saltstack部署zabbix
1. 目录结构
[root@master ~]# cd /srv/salt/prod/
[root@master prod]# ls
modules zabbix
[root@master prod]# tree
.
├── modules
│ ├── application
│ │ └── php7
│ │ ├── files
│ │ │ ├── install.sh
│ │ │ ├── oniguruma-devel-6.8.2-2.el8.x86_64.rpm
│ │ │ ├── php-7.4.24.tar.gz
│ │ │ ├── php-fpm
│ │ │ ├── php-fpm.conf
│ │ │ ├── php-fpm.service
│ │ │ └── www.conf
│ │ └── install.sls
│ ├── database
│ │ └── mysql
│ │ ├── files
│ │ │ ├── install.sh
│ │ │ ├── mysql-5.7.34-linux-glibc2.12-x86_64.tar.gz
│ │ │ ├── mysqld.service
│ │ │ └── mysql.server
│ │ └── install.sls
│ └── web
│ ├── apache
│ │ ├── files
│ │ │ ├── apr-1.7.0.tar.gz
│ │ │ ├── apr-util-1.6.1.tar.gz
│ │ │ ├── httpd-2.4.49.tar.gz
│ │ │ ├── httpd.conf
│ │ │ ├── httpd.service
│ │ │ └── install.sh
│ │ └── install.sls
│ └── nginx
│ ├── files
│ │ ├── install.sh
│ │ ├── nginx-1.20.1.tar.gz
│ │ └── nginx.service
│ └── install.sls
└── zabbix
├── apache.sls
├── files
│ ├── httpd.conf
│ ├── index.php
│ ├── my.cnf
│ ├── mysql.conf
│ ├── php.ini
│ ├── vhosts.conf
│ ├── zabbix-5.4.4.tar.gz
│ ├── zabbix_server.conf
│ └── zabbix.sh
├── install.sls
├── main.sls
└── mysql.sls
14 directories, 37 files
[root@master prod]#
2. 安装apache
[root@master prod]# cd modules/web/apache/
[root@master apache]# ls
files install.sls
[root@master apache]# cat install.sls
apache-dep-package:
pkg.installed:
- pkgs:
- openssl-devel
- pcre-devel
- expat-devel
- libtool
- gcc
- gcc-c++
- make
apache:
user.present:
- shell: /sbin/nologin
- createhome: false
- system: true
apache-download:
file.managed:
- names:
- /usr/src/apr-1.7.0.tar.gz:
- source: salt://modules/web/apache/files/apr-1.7.0.tar.gz
- /usr/src/apr-util-1.6.1.tar.gz:
- source: salt://modules/web/apache/files/apr-util-1.6.1.tar.gz
- /usr/src/httpd-2.4.49.tar.gz:
- source: salt://modules/web/apache/files/httpd-2.4.49.tar.gz
/usr/lib/systemd/system/httpd.service:
file.managed:
- source: salt://modules/web/apache/files/httpd.service
- user: root
- group: root
- mode: '0644'
apache-install:
cmd.script:
- name: salt://modules/web/apache/files/install.sh
- unless: test -d /usr/local/httpd
/usr/local/httpd/conf/httpd.conf:
file.managed:
- source: salt://modules/web/apache/files/httpd.conf
- user: root
- group: root
- mode: '0644'
- require:
- cmd: apache-install
[root@master apache]# cd files/
[root@master files]# ls
apr-1.7.0.tar.gz httpd-2.4.49.tar.gz httpd.service
apr-util-1.6.1.tar.gz httpd.conf install.sh
[root@master files]# cat install.sh
#!/bin/bash
cd /usr/src
rm -rf apr-1.7.0 apr-util-1.6.1 httpd-2.4.49
tar xf apr-1.7.0.tar.gz
tar xf apr-util-1.6.1.tar.gz
tar xf httpd-2.4.49.tar.gz
cd /usr/src/apr-1.7.0
sed -i '/$RM "$cfgfile"/d' configure
./configure --prefix=/usr/local/apr && \
make -j $(grep 'processor' /proc/cpuinfo | wc -l) && make install && \
cd ../apr-util-1.6.1
./configure --prefix=/usr/local/apr-util --with-apr=/usr/local/apr && \
make -j $(grep 'processor' /proc/cpuinfo | wc -l) && make install && \
cd ../httpd-2.4.49
./configure --prefix=/usr/local/httpd \
--enable-so \
--enable-ssl \
--enable-cgi \
--enable-rewrite \
--with-zlib \
--with-pcre \
--with-apr=/usr/local/apr \
--with-apr-util=/usr/local/apr-util/ \
--enable-modules=most \
--enable-mpms-shared=all \
--with-mpm=prefork && \
make -j $(grep 'processor' /proc/cpuinfo | wc -l) && make install
[root@master files]# cat httpd.service
[Unit]
Description=Httpd server daemon
After=network.target
[Service]
Type=forking
ExecStart=/usr/local/httpd/bin/apachectl start
ExecStop=/usr/local/httpd/bin/apachectl stop
ExecReload=/bin/kill -HUP $MAINPID
[Install]
WantedBy=multi-user.target
[root@master files]# vim httpd.conf
489 Include conf/extra/vhosts.conf //取消注释并修改
//配置apache
[root@master zabbix]# ls
apache.sls files install.sls main.sls mysql.sls
[root@master zabbix]# cat apache.sls
"Development Tools":
pkg.group_installed
include:
- modules.web.apache.install
/usr/include/httpd:
file.symlink:
- target: /usr/local/httpd/include
- require:
- cmd: apache-install
create-testdir:
file.directory:
- name: /usr/local/httpd/htdocs/test
- user: root
- group: root
- mode: '0755'
- require:
- cmd: apache-install
/usr/local/httpd/htdocs/test/index.php:
file.managed:
- source: salt://zabbix/files/index.php
- user: root
- group: root
- mode: '0644'
- require:
- cmd: apache-install
/usr/local/httpd/conf/extra/vhosts.conf:
file.managed:
- source: salt://zabbix/files/vhosts.conf
- user: root
- group: root
- mode: '0644'
- require:
- cmd: apache-install
zabbix-apache-service:
service.running:
- name: httpd
- enable: true
- reload: true
- require:
- file: /usr/local/httpd/conf/extra/vhosts.conf
- watch:
- file: /usr/local/httpd/conf/extra/vhosts.conf
[root@master zabbix]#
[root@master zabbix]# cd files/
[root@master files]# ls
httpd.conf my.cnf php.ini zabbix-5.4.4.tar.gz zabbix.sh
index.php mysql.conf vhosts.conf zabbix_server.conf
[root@master files]# cat vhosts.conf
<VirtualHost *:80>
DocumentRoot "/usr/local/httpd/htdocs/test"
ServerName test.example.com
ProxyRequests Off
ProxyPassMatch ^/(.*\.php)$ fcgi://127.0.0.1:9000/usr/local/httpd/htdocs/test/$1
<Directory "/usr/local/httpd/htdocs/test">
Options none
AllowOverride none
Require all granted
</Directory>
</VirtualHost>
[root@master files]# cat index.php
<?php
phpinfo();
?>
3. 安装mysql
[root@master prod]# cd modules/database/mysql/
[root@master mysql]# ls
files install.sls
[root@master mysql]# cat install.sls
ncurses-compat-libs:
pkg.installed
create-mysql-user:
user.present:
- name: mysql
- system: true
- createhome: false
- shell: /sbin/nologin
create-datadir:
file.directory:
- name: /opt/data
- user: mysql
- group: mysql
- mode: '0755'
- makedirs: true
/usr/src/mysql-5.7.34-linux-glibc2.12-x86_64.tar.gz:
file.managed:
- source: salt://modules/database/mysql/files/mysql-5.7.34-linux-glibc2.12-x86_64.tar.gz
- user: root
- group: root
- mode: '0644'
mysql-install:
cmd.script:
- name: salt://modules/database/mysql/files/install.sh
- unless: test -d /usr/local/mysql
trasfer-files:
file.managed:
- names:
- /usr/local/mysql/support-files/mysql.server:
- source: salt://modules/database/mysql/files/mysql.server
- /usr/lib/systemd/system/mysqld.service:
- source: salt://modules/database/mysql/files/mysqld.service
- require:
- cmd: mysql-install
[root@master mysql]# cd files/
[root@master files]# ls
install.sh mysql-5.7.34-linux-glibc2.12-x86_64.tar.gz mysqld.service mysql.server
[root@master files]# cat install.sh
#!/bin/bash
cd /usr/src
tar xf mysql-5.7.34-linux-glibc2.12-x86_64.tar.gz -C /usr/local
ln -s /usr/local/mysql-5.7.34-linux-glibc2.12-x86_64 /usr/local/mysql
chown -R mysql.mysql /usr/local/mysql*
/usr/local/mysql/bin/mysqld --initialize-insecure --user=mysql --datadir=/opt/data/
echo 'export PATH=/usr/local/mysql/bin:$PATH' > /etc/profile.d/mysqld.sh
[root@master files]# cat mysqld.service
[Unit]
Description=mysql server daemon
After=network.target
[Service]
Type=forking
ExecStart=/usr/local/mysql/support-files/mysql.server start
ExecStop=/usr/local/mysql/support-files/mysql.server stop
ExecReload=/bin/kill -HUP $MAINPID
[Install]
WantedBy=multi-user.target
//修改下面两行
[root@master files]# vim mysql.server
46 basedir=/usr/local/mysql
47 datadir=/opt/data
//配置mysql
[root@master zabbix]# cat mysql.sls
lamp-dep-package:
pkg.installed:
- pkgs:
- ncurses-devel
- openssl-devel
- openssl
- cmake
- mariadb-devel
include:
- modules.database.mysql.install
provides-mysql-file:
file.managed:
- user: root
- group: root
- mode: '0644'
- names:
- /etc/my.cnf:
- source: salt://zabbix/files/my.cnf
- /etc/ld.so.conf.d/mysql.conf:
- source: salt://zabbix/files/mysql.conf
/usr/local/include/mysq:
file.symlink:
- target: /usr/local/include/mysq/include
mysqld.service:
service.running:
- enable: true
- reload: true
- require:
- cmd: mysql-install
- file: trasfer-files
- watch:
- file: provides-mysql-file
mysqld-set-password:
cmd.run:
- name: /usr/local/mysql/bin/mysql -e "set password = password('1');"
- require:
- service: mysqld.service
- unless: /usr/local/mysql/bin/mysql -uroot -p1 -e "exit"
[root@master zabbix]# cd files/
[root@master files]# ls
httpd.conf my.cnf php.ini zabbix-5.4.4.tar.gz zabbix.sh
index.php mysql.conf vhosts.conf zabbix_server.conf
[root@master files]# cat my.cnf
[mysqld]
basedir = /usr/local/mysql
datadir = /opt/data
socket = /tmp/mysql.sock
port = 3306
pid-file = /opt/data/mysql.pid
user = mysql
skip-name-resolve
[root@master files]# cat mysql.conf
/usr/local/mysql/lib
[root@master files]#
4. 安装php
[root@master prod]# cd modules/application/php7/
[root@master php7]# ls
files install.sls
[root@master php7]# cat install.sls
php-dep-packages:
pkg.installed:
- pkgs:
- libxml2
- libxml2-devel
- openssl
- openssl-devel
- bzip2
- bzip2-devel
- libcurl
- libcurl-devel
- libicu-devel
- libjpeg-turbo
- libjpeg-turbo-devel
- libpng
- libpng-devel
- openldap-devel
- pcre-devel
- freetype
- freetype-devel
- gmp
- gmp-devel
- libmcrypt
- libmcrypt-devel
- readline
- readline-devel
- libxslt
- libxslt-devel
- mhash
- mhash-devel
- libsqlite3x-devel
- php-mysqlnd
- libzip-devel
- gcc
- gcc-c++
- make
/usr/src/oniguruma-devel-6.8.2-2.el8.x86_64.rpm:
file.managed:
- source: salt://modules/application/php7/files/oniguruma-devel-6.8.2-2.el8.x86_64.rpm
- user: root
- group: root
- mode: '0644'
cmd.run:
- name: yum -y install /usr/src/oniguruma-devel-6.8.2-2.el8.x86_64.rpm
- unless: rpm -q oniguruma-devel
/usr/src:
archive.extracted:
- source: salt://modules/application/php7/files/php-7.4.24.tar.gz
php-install:
cmd.script:
- name: salt://modules/application/php7/files/install.sh
- unless: test -d /usr/local/php7
copy-php:
file.managed:
- names:
- /etc/init.d/php-fpm:
- source: salt://modules/application/php7/files/php-fpm
- user: root
- group: root
- mode: '0755'
- /usr/local/php7/etc/php-fpm.conf:
- source: salt://modules/application/php7/files/php-fpm.conf
- /usr/local/php7/etc/php-fpm.d/www.conf:
- source: salt://modules/application/php7/files/www.conf
- /usr/lib/systemd/system/php-fpm.service:
- source: salt://modules/application/php7/files/php-fpm.service
- require:
- cmd: php-install
php-fpm.service:
service.running:
- enable: true
- reload: true
- require:
- cmd: php-install
- file: copy-php
- watch:
- file: copy-php
[root@master php7]# cd files/
[root@master files]# ls
install.sh php-7.4.24.tar.gz php-fpm.conf www.conf
oniguruma-devel-6.8.2-2.el8.x86_64.rpm php-fpm php-fpm.service
[root@master files]# cat install.sh
#!/bin/bash
cd /usr/src/php-7.4.24/
./configure --prefix=/usr/local/php7 \--with-config-file-path=/etc --enable-fpm --disable-debug --disable-rpath --enable-shared --enable-soap --with-openssl --enable-bcmath --with-iconv --with-bz2 --enable-calendar --with-curl --enable-exif --enable-ftp --enable-gd --with-jpeg --with-zlib-dir --with-freetype --with-gettext --enable-mbstring --enable-pdo --with-mysqli=mysqlnd --with-pdo-mysql=mysqlnd --with-readline --enable-shmop --enable-simplexml --enable-sockets --with-zip --enable-mysqlnd-compression-support --with-pear --enable-pcntl --enable-posix
make -j $(grep 'processor' /proc/cpuinfo | wc -l) && make install
[root@master files]# cat php-fpm.service
[Unit]
Description=php-fpm server daemon
After=network.target
[Service]
Type=forking
ExecStart=/etc/init.d/php-fpm start
ExecStop=/etc/init.d/php-fpm stop
ExecReload=/bin/kill -HUP
[Install]
WantedBy=multi-user.target
[root@master files]#
5. 部署lamp
[root@master zabbix]# ls
apache.sls files install.sls main.sls mysql.sls
[root@master zabbix]# cat main.sls
include:
- zabbix.apache
- zabbix.mysql
- modules.application.php7.install
[root@master files]# salt node1 state.sls zabbix.main saltenv=prod
浏览器输入node1 ip访问lamp
6. 安装zabbix
[root@master zabbix]# ls
apache.sls files install.sls main.sls mysql.sls
[root@master zabbix]# cat install.sls
zabbix-dep-packages:
pkg.installed:
- pkgs:
- net-snmp-devel
- libevent-devel
tarxf-zabbix:
archive.extracted:
- names:
- /usr/src:
- source: salt://zabbix/files/zabbix-5.4.4.tar.gz
create-nginx-user:
user.present:
- name: zabbix
- shell: /sbin/nologin
- createhome: false
- system: true
zabbix-install:
cmd.script:
- name: salt://zabbix/files/zabbix.sh
- unless: test -f /usr/local/etc/zabbix_server.conf
zabbix-config-files:
file.managed:
- names:
- /usr/local/etc/zabbix_server.conf:
- source: salt://zabbix/files/zabbix_server.conf
- require:
- cmd: zabbix-install
create-mysql-dir:
file.directory:
- name: /var/lib/mysql
- user: root
- group: root
- mode: '0755'
- require:
- cmd: mysql-install
create-symlink-mysql:
file.symlink:
- name: /var/lib/mysql/mysql.sock
- target: /tmp/mysql.sock
- require:
- cmd: mysql-install
create-zabbixi-dir:
file.directory:
- name: /usr/local/httpd/htdocs/zabbix
- user: root
- group: root
- mode: '0755'
- require:
- cmd: apache-install
zabbix_server:
cmd.run:
- names:
- cp -r /usr/src/zabbix-5.4.4/ui/* /usr/local/httpd/htdocs/zabbix/
- zabbix_server
- zabbix_agentd
- unless: test -f /usr/local/httpd/htdocs/zabbix/zabbix.php
/etc/php.ini:
file.managed:
- source: salt://zabbix/files/php.ini
- user: root
- group: root
- mode: 644
- require:
- cmd: zabbix-install
config-zabbix-hosts:
file.managed:
- names:
- /usr/local/httpd/conf/httpd.conf:
- source: salt://zabbix/files/httpd.conf
- user: root
- group: root
- mode: 644
- require:
- cmd: apache-install
zabbix-httpd-service:
service.running:
- reload: true
- names:
- httpd
- watch:
- file: config-zabbix-hosts
zabbix-php-service:
service.running:
- reload: true
- names:
- php-fpm
- watch:
- file: /etc/php.ini
[root@master zabbix]# cd files/
[root@master files]# ls
httpd.conf my.cnf php.ini zabbix-5.4.4.tar.gz zabbix.sh
index.php mysql.conf vhosts.conf zabbix_server.conf
[root@master files]# cat zabbix.sh
#!/bin/bash
/usr/local/mysql/bin/mysql -uroot -p1 -e "create database zabbix character set utf8 collate utf8_bin;"
/usr/local/mysql/bin/mysql -uroot -p1 -e "grant all privileges on zabbix.* to zabbix@localhost identified by '1';"
/usr/local/mysql/bin/mysql -uroot -p1 -e "flush privileges;"
cd /usr/src/zabbix-5.4.4/database/mysql/
/usr/local/mysql/bin/mysql -uroot -p1 zabbix < schema.sql
/usr/local/mysql/bin/mysql -uroot -p1 zabbix < images.sql
/usr/local/mysql/bin/mysql -uroot -p1 zabbix < data.sql
cd /usr/src/zabbix-5.4.4
./configure --enable-server \
--enable-agent \
--with-mysql \
--with-net-snmp \
--with-libcurl \
--with-libxml2
make install
[root@master files]# vim zabbix_server.conf
123 DBPassword=1 //修改数据库密码,(创建zabbix用户时设置的)
[root@master files]# vim httpd.conf
513 </IfModule>
514 <VirtualHost *:80>
515 DocumentRoot "/usr/local/httpd/htdocs/zabbix"
516 ServerName www.pyd.com
517 ProxyRequests Off
518 ProxyPassMatch ^/(.*\.php)$ fcgi://127.0.0.1:9000/usr/local/httpd/htdocs/zabbix/$1
519 <Directory "/usr/local/httpd/htdocs/zabbix">
520 Options none
521 AllowOverride none
522 Require all granted
523 </Directory>
524 </VirtualHost>
[root@localhost ~]# sed -ri 's/(post_max_size =).*/\1 16M/g' php.ini
[root@localhost ~]# sed -ri 's/(max_execution_time =).*/\1 300/g' php.ini
[root@localhost ~]# sed -ri 's/(max_input_time =).*/\1 300/g' php.ini
[root@localhost ~]# sed -i '/;date.timezone/a date.timezone = Asia/Shanghai' php.ini
7. 访问zabbix
[root@master zabbix]# cat main.sls
include:
- zabbix.apache
- zabbix.mysql
- modules.application.php7.install
- zabbix.install
[root@master zabbix]# salt node1 state.sls zabbix.main saltenv=prod
浏览器输入node1 ip访问zabbix