内容简介:本文风哥教程参考Linux官方文档、Red Hat Enterprise Linux官方文档、Ansible Automation Platform官方文档、Docker官方文档、Kubernetes官方文档和Podman官方文档等内容,详细介绍了相关技术的配置和使用方法。
风哥提示:
本文档介绍企业级容器云平台部署综合实战案例。
Part01-OpenStack部署
1.1 OpenStack基础配置
[root@fgedu-openstack ~]# yum install -y centos-release-openstack-antelope
[root@fgedu-openstack ~]# yum update -y
[root@fgedu-openstack ~]# yum install -y openstack-packstack
# 生成应答文件
[root@fgedu-openstack ~]# packstack –gen-answer-file=/root/answer.txt
# 编辑配置
[root@fgedu-openstack ~]# cat > /root/answer.txt << 'EOF'
[general]
CONFIG_SSH_KEY=/root/.ssh/id_rsa.pub
CONFIG_DEFAULT_PASSWORD=Openstack@123
CONFIG_MARIADB_INSTALL=y
CONFIG_GLANCE_INSTALL=y
CONFIG_CINDER_INSTALL=y
CONFIG_NOVA_INSTALL=y
CONFIG_NEUTRON_INSTALL=y
CONFIG_HORIZON_INSTALL=y
CONFIG_SWIFT_INSTALL=n
CONFIG_HEAT_INSTALL=y
CONFIG_CEILOMETER_INSTALL=y
CONFIG_AODH_INSTALL=y
CONFIG_KEYSTONE_ADMIN_PW=Admin@123
CONFIG_CONTROLLER_HOST=192.168.1.10
CONFIG_COMPUTE_HOSTS=192.168.1.11,192.168.1.12
CONFIG_NETWORK_HOSTS=192.168.1.10
CONFIG_STORAGE_HOST=192.168.1.13
CONFIG_NEUTRON_OVS_BRIDGE_IFACES=br-ex:eth0
EOF
# 执行安装
[root@fgedu-openstack ~]# packstack --answer-file=/root/answer.txt
Welcome to the Packstack setup utility
Installing:
Clean Up [ DONE ]
Discovering ip protocol version [ DONE ]
Setting up ssh keys [ DONE ]
Preparing servers [ DONE ]
Pre installing Puppet and discovering hosts' details [ DONE ]
...
**** Installation completed successfully ******
# 查看服务状态
[root@fgedu-openstack ~]# source /root/keystonerc_admin
[root@fgedu-openstack ~(keystone_admin)]# openstack service list
+----------------------------------+----------------+------------------+
| ID | Name | Type |
+----------------------------------+----------------+------------------+
| abc123def456... | keystone | identity |
| def456ghi789... | glance | image |
| ghi789jkl012... | nova | compute |
| jkl012mno345... | neutron | network |
| mno345pqr678... | cinder | volume |
+----------------------------------+----------------+------------------+
Part02-虚拟机管理
2.1 创建云主机
[root@fgedu-openstack ~(keystone_admin)]# openstack image create “CentOS-8” \
–file CentOS-8-GenericCloud-8.5.学习交流加群风哥QQ1132571742111-20210611.x86_64.qcow2 \
–disk-format qcow2 \
–container-format bare \
–public
+——————+——————————————————————————————————————————————————————————————–+
| Field | Value |
+——————+——————————————————————————————————————————————————————————————–+
| checksum | abc123def456ghi789jkl012mno345pqr |
| container_format | bare |
| created_at | 2026-04-04T23:00:00Z |
| disk_format | qcow2 |
| file | /v2/images/abc123-456def-789ghi/file |
| id | abc123-456def-789ghi |
| min_disk | 0 |
| min_ram | 0 |
| name | CentOS-8 |
| owner | abc123def456ghi789jkl012mno345pqr |
| protected | False |
| schema | /v2/schemas/image |
| size | 1234567890 |
| status | active |
| tags | |
| updated_at | 2026-04-04T23:00:00Z |
| virtual_size | None |
| visibility | public |
+——————+——————————————————————————————————————————————————————————————–+
# 创建规格
[root@fgedu-openstack ~(keystone_admin)]# openstack flavor create –ram 2048 –disk 20 –vcpus 2 m1.small
+—————————-+————————————–+
| Field | Value |
+—————————-+————————————–+
| OS-FLV-DISABLED:disabled | False |
| OS-FLV-EXT-DATA:ephemeral | 0 |
| disk | 20 |
| id | abc123-456def-789ghi |
| name | m1.small |
| os-flavor-access:is_public | True |
| properties | |
| ram | 2048 |
| rxtx_factor | 1.0 |
| swap | |
| vcpus | 2 |
+—————————-+————————————–+
# 创建网络
[root@fgedu-openstack ~(keystone_admin)]# openstack network create fgedu-net
[root@fgedu-openstack ~(keystone_admin)]# openstack subnet create fgedu-subnet \
–network fgedu-net \
–subnet-range 192.168.100.0/24 \
–gateway 192.168.100.1 \
–dns-nameserver 8.8.8.8
# 创建云主机
[root@fgedu-openstack ~(keystone_admin)]# openstack server create fgedu-web \
–flavor m1.small \
–image CentOS-8 \
–nic net-id=fgedu-net \
–key-name fgedu-key \
–security-group default
+————————————-+———————————————–+
| Field | Value |
+————————————-+———————————————–+
| OS-DCF:diskConfig | MANUAL |
| OS-EXT-AZ:availability_zone | nova |
| OS-EXT-SRV-ATTR:host | fgedu-compute1 |
| OS-EXT-SRV-ATTR:instance_name | instance-00000001 |
| OS-EXT-STS:power_state | Running |
| OS-EXT-STS:task_state | None |
| OS-EXT-STS:vm_state | active |
| name | fgedu-web |
| status | ACTIVE |
+————————————-+———————————————–+
Part03-网络配置
3.1 虚拟网络管理
[root@fgedu-openstack ~(keystone_admin)]# openstack router create fgedu-router
[root@fgedu-openstack ~(keystone_admin)]# openstack router set fgedu-router \
–external-gateway public
# 连接子网
[root@fgedu-openstack ~(keystone_admin)]# openstack router add subnet fgedu-router fgedu-subnet
# 创建浮动IP
[root@fgedu-openstack ~(keystone_admin)]# openstack floating ip create public
+———————+————————————–+
| Field | Value |
+———————+————————————–+
| created_at | 2026-04-04T23:00:00Z |
| floating_ip_address | 203.0.113.10 |
| floating_network_id | abc123-456def-789ghi |
| id | def456-ghi789-jkl012 |
| port_id | None |
| project_id | ghi789-jkl012-mno345 |
| status | DOWN |
+———————+————————————–+
# 绑定浮动IP
[root@fgedu-openstack ~(keystone_admin)]# openstack server add floating ip fgedu-web 203.0.113.10
# 配置安全组
[root@fgedu-openstack ~(keystone_admin)]# openstack security group rule create default \
–protocol tcp –dst-port 22:22 –remote-ip 0.0.0.更多视频教程www.fgedu.net.cn0/0
[root@fgedu-openstack ~(keystone_admin)]# openstack security group rule create default \
–protocol tcp –dst-port 80:80 –remote-ip 0.0.0.0/0
[root@fgedu-openstack ~(keystone_admin)]# openstack security group rule create default \
–protocol tcp –dst-port 443:443 –remote-ip 0.0.0.0/0
# 查看网络拓扑
[root@fgedu-openstack ~(keystone_admin)]# openstack network list
+————————————–+———–+————————————–+
| ID | Name | Subnets |
+————————————–+———–+————————————–+
| abc123-456def-789ghi | public | def456-ghi789-jkl012 |
| ghi789-jkl012-mno345 | fgedu-net | jkl012-mno345-pqr678 |
+————————————–+———–+————————————–+
Part04-存储管理
4.1 云硬盘配置
[root@fgedu-openstack ~(keystone_admin)]# openstack volume type create –public ssd
[root@fgedu-openstack ~(keystone_admin)]# openstack volume type create –public hdd
# 创建云硬盘
[root@fgedu-openstack ~(keystone_admin)]# openstack volume create fgedu-data \
–size 100 \
–type ssd \
–description “FGEDU应用数据盘”
+———————+————————————–+
| Field | Value |
+———————+————————————–+
| attachments | [] |
| availability_zone | nova |
| bootable | false |
| consistencygroup_id | None |
| created_at | 2026-04-04T23:00:00.000000 |
| description | FGEDU应用数据盘 |
| encrypted | False |
| id | abc123-456def-789ghi |
| multiattach | False |
| name | fgedu-data |
| size | 100 |
| status | creating |
| type | ssd |
+———————+————————————–+
# 挂载云硬盘
[root@fgedu-openstack ~(keystone_admin)]# openstack server add volume fgedu-web fgedu-data
# 创建快照
[root@fgedu-openstack ~(keystone_admin)]# openstack volume snapshot create fgedu-data-snap \
–volume fgedu-data \
–description “FGEDU数据盘快照”
+——————-+————————————–+
| Field | Value |
+——————-+————————————–+
| created_at | 2026-04-04T23:00:00.000000 |
| description | FGEDU数据盘快照 |
| id | abc123-456def-789ghi |
| name | fgedu-data-snap |
| size | 100 |
| status | creating |
| volume_id | def456-ghi789-jkl012 |
+——————-+————————————–+
# 备份云硬盘
[root@fgedu-openstack ~(keystone_admin)]# openstack volume backup create fgedu-data-backup \
–volume fgedu-data \
–description “FGEDU数据盘备份”
- 规划合理的资源配额
- 配置高可用架构
- 实施网络隔离
- 配置存储冗余
- 建立运维监控体系
本文由风哥教程整理发布,仅用于学习测试使用,转载注明出处:http://www.fgedu.net.cn/10327.html
