API tools faq
paste
Advertisement
alvise72

Untitled

alvise72
Feb 2nd, 2016
259
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 27.96 KB | None | 0 0
raw download clone embed print report
  1. Preliminari per entrambi i nodi
  2. -------------------------------
  3. #systemctl enable ntpd
  4. #systemctl start ntpd
  5.  
  6. Installare il repository Yum per OpenStack Kilo
  7. -----------------------------------------------
  8. #yum -y install https://rdo.fedorapeople.org/openstack-kilo/rdo-release-kilo.rpm
  9.  
  10. #yum clean all
  11. #yum -y upgrade
  12.  
  13. #yum -y install openstack-selinux openstack-utils
  14.  
  15. NODO CONTROLLER
  16. ---------------
  17.  
  18. Database
  19. --------
  20. #yum -y install mariadb mariadb-server MySQL-python
  21.  
  22. Configurare MariaDB
  23. -------------------
  24. #cat << EOF > /etc/my.cnf
  25. [mysqld]
  26. datadir=/var/lib/mysql
  27. socket=/var/lib/mysql/mysql.sock
  28. # Disabling symbolic-links is recommended to prevent assorted security risks
  29. symbolic-links=0
  30. # Settings user and group are ignored when systemd is used.
  31. # If you need to run mysqld under a different user or group,
  32. # customize your systemd unit file for mariadb according to the
  33. # instructions in http://fedoraproject.org/wiki/Systemd
  34. bind-address = <IP-MGMT_NODO_CONTROLLER>
  35. default-storage-engine = innodb
  36. innodb_file_per_table
  37. collation-server = utf8_general_ci
  38. init-connect = 'SET NAMES utf8'
  39. character-set-server = utf8
  40.  
  41. [mysqld_safe]
  42. log-error=/var/log/mariadb/mariadb.log
  43. pid-file=/var/run/mariadb/mariadb.pid
  44.  
  45. #
  46. # include all files from the config directory
  47. #
  48. !includedir /etc/my.cnf.d
  49. EOF
  50.  
  51. #systemctl enable mariadb.service
  52. #systemctl start mariadb.service
  53.  
  54. #firewall-cmd --add-port=3306/tcp
  55. #firewall-cmd --permanent --add-port=3306/tcp
  56. #systemctl restart firewalld
  57.  
  58.  
  59. RabbitMQ (AMQP)
  60. ------------------------------------------------------
  61. #yum -y install rabbitmq-server
  62.  
  63. #systemctl enable rabbitmq-server.service
  64. #systemctl start rabbitmq-server.service
  65.  
  66. #firewall-cmd --add-port=5672/tcp
  67. #firewall-cmd --add-port=5672/udp
  68. #firewall-cmd --permanent --add-port=5672/tcp
  69. #firewall-cmd --permanent --add-port=5672/udp
  70. #systemctl restart firewalld
  71.  
  72. #mysql -u root
  73. #CREATE DATABASE keystone;
  74. #CREATE DATABASE glance;
  75. #CREATE DATABASE nova;
  76. #CREATE DATABASE neutron;
  77. #CREATE DATABASE cinder;
  78. #CREATE DATABASE heat;
  79.  
  80. #GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'localhost' IDENTIFIED BY 'KEYSTONE_DB_PWD';
  81. #GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'<IP-MGMT_NODO_CONTROLLER>' IDENTIFIED BY 'KEYSTONE_DB_PWD';
  82. #GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'<IP-MGMT_NODO_COMPUTE>' IDENTIFIED BY 'KEYSTONE_DB_PWD';
  83. #GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'<HOSTNAME-MGMT_NODO_CONTROLLER>' IDENTIFIED BY 'KEYSTONE_DB_PWD';
  84. #GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'<HOSTNAME-MGMT_NODO_COMPUTE>' IDENTIFIED BY 'KEYSTONE_DB_PWD';
  85.  
  86. #GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'localhost' IDENTIFIED BY 'GLANCE_DB_PWD';
  87. #GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'<IP-MGMT_NODO_CONTROLLER>' IDENTIFIED BY 'GLANCE_DB_PWD';
  88. #GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'<IP-MGMT_NODO_COMPUTE>' IDENTIFIED BY 'GLANCE_DB_PWD';
  89. #GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'<HOSTNAME-MGMT_NODO_CONTROLLER>' IDENTIFIED BY 'GLANCE_DB_PWD';
  90. #GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'<HOSTNAME-MGMT_NODO_COMPUTE>' IDENTIFIED BY 'GLANCE_DB_PWD';
  91.  
  92. #GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'localhost' IDENTIFIED BY 'NOVA_DB_PWD';
  93. #GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'<IP-MGMT_NODO_CONTROLLER>' IDENTIFIED BY 'NOVA_DB_PWD';
  94. #GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'<IP-MGMT_NODO_COMPUTE>' IDENTIFIED BY 'NOVA_DB_PWD';
  95. #GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'<HOSTNAME-MGMT_NODO_CONTROLLER>' IDENTIFIED BY 'NOVA_DB_PWD';
  96. #GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'<HOSTNAME-MGMT_NODO_COMPUTE>' IDENTIFIED BY 'NOVA_DB_PWD';
  97.  
  98. #GRANT ALL PRIVILEGES ON neutron.* TO 'neutron'@'localhost' IDENTIFIED BY 'NEUTRON_DB_PWD';
  99. #GRANT ALL PRIVILEGES ON neutron.* TO 'neutron'@'<IP-MGMT_NODO_CONTROLLER>' IDENTIFIED BY 'NEUTRON_DB_PWD';
  100. #GRANT ALL PRIVILEGES ON neutron.* TO 'neutron'@'<IP-MGMT_NODO_COMPUTE>' IDENTIFIED BY 'NEUTRON_DB_PWD';
  101. #GRANT ALL PRIVILEGES ON neutron.* TO 'neutron'@'<HOSTNAME-MGMT_NODO_CONTROLLER>' IDENTIFIED BY 'NEUTRON_DB_PWD';
  102. #GRANT ALL PRIVILEGES ON neutron.* TO 'neutron'@'<HOSTNAME-MGMT_NODO_COMPUTE>' IDENTIFIED BY 'NEUTRON_DB_PWD';
  103.  
  104. #GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'localhost' IDENTIFIED BY 'CINDER_DB_PWD';
  105. #GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'<IP-MGMT_NODO_CONTROLLER>' IDENTIFIED BY 'CINDER_DB_PWD';
  106. #GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'<IP-MGMT_NODO_COMPUTE>' IDENTIFIED BY 'CINDER_DB_PWD';
  107. #GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'<HOSTNAME-MGMT_NODO_CONTROLLER>' IDENTIFIED BY 'CINDER_DB_PWD';
  108. #GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'<HOSTNAME-MGMT_NODO_COMPUTE>' IDENTIFIED BY 'CINDER_DB_PWD';
  109.  
  110. #GRANT ALL PRIVILEGES ON heat.* TO 'heat'@'localhost' IDENTIFIED BY 'HEAT_DB_PWD';
  111. #GRANT ALL PRIVILEGES ON heat.* TO 'heat'@'<IP-MGMT_NODO_CONTROLLER>' IDENTIFIED BY 'HEAT_DB_PWD';
  112. #GRANT ALL PRIVILEGES ON heat.* TO 'heat'@'<IP-MGMT_NODO_COMPUTE>' IDENTIFIED BY 'HEAT_DB_PWD';
  113. #GRANT ALL PRIVILEGES ON heat.* TO 'heat'@'<HOSTNAME-MGMT_NODO_CONTROLLER>' IDENTIFIED BY 'HEAT_DB_PWD';
  114. #GRANT ALL PRIVILEGES ON heat.* TO 'heat'@'<HOSTNAME-MGMT_NODO_COMPUTE>' IDENTIFIED BY 'HEAT_DB_PWD';
  115.  
  116. #flush privileges;
  117. #commit;
  118. #exit
  119.  
  120. Servizio identita' e catalogo: Keystone
  121. ---------------------------------------
  122. #yum -y install openstack-keystone httpd mod_wsgi python-openstackclient memcached python-memcached
  123. #systemctl enable memcached.service
  124. #systemctl start memcached.service
  125.  
  126. #ADMIN_TOKEN=`openssl rand -hex 10`
  127.  
  128. #openstack-config --set /etc/keystone/keystone.conf DEFAULT admin_token $ADMIN_TOKEN
  129. #openstack-config --set /etc/keystone/keystone.conf database connection "mysql://keystone:KEYSTONE_DB_PWD@<IP-MGMT_NODO_CONTROLLER>/keystone"
  130.  
  131. #openstack-config --set /etc/keystone/keystone.conf memcache servers localhost:11211
  132.  
  133. #openstack-config --set /etc/keystone/keystone.conf token provider keystone.token.providers.uuid.Provider
  134. #openstack-config --set /etc/keystone/keystone.conf token driver keystone.token.persistence.backends.sql.Token
  135. #openstack-config --set /etc/keystone/keystone.conf revoke driver keystone.contrib.revoke.backends.sql.Revoke
  136.  
  137. #sed -i 's+^#ServerName+ServerName+' /etc/httpd/conf/httpd.conf
  138.  
  139. #sed -i 's+^ServerName.*+ServerName <IP-MGMT_NODO_CONTROLLER>+' /etc/httpd/conf/httpd.conf
  140.  
  141. #cat << EOF > /etc/httpd/conf.d/wsgi-keystone.conf
  142. Listen 5000
  143. Listen 35357
  144. <VirtualHost *:5000>
  145. WSGIDaemonProcess keystone-public processes=5 threads=1 user=keystone group=keystone display-name=%{GROUP}
  146. WSGIProcessGroup keystone-public
  147. WSGIScriptAlias / /var/www/cgi-bin/keystone/main
  148. WSGIApplicationGroup %{GLOBAL}
  149. WSGIPassAuthorization On
  150. LogLevel info
  151. ErrorLogFormat "%{cu}t %M"
  152. ErrorLog /var/log/httpd/keystone-error.log
  153. CustomLog /var/log/httpd/keystone-access.log combined
  154. </VirtualHost>
  155.  
  156. <VirtualHost *:35357>
  157. WSGIDaemonProcess keystone-admin processes=5 threads=1 user=keystone group=keystone display-name=%{GROUP}
  158. WSGIProcessGroup keystone-admin
  159. WSGIScriptAlias / /var/www/cgi-bin/keystone/admin
  160. WSGIApplicationGroup %{GLOBAL}
  161. WSGIPassAuthorization On
  162. LogLevel info
  163. ErrorLogFormat "%{cu}t %M"
  164. ErrorLog /var/log/httpd/keystone-error.log
  165. CustomLog /var/log/httpd/keystone-access.log combined
  166. </VirtualHost>
  167. EOF
  168.  
  169. #mkdir -p /var/www/cgi-bin/keystone
  170. #curl http://git.openstack.org/cgit/openstack/keystone/plain/httpd/keystone.py?h=stable/kilo | tee /var/www/cgi-bin/keystone/main /var/www/cgi-bin/keystone/admin
  171. #chown -R keystone:keystone /var/www/cgi-bin/keystone
  172. #chmod 755 /var/www/cgi-bin/keystone/*
  173.  
  174. #systemctl enable httpd.service
  175. #systemctl start httpd.service
  176.  
  177. #su -s /bin/sh -c "keystone-manage db_sync" keystone
  178.  
  179. #export OS_TOKEN=$ADMIN_TOKEN
  180. #export OS_URL=http://<IP-MGMT_NODO_CONTROLLER>:35357/v2.0
  181.  
  182. #openstack service create --name keystone --description "OpenStack Identity" identity
  183.  
  184. #openstack endpoint create --publicurl http://<IP-MGMT_NODO_CONTROLLER>:5000/v2.0 --internalurl http://<IP-MGMT_NODO_CONTROLLER>:5000/v2.0 --adminurl http://<IP-MGMT_NODO_CONTROLLER>:35357/v2.0 --region RegionOne identity
  185.  
  186. #openstack project create --description "Admin Project" admin
  187. #openstack user create --password ADMIN_PASS admin
  188. #openstack role create admin
  189. #openstack role create _member_
  190. #openstack role add --project admin --user admin admin
  191. #openstack project create --description "Service Project" service
  192.  
  193. #unset OS_TOKEN OS_URL
  194.  
  195. #cat << EOF > /root/admin-openrc.sh
  196. export OS_PROJECT_DOMAIN_ID=default
  197. export OS_USER_DOMAIN_ID=default
  198. export OS_PROJECT_NAME=admin
  199. export OS_TENANT_NAME=admin
  200. export OS_USERNAME=admin
  201. export OS_PASSWORD=ADMIN_PASS
  202. export OS_AUTH_URL=http://<IP-MGMT_NODO_CONTROLLER>:35357/v3
  203. EOF
  204.  
  205. #source admin-openrc.sh
  206. #openstack token issue
  207.  
  208. #firewall-cmd --add-port=5000/tcp
  209. #firewall-cmd --add-port=35357/tcp
  210. #firewall-cmd --permanent --add-port=5000/tcp
  211. #firewall-cmd --permanent --add-port=35357/tcp
  212. #systemctl restart firewalld
  213.  
  214. #(crontab -l -u keystone 2>&1 | grep -q token_flush) || echo '@hourly /usr/bin/keystone-manage token_flush >/var/log/keystone/keystone-tokenflush.log 2>&1' >> /var/spool/cron/keystone
  215.  
  216. #yum -y install openstack-glance python-glance python-glanceclient
  217. #openstack user create --password GLANCE_PASS glance
  218. #openstack role add --project service --user glance admin
  219. #openstack service create --name glance --description "OpenStack Image service" image
  220.  
  221. #openstack endpoint create --publicurl http://<IP-MGMT_NODO_CONTROLLER>:9292 --internalurl http://<IP-MGMT_NODO_CONTROLLER>:9292 --adminurl http://<IP-MGMT_NODO_CONTROLLER>:9292 --region RegionOne image
  222.  
  223. #openstack-config --set /etc/glance/glance-api.conf database connection "mysql://glance:GLANCE_DB_PWD@<IP-MGMT_NODO_CONTROLLER>/glance"
  224.  
  225. #openstack-config --set /etc/glance/glance-api.conf keystone_authtoken auth_uri http://<IP-MGMT_NODO_CONTROLLER>:5000
  226. #openstack-config --set /etc/glance/glance-api.conf keystone_authtoken auth_url http://<IP-MGMT_NODO_CONTROLLER>:35357
  227.  
  228. #openstack-config --set /etc/glance/glance-api.conf keystone_authtoken auth_plugin password
  229. #openstack-config --set /etc/glance/glance-api.conf keystone_authtoken project_domain_id default
  230. #openstack-config --set /etc/glance/glance-api.conf keystone_authtoken user_domain_id default
  231. #openstack-config --set /etc/glance/glance-api.conf keystone_authtoken project_name service
  232. #openstack-config --set /etc/glance/glance-api.conf keystone_authtoken username glance
  233. #openstack-config --set /etc/glance/glance-api.conf keystone_authtoken password GLANCE_PASS
  234. #openstack-config --set /etc/glance/glance-api.conf paste_deploy flavor keystone
  235.  
  236. #openstack-config --set /etc/glance/glance-api.conf DEFAULT image_size_cap 26843545600
  237.  
  238. #openstack-config --set /etc/glance/glance-api.conf glance_store default_store file
  239. #openstack-config --set /etc/glance/glance-api.conf glance_store filesystem_store_datadir /glanceImages/
  240.  
  241. #openstack-config --set /etc/glance/glance-api.conf DEFAULT notification_driver noop
  242.  
  243. #openstack-config --set /etc/glance/glance-registry.conf database connection "mysql://glance:GLANCE_DB_PWD@<IP-MGMT_NODO_CONTROLLER>/glance"
  244. #openstack-config --set /etc/glance/glance-registry.conf keystone_authtoken auth_uri http://<IP-MGMT_NODO_CONTROLLER>:5000
  245. #openstack-config --set /etc/glance/glance-registry.conf keystone_authtoken auth_url http://<IP-MGMT_NODO_CONTROLLER>:35357
  246. #openstack-config --set /etc/glance/glance-registry.conf keystone_authtoken auth_plugin password
  247. #openstack-config --set /etc/glance/glance-registry.conf keystone_authtoken project_domain_id default
  248. #openstack-config --set /etc/glance/glance-registry.conf keystone_authtoken user_domain_id default
  249. #openstack-config --set /etc/glance/glance-registry.conf keystone_authtoken project_name service
  250. #openstack-config --set /etc/glance/glance-registry.conf keystone_authtoken username glance
  251. #openstack-config --set /etc/glance/glance-registry.conf keystone_authtoken password GLANCE_PASS
  252. #openstack-config --set /etc/glance/glance-registry.conf paste_deploy flavor keystone
  253. #openstack-config --set /etc/glance/glance-registry.conf DEFAULT notification_driver noop
  254.  
  255. #su -s /bin/sh -c "glance-manage db_sync" glance
  256.  
  257. #chown glance:glance /glanceImages
  258.  
  259. #systemctl enable openstack-glance-api.service openstack-glance-registry.service
  260. #systemctl start openstack-glance-api.service openstack-glance-registry.service
  261.  
  262. #firewall-cmd --add-port=9292/tcp
  263. #firewall-cmd --permanent --add-port=9292/tcp
  264. #systemctl restart firewalld
  265.  
  266. #glance image-list
  267.  
  268. #wget --no-check-certificate https://download.cirros-cloud.net/0.3.4/cirros-0.3.4-x86_64-disk.img
  269. #glance image-create --human-readable --is-public True --file ./cirros-0.3.4-x86_64-disk.img --min-ram 256 --min-disk 1 --container-format bare --disk-format qcow2 --name "CirrOS 0.3.4 x86_64"
  270.  
  271. #glance image-list
  272. +--------------------------------------+---------------------+-------------+------------------+----------+--------+
  273. | ID                                   | Name                | Disk Format | Container Format | Size     | Status |
  274. +--------------------------------------+---------------------+-------------+------------------+----------+--------+
  275. | a876c8ea-9873-4be2-845d-c1b75f02c82d | CirrOS 0.3.4 x86_64 | qcow2       | bare             | 13287936 | active |
  276. +--------------------------------------+---------------------+-------------+------------------+----------+--------+
  277.  
  278. #yum -y install openstack-nova-api openstack-nova-cert openstack-nova-conductor openstack-nova-console openstack-nova-novncproxy openstack-nova-scheduler python-novaclient
  279.  
  280. #openstack user create --password NOVA_PASS nova
  281. #openstack role add --project service --user nova admin
  282. #openstack service create --name nova --description "OpenStack Compute" compute
  283. #openstack endpoint create --publicurl http://<IP-MGMT_NODO_CONTROLLER>:8774/v2/%\(tenant_id\)s --internalurl http://<IP-MGMT_NODO_CONTROLLER>:8774/v2/%\(tenant_id\)s --adminurl http://<IP-MGMT_NODO_CONTROLLER>:8774/v2/%\(tenant_id\)s --region RegionOne compute
  284. #openstack-config --set /etc/nova/nova.conf database connection "mysql://nova:NOVA_DB_PWD@<IP-MGMT_NODO_CONTROLLER>/nova"
  285.  
  286. #openstack-config --set /etc/nova/nova.conf DEFAULT rpc_backend rabbit
  287. #openstack-config --set /etc/nova/nova.conf oslo_messaging_rabbit rabbit_host <IP-MGMT_NODO_CONTROLLER>
  288. #openstack-config --set /etc/nova/nova.conf DEFAULT auth_strategy keystone
  289.  
  290. #openstack-config --set /etc/nova/nova.conf DEFAULT my_ip <IP-MGMT_NODO_CONTROLLER>
  291.  
  292. #openstack-config --set /etc/nova/nova.conf DEFAULT vncserver_listen <IP-PUBLIC_NODO_CONTROLLER>
  293. #openstack-config --set /etc/nova/nova.conf DEFAULT vncserver_proxyclient_address <IP-PUBLIC_NODO_CONTROLLER>
  294.  
  295. #openstack-config --set /etc/nova/nova.conf libvirt inject_password true
  296. #openstack-config --set /etc/nova/nova.conf libvirt inject_key true
  297. #openstack-config --set /etc/nova/nova.conf libvirt inject_partition -2
  298.  
  299. #openstack-config --set /etc/nova/nova.conf DEFAULT cpu_allocation_ratio 4.0
  300.  
  301. #openstack-config --set /etc/nova/nova.conf keystone_authtoken auth_plugin password
  302. #openstack-config --set /etc/nova/nova.conf keystone_authtoken project_domain_id default
  303. #openstack-config --set /etc/nova/nova.conf keystone_authtoken user_domain_id default
  304. #openstack-config --set /etc/nova/nova.conf keystone_authtoken project_name service
  305. #openstack-config --set /etc/nova/nova.conf keystone_authtoken username nova
  306. #openstack-config --set /etc/nova/nova.conf keystone_authtoken password NOVA_PASS
  307.  
  308. #openstack-config --set /etc/nova/nova.conf keystone_authtoken auth_uri http://<IP-MGMT_NODO_CONTROLLER>:5000
  309. #openstack-config --set /etc/nova/nova.conf keystone_authtoken auth_url http://<IP-MGMT_NODO_CONTROLLER>:35357
  310.  
  311. #openstack-config --set /etc/nova/nova.conf glance host <IP-MGMT_NODO_CONTROLLER>
  312.  
  313. #openstack-config --set /etc/nova/nova.conf oslo_concurrency lock_path /var/lib/nova/tmp
  314.  
  315. sed -i '/^.*\"admin_or_owner/a \"admin_or_user\": \"is_admin:True or user_id:%(user_id)s\",' /etc/nova/policy.json
  316.  
  317. sed -i 's/^.*\"default\": \"rule:admin_or_owner\",/ \"default\": \"rule:admin_or_user\",/' /etc/nova/policy.json
  318.  
  319. #su -s /bin/sh -c "nova-manage db sync" nova
  320.  
  321. #systemctl enable openstack-nova-api.service openstack-nova-cert.service openstack-nova-consoleauth.service openstack-nova-scheduler.service openstack-nova-conductor.service openstack-nova-novncproxy.service
  322. #systemctl start openstack-nova-api.service openstack-nova-cert.service openstack-nova-consoleauth.service openstack-nova-scheduler.service openstack-nova-conductor.service openstack-nova-novncproxy.service
  323.  
  324. #firewall-cmd --add-port=8774/tcp
  325. #firewall-cmd --permanent --add-port=8774/tcp
  326. #firewall-cmd --add-port=6080/tcp
  327. #firewall-cmd --permanent --add-port=6080/tcp
  328. #systemctl restart firewalld
  329.  
  330. Servizio di networking: Neutron
  331. -------------------------------
  332. #yum -y install openstack-neutron openstack-neutron-ml2 python-neutronclient which
  333. #openstack user create --password NEUTRON_PASS neutron
  334. #openstack role add --project service --user neutron admin
  335. #openstack service create --name neutron --description "OpenStack Networking" network
  336. #openstack endpoint create --publicurl http://<IP-MGMT_NODO_CONTROLLER>:9696 --adminurl http://<IP-MGMT_NODO_CONTROLLER>:9696 --internalurl http://<IP-MGMT_NODO_CONTROLLER>:9696 --region RegionOne network
  337.  
  338. #openstack-config --set /etc/neutron/neutron.conf database connection "mysql://neutron:NEUTRON_DB_PWD@<IP-MGMT_NODO_CONTROLLER>/neutron"
  339. #openstack-config --set /etc/neutron/neutron.conf DEFAULT rpc_backend rabbit
  340. #openstack-config --set /etc/neutron/neutron.conf oslo_messaging_rabbit rabbit_host <IP-MGMT_NODO_CONTROLLER>
  341. #openstack-config --set /etc/neutron/neutron.conf DEFAULT auth_strategy keystone
  342.  
  343. #openstack-config --set /etc/neutron/neutron.conf DEFAULT core_plugin ml2
  344. #openstack-config --set /etc/neutron/neutron.conf DEFAULT service_plugins router
  345.  
  346. #openstack-config --set /etc/neutron/neutron.conf DEFAULT allow_overlapping_ips True
  347.  
  348. #openstack-config --set /etc/neutron/neutron.conf DEFAULT notify_nova_on_port_status_changes True
  349. #openstack-config --set /etc/neutron/neutron.conf DEFAULT notify_nova_on_port_data_changes True
  350.  
  351. #openstack-config --set /etc/neutron/neutron.conf DEFAULT nova_url http://<IP-MGMT_NODO_CONTROLLER>:8774/v2
  352.  
  353. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken auth_uri http://<IP-MGMT_NODO_CONTROLLER>:5000
  354. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken auth_url http://<IP-MGMT_NODO_CONTROLLER>:35357
  355. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken auth_plugin password
  356. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken project_domain_id default
  357. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken user_domain_id default
  358. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken project_name service
  359. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken username neutron
  360. #openstack-config --set /etc/neutron/neutron.conf keystone_authtoken password NEUTRON_PASS
  361. #openstack-config --set /etc/neutron/neutron.conf nova auth_url http://<IP-MGMT_NODO_CONTROLLER>:35357
  362. #openstack-config --set /etc/neutron/neutron.conf nova auth_plugin password
  363. #openstack-config --set /etc/neutron/neutron.conf nova project_domain_id default
  364. #openstack-config --set /etc/neutron/neutron.conf nova user_domain_id default
  365. #openstack-config --set /etc/neutron/neutron.conf nova region_name RegionOne
  366. #openstack-config --set /etc/neutron/neutron.conf nova project_name service
  367. #openstack-config --set /etc/neutron/neutron.conf nova username nova
  368. #openstack-config --set /etc/neutron/neutron.conf nova password NOVA_PASS
  369.  
  370.  
  371. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 type_drivers flat,vlan,gre,vxlan
  372. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 tenant_network_types gre
  373. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2 mechanism_drivers openvswitch
  374. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini ml2_type_gre tunnel_id_ranges 1:1000
  375.  
  376. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini securitygroup enable_security_group True
  377. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini securitygroup enable_ipset True
  378. #openstack-config --set /etc/neutron/plugins/ml2/ml2_conf.ini securitygroup firewall_driver neutron.agent.linux.iptables_firewall.OVSHybridIptablesFirewallDriver
  379.  
  380. #openstack-config --set /etc/nova/nova.conf DEFAULT network_api_class nova.network.neutronv2.api.API
  381. #openstack-config --set /etc/nova/nova.conf DEFAULT security_group_api neutron
  382. #openstack-config --set /etc/nova/nova.conf DEFAULT linuxnet_interface_driver nova.network.linux_net.LinuxOVSInterfaceDriver
  383. #openstack-config --set /etc/nova/nova.conf DEFAULT firewall_driver nova.virt.firewall.NoopFirewallDriver
  384.  
  385. #openstack-config --set /etc/nova/nova.conf neutron url http://<IP-MGMT_NODO_CONTROLLER>:9696
  386. #openstack-config --set /etc/nova/nova.conf neutron auth_strategy keystone
  387. #openstack-config --set /etc/nova/nova.conf neutron admin_auth_url http://<IP-MGMT_NODO_CONTROLLER>:35357/v2.0
  388. #openstack-config --set /etc/nova/nova.conf neutron admin_tenant_name service
  389. #openstack-config --set /etc/nova/nova.conf neutron admin_username neutron
  390. #openstack-config --set /etc/nova/nova.conf neutron admin_password NEUTRON_PASS
  391.  
  392. #ln -s /etc/neutron/plugins/ml2/ml2_conf.ini /etc/neutron/plugin.ini
  393.  
  394. #su -s /bin/sh -c "neutron-db-manage --config-file /etc/neutron/neutron.conf --config-file /etc/neutron/plugins/ml2/ml2_conf.ini upgrade head" neutron
  395.  
  396. #systemctl restart openstack-nova-api.service openstack-nova-scheduler.service openstack-nova-conductor.service
  397. #systemctl enable neutron-server.service
  398. #systemctl start neutron-server.service
  399.  
  400. #firewall-cmd --add-port=9696/tcp
  401. #firewall-cmd --permanent --add-port=9696/tcp
  402. #systemctl restart firewalld
  403.  
  404.  
  405. neutron net-list # nessun output ma neppure nessun errore
  406. nova net-list # nessun output ma neppure nessun errore
  407. +----+-------+------+
  408. | ID | Label | CIDR |
  409. +----+-------+------+
  410. +----+-------+------+
  411.  
  412. Servizio di gestione volumi: Cinder
  413. -----------------------------------
  414. #yum -y install openstack-cinder python-cinderclient python-oslo-db qemu lvm2 openstack-cinder targetcli python-oslo-db python-oslo-log MySQL-python scsi-target-utils
  415. #openstack user create --password CINDER_PASS cinder
  416. #openstack role add --project service --user cinder admin
  417. #openstack service create --name cinder --description "OpenStack Block Storage" volume
  418. #openstack service create --name cinderv2 --description "OpenStack Block Storage" volumev2
  419. #openstack endpoint create --publicurl http://<IP-MGMT_NODO_CONTROLLER>:8776/v2/%\(tenant_id\)s --internalurl http://<IP-MGMT_NODO_CONTROLLER>:8776/v2/%\(tenant_id\)s --adminurl http://<IP-MGMT_NODO_CONTROLLER>:8776/v2/%\(tenant_id\)s --region RegionOne volume
  420.  
  421. #openstack endpoint create --publicurl http://<IP-MGMT_NODO_CONTROLLER>:8776/v2/%\(tenant_id\)s --internalurl http://<IP-MGMT_NODO_CONTROLLER>:8776/v2/%\(tenant_id\)s --adminurl http://<IP-MGMT_NODO_CONTROLLER>:8776/v2/%\(tenant_id\)s --region RegionOne volumev2
  422.  
  423. #openstack-config --set /etc/cinder/cinder.conf database connection "mysql://cinder:CINDER_DB_PWD@<IP-MGMT_NODO_CONTROLLER>/cinder"
  424. #openstack-config --set /etc/cinder/cinder.conf DEFAULT rpc_backend rabbit
  425. #openstack-config --set /etc/cinder/cinder.conf oslo_messaging_rabbit rabbit_host <IP-MGMT_NODO_CONTROLLER>
  426. #openstack-config --set /etc/cinder/cinder.conf DEFAULT auth_strategy keystone
  427.  
  428. #openstack-config --set /etc/cinder/cinder.conf DEFAULT my_ip <IP-MGMT_NODO_CONTROLLER>
  429. #openstack-config --set /etc/cinder/cinder.conf oslo_concurrency lock_path /var/lib/cinder/tmp
  430.  
  431. #openstack-config --set /etc/cinder/cinder.conf keystone_authtoken auth_uri http://<IP-MGMT_NODO_CONTROLLER>:5000
  432. #openstack-config --set /etc/cinder/cinder.conf keystone_authtoken auth_url http://<IP-MGMT_NODO_CONTROLLER>:35357
  433. #openstack-config --set /etc/cinder/cinder.conf keystone_authtoken auth_plugin password
  434. #openstack-config --set /etc/cinder/cinder.conf keystone_authtoken project_domain_id default
  435. #openstack-config --set /etc/cinder/cinder.conf keystone_authtoken user_domain_id default
  436. #openstack-config --set /etc/cinder/cinder.conf keystone_authtoken username cinder
  437. #openstack-config --set /etc/cinder/cinder.conf keystone_authtoken password CINDER_PASS
  438.  
  439. #openstack-config --set /etc/cinder/cinder.conf DEFAULT enable_v1_api false
  440. #openstack-config --set /etc/cinder/cinder.conf DEFAULT enable_v2_api true
  441. #openstack-config --set /etc/cinder/cinder.conf keystone_authtoken project_name service
  442.  
  443. #openstack-config --set /etc/cinder/cinder.conf DEFAULT glance_host <IP-MGMT_NODO_CONTROLLER>
  444. #su -s /bin/sh -c "cinder-manage db sync" cinder
  445.  
  446. #systemctl enable openstack-cinder-api.service openstack-cinder-scheduler.service
  447. #systemctl start openstack-cinder-api.service openstack-cinder-scheduler.service
  448.  
  449. #firewall-cmd --add-port=8776/tcp
  450. #firewall-cmd --permanent --add-port=8776/tcp
  451. #firewall-cmd --add-port=3260/tcp
  452. #firewall-cmd --permanent --add-port=3260/tcp
  453.  
  454. #systemctl restart firewalld
  455.  
  456. Servizio di orchestrazione e automazione: Heat
  457. ----------------------------------------------
  458. #yum -y install openstack-heat-api openstack-heat-api-cfn openstack-heat-engine python-heatclient
  459.  
  460. #openstack user create --password HEAT_PASS heat
  461. #openstack role add --project service --user heat admin
  462. #openstack role create heat_stack_owner
  463. #openstack role create heat_stack_user
  464. #openstack service create --name heat --description "Orchestration" orchestration
  465. #openstack service create --name heat-cfn --description "Orchestration" cloudformation
  466. #openstack endpoint create --publicurl http://<IP-MGMT_NODO_CONTROLLER>:8004/v1/%\(tenant_id\)s --internalurl http://<IP-MGMT_NODO_CONTROLLER>:8004/v1/%\(tenant_id\)s --adminurl http://<IP-MGMT_NODO_CONTROLLER>:8004/v1/%\(tenant_id\)s --region RegionOne orchestration
  467. #openstack endpoint create --publicurl http://<IP-MGMT_NODO_CONTROLLER>:8000/v1 --internalurl http://<IP-MGMT_NODO_CONTROLLER>:8000/v1 --adminurl http://<IP-MGMT_NODO_CONTROLLER>:8000/v1 --region RegionOne cloudformation
  468.  
  469. #cp /usr/share/heat/heat-dist.conf /etc/heat/heat.conf
  470. #chown -R heat:heat /etc/heat/heat.conf
  471.  
  472. #openstack-config --set /etc/heat/heat.conf database connection "mysql://heat:HEAT_DB_PWD@<IP-MGMT_NODO_CONTROLLER>/heat"
  473. #openstack-config --set /etc/heat/heat.conf DEFAULT rpc_backend rabbit
  474. #openstack-config --set /etc/heat/heat.conf oslo_messaging_rabbit rabbit_host <IP-MGMT_NODO_CONTROLLER>
  475. #openstack-config --set /etc/heat/heat.conf keystone_authtoken auth_uri http://<IP-MGMT_NODO_CONTROLLER>:5000/v2.0
  476. #openstack-config --set /etc/heat/heat.conf keystone_authtoken identity_uri http://<IP-MGMT_NODO_CONTROLLER>:35357
  477. #openstack-config --set /etc/heat/heat.conf keystone_authtoken admin_tenant_name service
  478. #openstack-config --set /etc/heat/heat.conf keystone_authtoken admin_user heat
  479. #openstack-config --set /etc/heat/heat.conf keystone_authtoken admin_password HEAT_PASS
  480. #openstack-config --set /etc/heat/heat.conf ec2authtoken auth_uri http://<IP-MGMT_NODO_CONTROLLER>:5000/v2.0
  481. #openstack-config --set /etc/heat/heat.conf DEFAULT heat_metadata_server_url http://<IP-MGMT_NODO_CONTROLLER>:8000
  482. #openstack-config --set /etc/heat/heat.conf DEFAULT heat_waitcondition_server_url http://<IP-MGMT_NODO_CONTROLLER>:8000/v1/waitcondition
  483. #openstack-config --set /etc/heat/heat.conf DEFAULT stack_domain_admin heat_domain_admin
  484. #openstack-config --set /etc/heat/heat.conf DEFAULT stack_user_domain_name heat_user_domain
  485. #openstack-config --set /etc/heat/heat.conf DEFAULT stack_domain_admin_password HEAT_DOMAIN_PASS
  486.  
  487. #heat-keystone-setup-domain --stack-user-domain-name heat_user_domain  --stack-domain-admin heat_domain_admin --stack-domain-admin-password HEAT_DOMAIN_PASS
  488.  
  489. #su -s /bin/sh -c "heat-manage db_sync" heat
  490.  
  491. #systemctl enable openstack-heat-api.service openstack-heat-api-cfn.service openstack-heat-engine.service
  492. #systemctl start openstack-heat-api.service openstack-heat-api-cfn.service openstack-heat-engine.service
  493.  
  494. #firewall-cmd --add-port=8004/tcp
  495. #firewall-cmd --add-port=8000/tcp
  496. #firewall-cmd --permanent --add-port=8004/tcp
  497. #firewall-cmd --permanent --add-port=8000/tcp
  498. #systemctl restart firewalld
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!