openstack-queens版本部署步骤

最新推荐文章于 2024-05-02 14:44:15 发布
原创 最新推荐文章于 2024-05-02 14:44:15 发布 · 1.3k 阅读 · 9 ·
CC 4.0 BY-SA版权
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。

本文详细介绍了OpenStack Queens版本的安装部署流程,包括控制节点和计算节点的环境准备,各服务组件的安装配置,如Keystone、Glance、Nova、Neutron等,以及网络设置和云主机创建步骤。

OpenStack-queens部署安装

控制节点:IP地址10.1.1.102 hostname:openstack-node02
计算节点:IP地址10.1.1.101 hostname:openstack-node01
官方文档:https://docs.openstack.org/install-guide/openstack-services.html

控制节点和计算节点

1、环境部署

1-1.关闭防火墙firewalld

#关闭防火墙
systemctl stop firewalld
#取消firewalld防火墙开机自启
systemctl disable firewalld

1-2.关闭selinux

#临时关闭selinux
setenforce 0
#永久关闭,必须修改配置文件
sed -i 's#SELINUX=enabled#SELINUX=disabled#g' /etc/selinux/config

1-3.配置阿里云yum源

#备份系统自带yum源
mkdir -p /home/jack/repo.bak
cp /etc/yum.repo.d/* /home/jack/repo.bak/
#下载安装阿里云yum源
wget -O /etc/yum.repos.d/epel.repo http://mirrors.aliyun.com/repo/Centos-7.repo
#下载安装阿里云epel扩展yum源码
wget -O /etc/yum.repos.d/epel.repo http://mirrors.aliyun.com/repo/epel-7.repo

1-4.同步时间

ntpdate ntp1.aliyun.com
hwclock -w
hwclock && date

1-5.yum安装openstack-queens扩展源

#安装openstack-queens扩展源
yum install -y centos-release-openstack-queens
#编辑CentOS-OpenStack-queens.repo源,改为国内地址,否则下载很慢
vim /etc/yum.repos.d/CentOS-OpenStack-queens.repo
[centos-openstack-queens]
name=CentOS-7 - OpenStack queens
#baseurl=http://mirror.centos.org/$contentdir/$releasever/cloud/$basearch/openstack-queens/,改这一行就行
baseurl=http://mirrors.cn99.com/centos/7/cloud/x86_64/openstack-queens/
gpgcheck=1
enabled=1
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-SIG-Cloud
exclude=sip,PyQt4
…………………………………………

1-6.关闭NetworkManager.service网络管理工具(这个无所谓)

#关闭NetworkManager.service网络管理工具
systemctl disable NetworkManager.service
systemctl stop NetworkManager.service
systemctl list-unit-files|grep NetworkManager
#开启network
chkconfig network on
systemctl start network
chkconfig --list |grep network

1-7.修改/etc/hosts主机解析配置文件

echo '10.1.1.101  openstack-node01'>>/etc/hosts
echo '10.1.1.102  openstack-node02'>>/etc/hosts

1-8.配置dns nameserver服务器地址

echo 'nameserver 192.168.31.1'>> /etc/resolv.conf 
echo 'nameserver 202.96.128.86'>> /etc/resolv.conf

控制节点

2.安装OpenStack-queens

2-1.安装OpenStack-queens个组件

#安装openstack客户端,和selinux控件
yum install python-openstackclient openstack-selinux -y
#安装Mariadb数据库(mysql)
yum install mariadb mariadb-server python2-PyMySQL -y
#安装RabbitMQ消息队列
yum install rabbitmq-server -y
#安装memcache缓存
yum install memcached python-memcached -y
#安装openstack认证服务控件keystone
yum install openstack-keystone httpd mod_wsgi -y
##安装openstack镜像服务控件glance
yum install openstack-glance python-glance python-glanceclient -y
##安装openstack计算服务控件nova
yum install openstack-nova-api openstack-nova-cells openstack-nova-conductor openstack-nova-console openstack-nova-novncproxy openstack-nova-scheduler python-novaclient openstack-nova-placement-api -y
##安装openstack网络服务控件neutron
yum install openstack-neutron openstack-neutron-ml2 openstack-neutron-linuxbridge ebtables -y

3.配置MariaDB数据库

3-1.配置MariaDB数据库配置文件

##我是vm虚拟机部署的,所以硬件配置低,必须使用低配数据库配置,否则MariaDB占用资源大,CPU直接kill掉,导致总是提示数据库错误,netstat -lntp发现没有3306端口,MariaDB所有配置文件在/usr/share/mariadb/目录下
cp /usr/share/mariadb/small.cnf /etc/my.cnf

3-2.增加MariaDB中openstack配置/etc/my.cnf.d/openstack.cnf

cat >>/etc/my.cnf.d/openstack.cnf <<eof
[mysqld]
# IP地址绑定
bind-address = 10.1.1.102
default-storage-engine = innodb
innodb_file_per_table
max_connections = 4096
collation-server = utf8_general_ci
character-set-server = utf8
eof

3-3.设置MariaDB数据库开机自启

systemctl enable mariadb.service
systemctl start mariadb.service
#mariadb端口是3306
netstat -lntp
tcp        0      0 10.1.1.102:3306         0.0.0.0:*               LISTEN      7253/mysqld

3-4.MariaDB数据库安全优化

mysql_secure_installation

3-5.登录数据库,并为各控件新建数据库

mysql -u root -pqaz123
##认证服务keystone数据库
create database keystone;
grant all on keystone.* to 'keystone'@'localhost' identified by 'keystone';
grant all on keystone.* to 'keystone'@'%' identified by 'keystone';
##镜像服务glance数据库
create database glance;
grant all on glance.* to 'glance'@'localhost' identified by 'glance';
grant all on glance.* to 'glance'@'%' identified by 'glance';
##计算服务nova数据库
create database nova;
grant all on nova.* to 'nova'@'localhost' identified by 'nova';
grant all on nova.* to 'nova'@'%' identified by 'nova';
##计算服务nova_api数据库
create database nova_api;
grant all on nova_api.* to 'nova'@'%' identified by 'nova';
grant all on nova_api.* to 'nova'@'localhost' identified by 'nova';
##用于控制节点中,主机映射数据库
create database nova_cell0;
grant all on nova_cell0.* TO 'nova'@'localhost' identified by 'nova';
grant all on nova_cell0.* TO 'nova'@'%' identified by 'nova';
##网络服务neutron数据库
create database neutron;
grant all on neutron.* to 'neutron'@'localhost' identified by 'neutron';
grant all on neutron.* to 'neutron'@'%' identified by 'neutron';
exit;

4.RabbitMQ消息队列配置

4-1.设置开机自启

systemctl enable rabbitmq-server.service
systemctl start rabbitmq-server.service
#rabbitmq端口是15672和25672
netstat -lntp
roto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name
tcp        0      0 0.0.0.0:25672           0.0.0.0:*               LISTEN      7052/beam.smp
tcp        0      0 0.0.0.0:15672           0.0.0.0:*               LISTEN      7052/beam.smp

4-2.新建RabbitMQ用户及密码,是为了安全的考虑

rabbitmqctl add_user openstack openstack

4-3.授予用户openstack所有权限

rabbitmqctl set_permissions openstack ".*" ".*" ".*"

4-4.设置RabbitMQ插件rabbitmq_management,并启动

rabbitmq-plugins list
rabbitmq-plugins enable rabbitmq_management

5.配置memcache缓存

5-1.修改memcache配置文件

sed -i '/^OPTIONS/aOPTIONS="-l 10.1.1.102,::1" '/etc/sysconfig/memcached
sed -i '5d' /etc/sysconfig/memcached
cat /etc/sysconfig/memcached

5-2.设置memcache开机自启

systemctl enable memcached.service
systemctl start memcached.service
#memcache端口是11211
netstat -lntp

6.配置keystone认证服务

6-1.修改配置文件

vim /etc/keystone/keystone.conf
##配置数据连接方式
[database]
connection = mysql+pymysql://keystone:keystone@10.1.1.102/keystone
##配置token认证方式UUID FERNET Kpi三种
[token]
provider = fernet

6-2.同步数据库

su -s /bin/sh -c "keystone-manage db_sync" keystone
##用keystone用户访问数据库,并查看keystone数据库列表
mysql -h 10.1.1.102 -ukeystone -pkeystone -e " use keystone;show tables;"

6-3.初始化keystone

##格式初始化
keystone-manage fernet_setup --keystone-user keystone --keystone-group keystone
##证书初始化
keystone-manage credential_setup --keystone-user keystone --keystone-group keystone

6-4.用户初始化,设置admin管理员

keystone-manage bootstrap --bootstrap-password admin --bootstrap-admin-url http://10.1.1.102:35357/v3/ --bootstrap-internal-url http://10.1.1.102:5000/v3/ --bootstrap-public-url http://10.1.1.102:5000/v3/ --bootstrap-region-id RegionOne
grep "^[a-z]" /etc/keystone/keystone.conf

6-5.Apache配置

#配置Apache添加openstack的配置文件
ln -s /usr/share/keystone/wsgi-keystone.conf /etc/httpd/conf.d/
sed -i '/^#ServerName/aServerName 10.1.1.102:80' /etc/httpd/conf/httpd.conf

6-6.设置Apache服务开机自启

systemctl enable httpd.service
systemctl start httpd.service

6-7.设置admin用户环境变量

export OS_USERNAME=admin
export OS_PASSWORD=admin
export OS_PROJECT_NAME=admin
export OS_USER_DOMAIN_NAME=Default
export OS_PROJECT_DOMAIN_NAME=Default
export OS_AUTH_URL=http://10.1.1.102:35357/v3
export OS_IDENTITY_API_VERSION=3

6-8.创建demo项目、demo用户、user角色(demo为普通用户)

##创建demo项目
openstack project create --domain default --description "Demo Project" demo
##创建demo用户
openstack user create --domain default --password demo demo
##创建user角色
openstack role create user
##demo用户添加到demo项目中,并授予user角色
openstack role add --project demo --user demo user

6-9.创建service项目,并为各个组件服务创建用户,并授予admin角色

##创建service项目
openstack project create --domain default --description "Service Project" service
##创建glance用户,并授予admin角色
openstack user create --domain default --password glance glance
openstack role add --project service --user glance admin
##创建nova用户,并授予admin角色
openstack user create --domain default --password nova nova
openstack role add --project service --user nova admin
##创建placement用户,并授予admin角色
openstack user create --domain default --password placement placement
openstack role add --project service --user placement admin
##创建neutron用户,并授予admin角色
openstack user create --domain default --password neutron neutron
openstack role add --project service --user neutron admin

注意:如果没有初始化用户,就要创建admin用户等,并创建keystone服务,执行了初始化用户,这个就默认创建了,可以省略
##source admin-openstack.sh
##openstack service create --name keystone --description "OpenStack Identity" identity
##openstack endpoint create --region RegionOne identity public http://10.1.1.102:5000/v3
##openstack endpoint create --region RegionOne identity admin http://10.1.1.102:35357/v3
##openstack endpoint create --region RegionOne identity internal http://10.1.1.102:5000/v3

6-10.验证keystone是否可用

unset OS_AUTH_URL OS_PASSWORD
openstack --os-auth-url http://10.1.1.102:35357/v3 --os-project-domain-name default --os-user-domain-name default --os-project-name admin --os-username admin token issue
openstack --os-auth-url http://10.1.1.102:5000/v3 --os-project-domain-name default --os-user-domain-name default --os-project-name demo --os-username demo token issue

6-11.创建用户环境脚本

##admin用户环境脚本
cat >> /root/admin-openstack.sh  <<eof
export OS_USERNAME=admin
export OS_PASSWORD=admin
export OS_PROJECT_NAME=admin
export OS_USER_DOMAIN_NAME=Default
export OS_PROJECT_DOMAIN_NAME=Default
export OS_AUTH_URL=http://10.1.1.102:35357/v3
export OS_IDENTITY_API_VERSION=3
eof
##验证admin用户token
source admin-openstack.sh
openstack token issue
##demo用户环境脚本
cat >> /root/demo-openstack.sh  <<eof
export OS_USERNAME=demo
export OS_PASSWORD=demo
export OS_PROJECT_NAME=demo
export OS_USER_DOMAIN_NAME=Default
export OS_PROJECT_DOMAIN_NAME=Default
export OS_AUTH_URL=http://10.1.1.102:5000/v3
export OS_IDENTITY_API_VERSION=3
eof
##验证demo用户token
source demo-openstack.sh
openstack token issue

7.glance镜像服务配置

7-1.修改配置文件

7-1-1.设置glance_api配置文件
vim /etc/glance/glance-api.conf
##连接数据库
[database]
connection = mysql+pymysql://glance:glance@10.1.1.102/glance
##配置存储类型,指定默认存储类型,存储路径
[glance_store]
stores = file,http
default_store = file
filesystem_store_datadir = /var/lib/glance/images
##keystone认证
[keystone_authtoken]
auth_uri = http://10.1.1.102:5000
auth_url = http://10.1.1.102:35357
memcached_servers = 10.1.1.102:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = glance
password = glance
##指定认证类型
[paste_deploy]
flavor = keystone
7-1-2.设置glance-registry配置文件
vim /etc/glance/glance-registry.conf
##连接数据库
[database]
connection =  mysql+pymysql://glance:glance@10.1.1.102/glance
##keystone认证
[keystone_authtoken]
auth_uri = http://10.1.1.102:5000
auth_url = http://10.1.1.102:35357
memcached_servers = 10.1.1.102:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = glance
password = glance
##指定认证类型
[paste_deploy]
flavor = keystone

7-2.同步数据库

su -s /bin/sh -c "glance-manage db_sync" glance
##用keystone用户访问数据库,并查看keystone数据库列表
mysql -h 10.1.1.102 -uglance -pglance -e " use glance;show tables;"

7-3.设置glance开机自启

systemctl enable openstack-glance-api.service openstack-glance-registry.service
systemctl start openstack-glance-api.service openstack-glance-registry.service

7-4.配置glance服务接口api

source admin-openstack.sh
openstack service create --name glance --description "OpenStack Image service" image
openstack endpoint create --region RegionOne image public http://10.1.1.102:9292
openstack endpoint create --region RegionOne image internal http://10.1.1.102:9292
openstack endpoint create --region RegionOne image admin http://10.1.1.102:9292
openstack image list

7-3.上传镜像

cirros-0.3.4-x86_64-disk.img
openstack image create "cirros" --disk-format qcow2 --container-format bare --file cirros-0.3.4-x86_64-disk.img --public
openstack image list

8.nova计算服务配置

官方文档:https://docs.openstack.org/nova/queens/install/controller-install-rdo.html

8-1.修改nova配置文件

vim /etc/nova/nova.conf
[DEFAULT]
##使用nova自带防火墙
use_neutron=true
firewall_driver=nova.virt.firewall.NoopFirewallDriver
##启动api
enabled_apis=osapi_compute,metadata
##设置消息队列连接地址
transport_url=rabbit://openstack:openstack@10.1.1.102
[api]
##设置认证类型-->keystone一起使用
auth_strategy=keystone
[api_database]
##设置api数据库连接
connection=mysql+pymysql://nova:nova@10.1.1.102/nova_api
[database]
##设置nova数据库连接
connection=mysql+pymysql://nova:nova@10.1.1.102/nova
[glance]
##设置galance服务连接地址
api_servers=http://10.1.1.102:9292
##keystone认证
[keystone_authtoken]
auth_uri = http://10.1.1.102:5000
auth_url = http://10.1.1.102:35357
memcached_servers = 10.1.1.102:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = nova
password = nova
[libvirt]
##设置虚拟化类型
virt_type=kvm
##设置neutron交互参数
[neutron]
url = http://10.1.1.102:9696
auth_url = http://10.1.1.102:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = neutron
password = neutron
service_metadata_proxy = True
metadata_proxy_shared_secret = jack
[oslo_concurrency]
##设置锁文件
lock_path=/var/lib/nova/tmp
#设置placement服务参数
[placement]
os_region_name = RegionOne
project_domain_name = Default
project_name = service
auth_type = password
user_domain_name = Default
auth_url = http://10.1.1.102:35357/v3
username = placement
password = placement
##设置vnc参数
[vnc]
enabled=true
server_listen=0.0.0.0
server_proxyclient_address=10.1.1.102

8-2.修改placement配置参数,并重启Apache

vim /etc/httpd/conf.d/00-nova-placement-api.conf
##添加下面内容,这个是placement的一个debug
<Directory /usr/bin>
  <IfVersion >= 2.4>
    Require all granted
  </IfVersion>
  <IfVersion < 2.4>
    Order allow,deny
    Allow from all
  </IfVersion>
</Directory>
##重启Apache
systemctl restart httpd

8-3.同步数据库

su -s /bin/sh -c "nova-manage api_db sync" nova
su -s /bin/sh -c "nova-manage cell_v2 map_cell0" nova
su -s /bin/sh -c "nova-manage cell_v2 create_cell --name=cell1 --verbose" nova
su -s /bin/sh -c "nova-manage cell_v2 discover_hosts --verbose" nova
##可能导致的错误:主机compute没有映射到任何单元
##compute节点日志: Instance xxx has allocations against this compute host but is not found in the database.
su -s /bin/sh -c "nova-manage db sync" nova
##验证
nova-manage cell_v2 list_cells
mysql -h 10.1.1.102 -unova -pnova -e " use nova;show tables;"
mysql -h 10.1.1.102 -unova -pnova -e " use nova;show tables;"
mysql -h 10.1.1.102 -unova -pnova -e " use nova_api;show tables;"

8-4.设置开机自启

systemctl enable openstack-nova-api.service openstack-nova-consoleauth.service openstack-nova-scheduler.service openstack-nova-conductor.service openstack-nova-novncproxy.service
systemctl start openstack-nova-api.service openstack-nova-consoleauth.service openstack-nova-scheduler.service openstack-nova-conductor.service openstack-nova-novncproxy.service

8-5.配置nova计算服务接口api,placement服务接口api

source admin-openstack.sh 
##nova
openstack service create --name nova --description "OpenStack Compute" compute
openstack endpoint create --region RegionOne compute public http://10.1.1.102:8774/v2.1
openstack endpoint create --region RegionOne compute internal http://10.1.1.102:8774/v2.1
openstack endpoint create --region RegionOne compute admin http://10.1.1.102:8774/v2.1
##placement
openstack service create --name placement --description "Placement API" placement
openstack endpoint create --region RegionOne placement public http://10.1.1.102:8778
openstack endpoint create --region RegionOne placement internal http://10.1.1.102:8778
openstack endpoint create --region RegionOne placement admin http://10.1.1.102:8778
openstack host list

9.neutron网络服务配置

9-1.修改neutron配置文件

vim /etc/neutron/neutron.conf
[DEFAULT]
auth_strategy = keystone
core_plugin = ml2
service_plugins =
notify_nova_on_port_status_changes = true
notify_nova_on_port_data_changes = true
transport_url = rabbit://openstack:openstack@10.1.1.102
[database]
connection = mysql+pymysql://neutron:neutron@10.1.1.102:3306/neutron
[keystone_authtoken]
auth_uri = http://10.1.1.102:5000
auth_url = http://10.1.1.102:35357
memcached_servers = 10.1.1.102:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = neutron
password = neutron
[nova]
auth_url = http://10.1.1.102:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = nova
password = nova
[oslo_concurrency]
lock_path = /var/lib/neutron/tmp

9-2.修改linuxbridge_agent.ini配置文件

vim /etc/neutron/plugins/ml2/linuxbridge_agent.ini
[linux_bridge]
physical_interface_mappings =provider:ens33
[securitygroup]
firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver
enable_security_group = true
[vxlan]
enable_vxlan = False

9-3.修改ml2_conf.ini配置文件

vim /etc/neutron/plugins/ml2/ml2_conf.ini
[ml2]
type_drivers = flat,vlan,gre,vxlan,geneve
tenant_network_types =  flat,vlan,gre,vxlan,geneve
mechanism_drivers = linuxbridge,openvswitch,l2population
extension_drivers = port_security,qos
[ml2_type_flat]
flat_networks = provider
[securitygroup]
enable_ipset = true

9-4.修改dhcp_agent.ini配置文件

vim /etc/neutron/dhcp_agent.ini
[DEFAULT]
interface_driver = linuxbridge
dhcp_driver = neutron.agent.linux.dhcp.Dnsmasq
enable_isolated_metadata = True

9-5.修改metadata_agent.ini配置文件

vim /etc/neutron/metadata_agent.ini
[DEFAULT]
nova_metadata_host = 10.1.1.102
metadata_proxy_shared_secret =jack

9-6.同步数据库

ln -s /etc/neutron/plugins/ml2/ml2_conf.ini /etc/neutron/plugin.ini
数据库同步
su -s /bin/sh -c "neutron-db-manage --config-file /etc/neutron/neutron.conf --config-file /etc/neutron/plugins/ml2/ml2_conf.ini upgrade head" neutron

9-7.设置开机自启

systemctl restart openstack-nova-api.service
systemctl enable neutron-server.service neutron-linuxbridge-agent.service neutron-dhcp-agent.service neutron-metadata-agent.service
systemctl start neutron-server.service neutron-linuxbridge-agent.service neutron-dhcp-agent.service neutron-metadata-agent.service

9-8.创建neutron网络服务接口api

openstack service create --name neutron --description "OpenStack Networking" network
openstack endpoint create --region RegionOne network public http://10.1.1.102:9696
openstack endpoint create --region RegionOne network internal http://10.1.1.102:9696
openstack endpoint create --region RegionOne network admin http://10.1.1.102:9696
openstack network agent list

计算节点

1.安装nova和neutron

yum install -y centos-release-openstack-queens
yum install -y openstack-nova-compute sysfsutils
yum install -y openstack-neutron openstack-neutron-linuxbridge ebtables

2.配置计算节点nova服务服务

2-1.修改nova配置文件

vim /etc/nova/nova.conf 
[DEFAULT]
use_neutron=true
firewall_driver=nova.virt.firewall.NoopFirewallDriver
enabled_apis=osapi_compute,metadata
transport_url=rabbit://openstack:openstack@10.1.1.102
[api]
auth_strategy=keystone
[glance]
api_servers=http://10.1.1.102:9292
[keystone_authtoken]
auth_uri = http://10.1.1.102:5000
auth_url = http://10.1.1.102:35357
memcached_servers = 10.1.1.102:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = nova
password = nova
[libvirt]
virt_type=kvm
[neutron]
url = http://10.1.1.102:9696
auth_url = http://10.1.1.102:35357
auth_type = password
project_domain_name = default
user_domain_name = default
region_name = RegionOne
project_name = service
username = neutron
password = neutron
[oslo_concurrency]
lock_path=/var/lib/nova/tmp
[placement]
os_region_name = RegionOne
project_domain_name = Default
project_name = service
auth_type = password
user_domain_name = Default
auth_url = http://10.1.1.102:35357/v3
username = placement
password = placement
[vnc]
enabled=true
server_listen=0.0.0.0
server_proxyclient_address=10.1.1.101
novncproxy_base_url=http://10.1.1.102:6080/vnc_auto.html

2-2.修改nova.conf文件权限

chown -R root:nova /etc/nova/nova.conf

2-3.设置开机自启动

systemctl enable libvirtd.service openstack-nova-compute.service
systemctl start libvirtd.service openstack-nova-compute.service

3.配置计算节点neutron网络服务

3-1.修改/etc/neutron/neutron.conf配置文件

vim /etc/neutron/neutron.conf 
[DEFAULT]
auth_strategy = keystone
transport_url = rabbit://openstack:openstack@10.1.1.101
[keystone_authtoken]
auth_uri = http://10.1.1.102:5000
auth_url = http://10.1.1.102:35357
memcached_servers = 10.1.1.102:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = neutron
password = neutron
[oslo_concurrency]
lock_path = /var/lib/neutron/tmp

3-2.修改文件属组

chown -R root:neutron /etc/neutron/neutron.conf

3-3.修改linuxbridge_agent.ini配置文件

vim /etc/neutron/plugins/ml2/linuxbridge_agent.ini 
[linux_bridge]
physical_interface_mappings =provider:ens33
[securitygroup]
firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver
enable_security_group = true
[vxlan]
enable_vxlan = False

3-4.修改linuxbridge_agent.ini配置文件所属组

chown -R root:neutron /etc/neutron/plugins/ml2/linuxbridge_agent.ini

3-5.设置开机自启

systemctl enable neutron-linuxbridge-agent.service
systemctl start neutron-linuxbridge-agent.service

创建一台云主机

1.配置网络类型

##创建网络指定网络类型
openstack network create --share --external --provider-physical-network provider --provider-network-type flat provider

2.配置网卡IP地址及掩码等云主机规格

##配置网络参数
openstack subnet create --network provider --allocation-pool start=10.1.1.120,end=10.1.1.150 --dns-nameserver 202.96.128.86 --gateway 10.1.1.2 --subnet-range 10.1.1.0/24 provider-subnet
#云主机规格
openstack flavor create --id 0 --vcpus 1 --ram 64 --disk 1 m1.nano

3.创建秘钥对

source demo-openstack.sh
#生成秘钥
ssh-keygen -q -N ""
#openstack导入秘钥
openstack keypair create --public-key ~/.ssh/id_rsa.pub mykey
#查看openstack生成的密钥对
openstack keypair list

4.配置acl安全策略

openstack security group rule create --proto icmp default
openstack security group rule create --proto tcp --dst-port 22 default

5.使用demo用户环境,检查openstack组件

source demo-openstack.sh
openstack flavor list
#镜像列表
openstack image list
##网络列表,创建云主机要使用网络ID
openstack network list
##安全组类表
openstack security group list

6.创建名称为demo-instance云主机

openstack server create --flavor m1.nano --image cirros --nic net-id=d581b3a4-f9f2-49b8-a8e9-12df461a6982 --security-group default --key-name mykey demo-instance

7.检查云主机状态

openstack server list
openstack console url show demo-instance

8.创建云主机错误及解决

#创建虚拟机时,计算节点/var/log/nova/nova-compute.log日志报错:
##2019-12-23 20:20:08.608 7199 INFO nova.compute.resource_tracker [req-61459afd-3b97-4c9b-922d-0f9871d2b825 - - - - -] Instance a8a98bf2-c8d4-4ecd-94bf-b338b6543eae has allocations against this compute host but is not found in the database.
#第一步:修改计算节点nova.conf配置文件
#        [cells]
#		cell-type=api   ##默认是compute改为api
#第二步:在控制节点:主机compute没有映射到任何单元 su -s /bin/sh -c "nova-manage cell_v2 discover_hosts --verbose" nova ##同步数据库映射主机compute单元
Jacky-008
关注
安装OpenStack queens
陈十一yi
04-01 1109
安装OpenStack部署基本环境修改网卡名取消防火墙开机自启和NetworkManager关闭SeLinux使用packstack一键部署OpenStack安装yum源调整仓库配置文件变量升级内核和安装软件包一键部署OpenStack生成网桥配置文件验证查看密码及登录 部署基本环境 修改网卡名 vim /etc/default/grub net.ifnames=0 biosdevname=0 ##添加到文件中 ##生成新的grup文件 grub2-mkconfig -o /boot/grub2/gr
OpenStackQueens)详细安装部署(六)-界面(horizon)安装
塔尖草的博客
05-07 2998
本文为扶艾原创文章,版权所有,禁止转载! 本篇文章是本系列的第六篇文章,将继续进行OpenStack界面的安装 七、安装界面 7.1 (控制节点)安装软件包并配置相关文件 - 安装软件包 # yum install openstack-dashboard -y 编辑/etc/openstack-dashboard/local_settings文件完成如下配置 ... ...
Openstack(Queen)部署手册及采坑实践
07-26
Openstack Queen版本部署的中文手册,及安装及使用过程中所遇到问题解决
Linux 脚本一键安装openstackqueens版本
zsk_john的技术分享专用博客
07-25 2479
Linux 脚本一键安装openstackqueens版本) 分为三个文件,一个配置文件local_settings,两个脚本文件,一个为主节点脚本,一个为计算节点脚本。在脚本内使用的是我的IP192.168.0.16,这个是主节点IP,另一个为192.168.0.17,这个是计算节点。 使用方法为:打开主节点脚本,搜索192字段,将所有ip地址改为自己的主节点IP地址,搜索ens33,将所有ens33修改为主节点的网卡名称。打开计算节点脚本,同样的操作...
2024年OpenStack手动分布式部署Nova【Queens版】_openstack queen
2401_84166811的博客
05-02 718
Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the current input statement.MariaDB [(none)]> MariaDB [(none)]> CREATE DATABASE nova_api; Query OK, 1 row affected (0.001 sec)MariaDB [(none)]> CREATE DATABASE nova; Query OK, 1 row affected (0.002 sec)Mari
[root@node-a ~]# sudo yum install -y https://rdoproject.org/repos/openstack-queens/openstack-queens.repo Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile * base: mirrors.aliyun.com * extras: mirrors.aliyun.com * updates: mirrors.aliyun.com No package https://rdoproject.org/repos/openstack-queens/openstack-queens.repo available. Error: Nothing to do
10-03
你遇到的错误: ```bash No package https://rdoproject.org/repos/openstack-queens/openstack-queens.repo available. Error: Nothing to do ``` --- ## ❌ 错误原因分析 ...开始部署 OpenStack---
OpenStack Queens版本部署安装详解
热门推荐
Kim_Weir的专栏
05-26 1万+
一、部署软件环境硬件需求操作系统:Centos7内核版本:[root@controller ~]# uname -m x86_64 [root@controller ~]# uname -r 3.10.0-862.3.2.el7.x86_64 说明:此次部署搭建采用三台物理节点手搭建社区openstack Queens环境。二.OpenStack概述OpenStack项目是一个开源云计算平台,支...
服务器搭建openstack-stein版本过程及问题解决记录
qq_43496887的博客
11-04 1171
目录 一、使用Kolla部署stein版本OpenStack云平台 1.实验环境 2.开始部署 2.1预配置(所有步骤都在~目录下进行) 2.2安装基础包和docker服务 2.3从github 获取Kolla和Kolla-Ansible 2.4开始部署OpenStack 二、内网穿透 一、使用Kolla部署stein版本OpenStack云平台 1.实验环境 1)由于是在一个服务器节点上部署openstack所以采用all-in-one的方式部署平台 kolla是...
openstack-Queens安装
05-08
用户提供的引用中,引用[2]提到了社区OpenStack Queens版本部署安装详解,这可能是一个关键点。引用里还提到逻辑体系结构,说明安装时需要了解各个服务的关系,比如keystone负责认证。这可能意味着安装过程中需要...
[root@node-a ~]# sudo yum makecache Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile * base: mirrors.aliyun.com * extras: mirrors.aliyun.com * updates: mirrors.aliyun.com base | 3.6 kB 00:00:00 epel | 4.3 kB 00:00:00 extras | 2.9 kB 00:00:00 https://mirrors.aliyun.com/centos-altarch/7/cloud/x86_64/openstack-queens/repodata/repomd.xml: [Errno 14] HTTPS Error 404 - Not Found Trying other mirror. To address this issue please refer to the below wiki article https://wiki.centos.org/yum-errors If above article doesn't help to resolve this issue please use https://bugs.centos.org/. One of the configured repositories failed (OpenStack Queens - Alibaba Cloud Mirror), and yum doesn't have enough cached data to continue. At this point the only safe thing yum can do is fail. There are a few ways to work "fix" this: 1. Contact the upstream for the repository and get them to fix the problem. 2. Reconfigure the baseurl/etc. for the repository, to point to a working upstream. This is most often useful if you are using a newer distribution release than is supported by the repository (and the packages for the previous distribution release still work). 3. Run the command with the repository temporarily disabled yum --disablerepo=openstack-queens ... 4. Disable the repository permanently, so yum won't use it by default. Yum will then just ignore the repository until you permanently enable it again or use --enablerepo for temporary usage: yum-config-manager --disable openstack-queens or subscription-manager repos --disable=openstack-queens 5. Configure the failing repository to be skipped, if it is unavailable. Note that yum will try to contact the repo. when it runs most commands, so will have to try and fail each time (and thus. yum will be be much slower). If it is a very temporary problem though, this is often a nice compromise: yum-config-manager --save --setopt=openstack-queens.skip_if_unavailable=true failure: repodata/repomd.xml from openstack-queens: [Errno 256] No more mirrors to try. https://mirrors.aliyun.com/centos-altarch/7/cloud/x86_64/openstack-queens/repodata/repomd.xml: [Errno 14] HTTPS Error 404 - Not Found
最新发布
10-03
清华大学 TUNA 镜像站长期归档了一些旧版本,包括 OpenStack Queens。 ### 修改 `.repo` 文件为清华源: ```bash sudo tee /etc/yum.repos.d/openstack-queens.repo [openstack-queens] name=OpenStack Queens - ...
openstack queens 简易快速安装 完成版(不建议新手介入)
10-09
openstack queens 安装简介版,建议拿来比对错误点,此版本完整,切能在两台服务器的情况下 安装openstack queens
openstack_queens安装
07-30
openstack_queens安装手册,需要灵感的可以下载看看。
Openstack Queens 2018
04-19
Openstack Queens 2018 非常好的演讲PPT。 Openstack Queens 2018
OpenStack Queens for RHEL and CentOS安装指南
08-22
OpenStack Queens for RHEL and CentOS安装指南 根据官方文档整理,日期为20180818-20180819。 我采用CentOS 7.4在虚拟机上演着过此文档,能够成功。 本文档只保留了官方文档中RHEL and CentOS的内容。
centos-release-openstack-queens-1-2.el7.centos.noarch.rpm
03-12
centos-release-openstack-queens-1-2.el7.centos.noarch.rpm
openstack queens版本 环境搭建(一):安装前准备
刘元林的博客
08-21 702
OpenStack Queens环境搭建指南摘要 本系列教程详细介绍了在CentOS系统上搭建OpenStack Queens版本的完整过程。作者通过排除法选择了CentOS作为安装平台,并提供了环境准备、网络配置、时间同步等基础设置的具体操作步骤。教程特别强调了单网段实验环境下的注意事项,以及极简安装所需的必要组件。同时介绍了使用openssl生成随机密码、chrony配置时间同步、安装openstack客户端等关键操作。该指南适用于希望动手实践OpenStack环境搭建的初学者,完整教程共12篇,可在C
OpenStack手动分布式部署环境准备【Queens版】
强哥的微博
02-15 2307
目录1.基础环境准备(两个节点都需要部署)1.1关闭防火墙1.2关闭selinux1.3修改主机名1.4安装ntp时间服务器1.5修改域名解析1.6添加yum源 2.数据库安装配置2.1安装数据库2.2修改数据库2.3重启数据库2.4初始化数据库3.安装RabbitMq并配置3.1安装RabbitMq3.2启动并配置开机启动3.3添加 openstack 用户3.4给openstack用户开放权限4.安装memcached 1.2关闭selinux 1.3修改主机名 1.4安装ntp
OpenStack手动分布式部署Keystone【Queens版】
强哥的微博
02-22 2425
Keystone(OpenStack Identity Service)是 OpenStack 框架中负责管理身份验证、服务访问规则和服务令牌功能的组件。用户访问资源需要验证用户的身份与权限,服务执行操作也需要进行权限检测,这些都需要通过 Keystone 来处理。
对于 OpenStack版本Queens,您有何期待?
开源云中文社区
02-07 1601
打造开源云计算中国第一互动社区内容专注于Linux、Kubernetes、OpenStack、容器、Ceph、Cloud Foundry......导读新版本 Queens 预计发布的时间是2018年2月28日。它能否为我们带来更多惊喜?正文根据 OpenStack 基金会官方网站上公布的信息,新版本 Queens 预计发布的时间是2018年2月28日。去年9月,OpenStack Pike 版本
评论 2
成就一亿技术人!
拼手气红包6.0元
还能输入1000个字符
 
红包 添加红包
表情包 插入表情
表情包 代码片
 条评论被折叠 查看
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值