【任务1】基础运维任务[5分]
【题目1】基础环境配置
(1)设置控制节点主机名为controller,设置计算节点主机名为compute;
[root@controller ~]# hostnamectl set-hostname controller [root@compute ~]# hostnamectl set-hostname compute
(2)修改hosts文件将IP地址映射为主机名;
[root@controller ~]# cat /etc/hosts 127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4 ::1 localhost localhost.localdomain localhost6 localhost6.localdomain6 192.168.100.10 controller 192.168.100.20 compute
(3)关闭控制节点的防火墙,设置开机不启动;
[root@controller ~]# systemctl stop firewalld [root@controller ~]# systemctl disable firewalld
(4)设置SELinux为Permissive 模式。
[root@controller ~]# cat /etc/selinux/config # This file controls the state of SELinux on the system. # SELINUX= can take one of these three values: # enforcing - SELinux security policy is enforced. # permissive - SELinux prints warnings instead of enforcing. # disabled - No SELinux policy is loaded. SELINUX=permissive 👈 修改这里 # SELINUXTYPE= can take one of three two values: # targeted - Targeted processes are protected, # minimum - Modification of targeted policy. Only selected processes are protected. # mls - Multi Level Security protection. SELINUXTYPE=targeted
【题目2】镜像挂载
将提供的CentOS-7-x86_64-DVD-1804.iso和chinaskill_cloud_iaas.iso光盘镜像上传到controller节点/root目录下,然后在/opt目录下分别创建centos目录和openstack目录,并将镜像文件CentOS-7-x86_64-DVD-1804.iso挂载到centos目录下,将镜像文件chinaskill_cloud_iaas.iso挂载到openstack目录下。完成后提交控制节点的用户名、密码和IP地址到答题框。
# 已上传镜像 [root@controller ~]# ls anaconda-ks.cfg bricsskills_cloud_iaas.iso CentOS-7-x86_64-DVD-1804.iso cirros-0.3.4-x86_64-disk.img # 创建目录 [root@controller ~]# mkdir /opt/centos [root@controller ~]# mkdir /opt/openstack # 挂载镜像 [root@controller ~]# mount -o loop CentOS-7-x86_64-DVD-1804.iso /opt/centos [root@controller ~]# mount -o loop bricsskills_cloud_iaas.iso /opt/openstack
【题目3】Yum源配置
在controller节点上利用/opt/centos目录中的软件包安装vsftpd服务,设置开机自启动,并使用ftp提供yum仓库服务(ftp共享的目录为/opt),分别设置controller节点和compute节点的yum源文件ftp.repo,其中ftp服务器地址使用主机名形式。完成后提交控制节点的用户名、密码和IP地址到答题框。
# 将 yum.repo.d 下的所有文件移动到 /opt [root@controller ~]# mv /etc/yum.repos.d/* /opt # 新建一个 yum 源文件 [root@controller ~]# vim /etc/yum.repos.d/centos.repo [root@controller ~]# cat /etc/yum.repos.d/centos.repo [centos] name=centos baseurl=file:///opt/centos gpgcheck=0 enabled=1 [iaas] name=iaas baseurl=file:///opt/openstack/iaas-repo gpgcheck=0 enabled=1 # compute节点 [root@compute ~]# vim /etc/yum.repos.d/ftp.repo [root@compute ~]# cat /etc/yum.repos.d/ftp.repo [centos] name=centos baseurl=ftp://controller/centos gpgcheck=0 enabled=1 [iaas] name=iaas baseurl=ftp://controller/openstack/iaas-repo gogcheck=0 enabled=1 # 检查 controller 是否能使用yum [root@controller ~]# yum list # controller 节点安装ftp,并设置共享目录 [root@controller ~]# yum install vsftpd -y [root@controller ~]# vi /etc/vsftpd/vsftpd.conf anon_root=/opt # 启动并设置开机自启发 ftp systemctl start vsftpd systemctl enable vsftpd # 检查 compute 节点是否能使用 yum [root@compute ~]# yum list
【题目4】时间同步配置
在controller节点上部署chrony服务器,允许其他节点同步时间,启动服务并设置为开机启动;在compute节点上指定controller节点为上游NTP服务器,重启服务并设为开机启动。完成后提交控制节点的用户名、密码和IP地址到答题框。
# 检查chrony是否启动 [root@controller ~]# systemctl status chronyd ● chronyd.service - NTP client/server Loaded: loaded (/usr/lib/systemd/system/chronyd.service; enabled; vendor preset: enabled) Active: active (running) since Thu 2023-03-02 08:21:14 EST; 40min ago Docs: man:chronyd(8) man:chrony.conf(5) Main PID: 776 (chronyd) CGroup: /system.slice/chronyd.service └─776 /usr/sbin/chronyd Mar 02 08:21:13 controller systemd[1]: Starting NTP client/server... Mar 02 08:21:14 controller chronyd[776]: chronyd version 3.2 starting (+CMDMON +NTP +REFCLOCK +RTC +PRIVDROP +SCFILTER +SECHASH +SIGND +ASYNCDNS +IPV6 +DEBUG) Mar 02 08:21:14 controller chronyd[776]: Frequency -17.041 +/- 1.387 ppm read from /var/lib/chrony/drift Mar 02 08:21:14 controller systemd[1]: Started NTP client/server. Mar 02 08:21:22 controller chronyd[776]: Selected source 193.182.111.141 Mar 02 08:21:25 controller chronyd[776]: Selected source 111.230.189.174 Mar 02 08:40:52 controller chronyd[776]: Source 116.203.151.74 replaced with 139.199.214.202 # 配置chrony [root@controller ~]# vi /etc/chrony.conf # server 0.centos.pool.ntp.org iburst 👈 将这些全部注释掉 # server 1.centos.pool.ntp.org iburst # server 2.centos.pool.ntp.org iburst # server 3.centos.pool.ntp.org iburst server 192.168.100.10 iburst # 将自己设置为时间服务器 allow 192.168.100.0/24 # 允许这个网段的其他主机连接 local stratum 10 # 即使未与时间源同步,也提供服务时间 # compute 指定controller为上游ntp服务器 [root@compute ~]# vi /etc/chrony.conf server 192.168.100.10 iburst # 重启并设置开机自启 chrony [root@controller ~]# systemctl restart chronyd [root@controller ~]# systemctl enable chronyd
【题目5】计算节点分区
在compute节点上利用空白分区划分2个100G分区。完成后提交计算节点的用户名、密码和IP地址到答题框。
# 查看分区信息 [root@compute ~]# lsblk NAME MAJ:MIN RM SIZE RO TYPE MOUNTPOINT sda 8:0 0 100G 0 disk ├─sda1 8:1 0 1G 0 part /boot └─sda2 8:2 0 27.9G 0 part ├─centos-root 253:0 0 10G 0 lvm / ├─centos-swap 253:1 0 7.9G 0 lvm [SWAP] └─centos-home 253:2 0 10G 0 lvm /home sdb 8:16 0 100G 0 disk sr0 11:0 1 4.2G 0 rom # 分区 [root@compute ~]# parted /dev/sda GNU Parted 3.1 Using /dev/sda Welcome to GNU Parted! Type 'help' to view a list of commands. (parted) mkpart # 分区命令 Partition type? primary/extended? primary # 选择主分区 File system type? [ext2]? # 选择文件系统类型 Start? 30G # 起始大小 End? 60G # 结束大小 Warning: You requested a partition from 30.0GB to 60.0GB (sectors 58593750..117187500). The closest location we can manage is 31.0GB to 60.0GB (sectors 60571648..117187500). Is this still acceptable to you? Yes/No? YES # 填yes (parted) print Model: VMware, VMware Virtual S (scsi) Disk /dev/sda: 107GB Sector size (logical/physical): 512B/512B Partition Table: msdos Disk Flags: Number Start End Size Type File system Flags 1 1049kB 1075MB 1074MB primary xfs boot 2 1075MB 31.0GB 29.9GB primary lvm 3 31.0GB 60.0GB 29.0GB primary 👈创建成功 # 将分区格式化 [root@compute ~]# mkfs.xfs /dev/sda3 meta-data=/dev/sda3 isize=512 agcount=4, agsize=1769246 blks = sectsz=512 attr=2, projid32bit=1 = crc=1 finobt=0, sparse=0 data = bsize=4096 blocks=7076981, imaxpct=25 = sunit=0 swidth=0 blks naming =version 2 bsize=4096 ascii-ci=0 ftype=1 log =internal log bsize=4096 blocks=3455, version=2 = sectsz=512 sunit=0 blks, lazy-count=1 realtime =none extsz=4096 blocks=0, rtextents=0 [root@compute ~]# mkfs.xfs /dev/sda4 meta-data=/dev/sda4 isize=512 agcount=4, agsize=1831040 blks = sectsz=512 attr=2, projid32bit=1 = crc=1 finobt=0, sparse=0 data = bsize=4096 blocks=7324160, imaxpct=25 = sunit=0 swidth=0 blks naming =version 2 bsize=4096 ascii-ci=0 ftype=1 log =internal log bsize=4096 blocks=3576, version=2 = sectsz=512 sunit=0 blks, lazy-count=1 realtime =none extsz=4096 blocks=0, rtextents=0 # 检查是否成功 [root@compute ~]# parted /dev/sda GNU Parted 3.1 Using /dev/sda Welcome to GNU Parted! Type 'help' to view a list of commands. (parted) p Model: VMware, VMware Virtual S (scsi) Disk /dev/sda: 107GB Sector size (logical/physical): 512B/512B Partition Table: msdos Disk Flags: Number Start End Size Type File system Flags 1 1049kB 1075MB 1074MB primary xfs boot 2 1075MB 31.0GB 29.9GB primary lvm 3 31.0GB 60.0GB 29.0GB primary xfs 👈 file为xfs 4 61.0GB 91.0GB 30.0GB primary xfs