Yadda ake Sanya Platform na Cloud naku tare da OpenStack a cikin RHEL/CentOS 7

OpenStack dandamali ne na kyauta kuma buɗe tushen software wanda ke ba da IAAS (kayan aiki-as-a-sabis) don gajimare na jama'a da masu zaman kansu.

Dandalin OpenStack ya ƙunshi ayyuka masu alaƙa da yawa waɗanda ke sarrafa kayan aiki, ajiya, albarkatun sadarwar cibiyar bayanai, kamar: Lissafi, Sabis na Hoto, Ma'ajiyar Kaya, Sabis na Identity, Sadarwar Sadarwa, Adana Abu, Telemetry, Orchestration da Database.

Ana iya gudanar da gudanar da waɗannan abubuwan haɗin gwiwa ta hanyar haɗin yanar gizon yanar gizo ko tare da taimakon layin umarni na OpenStack.

Wannan koyawa za ta jagorance ku kan yadda zaku iya tura kayan aikin girgije masu zaman kansu tare da buɗe OpenStack akan kulli ɗaya a cikin CentOS 7 ko RHEL 7 ko Fedora rabawa ta amfani da ma'ajin rdo, kodayake ana iya samun turawa akan nodes da yawa.

1. Ƙarancin Shigar CentOS 7
2. Ƙarancin Shigar RHEL 7

Mataki na 1: Tsarin Tsarin Farko

1. Kafin ka fara shirya kullin don ƙaddamar da kayan aikin girgije naka, fara shiga tare da asusun tushen kuma tabbatar da cewa tsarin yana da zamani.

2. Na gaba, fitar da ss -tulpn umarni don jera duk ayyukan da ke gudana.

# ss -tulpn

3. Na gaba, gano, dakatar, kashewa da cire ayyukan da ba a buƙata ba, galibi postfix, NetworkManager da Firewalld. A ƙarshe kawai daemon da zai gudana akan injin ku yakamata ya zama sshd.

# systemctl stop postfix firewalld NetworkManager
# systemctl disable postfix firewalld NetworkManager
# systemctl mask NetworkManager
# yum remove postfix NetworkManager NetworkManager-libnm

4. Gaba ɗaya kashe manufofin Selinux akan injin ta hanyar ba da umarnin da ke ƙasa. Hakanan shirya fayil ɗin /etc/selinux/config kuma saita layin SELINUX daga aiwatarwa zuwa naƙasasshe kamar yadda aka kwatanta a hoton da ke ƙasa.

# setenforce 0
# getenforce
# vi /etc/selinux/config

5. A mataki na gaba ta amfani da umarnin hostnamectl don saita sunan mai masaukin tsarin Linux ɗin ku. Sauya canjin FQDN daidai.

# hostnamectl set-hostname cloud.centos.lan

6. A ƙarshe, shigar da umurnin ntpdate don daidaita lokaci tare da sabar NTP a cikin ginin ku kusa da kusancin ku.

# yum install ntpdate 

Mataki 2: Sanya OpenStack a cikin CentOS da RHEL

7. Za a tura OpenStack akan Node tare da taimakon kunshin PackStack da aka samar ta wurin ajiyar rdo (Rarrabawar OpenStack na RPM).

Domin kunna ma'ajiyar rdo akan RHEL 7 gudanar da umarnin da ke ƙasa.

# yum install https://www.rdoproject.org/repos/rdo-release.rpm 

A kan CentOS 7, ma'ajiyar Extras ta haɗa da RPM wanda ke aiki da ma'ajin OpenStack. An riga an kunna ƙarin, don haka zaka iya shigar da RPM cikin sauƙi don saita ma'ajiyar OpenStack:

# yum install -y centos-release-openstack-mitaka
# yum update -y

8. Yanzu lokaci ya yi da za a shigar da kunshin PackStack. Packstack yana wakiltar kayan aiki wanda ke sauƙaƙe ƙaddamarwa akan nodes da yawa don sassa daban-daban na OpenStack ta hanyar haɗin SSH da kayan kwalliya.

Sanya kunshin Packstat a cikin Linux tare da umarni mai zuwa:

# yum install  openstack-packstack

9. A mataki na gaba yana samar da fayil ɗin amsa don Packstack tare da saitunan tsoho wanda za'a gyara daga baya tare da sigogin da ake buƙata don ƙaddamar da shigarwa na Opentack (ƙulli ɗaya).

Za a sanya sunan fayil ɗin bayan tambarin rana na yanzu lokacin da aka ƙirƙira (rana, wata da shekara).

# packstack --gen-answer-file='date +"%d.%m.%y"'.conf
# ls

10. Yanzu gyara fayil ɗin sanyi da aka samar tare da editan rubutu.

# vi 13.04.16.conf

kuma maye gurbin sigogi masu zuwa don dacewa da ƙimar da ke ƙasa. Domin samun aminci musanya filayen kalmomin shiga daidai.

CONFIG_NTP_SERVERS=0.ro.pool.ntp.org

Da fatan za a tuntuɓi http://www.pool.ntp.org/en/ jerin sabar domin amfani da sabar NTP na jama'a kusa da wurin ku na zahiri.

CONFIG_PROVISION_DEMO=n

CONFIG_KEYSTONE_ADMIN_PW=your_password  for Admin user

Samun dama ga dashboard OpenStack ta HTTP tare da kunna SSL.

CONFIG_HORIZON_SSL=y

Tushen kalmar sirri don uwar garken MySQL.

CONFIG_MARIADB_PW=mypassword1234

Saita kalmar sirri don mai amfani na nagiosadmin don samun damar rukunin yanar gizon Nagios.

CONFIG_NAGIOS_PW=nagios1234

11. Bayan kun gama gyarawa sai ku rufe fayil ɗin. Hakanan, buɗe fayil ɗin sanyi na uwar garken SSH da layin PermitRootLogin mara izini ta cire hashtag na gaba kamar yadda aka kwatanta akan hoton da ke ƙasa.

# vi /etc/ssh/sshd_config

Sannan sake kunna sabis na SSH don nuna canje-canje.

# systemctl restart sshd

Mataki 3: Fara Buɗe Shigarwa ta Amfani da Fayil Amsa Fakitin

12. A ƙarshe fara aiwatar da shigarwa na Opentack ta hanyar fayil ɗin amsa da aka gyara a sama ta hanyar tafiyar da tsarin umarni na ƙasa:

# packstack --answer-file 13.04.16.conf

13. Da zarar an kammala shigar da kayan aikin OpenStack cikin nasara, mai sakawa zai nuna ƴan layika tare da mahaɗin dashboard na gida don OpenStack da Nagios da takaddun shaidar da ake buƙata da aka riga aka tsara a sama don shiga cikin bangarorin biyu.

Ana kuma adana takaddun shaida a ƙarƙashin littafin gidan ku a cikin fayil ɗin keystonerc_admin.

14. Idan saboda wasu dalilai tsarin shigarwa ya ƙare da kuskure game da sabis na httpd, buɗe fayil /etc/httpd/conf.d/ssl.conf kuma ka tabbata kayi sharhin layin da ke gaba kamar yadda aka kwatanta a ƙasa.

#Listen 443 https

Sannan sake kunna Apache daemon don aiwatar da canje-canje.

# systemctl restart httpd.service

Lura: Idan har yanzu ba za ku iya bincika Opentack rukunin yanar gizon akan tashar jiragen ruwa 443 ta sake kunna tsarin shigarwa daga farawa tare da wannan umarnin da aka bayar don turawa na farko.

# packstack --answer-file /root/13.04.16.conf

Mataki na 4: Shiga Dashboard OpenStack Nesa

15. Domin samun damar buɗe rukunin yanar gizon OpenStack daga mai watsa shiri mai nisa a cikin LAN ɗin ku kewaya zuwa adireshin IP na injin ku ko FQDN/dashboard ta hanyar HTTPS.

Saboda gaskiyar cewa kana amfani da Takaddun Sa hannu na Kai wanda wata Hukumar Takaddun shaida mara amana ta bayar, ya kamata a nuna kuskure akan burauzarka.

Karɓi kuskuren kuma shiga cikin dashboard tare da admin na mai amfani da kalmar wucewa da aka saita akan sigar CONFIG_KEYSTONE_ADMIN_PW daga fayil ɗin amsa da aka saita a sama.

https://192.168.1.40/dashboard 

16. A madadin, idan kun zaɓi shigar da bangaren Nagios don OpenStack, zaku iya bincika rukunin yanar gizon Nagios a URI mai zuwa kuma ku shiga tare da saitin takaddun shaida a cikin fayil ɗin amsa.

https://192.168.1.40/nagios 

Shi ke nan! Yanzu zaku iya fara saitin yanayin girgijen ku na ciki. Yanzu bi koyawa na gaba wanda zai bayyana yadda ake haɗa uwar garken NIC ta zahiri zuwa buɗe faifan gada da sarrafa Opentack daga rukunin yanar gizon.