OpenStack-mitaka安裝

Openstack Mitaka安裝部署教程

一、實(shí)驗(yàn)環(huán)境:

系統(tǒng):centos7.2-minimal

網(wǎng)絡(luò):管理網(wǎng)絡(luò)eth0和虛擬機(jī)實(shí)例網(wǎng)絡(luò)eth1

controller192.168.22.202 eth0

? ? ? ? ? ? ? ? ? ? ? ?192.168.30.202 eth1

Compute01192.168.22.203 eth0

? ? ? ? ? ? ? ? ? ? ? ? ? ?192.168.30.203 eth1

二、環(huán)境配置:

1、所有節(jié)點(diǎn)關(guān)閉Firewalls、NetworkManangerselinux、主機(jī)名為各自節(jié)點(diǎn)名稱

2、安裝時(shí)間同步服務(wù)器chrony

#Yum install chrony –y

3、在控制節(jié)點(diǎn)上配置:allow 192.168.21.0/22

4、在計(jì)算節(jié)點(diǎn)上同步控制節(jié)點(diǎn)時(shí)間:server controller iburst

5、啟動(dòng)服務(wù)并開機(jī)自動(dòng)運(yùn)行:

#systemctl enable chronyd.service

#systemctl start chronyd.service

6、準(zhǔn)備阿里源、epel

#yum install -y centos-release-openstack-mitaka

#yum install?https://repos.fedorapeople.org/repos/openstack/openstack-mitaka/rdo-release-mitaka-6.noarch.rpm -y

#yum install python-openstackclient ?-y ? ? ? ? ? ? ? ? ? ? ? ? ? ?####安裝opentack必須的插件####

#yum install openstack-selinux -y

#yum upgrade

#reboot

7、數(shù)據(jù)庫(kù)安裝(mariadb) ? ? ? ####controller###

#yum install mariadb mariadb-serverpython2-PyMySQL -y

######數(shù)據(jù)庫(kù)配置######

###創(chuàng)建并編輯:/etc/my.cnf.d/openstack.cnf

[mysqld]

default-storage-engine = innodb

innodb_file_per_table

max_connections = 4096

collation-server = utf8_general_ci

character-set-server = utf8

######啟動(dòng)服務(wù)######

# systemctl enable mariadb.service

# systemctl start mariadb.service

######初始化數(shù)據(jù)庫(kù)######

#mysql_secure_installation

####注意查看端口是否已經(jīng)啟動(dòng):netstat -lnp | grep 3306###

8rabbitmq安裝(rabbitmq使用5672端口) ##controller##

# yum install rabbitmq-server -y ? ? ? ? ? ? ? ? ? ? ###安裝###

# systemctl enable rabbitmq-server.service ? ? ? ? ? ? ? ? ? ###開機(jī)啟動(dòng)###

# systemctl start rabbitmq-server.service ? ? ? ? ? ? ? ? ? ? ? ? ###啟動(dòng)服務(wù)###

#rabbitmqctl add_user?openstack zx123456 ? ? ? ? ? ? ? ? ?###增加openstack用戶,并設(shè)置密碼為zx123456###

#rabbitmqctl set_permissions openstack?".*" ".*" ".*" ? ? ? ? ? ? ?###新增用戶設(shè)置權(quán)限###

9、memcached安裝(使用端口11211) ? ##controller##

# yum install memcached python-memcached -y ? ? ? ? ? ? ? ? ? ? ? ? ?###安裝###

# systemctl enable memcached.service ? ? ? ? ? ? ? ? ? ###開機(jī)啟動(dòng)###

# systemctl start memcached.service ? ? ? ? ? ? ? ? ? ? ? ?###啟動(dòng)服務(wù)###

10keystone安裝 ##controller##

######登錄數(shù)據(jù)庫(kù)并創(chuàng)建keystone數(shù)據(jù)庫(kù):

#mysql -uroot –pzx123456

CREATE DATABASE keystone;

GRANT ALL PRIVILEGES ON keystone.* TO?'keystone'@'localhost' IDENTIFIED BY 'zx123456';

GRANTALL PRIVILEGES ON keystone.* TO 'keystone'@'%' IDENTIFIED BY 'zx123456';

? ? ? ?###設(shè)置授權(quán)用戶和密碼###

生成admin_token的隨機(jī)值:openssl rand -hex 10

# yum install openstack-keystone httpd mod_wsgi -y ? ? ? ? ? ?##controller##

配置:vi /etc/keystone/keystone.conf

admin_token=隨機(jī)值(主要為安全,也可以不用替換)

connection= mysql+pymysql://keystone:zx123456@192.168.22.202/keystone

provider = fernet

#初始化身份認(rèn)證服務(wù)的數(shù)據(jù)庫(kù):

#su -s /bin/sh -c "keystone-manage?db_sync" keystone

#初始化Fernet keys

#keystone-manage fernet_setup --keystone-user?keystone --keystone-group keystone

#配置Apache HTTP服務(wù)

配置:/etc/httpd/conf/httpd.conf

ServerName controller

用下面的內(nèi)容創(chuàng)建文件/etc/httpd/conf.d/wsgi-keystone.conf

Listen 5000

Listen 35357

WSGIDaemonProcess keystone-public processes=5 threads=1 user=keystonegroup=keystone display-name=%{GROUP}

WSGIProcessGroup keystone-public

WSGIScriptAlias / /usr/bin/keystone-wsgi-public

WSGIApplicationGroup %{GLOBAL}

WSGIPassAuthorization On

ErrorLogFormat "%{cu}t %M"

ErrorLog /var/log/httpd/keystone-error.log

CustomLog /var/log/httpd/keystone-access.log combined

Require all granted

WSGIDaemonProcess keystone-admin processes=5 threads=1 user=keystonegroup=keystone display-name=%{GROUP}

WSGIProcessGroup keystone-admin

WSGIScriptAlias / /usr/bin/keystone-wsgi-admin

WSGIApplicationGroup %{GLOBAL}

WSGIPassAuthorization On

ErrorLogFormat "%{cu}t %M"

ErrorLog /var/log/httpd/keystone-error.log

CustomLog /var/log/httpd/keystone-access.log combined

Require all granted

啟動(dòng)Apache HTTP服務(wù):

# systemctl enable httpd.service

# systemctl start httpd.service

#創(chuàng)建服務(wù)實(shí)體和API端點(diǎn)

配置認(rèn)證令牌:

#export OS_TOKEN=2e8cd090b7b50499d5f9

配置端點(diǎn)URL

#export OS_URL=export

#OS_URL=http://controller:35357/v3

配置認(rèn)證API版本:

#export OS_IDENTITY_API_VERSION=3

#創(chuàng)建服務(wù)實(shí)體和身份認(rèn)證服務(wù):

#openstack service create --name keystone--description "OpenStack Identity" identity

#創(chuàng)建認(rèn)證服務(wù)的API端點(diǎn):

#openstack endpoint create --region RegionOne?identity public?http://controller:5000/v3

#openstack endpoint create --region RegionOne?identity internal?http://controller:5000/v3

#openstack endpoint create --region RegionOne?identity admin?http://controller:35357/v3

#創(chuàng)建域、項(xiàng)目、用戶、角色

創(chuàng)建域“default

#openstack domain create --description"Default Domain" default

創(chuàng)建admin項(xiàng)目

#openstack project create --domain default--description "Admin Project" admin

創(chuàng)建admin用戶

#openstack user create --domain default?--password-prompt admin

?##提示輸入admin用戶密碼##

創(chuàng)建admin角色

openstack role create admin

添加``admin``角色到admin項(xiàng)目和用戶上

openstack role add --project admin --user adminadmin

創(chuàng)建``service``項(xiàng)目

openstack?project create --domain default --description "Service Project"?service

創(chuàng)建``demo``項(xiàng)目

openstack?project create --domain default --description "Demo Project" demo

創(chuàng)建``demo``用戶

openstack?user create --domain default --password-prompt demo

##提示輸入demo用戶密碼##

創(chuàng)建user角色

openstack?role create user

添加”user”角色到``demo?“項(xiàng)目和用戶

openstack role add --project demo --user demo user

驗(yàn)證:

關(guān)閉臨時(shí)認(rèn)證令牌機(jī)制:

編輯/etc/keystone/keystone-paste.ini文件,從``[pipeline:public_api]``,[pipeline:admin_api]````[pipeline:api_v3]``部分刪除``admin_token_auth

重置``OS_TOKEN````OS_URL``環(huán)境變量

unset OS_TOKEN OS_URL

使用admin用戶來,檢查測(cè)試,看能否獲取令牌:

#openstack--os-auth-url http://controller:35357/v3--os-project-domain-name default --os-user-domain-namedefault--os-project-name admin--os-username admin token issue


新建admin項(xiàng)目和demo項(xiàng)目的環(huán)境變量

admin項(xiàng)目:添加如下內(nèi)容

vim admin-openrc

export OS_PROJECT_DOMAIN_NAME=default

export OS_USER_DOMAIN_NAME=default

export OS_PROJECT_NAME=admin

export OS_USERNAME=admin

export OS_PASSWORD=zx123456

export OS_AUTH_URL=http://controller:35357/v3

export OS_IDENTITY_API_VERSION=3

export OS_IMAGE_API_VERSION=2

demo項(xiàng)目:

vim demo-openrc

export OS_PROJECT_DOMAIN_NAME=default

export OS_USER_DOMAIN_NAME=default

export OS_PROJECT_NAME=demo

export OS_USERNAME=demo

export OS_PASSWORD=zx123456

export OS_AUTH_URL=http://controller:35357/v3

export OS_IDENTITY_API_VERSION=3

export OS_IMAGE_API_VERSION=2

加載環(huán)境變量并獲取令牌:

#source admin-openrc

#openstack token issue


三、glance安裝和配置

控制節(jié)點(diǎn)安裝glance

1、登錄MySQL,建庫(kù)和建用戶

mysql -uroot –pzx123456

CREATE DATABASE glance;? ? ? ? ?##創(chuàng)建glance數(shù)據(jù)庫(kù)##

GRANT?ALL PRIVILEGES ON glance.* TO 'glance'@'localhost' IDENTIFIED BY 'zx123456';

GRANT ALL PRIVILEGES ON glance.* TO'glance'@'%' IDENTIFIED BY 'zx123456';

2、建keystone論證連接,使用的用戶,密碼,角色權(quán)限

source admin-openrc

創(chuàng)建glance用戶

openstack?user create --domain default --password-prompt glance

##提示輸入glance密碼##

添加admin角色到glance用戶和service項(xiàng)目上

openstack?role add --project service --user glance admin

3、創(chuàng)建``glance``服務(wù)實(shí)體

openstack service create --name glance --description "OpenStack Image" image

4、創(chuàng)建鏡像服務(wù)的API端點(diǎn)

openstack?endpoint create --region RegionOne image publichttp://controller:9292

openstack?endpoint create --region RegionOne image internalhttp://controller:9292

openstack endpoint create --region RegionOneimage admin http://controller:9292

5、安裝glance包 ? #controller#

yum install openstack-glance -y

6、glance-api配置

vim /etc/glance/glance-api.conf

[database]

connection = mysql+pymysql://glance:zx123456@controller/glance

[keystone_authtoken]

auth_url =http://controller:5000

auth_url= http://controller:35357

memcached_servers= controller:11211

auth_type= password

project_domain_name= default

user_domain_name= default

project_name= service

username= glance

password

= zx123456

[paste_deploy]

flavor = keystone***#指定論證機(jī)制***

[glance_store]

stores = file,http

default_store = file

filesystem_store_datadir= /var/lib/glance/images/

7、配置/etc/glance/glance-registry.conf

vim /etc/glance/glance-registry.conf

[database]

connection = mysql+pymysql://glance:zx123456@controller/glance

[keystone_authtoken]

auth_uri = http://controller:5000

auth_url = http://controller:35357

memcached_servers = controller:11211

auth_type = password

project_domain_name = default

user_domain_name = default

project_name = service

username = glance

password = zx123456

[paste_deploy]

flavor = keystone

8、新建保存鏡象目錄,并更改屬主

mkdir /var/lib/glance/images/

chown glance. /var/lib/glance/images/

9、生成數(shù)據(jù)庫(kù)結(jié)構(gòu)

su -s /bin/sh -c "glance-managedb_sync" glance

10、設(shè)置開機(jī)啟動(dòng)和運(yùn)行

#systemctl?enable openstack-glance-api.service openstack-glance-registry.service

#systemctl start?openstack-glance-api.service openstack-glance-registry.service

查看服務(wù)end point信息

#openstack catalog list

驗(yàn)證操作

#source admin-openrc

#wgethttp://download.cirros-cloud.net/0.3.4/cirros-0.3.4-x86_64-disk.img

##下載鏡像##

openstack image create "cirros" --file cirros-0.3.4-x86_64-disk.img--disk-format qcow2 --container-format bare --public

##上傳鏡像##

openstack image list ? ? ##查看結(jié)果##

四、nova服務(wù)安裝與配置

控制節(jié)點(diǎn)

1、建數(shù)據(jù)庫(kù),連庫(kù)使用的用戶名和密碼

mysql -uroot -pzx123456

CREATEDATABASE nova_api;

CREATE DATABASE nova;

GRANT?ALL PRIVILEGES ON nova_api.* TO 'nova'@'localhost' IDENTIFIED BY 'zx123456';

GRANT ALL PRIVILEGES ONnova_api.* TO 'nova'@'%' IDENTIFIED BY 'zx123456';

GRANTALL PRIVILEGES ON nova.* TO 'nova'@'localhost' IDENTIFIED BY 'zx123456';

GRANT ALL PRIVILEGES ONnova.* TO 'nova'@'%' \IDENTIFIED BY 'zx123456';

flush privileges;

2、檢查執(zhí)行結(jié)果

select user,host from mysql.user where user="nova";

3、建服務(wù)實(shí)體,keystone用戶,角色關(guān)聯(lián)

nova服務(wù)實(shí)體

openstack service create --name nova --description "OpenStack Compute" compute

建用戶

openstack user create --domain default --password-prompt nova

##提示輸入NOVA密碼##

用戶,角色,項(xiàng)目關(guān)聯(lián)

openstack role add --project service --user nova admin

keystone-api對(duì)外的端點(diǎn)

openstack endpoint create --region RegionOne compute publichttp://controller:8774/v2.1/%\(tenant_id\)s

openstack endpoint create --region RegionOne compute internalhttp://controller:8774/v2.1/%\(tenant_id\)s

openstack endpoint create --region RegionOne compute admin http://controller:8774/v2.1/%\(tenant_id\)s

4、查看結(jié)果

openstack catalog list

5、安裝nova軟件包

yum installopenstack-nova-api openstack-nova-conductor openstack-nova-consoleopenstack-nova-novncproxy openstack-nova-scheduler -y

6、修改nova配置文件

vim /etc/nova/nova.conf

[DEFAULT]

enabled_apis= osapi_compute,metadata

rpc_backend= rabbit

auth_strategy= keystone

my_ip= 192.168.22.202

use_neutron= True

firewall_driver= nova.virt.firewall.NoopFirewallDriver

[api_database]

connection = mysql+pymysql://nova:zx123456@controller/nova_api

[database]

#nova連數(shù)據(jù)庫(kù).

connection = mysql+pymysql://nova:zx123456@controller/nova

[oslo_messaging_rabbit]

rabbit_host = controller

rabbit_userid = openstack

rabbit_password = zx123456

[keystone_authtoken]

#keystone論證連接設(shè)置

auth_url=http://controller:5000

auth_url= http://controller:35357

memcached_servers= controller:11211

auth_type= password

project_domain_name= default

user_domain_name= default

project_name= service

username= nova

password= zx123456

[glance]

api_servers= http://controller:9292

[vnc]

vncserver_listen= 192.168.22.202

vncserver_proxyclient_address= 192.168.22.202

[oslo_concurrency]

#設(shè)置鎖文件地址

lock_path= /var/lib/nova/tmp

7、同步數(shù)據(jù)庫(kù)

su -s /bin/sh -c"nova-manage api_db sync" nova?su-s /bin/sh -c "nova-manage db sync" nova

##警告信息可以忽略##

8、驗(yàn)證

mysql –uroot –pzx123456

use nova;

show tables;

9、啟動(dòng)服務(wù)并開機(jī)自啟

#systemctl enable?openstack-nova-api.service?openstack-nova-consoleauth.service

openstack-nova-scheduler.service?openstack-nova-conductor.service?openstack-nova-novncproxy.service

# systemctl startopenstack-nova-api.service \

openstack-nova-consoleauth.serviceopenstack-nova-scheduler.service \

openstack-nova-conductor.service openstack-nova-novncproxy.service

計(jì)算節(jié)點(diǎn)

1、nova-compute服務(wù)安裝

yum installopenstack-nova-compute –y

2、修改配置文件

vim /etc/nova/nova.conf

[DEFAULT]

rpc_backend = rabbit

auth_strategy = keystone

#計(jì)算節(jié)點(diǎn)ip

my_ip = 192.168.22.203

use_neutron = True

firewall_driver = nova.virt.firewall.NoopFirewallDriver

[oslo_messaging_rabbit]

rabbit_host = controller

rabbit_userid = openstack

rabbit_password= zx123456

[vnc]

enabled = True

vncserver_listen= 0.0.0.0

#計(jì)算節(jié)點(diǎn)管理網(wǎng)絡(luò)ip

vncserver_proxyclient_address= 192.168.22.203

novncproxy_base_url= http://192.168.22.202:6080/vnc_auto.html

[glance]

api_servers = http://controller:9292

[oslo_concurrency]

#鎖文件

lock_path = /var/lib/nova/tmp

egrep-c '(vmx|svm)' /proc/cpuinfo

##確定您的計(jì)算節(jié)點(diǎn)是否支持虛擬機(jī)的硬件加速##

返回0,則需要配置下面:

[libvirt]

virt_type = qemu

3、啟動(dòng)服務(wù)

#systemctl enable?libvirtd.service openstack-nova-compute.service

# systemctl startlibvirtd.service openstack-nova-compute.service

驗(yàn)證操作

controller執(zhí)行下面命令:

#source /root/admin-openrc

#openstack compute servicelist


五、Neutron安裝與配置

控制節(jié)點(diǎn)

1、創(chuàng)建neutron數(shù)據(jù)庫(kù)并賦予權(quán)限

mysql –uroot –pzx123456

CREATE?DATABASE?neutron;

GRANT?ALL?PRIVILEGES?ON?neutron.*?TO?'neutron'@'localhost'?IDENTIFIED?BY?'zx123456';

GRANT?ALL?PRIVILEGES?ON?neutron.*?TO?'neutron'@'%'?IDENTIFIED?BY?'zx123456';

2、獲得admin憑證及創(chuàng)建neutron用戶

#source admin-openrc

#openstack?user?create?--domain?default?--password-prompt?neutron

##提示輸入neutron密碼##

3、添加“admin角色到“neutron用戶

openstack?role?add?--project?service?--user?neutron?admin

4、創(chuàng)建“neutron“服務(wù)實(shí)體

openstack?service?create?--name?neutron?--description?"OpenStack?Networking"?network

5、創(chuàng)建網(wǎng)絡(luò)服務(wù)API端點(diǎn)

openstack?endpoint?create?--region?RegionOnenetwork?public?http://controller:9696

openstack?endpoint?create?--region?RegionOnenetwork?internal?http://controller:9696

openstack?endpoint?create?--region?RegionOne

network?adminhttp://controller:9696

6、網(wǎng)絡(luò)選擇:Self-service network

neutron相關(guān)包安裝:

yum install openstack-neutronopenstack-neutron-ml2 openstack-neutron-linuxbridge ebtables –y

7、neutron服務(wù)配置文件

mv?/etc/neutron/neutron.conf?/etc/neutron/neutron.conf.bak

vim?/etc/neutron/neutron.conf

[DEFAULT]

core_plugin?=?ml2

service_plugins?=?router

allow_overlapping_ips?=?True

rpc_backend?=?rabbit

auth_strategy?=?keystone

notify_nova_on_port_status_changes?=?True

notify_nova_on_port_data_changes?=?True

[database]

connection?=?mysql+pymysql://neutron:zx123456@controller/neutron??#改為自己數(shù)據(jù)庫(kù)密碼

[oslo_messaging_rabbit]

rabbit_host?=?controller

rabbit_userid?=?openstack

rabbit_password?=?zx123456???#改為rabbitmq的密碼

[keystone_authtoken]

auth_uri?=?http://controller:5000

auth_url?=?http://controller:35357

memcached_servers?=?controller:11211

auth_type?=?password

project_domain_name?=?default

user_domain_name?=?default

project_name?=?service

username?=?neutron

password?=?zx123456???#改為自己neutron服務(wù)的密碼

[nova]

auth_url?=?http://controller:35357

auth_type?=?password

project_domain_name?=?default

user_domain_name?=?default

region_name?=?RegionOne

project_name?=?service

username?=?nova

password?=?zx123456??#改為自己nova服務(wù)的密碼

[oslo_concurrency]

lock_path?=?/var/lib/neutron/tmp

ML2插件的配置:

mv?/etc/neutron/plugins/ml2/ml2_conf.ini?/etc/neutron/plugins/ml2/ml2_conf.ini.bak

vim?/etc/neutron/plugins/ml2/ml2_conf.ini

[ml2]

type_drivers?=?flat,vlan,vxlan

tenant_network_types?=?vxlan

mechanism_drivers?=?linuxbridge,l2population

extension_drivers?=?port_security

[ml2_type_flat]

flat_networks?=?*

[ml2_type_vxlan]

vni_ranges?=?1:1000

[securitygroup]

enable_ipset?=?True

linuxbridge agent配置文件

mv?/etc/neutron/plugins/ml2/linuxbridge_agent.ini?/etc/neutron/plugins/ml2/linuxbridge_agent.ini.bak

vim?/etc/neutron/plugins/ml2/linuxbridge_agent.ini

[linux_bridge]

physical_interface_mappings?=?provider:eht1???#這里設(shè)置為provider網(wǎng)絡(luò)的網(wǎng)卡名稱,我這里eth1

[vxlan]

enable_vxlan?=?True

local_ip?=?192.168.22.202??#這個(gè)ip地址我們使用的是管理網(wǎng)段的ip?(192.168.22.202)

l2_population?=?True

[securitygroup]

enable_security_group?=?True

firewall_driver?=?neutron.agent.linux.iptables_firewall.IptablesFirewallDriver

L3 agent配置文件:

mv?/etc/neutron/l3_agent.ini?/etc/neutron/l3_agent.ini.bak

vim?/etc/neutron/l3_agent.ini

[DEFAULT]

interface_driver?=?neutron.agent.linux.interface.BridgeInterfaceDriver

external_network_bridge?=#留空

dhcp agent配置

mv?/etc/neutron/dhcp_agent.ini?/etc/neutron/dhcp_agent.ini.bak

vim?/etc/neutron/dhcp_agent.ini

[DEFAULT]

interface_driver?=?neutron.agent.linux.interface.BridgeInterfaceDriver

dhcp_driver?=?neutron.agent.linux.dhcp.Dnsmasq

enable_isolated_metadata?=?True

配置metadata agent

mv?/etc/neutron/metadata_agent.ini?/etc/neutron/metadata_agent.ini.bak

vim?/etc/neutron/metadata_agent.ini

[DEFAULT]

nova_metadata_ip?=?controller

metadata_proxy_shared_secret?=?zx123456#修改為自己的METADATA_SECRET,也可以不修改,要和nova服務(wù)配置一樣

配置nova服務(wù)使用network

vim?/etc/nova/nova.conf#增加以下內(nèi)容

[neutron]

url?=?http://controller:9696

auth_url?=?http://controller:35357

auth_type?=?password

project_domain_name?=?default

user_domain_name?=?default

region_name?=?RegionOne

project_name?=?service

username?=?neutron

password?=?zx123456#改為自己neutron服務(wù)密碼

service_metadata_proxy=?True

metadata_proxy_shared_secret=?zx123456???#和上面的METADATA對(duì)應(yīng)

8、給ML2插件做個(gè)軟連接

ln?-s?/etc/neutron/plugins/ml2/ml2_conf.ini?/etc/neutron/plugin.ini

9、同步數(shù)據(jù)庫(kù)

su?-s?/bin/sh?-c?"neutron-db-manage?--config-file?/etc/neutron/neutron.conf??--config-file?/etc/neutron/plugins/ml2/ml2_conf.ini?upgrade?head"?neutron

10、重啟nova-api

systemctl?restart?openstack-nova-api.service

11、啟動(dòng)neutron相關(guān)服務(wù),并設(shè)置開機(jī)啟動(dòng)

systemctl?enable?neutron-server.service???neutron-linuxbridge-agent.service?neutron-dhcp-agent.service???neutron-metadata-agent.service

neutron-l3-agent.service

#?systemctl?start?neutron-server.service???neutron-linuxbridge-agent.service?neutron-dhcp-agent.service???neutron-metadata-agent.serviceneutron-l3-agent.service

compute節(jié)點(diǎn)配置

1、安裝neutron服務(wù)

yum?install?openstack-neutron-linuxbridge?ebtables?ipset

2、配置

neutron服務(wù)配置

mv?/etc/neutron/neutron.conf?/etc/neutron/neutron.conf.bak

vim?/etc/neutron/neutron.conf

[DEFAULT]

rpc_backend?=?rabbit

auth_strategy?=?keystone

[oslo_messaging_rabbit]

rabbit_host?=?controller

rabbit_userid?=?openstack

rabbit_password?=?zx123456???#改為rabbit密碼

[keystone_authtoken]

auth_uri?=?http://controller:5000

auth_url?=?http://controller:35357

memcached_servers?=?controller:11211

auth_type?=?password

project_domain_name?=?default

user_domain_name?=?default

project_name?=?service

username?=?neutron

password?=?zx123456????????#改為自己neutron服務(wù)密碼

[oslo_concurrency]

lock_path?=?/var/lib/neutron/tmp

linuxbridge agent配置

mv?/etc/neutron/plugins/ml2/linuxbridge_agent.ini?/etc/neutron/plugins/ml2/linuxbridge_agent.ini.bak

vim?/etc/neutron/plugins/ml2/linuxbridge_agent.ini

[linux_bridge]

physical_interface_mappings?=?provider:eth1??#改為provider網(wǎng)絡(luò)的網(wǎng)卡,這里是eth1

[vxlan]

enable_vxlan?=?True

local_ip?=?192.168.22.203#改為本機(jī)managent網(wǎng)絡(luò)的ip地址192.168.22.203

l2_population?=?True

[securitygroup]

enable_security_group?=?True

firewall_driver?=?neutron.agent.linux.iptables_firewall.IptablesFirewallDriver

nova服務(wù)使用network

vim??/etc/nova/nova.conf??#增加以下內(nèi)容

[neutron]

url?=?http://controller:9696

auth_url?=?http://controller:35357

auth_type?=?password

project_domain_name?=?default

user_domain_name?=?default

region_name?=?RegionOne

project_name?=?service

username?=?neutron

password?=?zx123456????#改為自己的neutron服務(wù)密碼

3、重啟nova服務(wù)

systemctl?restart?openstack-nova-compute.service

4、啟動(dòng)neutron

systemctl?enable?neutron-linuxbridge-agent.service

systemctl?start?neutron-linuxbridge-agent.service

驗(yàn)證

controller節(jié)點(diǎn)上執(zhí)行:

source?/root/admin-openrc

neutron?ext-list


neutron?agent-list


Neutron服務(wù)安裝完成。

六、Dashboard安裝配置

控制節(jié)點(diǎn)

1、安裝面板

yum installopenstack-dashboard –y

2、配置相應(yīng)設(shè)置

vim /etc/openstack-dashboard/local_settings

修改如下配置:

OPENSTACK_HOST ="controller"

ALLOWED_HOSTS = ['*', ]

CACHES = {

'default': {

'BACKEND':'django.core.cache.backends.locmem.LocMemCache',

'LOCATION': '192.168.22.202:11211',

},

}

OPENSTACK_KEYSTONE_URL ="http://%s:5000/v3" % OPENSTACK_HOST

OPENSTACK_KEYSTONE_MULTIDOMAIN_SUPPORT= True

OPENSTACK_API_VERSIONS = {

"identity": 3,

"image": 2,

"volume": 2,

}

OPENSTACK_KEYSTONE_DEFAULT_DOMAIN= "default"

OPENSTACK_KEYSTONE_DEFAULT_ROLE= "user"

TIME_ZONE = "UTC"

3、重啟apachememcaced服務(wù)

systemctl enablehttpd.service memcached.service

systemctl restarthttpd.service memcached.service

systemctl statushttpd.service memcached.service

驗(yàn)證

http://192.168.22.202/dashboard

最后編輯于
?著作權(quán)歸作者所有,轉(zhuǎn)載或內(nèi)容合作請(qǐng)聯(lián)系作者
【社區(qū)內(nèi)容提示】社區(qū)部分內(nèi)容疑似由AI輔助生成,瀏覽時(shí)請(qǐng)結(jié)合常識(shí)與多方信息審慎甄別。
平臺(tái)聲明:文章內(nèi)容(如有圖片或視頻亦包括在內(nèi))由作者上傳并發(fā)布,文章內(nèi)容僅代表作者本人觀點(diǎn),簡(jiǎn)書系信息發(fā)布平臺(tái),僅提供信息存儲(chǔ)服務(wù)。

相關(guān)閱讀更多精彩內(nèi)容

友情鏈接更多精彩內(nèi)容