基本配置可以依照下图配置
1.改ubantu名:
查看ubantu版本:uname -a
改名:vim /etc/hostname
重启:reboot
2.修改ssh 服务
vi /etc/ssh/sshd_config
(对于没有sshd_config文件,需要安装openssh-server:apt-get install openssh-server.
将PermitRootLogin 和 PasswordAuthentication 改为yes,保存退出。
service ssh restart
3.配置免密登陆:
ssh-keygen -t rsa(产生公钥、私钥)
cd .ssh
cat id_rsa.pub (复制)
ssh 节点名 一般自己登陆自己要密码登陆,
通将公密拷贝到 .ssh/authorized_keys 就不需要密码了
通过xshell切换不同的节点,也可以测试Ubantu能不能够ping通
scp -r .ssh/ 节点ip:/root 第一次登陆一般需要密码登陆
4.修改/etc/hosts文件,记录ip,主机联名
控制ip controller
计算ip compute
(这里我们在完成更改后,我们要需要对ping一下)
同时将hosts文件拷贝到计算节点:scp -r /etc/hosts 节点名:/etc
5.更改镜像源:
#备份
# cp /etc/apt/sources.list /etc/apt/sources.list.bak
# vim /etc/apt/sources.list
deb-src http://archive.Ubuntu.com/ubuntu xenial main restricted
deb http://mirrors.aliyun.com/ubuntu/ xenial main restricted
deb-src http://mirrors.aliyun.com/ubuntu/ xenial main restricted multiverse universe
deb http://mirrors.aliyun.com/ubuntu/ xenial-updates main restricted
deb-src http://mirrors.aliyun.com/ubuntu/ xenial-updates main restricted multiverse universe
deb http://mirrors.aliyun.com/ubuntu/ xenial universe
deb http://mirrors.aliyun.com/ubuntu/ xenial-updates universe
deb http://mirrors.aliyun.com/ubuntu/ xenial multiverse
deb http://mirrors.aliyun.com/ubuntu/ xenial-updates multiverse
deb http://mirrors.aliyun.com/ubuntu/ xenial-backports main restricted universe multiverse
deb-src http://mirrors.aliyun.com/ubuntu/ xenial-backports main restricted universe multiverse
deb http://archive.canonical.com/ubuntu xenial partner
deb-src http://archive.canonical.com/ubuntu xenial partner
deb http://mirrors.aliyun.com/ubuntu/ xenial-security main restricted
deb-src http://mirrors.aliyun.com/ubuntu/ xenial-security main restricted multiverse universe
deb http://mirrors.aliyun.com/ubuntu/ xenial-security universe
deb http://mirrors.aliyun.com/ubuntu/ xenial-security multiverse
保存退出
更新
apt-get update
apt-get upgrade
同时在其他节点我们也要更新
scp -r /etc/apt/sources.list 节点名:/etc/apt
6、输入pip检测是否安装pip,若没有则输入apt-get install python-pip安装。
设置pip源:
mkdir ~/.pip
vi ~/.pip/pip.conf
添加
[global]
index-url = http://pypi.douban.com/simple/
trusted-host = pypi.douban.com
保存退出。
7、设定时间同步
设定时区:dpkg-reconfigure tzdata
选择Asia -> 再选择Shanghai -> OK
同步时间命令:
1、sudo apt-get install ntpdate // 安装时间同步工具
2、sudo ntpdate cn.pool.ntp.org // 与网络服务器同步时间
3、date // 查看时间是否已同步
(也可以和官方文档进行时间节点同步)
8.安装openstock包(所有节点都需要安装)
# apt install software-properties-common
# add-apt-repository cloud-archive:ocata
# apt update && apt dist-upgrade
# apt install python-openstackclient
9.memcache(存储token) mysql rabbitmq(消息队列) 都在控制节点安装
(实际一般每个服务都不在一台机器上,每种服务可能会做成集群,多台服务器同时运行,实验的话就布置到一台机器上)
安装mysql(只安装控制节点)
# apt install mariadb-server python-pymysql
vim /etc/mysql/mariadb.conf.d/99-openstack.cnf
复制:[mysqld]bind-address = 10.0.0.11(自己的ip)
default-storage-engine = innodb
innodb_file_per_table = on
max_connections = 4096
collation-server = utf8_general_ci
character-set-server = utf8
# service mysql restart
创建用户密码
# mysql_secure_installation
安装rabbitmq
# apt install rabbitmq-server
# rabbitmqctl add_user openstack(用户名) +(你的密码)
创建所有权
# rabbitmqctl set_permissions openstack ".*" ".*" ".*"
创建Memcached
# apt install memcached python-memcachevim /etc/memcached.conf, 将ip改为自己的控制节点的ip
# service memcached restart
10.安装keystone(认证服务)【控制节点】 进入mysql , 创建数据库 CREATE DATABASE keystone; 授权:GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'localhost' IDENTIFIED BY 'KEYSTONE_DBPASS'; 远端链接(其他节点连接): GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'%' IDENTIFIED BY 'KEYSTONE_DBPASS';
创建服务
# apt install keystone
vim /etc/keystone/keystone.conf
[database]
# ...
connection = mysql+pymysql://keystone:KEYSTONE_DBPASS@controller/keystone
[token]
# ...
provider = fernet
数据库同步操作
# su -s /bin/sh -c "keystone-manage db_sync" keystone
# keystone-manage fernet_setup --keystone-user keystone --keystone-group keystone
# keystone-manage credential_setup --keystone-user keystone --keystone-group keystone
# keystone-manage bootstrap --bootstrap-password ADMIN_PASS --bootstrap-admin-url http://controller:35357/v3/ --bootstrap-internal-url http://controller:5000/v3/ -- bootstrap-public-url http://controller:5000/v3/ --bootstrap-region-id RegionOne
vim /etc/apache2/apache2.conf
ServerName controller
# service apache2 restart
# rm -f /var/lib/keystone/keystone.db
$ export OS_USERNAME=admin
$ export OS_PASSWORD=ADMIN_PASS
$ export OS_PROJECT_NAME=admin
$ export OS_USER_DOMAIN_NAME=Default
$ export OS_PROJECT_DOMAIN_NAME=Default
$ export OS_AUTH_URL=http://controller:35357/v3
$ export OS_IDENTITY_API_VERSION=3