Installing the operating system

Install the Ubuntu Server 14.04 (Trusty Tahr) LTS 64-bit operating system

至少一个network interface可以访问外网

locale to en_US.UTF-8

Configuring the operating system

Deployment host到taget host无密码登陆:

  1. Copy Deployment hospublic keytaget /root/.ssh/authorized_keys
  2.  
  3. ssh-copy-id -i ~/.ssh/id_rsa.pub root@192.168.2.22

kernel版本为3.13.0-34-generic or later 

  1. $ uname -a
  2. Linux rpc-3 3.13.0-46-generic #79-Ubuntu SMP Tue Mar 10 20:06:50 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux
  1. # apt-get install bridge-utils debootstrap ifenslave ifenslave-2.6 \
  2.   lsof lvm2 ntp ntpdate openssh-server sudo tcpdump vlan

加入kernel 模块到/etc/modules来enable VLAN和接口bond

  1. # echo 'bonding' >> /etc/modules
  2. # echo '8021q' >> /etc/modules

Configure NTP

Reboot the host to activate the changes

Configuring LVM

OpenStack-Ansible会自动配置LVM,手动配置如下:

  1. # pvcreate --metadatasize  physical_volume_device_path
  2. # vgcreate cinder-volumes physical_volume_device_path

Designing the network

下表描述了container 网络如何连接host bridge和物理网络接口:

Target hosts 包含以下 network bridges:

  • LXC internal lxcbr0:
    • 必须的,自动生成,containers的外网连接,不连接到host上任何物理/逻辑接口,由iptable来做连通,它连接到container里面的eth0。
      配置在openstack_user_config.yml in theprovider_networks dictionary.
  • Container management br-mgmt:
    • 必须的.
    • Provides management of and communication among infrastructure and OpenStack services.
    • 手动创建,连接到物理/逻辑接口(一般是bond0上的一个vlan子接口),连接容器的eth1.
    • container network interface配置在openstack_user_config.yml
  • Storage br-storage:
    • Optional.但推荐
    • Provides segregated access to block storage devices between Compute and Block Storage hosts.
    • 手动创建,连接到物理/逻辑接口(一般是bond0上的一个vlan子接口),连接容器的eth2.
  • OpenStack Networking tunnel/overlay br-vxlan:
    • Mandatory.
    • Provides infrastructure for VXLAN tunnel/overlay networks.
    • 手动创建,连接到物理/逻辑接口(一般是bond1上的一个vlan子接口),连接容器的eth10.
  • OpenStack Networking provider br-vlan:
    • Mandatory.
    • Provides infrastructure for VLAN and flat networks.
    • 手动创建连接到物理/逻辑接口(一般是bond1上的一个vlan子接口),连接容器的eth11.  Does not contain an IP address because it only handles layer 2 connectivity.

compute service直接部署在物理机器而不是容器上。

how to use bridges for network connectivity

其中,计算节点有br-vxlan和br-vlan来分别做vxlan和vlan的联通,br-vxlan连到物理vlan的一个子节点,br-vlan不需要。

以下是网络节点上,DHCP agent, L3 agent, and Linux Bridge agent都部署在networking-agents container

以下是计算节点上vm如何连接:

Reference architecture

Bridge name Best configured on With a static IP
br-mgmt On every node Always
br-storage On every storage node When component is deployed on metal
On every compute node Always
br-vxlan On every network node When component is deployed on metal
On every compute node Always
br-vlan On every network node Never
On every compute node Never

host management节点的网络配置文件:

Physical interfaces:

  1. # Physical interface
  2. auto eth0
  3. iface eth0 inet manual
  4.     bond-master bond0
  5.     bond-primary eth0
  6.  
  7. # Physical interface
  8. auto eth1
  9. iface eth1 inet manual
  10.     bond-master bond1
  11.     bond-primary eth1
  12.  
  13. # Physical interface
  14. auto eth2
  15. iface eth2 inet manual
  16.     bond-master bond0
  17.  
  18. # Physical interface
  19. auto eth3
  20. iface eth3 inet manual
  21.     bond-master bond1

Bonding interfaces:

  1. # Bond interface  (physical interfaces  and )
  2. auto bond0
  3. iface bond0 inet static
  4.     bond-slaves eth0 eth2
  5.     bond-mode active-backup
  6.     bond-miimon
  7.     bond-downdelay
  8.     bond-updelay
  9.     address HOST_IP_ADDRESS
  10.     netmask HOST_NETMASK
  11.     gateway HOST_GATEWAY
  12.     dns-nameservers HOST_DNS_SERVERS
  13.  
  14. # Bond interface  (physical interfaces  and )
  15. auto bond1
  16. iface bond1 inet manual
  17.     bond-slaves eth1 eth3
  18.     bond-mode active-backup
  19.     bond-miimon
  20.     bond-downdelay
  21.     bond-updelay

Logical (VLAN) interfaces:

  1. # Container management VLAN interface
  2. iface bond0.CONTAINER_MGMT_VLAN_ID inet manual
  3.     vlan-raw-device bond0
  4.  
  5. # OpenStack Networking VXLAN (tunnel/overlay) VLAN interface
  6. iface bond1.TUNNEL_VLAN_ID inet manual
  7.     vlan-raw-device bond1
  8.  
  9. # Storage network VLAN interface (optional)
  10. iface bond0.STORAGE_VLAN_ID inet manual
  11.     vlan-raw-device bond0

Bridge devices:

  1. # Container management bridge
  2. auto br-mgmt
  3. iface br-mgmt inet static
  4.     bridge_stp off
  5.     bridge_waitport
  6.     bridge_fd
  7.     # Bridge port references tagged interface
  8.     bridge_ports bond0.CONTAINER_MGMT_VLAN_ID
  9.     address CONTAINER_MGMT_BRIDGE_IP_ADDRESS
  10.     netmask CONTAINER_MGMT_BRIDGE_NETMASK
  11.     dns-nameservers CONTAINER_MGMT_BRIDGE_DNS_SERVERS
  12.  
  13. # OpenStack Networking VXLAN (tunnel/overlay) bridge
  14. auto br-vxlan
  15. iface br-vxlan inet static
  16.     bridge_stp off
  17.     bridge_waitport
  18.     bridge_fd
  19.     # Bridge port references tagged interface
  20.     bridge_ports bond1.TUNNEL_VLAN_ID
  21.     address TUNNEL_BRIDGE_IP_ADDRESS
  22.     netmask TUNNEL_BRIDGE_NETMASK
  23.  
  24. # OpenStack Networking VLAN bridge
  25. auto br-vlan
  26. iface br-vlan inet manual
  27.     bridge_stp off
  28.     bridge_waitport
  29.     bridge_fd
  30.     # Bridge port references untagged interface
  31.     bridge_ports bond1
  32.  
  33. # Storage bridge (optional)
  34. auto br-storage
  35. iface br-storage inet static
  36.     bridge_stp off
  37.     bridge_waitport
  38.     bridge_fd
  39.     # Bridge port reference tagged interface
  40.     bridge_ports bond0.STORAGE_VLAN_ID
  41.     address STORAGE_BRIDGE_IP_ADDRESS
  42.     netmask STORAGE_BRIDGE_NETMASK

Example for 3 controller nodes and 2 compute nodes

  • VLANs:

    • Host management: Untagged/Native
    • Container management: 10
    • Tunnels: 30
    • Storage: 20
  • Networks:
    • Host management: 10.240.0.0/22
    • Container management: 172.29.236.0/22
    • Tunnel: 172.29.240.0/22
    • Storage: 172.29.244.0/22
  • Addresses for the controller nodes:
    • Host management: 10.240.0.11 - 10.240.0.13
    • Host management gateway: 10.240.0.1
    • DNS servers: 69.20.0.164 69.20.0.196
    • Container management: 172.29.236.11 - 172.29.236.13
    • Tunnel: no IP (because IP exist in the containers, when the components aren’t deployed directly on metal)
    • Storage: no IP (because IP exist in the containers, when the components aren’t deployed directly on metal)
  • Addresses for the compute nodes:
    • Host management: 10.240.0.21 - 10.240.0.22
    • Host management gateway: 10.240.0.1
    • DNS servers: 69.20.0.164 69.20.0.196
    • Container management: 172.29.236.21 - 172.29.236.22
    • Tunnel: 172.29.240.21 - 172.29.240.22
    • Storage: 172.29.244.21 - 172.29.244.22

Simple architecture: A single target host

openstack-ansible -- 3 Target hosts的更多相关文章

  1. 安装rackspace private cloud --4 配置Target hosts

    在每个target host上执行以下操作: Naming target hosts. Install the operating system. Generate and set up securi ...

  2. Openstack & Ansible

    Opennstack Open source software for creating private and public clouds Manages the servers at these ...

  3. openStack nova nova valid hosts 优化

    scheduler_default_filters=AllHostsFilterallow_resize_to_same_host=Trueallow_migrate_to_same_host=Tru ...

  4. ansible 增加本机/etc/hosts 下hostsname 与IP

    --- - hosts: all vars: IP: "{{ ansible_eth0['ipv4']['address'] }}" tasks: - name: 将原有的host ...

  5. ansible 主机清单 /etc/ansible/hosts

    主机清单 [webservers] ansible01 ansible02 ansible03 ansible04 [root@ftp:/root] > ansible webservers - ...

  6. ansible服务部署与使用

    第1章 ssh+key实现基于密钥连接(ansible使用前提) 说明:    ansible其功能实现基于SSH远程连接服务    使用ansible需要首先实现ssh密钥连接 1.1 部署ssh ...

  7. Ansible安装配置及使用

    一.Ansible特点 1.不需要安装客户端,通过sshd通信 2.基于模块工作,模块可以由任何序言开发 3.不仅支持命令行使用模块,也支持编写yaml格式的playbook 4.支持sudo 5.有 ...

  8. Ansible自动化运维笔记2(Ansible的组件介绍)

    1.Ansible Inventory (1)静态主机文件 默认的ansible invetory是/etc/hosts文件,可以通过ANSIBLE_HOSTS环境变量或者通过运行命令的时候加上-i ...

  9. Ansible 入门指南 - 安装及 Ad-Hoc 命令使用

    安装及配置 ansible Ansilbe 管理员节点和远程主机节点通过 SSH 协议进行通信.所以 Ansible 配置的时候只需要保证从 Ansible 管理节点通过 SSH 能够连接到被管理的远 ...

随机推荐

  1. ECMAScript6面对大于0xFFFF的Unicode字符如何正确返回长度

    一.match() 1.定义 match()方法用于检索字符串内指定(字符串或正则)的值,返回指定值的数组,若找不到,返回null. 2.语法 str.match(searchvalue) str.m ...

  2. MySql 安装常见问题汇总

    说明: 以下是针对 Mac 10.11 系统 以前,安装 MySql 数据库后, 设置的密码过于复杂,想更改为简单的密码, 方便数据库的使用. 1. 关闭和启动 MySql 数据库的方法: Syste ...

  3. setlocale同mbstowcs函数的关系(VS2008下setlocale(LC_ALL, "chs")可以执行成功,BCB使用setlocale(LC_ALL, "Chinese (Simplified)_People's Republic of China"),linux上locale别名表大概在 /usr/lib/X11/locale/locale.alias)

    序中,如果要将ASCII码字符串转换为宽字符(Unicode),可以利用标准C的mbstowcs函数. 微软在MSDN中有示例,如下: 然而,这段代码在处理含有汉字的字符串时就会出现问题.比如将: w ...

  4. Nuxt使用iconfont矢量图标

    Nuxt可以使用各种前端UI框架,这些框架一般都自带的有一些icon图标可供用户使用,但是一般项目开发的时候,UI框架自带的icon是不能满足实际项目需求的,这个时候我们可以自己找一些图片放到本地项目 ...

  5. MariaDB数据库主从复制实现步骤

    一.MariaDB简介 MariaDB数据库的主从复制方案,是其自带的功能,并且主从复制并不是复制磁盘上的数据库文件,而是通过binlog日志复制到需要同步的从服务器上. MariaDB数据库支持单向 ...

  6. Python3.6全栈开发实例[011]

    11.元素分类有如下值li= [11,22,33,44,55,66,77,88,99,90],将所有大于 66 的值保存至字典的第一个key中,将小于 66 的值保存至第二个key的值中.即: {'k ...

  7. Spring学习笔记1—依赖注入(构造器注入、set注入和注解注入)

    什么是依赖注入 在以前的java开发中,某个类中需要依赖其它类的方法时,通常是new一个依赖类再调用类实例的方法,这种方法耦合度太高并且不容易测试,spring提出了依赖注入的思想,即依赖类不由程序员 ...

  8. 1.4 使用电脑测试MC20的接收英文短信功能

    需要准备的硬件 MC20开发板 1个 https://item.taobao.com/item.htm?id=562661881042 GSM/GPRS天线 1根 https://item.taoba ...

  9. javascript;先弹出提示框,再跳转到其他页面。

    context.Response.Write("<script>alert('删除成功!" + r.ToString() + "条');window.loca ...

  10. Python自然语言处理系列之模拟退火算法

    1.基本概念 模拟退火算法(Simulated Annealing,SA)是一种模拟固体降温过程的最优化算法.其模拟的过程是首先将固体加温至某一温度,固体内部的粒子随温度上升慢慢变为无序的状态,内能增 ...