2.7創建虛擬機
2.7.1創建提供者虛擬網絡
a在控制節點上,加載 admin 憑證來獲取管理員能執行的命令訪問權限
sourceadmin-openstack
b創建網絡
openstack network create --share \
--provider-physical-network public \
--provider-network-type flat public
驗證
[root@linux-node1~]# neutron net-list
+--------------------------------------+--------+---------+
| id | name |subnets |
+--------------------------------------+--------+---------+
| 98f8acb1-6ee4-43c4-b28b-d2a71b76a870| public | |
+--------------------------------------+--------+---------+
c在網絡上創建一個子網
openstack subnet create --network public \
--allocation-pool start=192.168.56.100,end=192.168.56.200 \
--dns-nameserver 192.168.56.2 --gateway 192.168.56.2 \
--subnet-range 192.168.56.0/24 public-subnet
驗證
[root@linux-node1~]# neutron subnet-list
+-------------------------------------+---------------+-----------------+-------------------------------------+
| id | name | cidr| allocation_pools |
+-------------------------------------+---------------+-----------------+-------------------------------------+
|5f912ae8-fa19-426d-91ca- | public-subnet | 192.168.56.0/24 |{"start": "192.168.56.100", "end": |
| 043e2e2d9664 | || "192.168.56.200"} |
+-------------------------------------+---------------+-----------------+-------------------------------------+
[root@linux-node1~]# neutron net-list
+--------------------------------------+--------+------------------------------------------------------+
| id | name |subnets |
+--------------------------------------+--------+------------------------------------------------------+
|98f8acb1-6ee4-43c4-b28b-d2a71b76a870 | public |5f912ae8-fa19-426d-91ca-043e2e2d9664 192.168.56.0/24 |
+--------------------------------------+--------+------------------------------------------------------+
2.7.2創建m1.nano類型
默認的最小規格的主機需要512 MB內存。對於環境中計算節點內存不足4 GB的,我們推薦創建只需要64 MB的``m1.nano``規格的主機。若單純爲了測試的目的,請使用``m1.nano``規格的主機來加載CirrOS鏡像
openstack flavorcreate --id 0 --vcpus 1 --ram 64 --disk 1 m1.nano
a生成一個鍵值對
導入demo項目憑證
sourcedemo-openstack
b生成和添加祕鑰對
ssh-keygen -q -N""
openstack keypaircreate --public-key ~/.ssh/id_rsa.pub mykey
+-------------+-------------------------------------------------+
| Field | Value |
+-------------+-------------------------------------------------+
| fingerprint |ee:3d:2e:97:d4:e2:6a:54:6d:0d:ce:43:39:2c:ba:4d |
| name | mykey |
| user_id |58126687cbcc4888bfa9ab73a2256f27 |
+-------------+-------------------------------------------------+
c驗證公鑰的添加
$ openstack keypairlist
+-------+-------------------------------------------------+
| Name |Fingerprint |
+-------+-------------------------------------------------+
| mykey |ee:3d:2e:97:d4:e2:6a:54:6d:0d:ce:43:39:2c:ba:4d |
+-------+-------------------------------------------------+
2.7.3.增加安全組
a添加規則到default安全組
openstack securitygroup rule create --proto icmp default
b允許安全 shell (SSH) 的訪問
openstack securitygroup rule create --proto tcp --dst-port 22 default
2.7.4公網創建實例
在控制節點上,獲得 admin 憑證來獲取只有管理員能執行的命令的訪問權限:
sourcedemo-openstack
一個實例指定了虛擬機資源的大致分配,包括處理器、內存和存儲。
[root@linux-node1~]# openstack flavor list
+----+---------+-----+------+-----------+-------+-----------+
| ID | Name | RAM |Disk | Ephemeral | VCPUs | Is Public |
+----+---------+-----+------+-----------+-------+-----------+
| 0 | m1.nano | 64| 1 | 0 | 1 | True |
+----+---------+-----+------+-----------+-------+-----------+
a列出可用鏡像
[root@linux-node1~]# openstack image list
+--------------------------------------+--------+--------+
| ID | Name |Status |
+--------------------------------------+--------+--------+
|01d13e57-6ae1-4bf8-98e2-0d83f3c7dd75 | cirros | active |
+--------------------------------------+--------+--------+
b列出可用安全組
[root@linux-node1~]# openstack security group list
+--------------------------------------+---------+------------------------+----------------------------------+
| ID | Name |Description | Project |
+--------------------------------------+---------+------------------------+----------------------------------+
|14f5bf0e-58ba-4be9-9967-89b59331ff74 | default | Default security group |a6c20f56f252445b85b247501b995e50 |
+--------------------------------------+---------+------------------------+----------------------------------+
c列出可用網絡
[root@linux-node1~]# openstack network list
+--------------------------------------+--------+--------------------------------------+
| ID | Name |Subnets |
+--------------------------------------+--------+--------------------------------------+
|98f8acb1-6ee4-43c4-b28b-d2a71b76a870 | public | 5f912ae8-fa19-426d-91ca-043e2e2d9664|
+--------------------------------------+--------+--------------------------------------+
d啓動虛擬機
openstack servercreate --flavor m1.nano --image cirros \
--nicnet-id=98f8acb1-6ee4-43c4-b28b-d2a71b76a870 --security-group default \
--key-name mykeydemo-instance
e檢查實例的狀態
[root@linux-node1~]# openstack server list
+--------------------------------------+---------------+--------+-----------------------+------------+
| ID | Name |Status | Networks | Image Name |
+--------------------------------------+---------------+--------+-----------------------+------------+
| c50d1093-1059-4a2c-9b88-89feab212f3b| demo-instance | ACTIVE | public=192.168.56.101 | cirros |
+--------------------------------------+---------------+--------+-----------------------+------------+
f使用虛擬控制檯訪問實例
openstack consoleurl show provider-instance
獲取你勢力的 Virtual Network Computing(VNC) 會話URL並從web瀏覽器訪問它:
[root@linux-node1~]# openstack console url show demo-instance
+-------+------------------------------------------------------------------------------------+
| Field | Value |
+-------+------------------------------------------------------------------------------------+
| type | novnc |
| url |http://192.168.56.11:6080/vnc_auto.html?token=d7ec4e02-e485-47c1-b276-ae517779af26|
+-------+------------------------------------------------------------------------------------+
+-------+------------------------------------------------------------------------------------+
CirrOS 鏡像包含傳統的用戶名/密碼認證方式並需在登錄提示中提供這些這些認證。登錄到 CirrOS 後,即可連接上虛擬機並登陸。