2021-11-15

最新推荐文章于 2021-11-15 21:59:19 发布
最新推荐文章于 2021-11-15 21:59:19 发布
阅读量409 收藏
点赞数 1
文章标签: centos linux openstack shell
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_44349806/article/details/121330744
版权

OpenStack Ussuri部署

Language : Shell
ISO : CentOS-8.4.2105-x86_64
简介:
(1)CentOS8上部署OpenStack Ussuri版本,通过实践发现跟CenOS7还是有部分区别的,同时实践过程中还是出现各种小毛病。
(2)此文为Shell纯脚本;
(3)关于镜像源设置,本文不做叙述。

一、变量设置

set -e -x

CONTROLLER_IP="192.168.1.xx"
CTRL_HOST_NAME="ussuri-ctrl"
ALL_PASS="123456"
NTP_SERVER="192.168.1.xx"

yum update -y
#以下命令行操作是因为使用的是第三方镜像源库,update后会多出系统生成的源镜像文件,避免对后面有影响,直接rm掉,这块根据自己环境而定。
rm -f /etc/yum.repos.d/CentOS-*

二、基础环境准备

#Install some soft
yum -y install vim
yum -y install net-tools
yum -y install expect

yum -y install crudini

sleep 5
#
hostnamectl set-hostname ${CTRL_HOST_NAME}

#
systemctl stop firewalld
systemctl disable firewalld

#
cp -p /etc/selinux/config /etc/selinux/config.bak.$(date +%Y%m%d)_$(date +%H%M%S)
sed -i "/SELINUX=enforcing/cSELINUX=disabled" /etc/selinux/config
setenforce 0

#
cp /etc/chrony.conf /etc/chrony.conf.bak.$(date +%Y%m%d)_$(date +%H%M%S)
echo "server ${NTP_SERVER} iburst" >> /etc/chrony.conf
systemctl enable chronyd
systemctl restart chronyd
sleep 2
chronyc sources
timedatectl set-timezone Asia/Shanghai
date
sleep 3

#
yum -y install python3-openstackclient
yum -y install openstack-selinux

#SQL
yum -y install mariadb
yum -y install mariadb-server
yum -y install python2-PyMySQL

#
touch /etc/my.cnf.d/openstack.cnf
crudini --set /etc/my.cnf.d/openstack.cnf mysqld bind-address ${CONTROLLER_IP}
crudini --set /etc/my.cnf.d/openstack.cnf mysqld default-storage-engine innodb
crudini --set /etc/my.cnf.d/openstack.cnf mysqld innodb_file_per_table on
crudini --set /etc/my.cnf.d/openstack.cnf mysqld max_connections 4096
crudini --set /etc/my.cnf.d/openstack.cnf mysqld collation-server utf8_general_ci
crudini --set /etc/my.cnf.d/openstack.cnf mysqld character-set-server utf8
#
systemctl enable mariadb.service
systemctl start mariadb.service

if [[ `systemctl is-active mariadb.service` != "active" ]];then
	exit 0
fi

sleep 1
#
mysql_secure_installation <<EOF

y
$ALL_PASS
$ALL_PASS
y
y
y
y
EOF

#rabbitmq-server

yum -y install erlang
wget https://github.com/rabbitmq/rabbitmq-server/releases/download/v3.8.1/rabbitmq-server-3.8.1-1.el8.noarch.rpm
dnf -y install ./rabbitmq-server-3.8.1-1.el8.noarch.rpm
chkconfig rabbitmq-server on
systemctl enable rabbitmq-server.service
systemctl start rabbitmq-server.service
if [[ `systemctl is-active rabbitmq-server.service` != "active" ]];then
	exit 0
fi
sleep 1
rabbitmqctl add_user openstack ${ALL_PASS}
rabbitmqctl set_permissions openstack ".*" ".*" ".*"

#Memcached
yum -y install memcached
yum -y install python3-memcached

cp /etc/sysconfig/memcached /etc/sysconfig/memcached.bak.$(date +%Y%m%d)_$(date +%H%M%S)
sed -i "/OPTIONS=\"-l 127.0.0.1,::1\"/cOPTIONS=\"-l 127.0.0.1,::1,$CONTROLLER_IP\""  /etc/sysconfig/memcached
#
systemctl enable memcached.service
systemctl start memcached.service
if [[ `systemctl is-active memcached.service` != "active" ]];then
	exit 0
fi
sleep 2

#ETCD
yum install etcd -y
cp /etc/etcd/etcd.conf /etc/etcd/etcd.conf.bak.$(date +%Y%m%d)_$(date +%H%M%S)
sed -i '/ETCD_DATA_DIR/cETCD_DATA_DIR="/var/lib/etcd/default.etcd"' /etc/etcd/etcd.conf
sed -i "/ETCD_LISTEN_PEER_URLS/cETCD_LISTEN_PEER_URLS=\"http://$CONTROLLER_IP:2380\"" /etc/etcd/etcd.conf
sed -i "/ETCD_LISTEN_CLIENT_URLS/cETCD_LISTEN_CLIENT_URLS=\"http://$CONTROLLER_IP:2379\"" /etc/etcd/etcd.conf
sed -i "/ETCD_NAME/cETCD_NAME=\"$CON_HOST_NAME\"" /etc/etcd/etcd.conf
sed -i "/ETCD_INITIAL_ADVERTISE_PEER_URLS/cETCD_INITIAL_ADVERTISE_PEER_URLS=\"http://$CONTROLLER_IP:2380\"" /etc/etcd/etcd.conf
sed -i "/ETCD_ADVERTISE_CLIENT_URLS/cETCD_ADVERTISE_CLIENT_URLS=\"http://$CONTROLLER_IP:2379\"" /etc/etcd/etcd.conf
sed -i "/ETCD_INITIAL_CLUSTER=/cETCD_INITIAL_CLUSTER=\"$CON_HOST_NAME=http://$CONTROLLER_IP:2380\"" /etc/etcd/etcd.conf
sed -i '/ETCD_INITIAL_CLUSTER_TOKEN/cETCD_INITIAL_CLUSTER_TOKEN="etcd-cluster-01"' /etc/etcd/etcd.conf
sed -i '/ETCD_INITIAL_CLUSTER_STATE/cETCD_INITIAL_CLUSTER_STATE="new"' /etc/etcd/etcd.conf

systemctl enable etcd
systemctl start etcd
if [[ `systemctl is-active etcd` != "active" ]];then
	exit 0
fi
sleep 2

三、KeyStone

#======Keystone=======#
mysql -u root -p${ALL_PASS}<<EOF
CREATE DATABASE keystone;
GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'localhost' IDENTIFIED BY '${ALL_PASS}';
GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'%' IDENTIFIED BY '${ALL_PASS}';
EOF

yum -y install openstack-keystone
yum -y install httpd
#yum -y install mod_wsgi
yum -y install python3-mod_wsgi

cp -p /etc/keystone/keystone.conf /etc/keystone/keystone.conf.$(date +%Y%m%d)_$(date +%H%M%S)
crudini --set /etc/keystone/keystone.conf database connection mysql+pymysql://keystone:${ALL_PASS}@${CONTROLLER_IP}/keystone
crudini --set /etc/keystone/keystone.conf token provider fernet

su -s /bin/sh -c "keystone-manage db_sync" keystone

keystone-manage fernet_setup --keystone-user keystone --keystone-group keystone
keystone-manage credential_setup --keystone-user keystone --keystone-group keystone

keystone-manage bootstrap --bootstrap-password ${ALL_PASS} \
--bootstrap-admin-url http://${CONTROLLER_IP}:5000/v3/ \
--bootstrap-internal-url http://${CONTROLLER_IP}:5000/v3/ \
--bootstrap-public-url http://${CONTROLLER_IP}:5000/v3/ \
--bootstrap-region-id RegionOne

sed -i "/#ServerName/aServerName $CONTROLLER_IP" /etc/httpd/conf/httpd.conf

ln -s /usr/share/keystone/wsgi-keystone.conf /etc/httpd/conf.d/

systemctl enable httpd.service
systemctl start httpd.service

export OS_USERNAME=admin
export OS_PASSWORD=${ALL_PASS}
export OS_PROJECT_NAME=admin
export OS_USER_DOMAIN_NAME=Default
export OS_PROJECT_DOMAIN_NAME=Default
export OS_AUTH_URL=http://${CONTROLLER_IP}:5000/v3
export OS_IDENTITY_API_VERSION=3

openstack domain create --description "An Example Domain" example
openstack project create --domain default --description "Service Project" service
openstack project create --domain default --description "Demo Project" myproject



/usr/bin/expect << EOF
set timeout 15
spawn openstack user create --domain default --password-prompt myuser
expect "User*"
send "$ALL_PASS\r"
expect "Repeat *"
send "$ALL_PASS\r"
expect eof
EOF

openstack role create myrole
openstack role add --project myproject --user myuser myrole

unset OS_AUTH_URL OS_PASSWORD

/usr/bin/expect << EOF
set timeout 15
spawn openstack --os-auth-url http://${CONTROLLER_IP}:5000/v3 \
  --os-project-domain-name Default --os-user-domain-name Default \
  --os-project-name admin --os-username admin token issue
expect "*Password*"
send "$ALL_PASS\r"
expect eof
EOF
#
/usr/bin/expect << EOF
set timeout 15
spawn openstack --os-auth-url http://${CONTROLLER_IP}:5000/v3 \
  --os-project-domain-name Default --os-user-domain-name Default \
  --os-project-name myproject --os-username myuser token issue
expect "*Password*"
send "$ALL_PASS\r"
expect eof
EOF

#Create admin-openrc
touch /root/admin-openrc
echo "export OS_PROJECT_DOMAIN_NAME=Default" >/root/admin-openrc
echo "export OS_USER_DOMAIN_NAME=Default" >>/root/admin-openrc
echo "export OS_PROJECT_NAME=admin" >>/root/admin-openrc
echo "export OS_USERNAME=admin" >>/root/admin-openrc
echo "export OS_PASSWORD=${ALL_PASS}" >>/root/admin-openrc
echo "export OS_AUTH_URL=http://${CONTROLLER_IP}:5000/v3" >>/root/admin-openrc
echo "export OS_IDENTITY_API_VERSION=3" >>/root/admin-openrc
echo "export OS_IMAGE_API_VERSION=2" >>/root/admin-openrc

#Create demo-openrc
touch /root/demo-openrc
echo "export OS_PROJECT_DOMAIN_NAME=Default" >/root/demo-openrc
echo "export OS_USER_DOMAIN_NAME=Default" >>/root/demo-openrc
echo "export OS_PROJECT_NAME=myuser" >>/root/demo-openrc
echo "export OS_USERNAME=demo" >>/root/demo-openrc
echo "export OS_PASSWORD=${ALL_PASS}" >>/root/demo-openrc
echo "export OS_AUTH_URL=http://${CONTROLLER_IP}:5000/v3" >>/root/demo-openrc
echo "export OS_IDENTITY_API_VERSION=3" >>/root/demo-openrc
echo "export OS_IMAGE_API_VERSION=2" >>/root/demo-openrc

source  /root/admin-openrc
openstack token issue
sleep 2

四、Glance

#======Glance=======#
mysql -u root -p${ALL_PASS}<<EOF
CREATE DATABASE glance;
GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'localhost' IDENTIFIED BY '${ALL_PASS}';
GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'%' IDENTIFIED BY '${ALL_PASS}';
EOF

source /root/admin-openrc
/usr/bin/expect << EOF
set timeout 15
spawn openstack user create --domain default --password-prompt glance
expect "User*"
send "$ALL_PASS\r"
expect "Repeat*"
send "$ALL_PASS\r"
expect eof
EOF

openstack role add --project service --user glance admin
openstack service create --name glance --description "OpenStack Image" image
openstack endpoint create --region RegionOne image public http://${CONTROLLER_IP}:9292
openstack endpoint create --region RegionOne image internal http://${CONTROLLER_IP}:9292
openstack endpoint create --region RegionOne image admin http://${CONTROLLER_IP}:9292

yum -y install openstack-glance

cp -p /etc/glance/glance-api.conf /etc/glance/glance-api.conf.$(date +%Y%m%d)_$(date +%H%M%S)

crudini --set /etc/glance/glance-api.conf database connection mysql+pymysql://glance:${ALL_PASS}@${CONTROLLER_IP}/glance

crudini --set /etc/glance/glance-api.conf keystone_authtoken www_authenticate_uri http://${CONTROLLER_IP}:5000
crudini --set /etc/glance/glance-api.conf keystone_authtoken auth_url http://${CONTROLLER_IP}:5000
crudini --set /etc/glance/glance-api.conf keystone_authtoken memcached_servers ${CONTROLLER_IP}:11211
crudini --set /etc/glance/glance-api.conf keystone_authtoken auth_type password
crudini --set /etc/glance/glance-api.conf keystone_authtoken project_domain_name Default
crudini --set /etc/glance/glance-api.conf keystone_authtoken user_domain_name Default
crudini --set /etc/glance/glance-api.conf keystone_authtoken project_name service
crudini --set /etc/glance/glance-api.conf keystone_authtoken username glance
crudini --set /etc/glance/glance-api.conf keystone_authtoken password ${ALL_PASS}

crudini --set /etc/glance/glance-api.conf paste_deploy flavor keystone

crudini --set /etc/glance/glance-api.conf glance_store stores file,http
crudini --set /etc/glance/glance-api.conf glance_store default_store file
crudini --set /etc/glance/glance-api.conf glance_store filesystem_store_datadir /var/lib/glance/images/

su -s /bin/sh -c "glance-manage db_sync" glance

systemctl enable openstack-glance-api.service
systemctl start openstack-glance-api.service

五、Placement

#======placement=======#
mysql -u root -p${ALL_PASS}<<EOF
CREATE DATABASE placement;
GRANT ALL PRIVILEGES ON placement.* TO 'placement'@'localhost' IDENTIFIED BY '${ALL_PASS}';
GRANT ALL PRIVILEGES ON placement.* TO 'placement'@'%' IDENTIFIED BY '${ALL_PASS}';
EOF

source /root/admin-openrc
/usr/bin/expect << EOF
set timeout 15
spawn openstack user create --domain default --password-prompt placement
expect "User*"
send "$ALL_PASS\r"
expect "Repeat*"
send "$ALL_PASS\r"
expect eof
EOF

openstack role add --project service --user placement admin
openstack service create --name placement --description "Placement API" placement
openstack endpoint create --region RegionOne placement public http://${CONTROLLER_IP}:8778
openstack endpoint create --region RegionOne placement internal http://${CONTROLLER_IP}:8778
openstack endpoint create --region RegionOne placement admin http://${CONTROLLER_IP}:8778

yum -y install openstack-placement-api

cp -p /etc/placement/placement.conf /etc/placement/placement.conf.$(date +%Y%m%d)_$(date +%H%M%S)
crudini --set /etc/placement/placement.conf placement_database connection mysql+pymysql://placement:${ALL_PASS}@${CONTROLLER_IP}/placement

crudini --set /etc/placement/placement.conf api auth_strategy keystone

crudini --set /etc/placement/placement.conf keystone_authtoken auth_url http://${CONTROLLER_IP}:5000/v3
crudini --set /etc/placement/placement.conf keystone_authtoken memcached_servers ${CONTROLLER_IP}:11211
crudini --set /etc/placement/placement.conf keystone_authtoken auth_type password
crudini --set /etc/placement/placement.conf keystone_authtoken project_domain_name Default
crudini --set /etc/placement/placement.conf keystone_authtoken user_domain_name Default
crudini --set /etc/placement/placement.conf keystone_authtoken project_name service
crudini --set /etc/placement/placement.conf keystone_authtoken username placement
crudini --set /etc/placement/placement.conf keystone_authtoken password ${ALL_PASS}

su -s /bin/sh -c "placement-manage db sync" placement
systemctl restart httpd

六、Nova

#======Nova=======#
mysql -u root -p${ALL_PASS}<<EOF
CREATE DATABASE nova_api;
CREATE DATABASE nova;
CREATE DATABASE nova_cell0;
GRANT ALL PRIVILEGES ON nova_api.* TO 'nova'@'localhost' IDENTIFIED BY '${ALL_PASS}';
GRANT ALL PRIVILEGES ON nova_api.* TO 'nova'@'%' IDENTIFIED BY '${ALL_PASS}';
GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'localhost' IDENTIFIED BY '${ALL_PASS}';
GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'%' IDENTIFIED BY '${ALL_PASS}';
GRANT ALL PRIVILEGES ON nova_cell0.* TO 'nova'@'localhost' IDENTIFIED BY '${ALL_PASS}';
GRANT ALL PRIVILEGES ON nova_cell0.* TO 'nova'@'%' IDENTIFIED BY '${ALL_PASS}';
EOF

source /root/admin-openrc

/usr/bin/expect << EOF
set timeout 15
spawn openstack user create --domain default --password-prompt nova
expect "User*"
send "$ALL_PASS\r"
expect "Repeat*"
send "$ALL_PASS\r"
expect eof
EOF

openstack role add --project service --user nova admin
openstack service create --name nova --description "OpenStack Compute" compute
openstack endpoint create --region RegionOne compute public http://${CONTROLLER_IP}:8774/v2.1
openstack endpoint create --region RegionOne compute internal http://${CONTROLLER_IP}:8774/v2.1
openstack endpoint create --region RegionOne compute admin http://${CONTROLLER_IP}:8774/v2.1

yum -y install openstack-nova-api
yum -y install openstack-nova-conductor
yum -y install openstack-nova-novncproxy
yum -y install openstack-nova-scheduler

cp -p /etc/nova/nova.conf /etc/nova/nova.conf.$(date +%Y%m%d)_$(date +%H%M%S)
crudini --set /etc/nova/nova.conf DEFAULT enabled_apis osapi_compute,metadata
crudini --set /etc/nova/nova.conf DEFAULT my_ip ${CONTROLLER_IP}
crudini --set /etc/nova/nova.conf DEFAULT transport_url rabbit://openstack:${ALL_PASS}@${CONTROLLER_IP}:5672/
crudini --set /etc/nova/nova.conf api_database connection mysql+pymysql://nova:${ALL_PASS}@${CONTROLLER_IP}/nova_api
crudini --set /etc/nova/nova.conf database connection mysql+pymysql://nova:${ALL_PASS}@${CONTROLLER_IP}/nova
crudini --set /etc/nova/nova.conf api auth_strategy keystone
crudini --set /etc/nova/nova.conf keystone_authtoken www_authenticate_uri http://${CONTROLLER_IP}:5000/
crudini --set /etc/nova/nova.conf keystone_authtoken auth_url http://${CONTROLLER_IP}:5000/
crudini --set /etc/nova/nova.conf keystone_authtoken memcached_servers ${CONTROLLER_IP}:11211
crudini --set /etc/nova/nova.conf keystone_authtoken auth_type password
crudini --set /etc/nova/nova.conf keystone_authtoken project_domain_name Default
crudini --set /etc/nova/nova.conf keystone_authtoken user_domain_name Default
crudini --set /etc/nova/nova.conf keystone_authtoken project_name service
crudini --set /etc/nova/nova.conf keystone_authtoken username nova
crudini --set /etc/nova/nova.conf keystone_authtoken password ${ALL_PASS}

crudini --set /etc/nova/nova.conf vnc enabled true
crudini --set /etc/nova/nova.conf vnc server_listen \$my_ip
crudini --set /etc/nova/nova.conf vnc server_proxyclient_address \$my_ip
crudini --set /etc/nova/nova.conf glance api_servers http://${CONTROLLER_IP}:9292
crudini --set /etc/nova/nova.conf oslo_concurrency lock_path /var/lib/nova/tmp

crudini --set /etc/nova/nova.conf placement region_name RegionOne
crudini --set /etc/nova/nova.conf placement project_domain_name Default
crudini --set /etc/nova/nova.conf placement project_name service
crudini --set /etc/nova/nova.conf placement auth_type password
crudini --set /etc/nova/nova.conf placement user_domain_name  Default
crudini --set /etc/nova/nova.conf placement auth_url http://${CONTROLLER_IP}:5000/v3
crudini --set /etc/nova/nova.conf placement username placement
crudini --set /etc/nova/nova.conf placement password ${ALL_PASS}

su -s /bin/sh -c "nova-manage api_db sync" nova
su -s /bin/sh -c "nova-manage cell_v2 map_cell0" nova
su -s /bin/sh -c "nova-manage cell_v2 create_cell --name=cell1 --verbose" nova
su -s /bin/sh -c "nova-manage db sync" nova
su -s /bin/sh -c "nova-manage cell_v2 list_cells" nova

systemctl enable \
    openstack-nova-api.service \
    openstack-nova-scheduler.service \
    openstack-nova-conductor.service \
    openstack-nova-novncproxy.service
systemctl start \
    openstack-nova-api.service \
    openstack-nova-scheduler.service \
    openstack-nova-conductor.service \
    openstack-nova-novncproxy.service

七、Neutron

#======Neutron=======#
mysql -u root -p${ALL_PASS}<<EOF
CREATE DATABASE neutron;
GRANT ALL PRIVILEGES ON neutron.* TO 'neutron'@'localhost' IDENTIFIED BY '${ALL_PASS}';
GRANT ALL PRIVILEGES ON neutron.* TO 'neutron'@'%' IDENTIFIED BY '${ALL_PASS}';
EOF

source /root/admin-openrc

/usr/bin/expect << EOF
set timeout 15
spawn openstack user create --domain default --password-prompt neutron
expect "User*"
send "$ALL_PASS\r"
expect "Repeat*"
send "$ALL_PASS\r"
expect eof
EOF

openstack role add --project service --user neutron admin
openstack service create --name neutron --description "OpenStack Networking" network
openstack endpoint create --region RegionOne network public http://${CONTROLLER_IP}:9696
openstack endpoint create --region RegionOne network internal http://${CONTROLLER_IP}:9696
openstack endpoint create --region RegionOne network admin http://${CONTROLLER_IP}:9696

yum -y install openstack-neutron
yum -y install openstack-neutron-ml2
yum -y install openstack-neutron-openvswitch
yum -y install ebtables

cp -p /etc/neutron/neutron.conf /etc/neutron/neutron.conf.$(date +%Y%m%d)_$(date +%H%M%S)
crudini --set /etc/neutron/neutron.conf database connection mysql+pymysql://neutron:${ALL_PASS}@${CONTROLLER_IP}/neutron

crudini --set /etc/neutron/neutron.conf DEFAULT core_plugin ml2
crudini --set /etc/neutron/neutron.conf DEFAULT service_plugins router
crudini --set /etc/neutron/neutron.conf DEFAULT allow_overlapping_ips true
crudini --set /etc/neutron/neutron.conf DEFAULT transport_url rabbit://openstack:${ALL_PASS}@${CONTROLLER_IP}
crudini --set /etc/neutron/neutron.conf DEFAULT auth_strategy keystone
crudini --set /etc/neutron/neutron.conf DEFAULT notify_nova_on_port_status_changes true 
crudini --set /etc/neutron/neutron.conf DEFAULT notify_nova_on_port_data_changes true


crudini --set /etc/neutron/neutron.conf keystone_authtoken www_authenticate_uri http://${CONTROLLER_IP}:5000
crudini --set /etc/neutron/neutron.conf keystone_authtoken auth_url http://${CONTROLLER_IP}:5000
crudini --set /etc/neutron/neutron.conf keystone_authtoken memcached_servers ${CONTROLLER_IP}:11211
crudini --set /etc/neutron/neutron.conf keystone_authtoken auth_type password
crudini --set /etc/neutron/neutron.conf keystone_authtoken project_domain_name Default
crudini --set /etc/neutron/neutron.conf keystone_authtoken user_domain_name Default
crudini --set /etc/neutron/neutron.conf keystone_authtoken project_name service
crudini --set /etc/neutron/neutron.conf keystone_authtoken username neutron
crudini --set /etc/neutron/neutron.conf keystone_authtoken password ${ALL_PASS}

crudini --set /etc/neutron/neutron.conf nova auth_url http://${CONTROLLER_IP}:5000
crudini --set /etc/neutron/neutron.conf nova auth_type password
crudini --set /etc/neutron/neutron.conf nova project_domain_name Default
crudini --set /etc/neutron/neutron.conf nova user_domain_name Default
crudini --set /etc/neutron/neutron.conf nova region_name RegionOne
crudini --set /etc/neutron/neutron.conf nova project_name service
crudini --set /etc/neutron/neutron.conf nova username nova
crudini --set /etc/neutron/neutron.conf nova password ${ALL_PASS}

crudini --set /etc/neutron/neutron.conf oslo_concurrency lock_path /var/lib/neutron/tmp



cp -p /etc/neutron/plugins/ml2/ml2_conf.ini /etc/neutron/plugins/ml2/ml2_conf.ini.$(date +%Y%m%d)_$(date +%H%M%S)
crudini --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 type_drivers flat,vlan,vxlan
crudini --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 tenant_network_types vxlan
crudini --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 mechanism_drivers openvswitch,l2population
crudini --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 extension_drivers port_security

crudini --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2_type_flat flat_networks provider

crudini --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2_type_vxlan vni_ranges 1:1000

crudini --set /etc/neutron/plugins/ml2/ml2_conf.ini securitygroup enable_ipset true

crudini --set /etc/neutron/plugins/ml2/openvswitch_agent.ini securitygroup firewall_driver neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
crudini --set /etc/neutron/plugins/ml2/openvswitch_agent.ini enable_security_group true

crudini --set /etc/neutron/l3_agent.ini DEFAULT interface_driver openvswitch

crudini --set /etc/neutron/dhcp_agent.ini DEFAULT interface_driver neutron.agent.linux.interface.OVSInterfaceDriver
crudini --set /etc/neutron/dhcp_agent.ini DEFAULT dhcp_driver neutron.agent.linux.dhcp.Dnsmasq
crudini --set /etc/neutron/dhcp_agent.ini DEFAULT enable_isolated_metadata true 
crudini --set /etc/neutron/dhcp_agent.ini DEFAULT force_metadata true

crudini --set /etc/neutron/metadata_agent.ini DEFAULT nova_metadata_host ${CONTROLLER_IP}
crudini --set /etc/neutron/metadata_agent.ini DEFAULT metadata_proxy_shared_secret ${ALL_PASS}

crudini --set /etc/nova/nova.conf neutron auth_url http://${CONTROLLER_IP}:5000
crudini --set /etc/nova/nova.conf neutron auth_type password
crudini --set /etc/nova/nova.conf neutron project_domain_name Default
crudini --set /etc/nova/nova.conf neutron user_domain_name Default
crudini --set /etc/nova/nova.conf neutron region_name RegionOne
crudini --set /etc/nova/nova.conf neutron project_name service 
crudini --set /etc/nova/nova.conf neutron username neutron
crudini --set /etc/nova/nova.conf neutron password ${ALL_PASS}
crudini --set /etc/nova/nova.conf neutron service_metadata_proxy true
crudini --set /etc/nova/nova.conf neutron metadata_proxy_shared_secret ${ALL_PASS}

ln -s /etc/neutron/plugins/ml2/ml2_conf.ini /etc/neutron/plugin.ini
su -s /bin/sh -c "neutron-db-manage --config-file /etc/neutron/neutron.conf --config-file /etc/neutron/plugins/ml2/ml2_conf.ini upgrade head" neutron

systemctl restart openstack-nova-api.service

systemctl enable neutron-server.service \
  neutron-openvswitch-agent.service neutron-dhcp-agent.service \
  neutron-metadata-agent.service
systemctl start neutron-server.service \
  neutron-openvswitch-agent.service neutron-dhcp-agent.service \
  neutron-metadata-agent.service

systemctl enable neutron-l3-agent.service
systemctl start neutron-l3-agent.service

八、Dashboard

#======Dashboard=======#

yum -y install openstack-dashboard

#/etc/openstack-dashboard/local_settings
cp -p /etc/openstack-dashboard/local_settings /etc/openstack-dashboard/local_settings.bak.$(date +%Y%m%d)_$(date +%H%M%S)

#WEBROOT = '/dashboard/'
sed -i "/DEBUG =/aWEBROOT = '/dashboard/'" /etc/openstack-dashboard/local_settings
sed -i "/OPENSTACK_HOST = /cOPENSTACK_HOST = \"$CONTROLLER_IP\"" /etc/openstack-dashboard/local_settings
sed -i "/ALLOWED_HOSTS = /cALLOWED_HOSTS = ['*']" /etc/openstack-dashboard/local_settings
sed -i "/SESSION_ENGINE = /aSESSION_ENGINE = 'django.contrib.sessions.backends.file'" /etc/openstack-dashboard/local_settings
sed -i  '/OPENSTACK_KEYSTONE_URL/cOPENSTACK_KEYSTONE_URL = "http://%s:5000/v3" % OPENSTACK_HOST' /etc/openstack-dashboard/local_settings
sed -i "/OPENSTACK_KEYSTONE_URL =/aOPENSTACK_KEYSTONE_MULTIDOMAIN_SUPPORT = True" /etc/openstack-dashboard/local_settings
sed -i "/OPENSTACK_KEYSTONE_URL =/aOPENSTACK_KEYSTONE_DEFAULT_DOMAIN = \"Default\"" /etc/openstack-dashboard/local_settings
sed -i "/111 =/aOPENSTACK_KEYSTONE_DEFAULT_ROLE = \"user\"" /etc/openstack-dashboard/local_settings
sed -i '/TIME_ZONE/c#TIME_ZONE = "Asia/Shanghai"' /etc/openstack-dashboard/local_settings

echo "CACHES = {
    'default': {
         'BACKEND': 'django.core.cache.backends.memcached.MemcachedCache',
         'LOCATION': '$CONTROLLER_IP:11211',
    }
}" >> local_settings

echo "OPENSTACK_API_VERSIONS = {
    "identity": 3,
    "image": 2,
    "volume": 3,
}" >> local_settings

echo "WSGIApplicationGroup %{GLOBAL}" >>/etc/httpd/conf.d/openstack-dashboard.conf


#===Fwaas Lbaasv2 Vpnaas===
yum install openstack-neutron-fwaas -y
neutron-db-manage --subproject neutron-fwaas upgrade head
#lbaasv2
yum install openstack-neutron-lbaas -y
neutron-db-manage --subproject neutron-lbaas upgrade head
#vpnaas
yum install openstack-neutron-vpnaas -y
neutron-db-manage --subproject neutron-vpnaas upgrade head

#
##8.Block Storage service
#
#Discover compute
#source /root/admin-openrc
#openstack compute service list --service nova-compute
#su -s /bin/sh -c "nova-manage cell_v2 discover_hosts --verbose" nova
#
#add image
#openstack image create "cirros" --file cirros-0.4.0-x86_64-disk.img --disk-format qcow2 --container-format bare --public


echo -e "\033[45;37mOpenstack Train computer node install end !!!\033[0m"
CrimeHero
关注
  • 1
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
2021-11-04
m0_53575762的博客
11-20 6623
一、Linux命令和windows区别? 1、Linux命令全部严格区分大小写;而windows命令大小写都识别。 2、Linux所有的文件都是没有扩展名的,而windows是文件是有扩展名的。 创建一个新用户 [root@localhost mxh]# useradd mxh2 # 创建一个user [root@localhost mxh]# password mxh2 #12345678 [root@localhost xxx]# gr...
CVE-2021-3156 漏洞复现笔记
热门推荐
weixin_46483787的博客
07-01 1万+
CVE-2021-3156复现笔记
2021-01-15
hikarilee的博客
01-15 1223
git clone 操作出现 fatal:index-pack failed 此错误为当前克隆文件夹属性只读,将只读取消
2021-01-11
qq_44954966的博客
01-11 2252
StringBulid和Stringbuffer之间的区别 StringBuilder和StringBuffer之间的主要区别在于StringBuffer在多线程环境是安全的,相对而言性能略差,而StringBuilder在多线程环境下是不安全的(仅这两个类的append方法相对而言),因此性能也较好。 StringBuilder是JDK1.5里边新更新的类,主要是针对StringBuffer的改进和优化。StringBuffer的append方法采用线程加锁机制,确保了多线程环境下的安全,但却也因此丧失了
2021-01-10
qq_22667507的博客
01-10 940
jupyter notebook中直接安装python的第三方库。 例如安装pymysql : ! pip install pymysql。 升级pip:
2021-04-21
qq_56102648的博客
04-21 783
2021-01-18
weixin_54641072的博客
01-18 1775
找程序猿哥哥!!!!编制App或者小程序
2021-11-02
weixin_44562033的博客
11-02 2447
Failed to transform bcprov-jdk15on-1.68.jar (org.bouncycastle:bcprov-jdk15on:1.68) to match attributes {artifactType=android-classes-jar, org.gradle.category=library, org.gradle.libraryelements=jar, org.gradle.status=release, org.gradle.usage=java-api}. 安卓
javaweb学习的第9天(2021-11-15)--------登录功能的实现
有上进心的阿龙
11-15 2506
javaweb学习的第9天(2021-11-15)--------登录功能的实现 JSTL标签: 取代这些代码: 我们现在正常的逻辑是: 只有登陆了之后才会进入main.jsp查看所有员工的信息。 但是如果有用户直接访问main.jsp直接报错。 例如:我们没有登陆淘宝去点击加入购物车的话,网站会引导我进入登陆界面。 这个技术是过滤器技术; 如果没有登陆,就直接访问main.jsp,就要引导我进入登陆界面。 过滤器: 过滤器也是WEB组件。 它可以拦截客户端和服务器之间的请求和响应。 过滤器:在你客户
2021-linux
02-21
11. **硬件支持**:Linux对新硬件的支持情况,包括图形卡驱动、固态硬盘管理等。 通过深入研究以上各个知识点,无论是初学者还是经验丰富的Linux用户,都能从中受益,提升对Linux操作系统的理解和应用能力。
江苏省徐州市邳州市2021-2022学年八年级上学期期中数学试题 (Word版含答案).doc
12-25
11. **直角三角形与正方形**:第十一题通过正方形面积计算直角三角形的斜边长度,应用了勾股定理。 12. **直角三角形性质**:第十二题利用直角三角形的性质(30°-60°-90°三角形)来求解角度。 13. **平行线性质...
2021-CSP-S-提高组初赛
08-24
8. 令根结点的高度为 1,则一棵含有 2021 个结点的二叉树的高度至少为 11。 知识点:二叉树、树的高度 9. 前序遍历和中序遍历相同的二叉树为且仅为根结点没有左子树的二叉树。 知识点:二叉树遍历 10. 将...
2021-11-08 15-52-12.mkv
03-25
2021-11-08 15-52-12.mkv
江苏省徐州市联校2021-2022学年八年级上学期期中学情监测道德与法治【试卷+答案】.docx
11-13
这份资料是针对江苏省徐州市2021-2022学年度八年级上学期的期中学情监测,学科为道德与法治。试卷包含了选择题和非选择题两部分,旨在评估学生对法治观念、道德修养以及社会责任的理解和应用。 在选择题部分,题目...
安徽省合肥市长丰县2021-2022学年上学期七年级期中考试数学【试卷+答案】 .doc
11-19
这份资料是安徽省合肥市长丰县2021-2022学年七年级上学期期中考试的数学试卷及答案,主要考察初中一年级学生的数学基础能力,包括但不限于数的运算、代数表达式、几何图形、数据分析和逻辑推理等方面的知识。...
精品资料(2021-2022年收藏)人教版小学数学四年级下册单元提升练习题全册.doc
10-10
11. 等式建立和解方程:根据题目条件建立方程并求解,如找出乘法错位导致的计算错误,或者找出色彩球数量平衡的策略。 12. 分析与推理:分析题目中的信息,进行逻辑推理,如小明在计算题中的乘数错误,以及甲乙丙丁...
panic-full-2021-11-23-231447.000.ips
11-24
panic-full-2021-11-23-231447.000.ips
2021-2022收藏的精品资料2021-2022年创业计划书核桃.doc
09-16
15. 案例分析:可能包含对成功或失败案例的学习,以吸取经验教训。 16. 许可证与认证:涉及产品上市所需的各类许可证和质量认证。 17. 客户服务:描述客户服务策略,以提高客户满意度和忠诚度。 18. 合作伙伴:列...
优化代码SELECT SUM(CASE WHEN order_date BETWEEN '2021-11-01' AND '2021-11-15' THEN 1 ELSE 0 END) AS new_customer_count, SUM(CASE WHEN order_date BETWEEN '2021-11-01' AND '2021-11-15' THEN amount ELSE 0 END) AS new_customer_amount, SUM(CASE WHEN order_date BETWEEN '2021-11-01' AND '2021-11-15' AND customer_id IN ( SELECT customer_id FROM orders WHERE order_date < '2020-11-01' ) THEN 1 ELSE 0 END) AS old_customer_count, SUM(CASE WHEN order_date BETWEEN '2021-11-01' AND '2021-11-15' AND customer_id IN ( SELECT customer_id FROM orders WHERE order_date < '2020-11-01' ) THEN amount ELSE 0 END) AS old_customer_amount FROM orders WHERE order_date BETWEEN '2021-11-01' AND '2021-11-15'
最新发布
05-25
可以考虑使用JOIN语句代替子查询,这样可以避免在子查询中进行多次查询。同时,可以将CASE WHEN语句简化为IF函数,这样可以提高代码的可读性。具体优化后的代码如下所示: SELECT SUM(IF(order_date BETWEEN '2021-11-01' AND '2021-11-15', 1, 0)) AS new_customer_count, SUM(IF(order_date BETWEEN '2021-11-01' AND '2021-11-15', amount, 0)) AS new_customer_amount, SUM(IF(order_date BETWEEN '2021-11-01' AND '2021-11-15' AND o1.customer_id IS NOT NULL, 1, 0)) AS old_customer_count, SUM(IF(order_date BETWEEN '2021-11-01' AND '2021-11-15' AND o1.customer_id IS NOT NULL, amount, 0)) AS old_customer_amount FROM orders o LEFT JOIN ( SELECT customer_id FROM orders WHERE order_date < '2020-11-01' ) o1 ON o.customer_id = o1.customer_id WHERE order_date BETWEEN '2021-11-01' AND '2021-11-15'
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值