原文  http://dl528888.blog.51cto.com/2382721/1435415

我使用过puppet(地址是http://dl528888.blog.51cto.com/2382721/1040552)与salt(地址是http://dl528888.blog.51cto.com/2382721/1312503),但这2个软件都需要安装客户端,并且更新很快,每次更新都是令人蛋疼的事,尤其是salt,喜欢他的命令功能,但bug太多,不敢在公司线上使用,puppet虽然稳定,但弄命令执行的时候,需要mco配置,非常麻烦,我公司由于跟多家公司合作,很多业务没办法安装客户端,所以没办法使用puppet与salt(虽然salt有ssh,但不太好使),最后找到了ansible,他既有命令执行也有配置管理,关键开发它的语言是python,paramiko进行ssh连接,跟我之前开发的自动管理软件都是使用paramiko进行操作(http://dl528888.blog.51cto.com/2382721/1159510),不需要安装客户端,满足我的需求,下面给大家介绍一下我是如何使用的。

一、安装

1、安装第三方epel源

centos 5的epel

rpm -ivh http://mirrors.sohu.com/fedora-epel/5/x86_64/epel-release-5-4.noarch.rpm
rpm -ivh http://mirrors.sohu.com/fedora-epel/6/x86_64/epel-release-6-8.noarch.rpm
17:01:30 # cat /etc/issue
CentOS release 6.5 (Final)
Kernel \r on an \m

由于是6版本所以安装6的epel

yum install ansible

如果需要自定义module或者想阅读源码、使用最新版本,可以去github里下载源码

git clone https://github.com/ansible/ansible.git
17:22:08 # cd /etc/ansible/
root@ip-10-10-10-10:/etc/ansible
17:23:27 # ll
total 12
-rw-r--r-- 1 root root 5113 Dec 29 03:00 ansible.cfg
-rw-r--r-- 1 root root  965 Dec 29 03:00 hosts
其中ansible.cfg是配置文件,hosts是管理主机信息
17:24:44 # cat hosts
172.17.0.2:49154
172.17.0.4:49155
[zabbix]
172.17.0.2:49154
172.17.0.4:49155
[vpn]
172.17.0.10
16:20:57 # ansible 127* -m ping
SSH password:
127.0.0.1 | success >> {
  "changed": false,
  "ping": "pong"
}

root@ip-10-10-10-10:/etc/ansible
16:21:05 # ansible 172* -m ping
SSH password:
172.17.0.5 | success >> {
  "changed": false,
  "ping": "pong"
}

172.17.0.4 | success >> {
  "changed": false,
  "ping": "pong"
}

172.17.0.2 | success >> {
  "changed": false,
  "ping": "pong"
}

如果你有多台服务器的话,想并发运行,可以使用-f参数,默认是并发5

11:30:35 # ansible vpn -m shell -a "echo $TERM" -u test --private-key=denglei -K
SSH password:
sudo password [defaults to SSH password]:
172.17.0.10 | success | rc=0 >>
xterm
11:30:44 # ansible vpn -m copy -a "src=/tmp/server dest=/tmp/server" -u test --private-key=denglei -K
SSH password:
sudo password [defaults to SSH password]:
172.17.0.10 | success >> {
  "changed": true,
  "dest": "/tmp/server",
  "gid": 505,
  "group": "test",
  "md5sum": "e8b32bc4d7b564ac6075a1418ad8841e",
  "mode": "0664",
  "owner": "test",
  "size": 7,
  "src": "/home/test/.ansible/tmp/ansible-1402630447.45-253524136818424/source",
  "state": "file",
  "uid": 503
}

去客户端查看文件是否传输过来

11:34:57 # ansible vpn -m shell -a "ls -l /tmp/" -u test --private-key=denglei -K
SSH password:
sudo password [defaults to SSH password]:
172.17.0.10 | success | rc=0 >>
total 76
-rw-r--r-- 1 root   root   41692 May 21 13:02 config
-rw-r--r-- 1 root   root    1228 Jun 12 18:24 install_pptpd_vpn.sh
-rw-rw-r-- 1 test   test       7 Jun 13 19:33 server
-rw-r--r-- 1 root   root      82 Jun 12 18:21 test.log
-rw-r--r-- 1 root   root     290 Jun 12 18:21 test.sh
-rw-r--r-- 1 root   root    2444 Apr 28  2012 vpn_centos6.sh
-rw------- 1 root   root     727 Jun 10 18:21 yum_save_tx-2014-06-10-18-21UrqDAp.yumtx
-rw-rw-r-- 1 zabbix zabbix  3124 Jun 12 21:32 zabbix_agentd.log
-rw-rw-r-- 1 zabbix zabbix     5 Jun 12 21:32 zabbix_agentd.pid
11:35:09 # ansible vpn -m shell -a "cat /tmp/server" -u test --private-key=denglei -K
SSH password:
sudo password [defaults to SSH password]:
172.17.0.10 | success | rc=0 >>
server

还有另外一个模块file,可以修改用户与权限

13:50:07 # ansible vpn -m shell -a "ls -l /tmp/server" -u test --private-key=denglei -K
SSH password:
sudo password [defaults to SSH password]:
172.17.0.10 | success | rc=0 >>
-rw-rw-r-- 1 test test 7 Jun 13 19:33 /tmp/server

server文件是664权限,用户与组都是test

13:51:17 # ansible vpn -m file -a "dest=/tmp/server mode=755 owner=root group=root" -u test --private-key=denglei -K
SSH password:
sudo password [defaults to SSH password]:
172.17.0.10 | success >> {
  "changed": true,
  "gid": 0,
  "group": "root",
  "mode": "0755",
  "owner": "root",
  "path": "/tmp/server",
  "size": 7,
  "state": "file",
  "uid": 0
}

root@ip-10-10-10-10:/etc/ansible
13:51:31 # ansible vpn -m shell -a "ls -l /tmp/server" -u test --private-key=denglei -K
SSH password:
sudo password [defaults to SSH password]:
172.17.0.10 | success | rc=0 >>
-rwxr-xr-x 1 root root 7 Jun 13 19:33 /tmp/server
14:20:30 # ansible vpn -m yum -a "name=nmap state=installed" -u test --private-key=denglei -K
SSH password:
sudo password [defaults to SSH password]:
172.17.0.10 | success >> {
  "changed": true,
  "msg": "",
  "rc": 0,
  "results": [
    "Loaded plugins: fastestmirror, security\nLoading mirror speeds from cached hostfile\n * epel: mirrors.hust.edu.cn\nSetting up Install Process\nResolving Dependencies\n--> Running transaction check\n---> Package nmap.x86_64 2:5.51-3.el6 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package		Arch			 Version				   Repository	  Size\n================================================================================\nInstalling:\n nmap		   x86_64		   2:5.51-3.el6			  Base		   2.7 M\n\nTransaction Summary\n================================================================================\nInstall	   1 Package(s)\n\nTotal download size: 2.7 M\nInstalled size: 9.7 M\nDownloading Packages:\nRunning rpm_check_debug\nRunning Transaction Test\nTransaction Test Succeeded\nRunning Transaction\n\r  Installing : 2:nmap-5.51-3.el6.x86_64									 1/1 \n\r  Verifying  : 2:nmap-5.51-3.el6.x86_64									 1/1 \n\nInstalled:\n  nmap.x86_64 2:5.51-3.el6													  \n\nComplete!\n"
  ]
}

三、playbook配置管理

A.进行一下shell模块操作,测试删除文件

先查看一下客户端的server-test是否存在

[root@puppet ansible]# ansible vpn -m shell -a "ls -l /tmp/server-test" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
-rw-rw-r-- 1 test test 7 Jun 14 00:37 /tmp/server-test

然后写一个删除的playbook

[root@puppet ansible]# cat test.yml
---
- hosts: vpn
  remote_user: test
  tasks:
  - name: delete /tmp/server-test
    shell: rm -rf /tmp/server-test
[root@puppet ansible]# ansible-playbook test.yml  --private-key=/root/denglei -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [delete /tmp/server-test] ***********************************************
changed: [172.17.0.10]

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=1    unreachable=0    failed=0
[root@puppet ansible]# ansible vpn -m shell -a "ls -l /tmp/server-test" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | FAILED | rc=2 >>
ls: cannot access /tmp/server-test: No such file or directory

B.进行一下template模块操作,测试文件传输

[root@puppet ansible]# cat copy.yml
---
- hosts: vpn
  remote_user: test
  tasks:
  - name: copy local server to client /tmp/server-test
    template: src=/tmp/server dest=/tmp/server-test
[root@puppet ansible]# ansible-playbook copy.yml  --private-key=/root/denglei -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [copy local server to client /tmp/server-test] **************************
changed: [172.17.0.10]

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=1    unreachable=0    failed=0   

[root@puppet ansible]# ansible vpn -m shell -a "ls -l /tmp/server-test" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
-rw-rw-r-- 1 test test 7 Jun 14 17:07 /tmp/server-test

C.使用service模块,测试一下服务重启

[root@puppet ansible]# ansible vpn -m shell -a "/etc/init.d/pptpd stop" -u test --private-key=/root/denglei -k  -K -s
SSH password:
sudo password [defaults to SSH password]:
172.17.0.10 | success | rc=0 >>
Shutting down pptpd:                                       [  OK  ]
[root@puppet ansible]# ansible vpn -m shell -a "/etc/init.d/pptpd stop" -u test --private-key=/root/denglei -k  -K -s
SSH password:
sudo password [defaults to SSH password]:
172.17.0.10 | success | rc=0 >>
Shutting down pptpd:                                       [  OK  ]
[root@puppet ansible]# ansible vpn -m shell -a "ls -l /tmp/" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
total 84
-rw-r--r-- 1 root   root   41692 May 21 13:02 config
-rw-r--r-- 1 root   root    1228 Jun 12 18:24 install_pptpd_vpn.sh
-rwxr-xr-x 1 root   root       7 Jun 13 19:33 server
-rw-rw-r-- 1 test   test       7 Jun 14 17:07 server-test
-rw-r--r-- 1 root   root      82 Jun 12 18:21 test.log
-rw-r--r-- 1 root   root     290 Jun 12 18:21 test.sh
-rw-r--r-- 1 root   root    2444 Apr 28  2012 vpn_centos6.sh
-rw------- 1 root   root     727 Jun 10 18:21 yum_save_tx-2014-06-10-18-21UrqDAp.yumtx
-rw-rw-r-- 1 zabbix zabbix  4664 Jun 14 00:30 zabbix_agentd.log
-rw-rw-r-- 1 zabbix zabbix     5 Jun 14 00:30 zabbix_agentd.pid

[root@puppet ansible]# vim multi_copy.yml
[root@puppet ansible]# cat multi_copy.yml
---
- hosts: vpn
  remote_user: test
  gather_facts: False
  tasks:
  - name: copy local server to client /tmp/server-test
    template: src=/tmp/server dest=/tmp/test-{{item}}
    with_items:
      - server-1
      - server-2
      - server-3
[root@puppet ansible]# ansible-playbook multi_copy.yml --private-key=/root/denglei -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

TASK: [copy local server to client /tmp/server-test] **************************
changed: [172.17.0.10] => (item=server-1)
changed: [172.17.0.10] => (item=server-2)
changed: [172.17.0.10] => (item=server-3)

PLAY RECAP ********************************************************************
172.17.0.10             : ok=1    changed=1    unreachable=0    failed=0   

[root@puppet ansible]# ansible vpn -m shell -a "ls -l /tmp/" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
total 96
-rw-r--r-- 1 root   root   41692 May 21 13:02 config
-rw-r--r-- 1 root   root    1228 Jun 12 18:24 install_pptpd_vpn.sh
-rwxr-xr-x 1 root   root       7 Jun 13 19:33 server
-rw-rw-r-- 1 test   test       7 Jun 14 17:07 server-test
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-1
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-2
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-3
-rw-r--r-- 1 root   root      82 Jun 12 18:21 test.log
-rw-r--r-- 1 root   root     290 Jun 12 18:21 test.sh
-rw-r--r-- 1 root   root    2444 Apr 28  2012 vpn_centos6.sh
-rw------- 1 root   root     727 Jun 10 18:21 yum_save_tx-2014-06-10-18-21UrqDAp.yumtx
-rw-rw-r-- 1 zabbix zabbix  4664 Jun 14 00:30 zabbix_agentd.log
-rw-rw-r-- 1 zabbix zabbix     5 Jun 14 00:30 zabbix_agentd.pid
[root@puppet ansible]# ansible vpn -m shell -a "ls -l /tmp/" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
total 96
-rw-r--r-- 1 root   root   41692 May 21 13:02 config
-rw-r--r-- 1 root   root    1228 Jun 12 18:24 install_pptpd_vpn.sh
-rwxr-xr-x 1 root   root       7 Jun 13 19:33 server
-rw-rw-r-- 1 test   test       7 Jun 14 17:07 server-test
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-1
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-2
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-3
-rw-r--r-- 1 root   root      82 Jun 12 18:21 test.log
-rw-r--r-- 1 root   root     290 Jun 12 18:21 test.sh
-rw-r--r-- 1 root   root    2444 Apr 28  2012 vpn_centos6.sh
-rw------- 1 root   root     727 Jun 10 18:21 yum_save_tx-2014-06-10-18-21UrqDAp.yumtx
-rw-rw-r-- 1 zabbix zabbix  4664 Jun 14 00:30 zabbix_agentd.log
-rw-rw-r-- 1 zabbix zabbix     5 Jun 14 00:30 zabbix_agentd.pid

[root@puppet ansible]# cat delete.yml
---
- hosts: vpn
  remote_user: test
  gather_facts: True
  tasks:
  - name: if system is centos,then rm /tmp/test-server-1
    shell: rm -rf /tmp/test-server-1
    when: ansible_os_family == "RedHat"

[root@puppet ansible]# ansible-playbook delete.yml --private-key=/root/denglei -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [if system is centos,then rm /tmp/test-server-1] ************************
changed: [172.17.0.10]

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=1    unreachable=0    failed=0   

[root@puppet ansible]# ansible vpn -m shell -a "ls -l /tmp/" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
total 92
-rw-r--r-- 1 root   root   41692 May 21 13:02 config
-rw-r--r-- 1 root   root    1228 Jun 12 18:24 install_pptpd_vpn.sh
-rwxr-xr-x 1 root   root       7 Jun 13 19:33 server
-rw-rw-r-- 1 test   test       7 Jun 14 17:07 server-test
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-2
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-3
-rw-r--r-- 1 root   root      82 Jun 12 18:21 test.log
-rw-r--r-- 1 root   root     290 Jun 12 18:21 test.sh
-rw-r--r-- 1 root   root    2444 Apr 28  2012 vpn_centos6.sh
-rw------- 1 root   root     727 Jun 10 18:21 yum_save_tx-2014-06-10-18-21UrqDAp.yumtx
-rw-rw-r-- 1 zabbix zabbix  4664 Jun 14 00:30 zabbix_agentd.log
-rw-rw-r-- 1 zabbix zabbix     5 Jun 14 00:30 zabbix_agentd.pid

F.debug输出

[root@puppet ansible]# cat debug.yml
---
- hosts: vpn
  remote_user: test
  gather_facts: True
  tasks:
  - name: debug to print interface
    debug: msg="{{item}}"
    with_items: ansible_default_ipv4.address
[root@puppet ansible]# ansible-playbook debug.yml --private-key=/root/denglei -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [debug to print interface] **********************************************
ok: [172.17.0.10] => (item=10.10.32.34) => {
    "item": "10.10.32.34",
    "msg": "10.10.32.34"
}

G.check模式,仅检测,但不实行

[root@puppet ansible]# ansible vpn -m shell -a "ls -l /tmp/" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
total 92
-rw-r--r-- 1 root   root   41692 May 21 13:02 config
-rw-r--r-- 1 root   root    1228 Jun 12 18:24 install_pptpd_vpn.sh
-rwxr-xr-x 1 root   root       7 Jun 13 19:33 server
-rw-rw-r-- 1 test   test       7 Jun 14 17:07 server-test
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-2
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-3
-rw-r--r-- 1 root   root      82 Jun 12 18:21 test.log
-rw-r--r-- 1 root   root     290 Jun 12 18:21 test.sh
-rw-r--r-- 1 root   root    2444 Apr 28  2012 vpn_centos6.sh
-rw------- 1 root   root     727 Jun 10 18:21 yum_save_tx-2014-06-10-18-21UrqDAp.yumtx
-rw-rw-r-- 1 zabbix zabbix  4664 Jun 14 00:30 zabbix_agentd.log
-rw-rw-r-- 1 zabbix zabbix     5 Jun 14 00:30 zabbix_agentd.pid

[root@puppet ansible]# ansible-playbook copy.yml --private-key=/root/denglei -k --check
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [copy local server to client /tmp/server-test] **************************
changed: [172.17.0.10] => (item=server-1)
ok: [172.17.0.10] => (item=server-2)
ok: [172.17.0.10] => (item=server-3)

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=1    unreachable=0    failed=0   

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=0    unreachable=0    failed=0

使用diff与不使用作对比

[root@puppet ansible]# ansible vpn -m shell -a "rm -rf  /tmp/test-server-1" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>

[root@puppet ansible]# ansible vpn -m shell -a "ls -l /tmp/" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
total 92
-rw-r--r-- 1 root   root   41692 May 21 13:02 config
-rw-r--r-- 1 root   root    1228 Jun 12 18:24 install_pptpd_vpn.sh
-rwxr-xr-x 1 root   root       7 Jun 13 19:33 server
-rw-rw-r-- 1 test   test       7 Jun 14 17:07 server-test
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-2
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-3
-rw-r--r-- 1 root   root      82 Jun 12 18:21 test.log
-rw-r--r-- 1 root   root     290 Jun 12 18:21 test.sh
-rw-r--r-- 1 root   root    2444 Apr 28  2012 vpn_centos6.sh
-rw------- 1 root   root     727 Jun 10 18:21 yum_save_tx-2014-06-10-18-21UrqDAp.yumtx
-rw-rw-r-- 1 zabbix zabbix  4664 Jun 14 00:30 zabbix_agentd.log
-rw-rw-r-- 1 zabbix zabbix     5 Jun 14 00:30 zabbix_agentd.pid

[root@puppet ansible]# ansible-playbook copy.yml --private-key=/root/denglei -k --diff
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

GATHERING FACTS *************************************************************** 

ok: [172.17.0.10]

TASK: [copy local server to client /tmp/server-test] **************************
--- before
+++ after
@@ -1,0 +1,1 @@
+server

changed: [172.17.0.10] => (item=server-1)

ok: [172.17.0.10] => (item=server-2)

ok: [172.17.0.10] => (item=server-3)

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=1    unreachable=0    failed=0

类似puppet的fact、salt的grains

[root@puppet ansible]# ansible vpn -m setup -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success >> {
  "ansible_facts": {
    "ansible_all_ipv4_addresses": [
      "10.10.32.34",
      "10.10.32.34"
    ],
    "ansible_all_ipv6_addresses": [
      "fe80::f816:3eff:fe3e:1667"
    ],
    "ansible_architecture": "x86_64",
    "ansible_bios_date": "01/01/2007",
    "ansible_bios_version": "Bochs",
    "ansible_cmdline": {
      "KEYBOARDTYPE": "pc",
      "KEYTABLE": "us",
      "LANG": "zh_CN.UTF-8",
      "quiet": true,
      "rd_NO_DM": true,
      "rd_NO_LUKS": true,
      "rd_NO_LVM": true,
      "rd_NO_MD": true,
      "rhgb": true,
      "ro": true,
      "root": "UUID=c6042d42-8edb-4bb4-a31b-2197b043500c"
    },

数据太多,我就展示部分。

10、优化ansible-playbook运行时间

默认playbook是进行客户端fact搜集,一般如果你配置里没有使用fact的话,可以关闭这样就能减少运行时间

[root@puppet ansible]# cat shell.yml
---
- hosts: vpn
  remote_user: test
#  gather_facts: False
  tasks:
  - name: echo hi
    shell: echo "hi"
[root@puppet ansible]# time ansible-playbook shell.yml -u test --private-key=/root/denglei -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [echo hi] ***************************************************************
changed: [172.17.0.10]

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=1    unreachable=0    failed=0   

real	0m8.396s
user	0m0.796s
sys	0m0.158s
[root@puppet ansible]# time ansible-playbook shell.yml -u test --private-key=/root/denglei -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [echo hi] ***************************************************************
changed: [172.17.0.10]

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=1    unreachable=0    failed=0   

real	0m3.309s
user	0m0.724s
sys	0m0.108s
[root@puppet ansible]# time ansible-playbook shell.yml -u test --private-key=/root/denglei -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [echo hi] ***************************************************************
changed: [172.17.0.10]

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=1    unreachable=0    failed=0   

real	0m3.409s
user	0m0.716s
sys	0m0.099s

可以看到第一次8s,后2次都是3s

下面是优化后(未使用fact)

[root@puppet ansible]# cat shell.yml
---
- hosts: vpn
  remote_user: test
  gather_facts: False
  tasks:
  - name: echo hi
    shell: echo "hi"
[root@puppet ansible]# time ansible-playbook shell.yml -u test --private-key=/root/denglei -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

TASK: [echo hi] ***************************************************************
changed: [172.17.0.10]

PLAY RECAP ********************************************************************
172.17.0.10             : ok=1    changed=1    unreachable=0    failed=0   

real	0m2.758s
user	0m0.585s
sys	0m0.096s
[root@puppet ansible]# time ansible-playbook shell.yml -u test --private-key=/root/denglei -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

TASK: [echo hi] ***************************************************************
changed: [172.17.0.10]

PLAY RECAP ********************************************************************
172.17.0.10             : ok=1    changed=1    unreachable=0    failed=0   

real	0m2.359s
user	0m0.565s
sys	0m0.077s

默认的模块放到/usr/share/ansible

在这个目录创建一个目录hostname,然后把下面文件放到此目录

15:03:26 # cat /usr/share/ansible/hostname/hostname
#!/bin/bash
#This script is modify system hostname
set -e
# This is potentially dangerous
source ${1}
OLDHOSTNAME="$(hostname)"
CHANGED="False"
if [ ! -z "$hostname" -a "${hostname}x" != "${OLDHOSTNAME}x" ];
then
hostname $hostname
OLDHOSTNAME="$hostname"
CHANGED="True"
fi
echo "hostname=${OLDHOSTNAME} changed=${CHANGED}"
exit 0

查看一下vpn的当前hostname

15:03:29 # ansible vpn -m shell -a "hostname" -u test --private-key=denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
ip-10-10-32-34
15:04:14 # cat /etc/ansible/hostname.yml
- name: Test the hostname file
  hosts: vpn
  tasks:
    - name: Set the hostname
      hostname: hostname=ip-10-10-32-34
15:04:37 # ansible-playbook hostname.yml -u test --private-key=denglei -M /usr/share/ansible/hostname -k
SSH password: 

PLAY [Test the hostname file] ************************************************* 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [Set the hostname] ******************************************************
ok: [172.17.0.10]

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=0    unreachable=0    failed=0

然后修改一下hostname.yml的主机名

16:20:00 # cat hostname.yml
- name: Test the hostname file
  hosts: vpn
  tasks:
    - name: Set the hostname
      hostname: hostname=ip-10-10-32-34-test
16:26:46 # ansible-playbook hostname.yml -u test --private-key=denglei -M /usr/share/ansible/hostname -k -K -s
SSH password:
sudo password [defaults to SSH password]: 

PLAY [Test the hostname file] ************************************************* 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [Set the hostname] ******************************************************
changed: [172.17.0.10]

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=1    unreachable=0    failed=0   

root@ip-10-10-10-10:/etc/ansible
16:26:55 # ansible vpn -m shell -a "hostname" -u test --private-key=denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
ip-10-10-32-34-test

扩展var就是在playbook的yml里写入变量,在执行的时候制定变量从而执行,大大的提供了重复使用率

[root@puppet ansible]# ansible vpn -m shell -a "ls -l /tmp/" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
total 96
-rw-r--r-- 1 root   root   41692 May 21 13:02 config
-rw-r--r-- 1 root   root    1228 Jun 12 18:24 install_pptpd_vpn.sh
-rwxr-xr-x 1 root   root       7 Jun 13 19:33 server
-rw-rw-r-- 1 test   test       7 Jun 14 17:07 server-test
-rw-rw-r-- 1 test   test       7 Jun 18 01:44 test-server-1
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-2
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-3
-rw-r--r-- 1 root   root      82 Jun 12 18:21 test.log
-rw-r--r-- 1 root   root     290 Jun 12 18:21 test.sh
-rw-r--r-- 1 root   root    2444 Apr 28  2012 vpn_centos6.sh
-rw------- 1 root   root     727 Jun 10 18:21 yum_save_tx-2014-06-10-18-21UrqDAp.yumtx
-rw-rw-r-- 1 zabbix zabbix  4664 Jun 14 00:30 zabbix_agentd.log
-rw-rw-r-- 1 zabbix zabbix     5 Jun 14 00:30 zabbix_agentd.pid

可以看到有test-server-1文件

在看看playbook文件内容

[root@puppet ansible]# cat delete_vars.yml
---
- hosts: {{host}}
  remote_user: {{user}}
  gather_facts: {{gather}}
  tasks:
  - name: if system is centos,then rm /tmp/test-server-1
    shell: rm -rf /tmp/test-server-1
    when: ansible_os_family == "RedHat"

执行前先检测一下语法是否有问题,使用--synctax-check

[root@puppet ansible]#   ansible-playbook delete_vars.yml --private-key=/root/denglei --extra-vars "host=vpn user=test gather=False" -k --syntax-check
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

ERROR: Syntax Error while loading YAML script, delete_vars.yml
Note: The error may actually appear before this position: line 2, column 11

---
- hosts: {{host}}
      ^
This one looks easy to fix.  YAML thought it was looking for the start of a
hash/dictionary and was confused to see a second "{".  Most likely this was
meant to be an ansible template evaluation instead, so we have to give the
parser a small hint that we wanted a string instead. The solution here is to
just quote the entire value.

For instance, if the original line was:

  app_path: {{ base_path }}/foo

It should be written as:

  app_path: "{{ base_path }}/foo"

We could be wrong, but this one looks like it might be an issue with
missing quotes.  Always quote template expression brackets when they
start a value. For instance:			

  with_items:
    - {{ foo }}

Should be written as:

  with_items:
    - "{{ foo }}"	  

This one looks easy to fix.  YAML thought it was looking for the start of a
hash/dictionary and was confused to see a second "{".  Most likely this was
meant to be an ansible template evaluation instead, so we have to give the
parser a small hint that we wanted a string instead. The solution here is to
just quote the entire value.

For instance, if the original line was:

  app_path: {{ base_path }}/foo

It should be written as:

  app_path: "{{ base_path }}/foo"

解决方法是把var的变量前后添加""或者''

[root@puppet ansible]# cat delete_vars.yml
---
- hosts: "{{host}}"
  remote_user: "{{user}}"
  gather_facts: "{{gather}}"
  tasks:
  - name: if system is centos,then rm /tmp/test-server-1
    shell: rm -rf /tmp/test-server-1
    when: ansible_os_family == "RedHat"
[root@puppet ansible]#   ansible-playbook delete_vars.yml --private-key=/root/denglei --extra-vars "host=vpn user=test gather=False" -k --syntax-check
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

playbook: delete_vars.yml

没有问题了,在运行一下

[root@puppet ansible]#   ansible-playbook delete_vars.yml --private-key=/root/denglei --extra-vars "host=vpn user=test gather=False" -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

TASK: [if system is centos,then rm /tmp/test-server-1] ************************
fatal: [172.17.0.10] => error while evaluating conditional: ansible_os_family == "RedHat"

FATAL: all hosts have already failed -- aborting

PLAY RECAP ********************************************************************
           to retry, use: --limit @/root/delete_vars.retry

172.17.0.10             : ok=0    changed=0    unreachable=1    failed=0

无法运行,原因是我yml里制定了获取fact信息后,判断如果是redhat系列系统才删除,而我在运行的指定不收集fact,下面在指定收集fact

[root@puppet ansible]#   ansible-playbook delete_vars.yml --private-key=/root/denglei --extra-vars "host=vpn user=test gather=True" -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [if system is centos,then rm /tmp/test-server-1] ************************
changed: [172.17.0.10]

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=1    unreachable=0    failed=0
[root@puppet ansible]# ansible vpn -m shell -a "ls -l /tmp/" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
total 92
-rw-r--r-- 1 root   root   41692 May 21 13:02 config
-rw-r--r-- 1 root   root    1228 Jun 12 18:24 install_pptpd_vpn.sh
-rwxr-xr-x 1 root   root       7 Jun 13 19:33 server
-rw-rw-r-- 1 test   test       7 Jun 14 17:07 server-test
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-2
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-3
-rw-r--r-- 1 root   root      82 Jun 12 18:21 test.log
-rw-r--r-- 1 root   root     290 Jun 12 18:21 test.sh
-rw-r--r-- 1 root   root    2444 Apr 28  2012 vpn_centos6.sh
-rw------- 1 root   root     727 Jun 10 18:21 yum_save_tx-2014-06-10-18-21UrqDAp.yumtx
-rw-rw-r-- 1 zabbix zabbix  4664 Jun 14 00:30 zabbix_agentd.log
-rw-rw-r-- 1 zabbix zabbix     5 Jun 14 00:30 zabbix_agentd.pid

13、tags

使用tag可以让playbook选择性的运行程序

[root@puppet ansible]# ansible vpn -m shell -a "ls -l /tmp/" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
total 92
-rw-r--r-- 1 root   root   41692 May 21 13:02 config
-rw-r--r-- 1 root   root    1228 Jun 12 18:24 install_pptpd_vpn.sh
-rwxr-xr-x 1 root   root       7 Jun 13 19:33 server
-rw-rw-r-- 1 test   test       7 Jun 14 17:07 server-test
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-2
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-3
-rw-r--r-- 1 root   root      82 Jun 12 18:21 test.log
-rw-r--r-- 1 root   root     290 Jun 12 18:21 test.sh
-rw-r--r-- 1 root   root    2444 Apr 28  2012 vpn_centos6.sh
-rw------- 1 root   root     727 Jun 10 18:21 yum_save_tx-2014-06-10-18-21UrqDAp.yumtx
-rw-rw-r-- 1 zabbix zabbix  4664 Jun 14 00:30 zabbix_agentd.log
-rw-rw-r-- 1 zabbix zabbix     5 Jun 14 00:30 zabbix_agentd.pid
[root@puppet ansible]# cat delete_vars_tags.yml
---
- hosts: "{{host}}"
  remote_user: "{{user}}"
  gather_facts: "{{gather}}"
  tasks:
  - name: if system is centos,then rm /tmp/test-server-1
    shell: rm -rf /tmp/test-server-1
    when: ansible_os_family == "RedHat"
    tags: server-1
  - name: if system is centos,then rm /tmp/test-server-2
    shell: rm -rf /tmp/test-server-2
    when: ansible_os_family == "RedHat"
    tags: server-2
[root@puppet ansible]#   ansible-playbook delete_vars_tags.yml --private-key=/root/denglei --extra-vars "host=vpn user=test gather=True" --tags server-2 -k --syntax-check
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

playbook: delete_vars_tags.yml
[root@puppet ansible]#   ansible-playbook delete_vars_tags.yml --private-key=/root/denglei --extra-vars "host=vpn user=test gather=True" --tags server-2 -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [if system is centos,then rm /tmp/test-server-2] ************************
changed: [172.17.0.10]

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=1    unreachable=0    failed=0

查看一下客户端的文件情况

[root@puppet ansible]#  ansible vpn -m shell -a "ls -l /tmp/" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
total 88
-rw-r--r-- 1 root   root   41692 May 21 13:02 config
-rw-r--r-- 1 root   root    1228 Jun 12 18:24 install_pptpd_vpn.sh
-rwxr-xr-x 1 root   root       7 Jun 13 19:33 server
-rw-rw-r-- 1 test   test       7 Jun 14 17:07 server-test
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-3
-rw-r--r-- 1 root   root      82 Jun 12 18:21 test.log
-rw-r--r-- 1 root   root     290 Jun 12 18:21 test.sh
-rw-r--r-- 1 root   root    2444 Apr 28  2012 vpn_centos6.sh
-rw------- 1 root   root     727 Jun 10 18:21 yum_save_tx-2014-06-10-18-21UrqDAp.yumtx
-rw-rw-r-- 1 zabbix zabbix  4664 Jun 14 00:30 zabbix_agentd.log
-rw-rw-r-- 1 zabbix zabbix     5 Jun 14 00:30 zabbix_agentd.pid

从上面测试可以看到,如果playbook使用了tag,并且在运行中指定tag,那么运行的时候仅允许此tag的信息

下面是测试运行时候不带tag的情况

[root@puppet ansible]# cat copy.yml
---
- hosts: vpn
  remote_user: test
  tasks:
  - name: copy local server to client /tmp/server-test
    template: src=/tmp/server dest=/tmp/test-{{item}}
    with_items:
      - server-1
      - server-2
      - server-3
[root@puppet ansible]#   ansible-playbook copy.yml --private-key=/root/denglei  -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [copy local server to client /tmp/server-test] **************************
changed: [172.17.0.10] => (item=server-1)
changed: [172.17.0.10] => (item=server-2)
ok: [172.17.0.10] => (item=server-3)

PLAY RECAP ********************************************************************
172.17.0.10             : ok=2    changed=1    unreachable=0    failed=0   

[root@puppet ansible]#  ansible vpn -m shell -a "ls -l /tmp/" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
total 96
-rw-r--r-- 1 root   root   41692 May 21 13:02 config
-rw-r--r-- 1 root   root    1228 Jun 12 18:24 install_pptpd_vpn.sh
-rwxr-xr-x 1 root   root       7 Jun 13 19:33 server
-rw-rw-r-- 1 test   test       7 Jun 14 17:07 server-test
-rw-rw-r-- 1 test   test       7 Jun 19 19:02 test-server-1
-rw-rw-r-- 1 test   test       7 Jun 19 19:02 test-server-2
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-3
-rw-r--r-- 1 root   root      82 Jun 12 18:21 test.log
-rw-r--r-- 1 root   root     290 Jun 12 18:21 test.sh
-rw-r--r-- 1 root   root    2444 Apr 28  2012 vpn_centos6.sh
-rw------- 1 root   root     727 Jun 10 18:21 yum_save_tx-2014-06-10-18-21UrqDAp.yumtx
-rw-rw-r-- 1 zabbix zabbix  4664 Jun 14 00:30 zabbix_agentd.log
-rw-rw-r-- 1 zabbix zabbix     5 Jun 14 00:30 zabbix_agentd.pid
[root@puppet ansible]#   ansible-playbook delete_vars_tags.yml --private-key=/root/denglei --extra-vars "host=vpn user=test gather=True"  -k
 [WARNING]: The version of gmp you have installed has a known issue regarding
timing vulnerabilities when used with pycrypto. If possible, you should update
it (ie. yum update gmp).

SSH password: 

PLAY [vpn] ******************************************************************** 

GATHERING FACTS ***************************************************************
ok: [172.17.0.10]

TASK: [if system is centos,then rm /tmp/test-server-1] ************************
changed: [172.17.0.10]

TASK: [if system is centos,then rm /tmp/test-server-2] ************************
changed: [172.17.0.10]

PLAY RECAP ********************************************************************
172.17.0.10             : ok=3    changed=2    unreachable=0    failed=0   

[root@puppet ansible]#  ansible vpn -m shell -a "ls -l /tmp/" -u test --private-key=/root/denglei -k
SSH password:
172.17.0.10 | success | rc=0 >>
total 88
-rw-r--r-- 1 root   root   41692 May 21 13:02 config
-rw-r--r-- 1 root   root    1228 Jun 12 18:24 install_pptpd_vpn.sh
-rwxr-xr-x 1 root   root       7 Jun 13 19:33 server
-rw-rw-r-- 1 test   test       7 Jun 14 17:07 server-test
-rw-rw-r-- 1 test   test       7 Jun 18 00:50 test-server-3
-rw-r--r-- 1 root   root      82 Jun 12 18:21 test.log
-rw-r--r-- 1 root   root     290 Jun 12 18:21 test.sh
-rw-r--r-- 1 root   root    2444 Apr 28  2012 vpn_centos6.sh
-rw------- 1 root   root     727 Jun 10 18:21 yum_save_tx-2014-06-10-18-21UrqDAp.yumtx
-rw-rw-r-- 1 zabbix zabbix  4664 Jun 14 00:30 zabbix_agentd.log
-rw-rw-r-- 1 zabbix zabbix     5 Jun 14 00:30 zabbix_agentd.pid

可以看到如果不知道tag,那么运行的时候,会全部运行。

FAQ:

1、出现Error: ansible requires a json module, none found!

SSH password:
172.17.0.4 | FAILED >> {
    "failed": true,
    "msg": "Error: ansible requires a json module, none found!",
    "parsed": false
}

原因是python版本过低,要不升级python要不就安装python-simplejson,下面是官方的话

On the managed nodes, you only need Python 2.4 or later, but if you are running less than Python 2.5 on the remotes, you will also need:
SSH password:
172.17.0.4 | success >> {
    "changed": false,
    "ping": "pong"
}

2、默认ansible是使用key验证的,如果使用密码登陆的服务器,使用ansible的话,要不修改ansible.cfg配置文件的ask_pass      = True给取消注释,要不就在运行命令时候加上-k,这个意思是-k, --ask-pass        ask for SSH password

3、如果客户端不在know_hosts里将会报错

paramiko: The authenticity of host '172.17.0.5' can't be established.
The ssh-rsa key fingerprint is 397c139fd4b0d763fcffaee346a4bf6b.
Are you sure you want to continue connecting (yes/no)?

如果想解决此问题,需要修改ansible.cfg的#host_key_checking = False取消注释

4、如果出现

[root@puppet ansible]# ansible zabbix -m shell -a "echo $TERM" -u denglei --private-key=/root/denglei
172.17.0.2 | FAILED => FAILED: not a valid DSA private key file
172.17.0.4 | FAILED => FAILED: not a valid DSA private key file

需要你在最后添加参数-k

[root@puppet ansible]# ansible zabbix -m shell -a "echo $TERM" -u denglei --private-key=/root/denglei -k
SSH password:
172.17.0.2 | success | rc=0 >>
xterm

172.17.0.4 | success | rc=0 >>
xterm

运维自动化之ansible的安装与使用(包括模块与playbook使用)(转发)的更多相关文章

  1. 运维自动化之ansible的安装与使用 转

    运维自动化之ansible的安装与使用 随着服务器数量的增长,我们需要一个批量工具去提高工作效率,之前用的是puppet,ansible的简单,适用让我眼前一亮,决定写一篇ansible从安装到基本配 ...

  2. 运维自动化神器ansible之user模块

    运维自动化神器ansible之user模块 一.概述   user模块 可管理远程主机上的 用户,比如创建用户.修改用户.删除用户.为用户创建密钥对等操作. 二.参数介绍   name: 用于指定操作 ...

  3. 运维自动化工具ansible

    企业级自动化运维工具应用实战ansible 公司计划在年底做一次大型市场促销活动,全面冲刺下交易额,为明年的上市做准备.公司要求各业务组对年底大促做准备,运维部要求所有业务容量进行三倍的扩容,并搭建出 ...

  4. 运维自动化之ansible

    Ansible简介 Ansible是一个简单的自动化运维管理工具,基于Python语言实现,由Paramiko和PyYAML两个关键模块构建,可用于自动化部署应用.配置.编排task(持续交付.无宕机 ...

  5. 运维自动化神器ansible之group模块

    ansible之group模块 group模块是用来添加或者删除组 首先使用ansible-doc来查看用法 [root@note0 ansible]# ansible-doc -s group - ...

  6. Ligg.WinOa-000: Windows运维自动化编程实战--前言

        本开源项目Ligg.WinOa是一个基于Ligg.EasyWinApp的Windows运维自动化应用.通过Ligg.EasyWinForm生成2个功能界面:管理员工具箱和用户工具箱:通过Lig ...

  7. 自动化运维工具之 Ansible 介绍及安装使用

    一.初识Ansible 介绍: Absible 使用 模块(Modules)来定义配置任务.模块可以用标准脚本语言(Python,Bash,Ruby,等等)编写,这是一个很好的做法,使每个模块幂等.A ...

  8. 自动化运维工具之ansible

    自动化运维工具之ansible   一,ansible简介 ansible是新出现的自动化运维工具,基于Python开发,集合了众多运维工具(puppet.cfengine.chef.func.fab ...

  9. Ansible 运维自动化 ( 配置管理工具 )

    背景 出差背景,要搞项目的自动化部署.因为只直接对接生产分发,机器又非常多,这样以往使用的bat只能作为应急方案了,还是得考虑使用专业化的工具来做这个事情! 当下有许多的运维自动化工具( 配置管理 ) ...

随机推荐

  1. Python自动化之IO多路复用

    单线程.多线程和异步对比图 灰色的是阻塞 IO多路复用 用户空间与内核空间 现在操作系统都是采用虚拟存储器,那么对32位操作系统而言,它的寻址空间(虚拟存储空间)为4G(2的32次方).操作系统的核心 ...

  2. django的序列化

    关于django的序列化主要应用在将数据库中检索的数据返回给客户端用户,特别的Ajax请求一般返回的Json格式 两种方法: 方法一:serializers: 缺点就是只能应用于对象 "&q ...

  3. 【GoLang】golang 报管理工具 Godep 介绍

    使用方法: 提交:cd ${GOPATH}/src/github.com/junneyang/xcloudgodep save -v ./...rm -rf vendor/git checkout - ...

  4. 【leetcode】Unique Binary Search Trees II

    Unique Binary Search Trees II Given n, generate all structurally unique BST's (binary search trees) ...

  5. POJ 1190(深搜)

    http://poj.org/problem?id=1190 又有好久没做搜索的题了,没想到做一个卡了我那么久,想哭啊. 一个中文题,思路呢也就是搜索呗,一层一层往上面搜,不过这里有两个比较重要的地方 ...

  6. poj 1276

    一道DP的题目,还是一道多重背包的题目,第一次接触. 题意:有现今cash,和n种钱币,每种钱币有ni个,价值为di,求各种钱币组成的不超过cash的最大钱数 思路:可以转换为0/1背包和完全背包来做 ...

  7. docker进入容器的方式

    通过docker创建守护运行(在使用-d参数时)的容器时,容器启动后会进入后台.用户无法看到容器中的信息.某些时候如果需要进入容器进行操作,有多种方法,包括使用docker attach命令.dock ...

  8. ABAP 自建透明表维护

    *&---------------------------------------------------------------------* *& Report  ZMMR011 ...

  9. Effective C++ -----条款12: 复制对象时勿忘其每一个成分

    Copying函数应该确保复制“对象内的所有成员变量”及“所有base class成分”. 不要尝试以某个copying函数实现另一个copying函数.应该将共同机能放进第三个函数中,并由两个cop ...

  10. 【STL】next_permutation的原理和使用

    1.碰到next_permutation(permutation:序列的意思) 今天在TC上碰到一道简单题(SRM531 - Division Two - Level One),是求给定数组不按升序排 ...