~]# vim rsync.yml
- hosts: webservers
  tasks:
    - name: Install Rsync Server
      yum:
        name: rsync
        state: present

    - name: Configure Rsync Server
      copy:
        src: ./rsyncd.conf.j2
        dest: /etc/rsyncd.conf
      notify: Restart Rsync Server

    - name: Copy Rsync Server Virtual PassFile
      copy:
        src: rsync.passwd.j2
        dest: /etc/rsync.passwd
        owner: root
        group: root
        mode: 0600

    - name: Init Rsync Server-Group
      group:
        name: www
        gid: 666

    - name: Init Rsync Server-User
      user:
        name: www
        uid: 666
        group: www
        create_home: no
        shell: /sbin/nologin

    - name: Create Rsync Server Data Directory
      file:
        path: /backup
        state: directory
        owner: www
        group: www
        mode: 755

    - name: Started Rsync Server
      systemd:
        name: rsyncd
        state: started
        enabled: yes

  handlers:
    - name: Restart Rsync Server
      systemd:
        name: rsyncd
        state: restarted
  1. 使用变量的方式设置rsync
[root@manager ansible_tasks]# cat rsync.yml
- hosts: webservers
  vars:
    - rsync_uid: test
    - rsync_gid: test
    - data_dir: test

  tasks:
    - name: Install Rsync Server
      yum:
        name: rsync
        state: present

    - name: Configure Rsync Server And Virtual PassFile
      template:
        src: "{{ item.src }}"
        dest: "{{ item.dest }}"
        mode: "{{ item.mode }}"
      loop:
        - { src: ./rsyncd.conf.j2 , dest: /etc/rsyncd.conf , mode: "0644" }
        - { src: ./rsync.passwd.j2 , dest: /etc/rsync.passwd , mode: "0600" }
      notify: Restart Rsync Server

    - name: Init Rsync Server-Group
      group:
        name: "{{ rsync_gid }}"
        gid: 6661

    - name: Init Rsync Server-User
      user:
        name: "{{ rsync_uid }}"
        uid: 6661
        group: "{{ rsync_gid }}"
        create_home: no
        shell: /sbin/nologin

    - name: Create Rsync Server Data Directory
      file:
        path: /{{data_dir}}
        state: directory
        owner: "{{ rsync_uid }}"
        group: "{{ rsync_gid }}"
        mode: 0755

    - name: Started Rsync Server
      systemd:
        name: rsyncd
        state: started
        enabled: yes

  handlers:
    - name: Restart Rsync Server
      systemd:
        name: rsyncd
        state: restarted
2.编写一个php-fpm服务playbook,需要检测语法
[root@manager ansible_tasks]# cat php-fpm.yml
- hosts: webservers
  tasks:

    - name: Configure PHP-FPM Server
      copy:
        src: "{{ item.src }}"
        dest: "{{ item.dest }}"
      loop:
        - { src: ./php.ini.j2 , dest: /etc/php.ini }
        - { src: ./php_www.conf.j2 , dest: /etc/php-fpm.d/www.conf }
      notify: Restart PHP Server

    - name: Check PHP Configure File
      shell: php-fpm -t
      register:  check_php 
      changed_when:
        - false
        - check_php.stdout.find('successful')

    - name: Started PHP Server
      systemd:
        name: php-fpm
        state: started
        enabled: yes

  handlers:
    - name: Restart PHP Server
      systemd:
        name: php-fpm
        state: restarted
3.ansible的jinja2配置nginx
[root@manager ansible_roles]# cat proxy_blog.oldxu.com.conf.j2
upstream {{ blog_site }} {
 {% for host in groups['webservers'] %}
	server {{ host  }};
{% endfor %}

server {
	listen 80;
	server_name {{ blog_site }};

	location / {
		proxy_pass http://{{ blog_site }};
		include proxy_params;
	}
}

[root@manager ansible_roles]# cat nginx_proxy.yml
- hosts: webservers
  vars:
    - blog_site: blog.oldxu.com
  tasks:
    - name: Configure Nginx Proxy Vurtual File
      template:
        src: ./proxy_blog.oldxu.com.conf.j2
        dest: /tmp/proxy_blog.oldxu.com.conf
4.keepalived: 判断
4.1方式一
[root@manager ansible_roles]# cat keepalived.yml
- hosts: lbservers
  tasks:
    - name: Install Keepalived Server
      yum:
        name: keepalived
        state: present

    - name: Configure Keepalived Server
      copy:
        src: ./keepalived-master.conf.j2
        dest: /etc/keepalived/keepalived.conf
      when: ( ansible_hostname == "lb01" )
      notify: Restart Keepalived Server

    - name: Configure Keepalived Server
      copy:
        src: ./keepalived-backup.conf.j2
        dest: /etc/keepalived/keepalived.conf
      when: ( ansible_hostname == "lb02" )
      notify: Restart Keepalived Server


    - name: Started Keepalived Server
      systemd:
        name: keepalived
        state: started
        enabled: yes

  handlers:
    - name: Restart Keepalived Server
      systemd:
        name: keepalived
        state: restarted
4.2inventory 方式来实现
[lbservers]
172.16.1.5 state=MASTER priority=150
172.16.1.6 state=BACKUP priority=120

[root@manager ansible_roles]# cat keepalived-template.conf.j2
global_defs {
    router_id {{ ansible_hostname }}
}

vrrp_instance VI_1 {
    state {{ state }}
    priority {{ priority }}

    interface eth0
    virtual_router_id 50
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass 1111
}
    virtual_ipaddress {
        10.0.0.3
    }
}
[root@manager ansible_roles]# cat keepalived.yml
- hosts: lbservers
  tasks:
    - name: Install Keepalived Server
      yum:
        name: keepalived
        state: present

    - name: Configure Keepalived Server
      template:
        src: keepalived-template.conf.j2
        dest: /etc/keepalived/keepalived.conf
      notify: Restart Keepalived Server

    - name: Started Keepalived Server
      systemd:
        name: keepalived
        state: started
        enabled: yes

  handlers:
    - name: Restart Keepalived Server
      systemd:
        name: keepalived
        state: restarted
4.3使用 jinja方式来实现
[root@manager ansible_roles]# cat hosts
[lbservers]
172.16.1.5
172.16.1.6


[root@manager ansible_roles]# cat keepalived-template.conf.j2
global_defs {
    router_id {{ ansible_hostname }}
}

vrrp_instance VI_1 {
{% if ansible_hostname == "lb01" %}
    state MASTER
    priority 200
{% elif ansible_hostname == "lb02" %}
    state BACKUP
    priority 100
{% endif %}
    interface eth0
    virtual_router_id 50
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass 1111
}
    virtual_ipaddress {
        10.0.0.3
    }
}
[root@manager ansible_roles]# cat keepalived.yml
- hosts: lbservers
  tasks:
    - name: Install Keepalived Server
      yum:
        name: keepalived
        state: present

    - name: Configure Keepalived Server
      template:
        src: keepalived-template.conf.j2
        dest: /etc/keepalived/keepalived.conf
      notify: Restart Keepalived Server

    - name: Started Keepalived Server
      systemd:
        name: keepalived
        state: started
        enabled: yes

  handlers:
    - name: Restart Keepalived Server
      systemd:
        name: keepalived
        state: restarted
5.Ansible Roles
#目录结构必须为这样
[root@manager ansible_roles_prod]# mkdir nfs/{tasks,handlers,templates,vars} -p
[root@manager ansible_roles_prod]# cat nfs/templates/exports.j2
/data 172.16.1.0/24(rw,async,all_squash,anonuid=666,anongid=666)
[root@manager ansible_roles_prod]# cat nfs/tasks/main.yml
- name: Install NFS Server
  yum:
    name: nfs-utils
    state: present

- name: Configure NFS Server
  template:
    src: exports.j2
    dest: /etc/exports
  notify: Restart NFS Server

- name: Init NFS Server
  group:
    name: www
    gid: 666

- name: Init NFS Server
  user:
    name: www
    uid: 666
    group: www

- name: Init NFS Share Directory
  file:
    path: /data
    state: directory
    owner: www
    group: www

- name: Started NFS Server
  systemd:
    name: nfs
    state: started
    enabled: yes


[root@manager ansible_roles_prod]# cat nfs/handlers/main.yml
- name: Restart NFS Server
  systemd:
    name: nfs
    state: restarted
danceghost
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
Ansible (2) playbook编写和优化
weixin_43414025的博客
09-04 154
vault 加密 加密 [devops@server1 ansible]$ ansible-vault encrypt vars/userlist.yml New Vault password: Confirm New Vault password: Encryption successful [devops@server1 ansible]$ cat vars/userlist.yml $ANSIBLE_VAULT;1.1;AES256 306662643762643866663566373136
ansible playbook进阶之nginx部署及优化
刘思成的博客
03-17 191
ansible-playbook进阶之nginx部署及优化 Playbook 示范: [root@ansible ~]# vim nginx.yml ★ --Virtual Machine--★ --- - hosts: web remote_user: root tasks: - yum: name: "{{item}}" with_items...
Ansible#Ansible的优化方法
kakaops_qing的博客
11-07 319
Ansible优化
管理大项目
weixin_54822053的博客
09-23 253
比如一个play具有10台受控主机,我们forks的值为5,那么,首先前5台主机,同时运行第一个play,当这5台主机运行完成第一个play后,后5台主机同时运行第一个play,等到10台主机运行完成第一个play时,才开始运行第二个play,以此类推。比如说,我们受控主机比较少的情况下,我们建议是使用静态主机清单的,但当我们处于一个大型的环境下,受控主机非常非常多的时候,而且受控主机更替非常快的时候,我们使用静态主机清单就很难来管理了,我们使用动态的主机清单更便于我们管理了。这非常适用于小型主机列表。
Ansible最佳实践之Playbook执行速度优化
山河已无恙
08-16 1035
今天和小伙伴们分享一些 Ansible 中 Playbook 执行速度优化的笔记博文通过7种不同的优化方式,合理利用可配置资源,从而提高 Playbook 的执行速度食用方式了解 Ansible 基础知识了解 Ansible 剧本编写理解不足小伙伴帮忙指正如果我不曾见到太阳,我本可以忍受黑暗。——————艾米莉·狄金森。.........
Ansible-playbook优化
weixin_72900594的博客
11-02 1151
Ansible-playbook优化
黑莓PlayBook拆解
01-20
黑莓PlayBook 是黑莓公司2010年发布的平板电脑,定于2011年正式上市,该平板电脑的配置相当高,配备黑莓自己研发的操作系统。  规格参数  网络制式:CDMA2000/CDMA1X EV-DO  重 量 :400 克  尺寸/体积:193...
Ansible之Playbook使用
04-28
Ansible之Playbook使用 Ansible之Playbook使用是 Ansible 的一个核心组件,playbook 是一个非常简单的配置管理和多主机部署系统,不同于任何已经存在的模式,可作为一个适合部署复杂应用程序的基础。Playbook 可以...
playbook-v1.0
11-24
playbook-v1.第一个安装包
playbook-v1.1
11-24
playbook-v1.1第二个安装包,playbook-v1.1第二个安装,
hacker playbook 3
06-14
hacker palybook第三本,这是整个系列的第三本,包括许多的攻击技术,希望对大家有帮助
ansible的task详解
Lem0n_Tree的博客
05-19 3465
1.判断语句when [root@manager ansible_tasks]# cat t1.yml - hosts: webservers tasks: - name: Installed HTTP Server yum: name: httpd state: present when: (ansible_distribution == "CentOS") - name: Installed HTTP Server
ubuntu根目录扩容
Lem0n_Tree的博客
10-11 2415
1. 虚拟机修改磁盘大小,查看磁盘 sudo fdisk -l 从上图看到,磁盘容量已经识别为100G,但分区表记录的容量仍然是50G(红色字体提示) 2. 修复分区表 查看分区情况,会立即提示空间未全部使用,提示输入Fix修复分区表 sudo parted -l 3. 扩容分区 sudo cfdisk 上下选中要扩容的分区,左右选择Resize后回车,会自动填写可用的总容量,也可以手动写入扩容后的总容量,回车后选择Write再次回车保存,退出。 我这里是分配99G全部 保存输入yes后按q退出
docker部署ELK
Lem0n_Tree的博客
11-24 2122
1. 环境配置 IP 分类 192.168.20.51 elasticsearch1 & kibana 192.168.20.52 elasticsearch2 192.168.20.53 elasticsearch3 在最后添加一行 sudo vim /etc/sysctl.conf vm.max_map_count=655360 执行并生效 sudo sysctl -p sudo sysctl -a | grep max_map_count 2. 配置ELK 2.
docker overlay实现跨主机的容器互通
Lem0n_Tree的博客
11-15 1268
1. docker配置 所有的物理机都需要配置,只需要网卡替换 sudo vim /lib/systemd/system/docker.service #ExecStart=/usr/bin/dockerd -H fd:// --containerd=/run/containerd/containerd.sock ExecStart=/usr/bin/dockerd -H tcp://0.0.0.0:2376 -H unix:///var/run/docker.sock --cluster-store=c
华硕服务器配置远程管理卡
Lem0n_Tree的博客
09-23 1065
华硕服务器配置远程管理卡 1.进入BIOS 开机到这个界面按***DEL***进入BIOS界面 2.进入配置管理卡界面 选中并进入
https
Lem0n_Tree的博客
05-08 811
1.用户与负载均衡之间为https,负载均衡与后台为http 负载均衡的配置如下: vim /etc/nginx/conf.d/proxy_s.oldxu.com.conf upstream http { server 172.16.1.7:80; server 172.16.1.8:80; } #2.用户请求https协议,贼通过负载均衡方式请求资源池,使用的是http协议 serve...
megacli工具使用说明
Lem0n_Tree的博客
11-05 755
1.Ubuntu安装 添加源 vim /etc/apt/sources.list deb http://hwraid.le-vert.net/ubuntu precise main 添加key之后更新apt sudo wget -O - http://hwraid.le-vert.net/debian/hwraid.le-vert.net.gpg.key | sudo apt-key add - sudo apt update sudo apt install -y megacli megactl meg
tuning playbook
最新发布
07-27
对于调优(tuning)的操作手册(playbook),我们可以提供一些一般性的指导方针。请注意,这些指南可能需要根据具体情况进行调整,以满足您的特定需求。 1. 数据预处理:确保数据集的质量和一致性。这包括数据清洗...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值