文章目錄
- 一:搭建kvm服務器
- 二:centos鏡像製作
- 2.0 centos鏡像製作思路
- 2.1 將centos 7 、CentOS7-Base-163.repo和centos-cloud-init.sh 上傳到服務器
- 2.2 開啓libvirtd(或者在圖形界面終端設置,更簡單)
- 2.3 登錄虛擬機
- 2.4 安裝一些裝機必備的組件
- 2.5 關閉防火牆、核心防護
- 2.6 OpenStack雲優化--centos-cloud-init.sh(商業版有用,社區版無用)
- 2.7 grub優化
- 2.8 備註:ssh 連接較慢的修改
- 2.9 重啓虛擬機,查看鏡像
- 三:依照現有鏡像創建新的虛擬機
- 四:創建一個img格式的鏡像,上傳到openstack測試
- 五:解決dashboard中實例控制檯code:1006報錯問題
一:搭建kvm服務器
IP:192.168.247.14
1.1 安裝系統,勾選cpu虛擬化
這裏安裝的是1908版本,nat的網卡是vm8:192.168.247.0/24
1.2 準備kvm環境
- 配置網絡
[root@localhost ~]# vi /etc/sysconfig/network-scripts/ifcfg-ens33
TYPE=Ethernet
PROXY_METHOD=none
BROWSER_ONLY=no
BOOTPROTO=static
DEFROUTE=yes
IPV4_FAILURE_FATAL=no
IPV6INIT=yes
IPV6_AUTOCONF=yes
IPV6_DEFROUTE=yes
IPV6_FAILURE_FATAL=no
IPV6_ADDR_GEN_MODE=stable-privacy
NAME=ens33
UUID=84fdb62a-efd6-478a-aad1-93654e175104
DEVICE=ens33
ONBOOT=yes
IPADDR=192.168.247.14
GATEWAY=192.168.247.2
NETMASK=255.255.255.0
DNS1=8.8.8.8
DNS2=114.114.114.114
[root@localhost ~]# ifconfig
ens33: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 192.168.247.14 netmask 255.255.255.0 broadcast 192.168.247.255
[root@localhost ~]# ping 8.8.8.8
PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data.
64 bytes from 8.8.8.8: icmp_seq=1 ttl=128 time=35.2 ms
64 bytes from 8.8.8.8: icmp_seq=2 ttl=128 time=35.0 ms
64 bytes from 8.8.8.8: icmp_seq=3 ttl=128 time=35.7 ms
^C
--- 8.8.8.8 ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2003ms
rtt min/avg/max/mdev = 35.085/35.365/35.780/0.369 ms
- 搭建本地倉庫
[root@localhost ~]# mkdir /abc
[root@localhost ~]# mount /dev/sr0 /acb
mount: mount point /acb does not exist
[root@localhost ~]# mount /dev/sr0 /abc
mount: /dev/sr0 is write-protected, mounting read-only
[root@localhost ~]# vi /etc/fstab
/dev/sr0 /abc iso9660 defaults 0 0
[root@localhost ~]# df -Th
Filesystem Type Size Used Avail Use% Mounted on
/dev/sr0 iso9660 4.4G 4.4G 0 100% /abc
[root@localhost ~]# reboot
連接斷開
連接成功
Last login: Tue Mar 10 19:21:54 2020 from 192.168.254.1
[root@localhost ~]# df -Th
Filesystem Type Size Used Avail Use% Mounted on
/dev/sr0 iso9660 4.4G 4.4G 0 100% /abc
[root@localhost ~]# cd /etc/yum.repos.d/
[root@localhost yum.repos.d]# ls
CentOS-Base.repo CentOS-Debuginfo.repo CentOS-Media.repo CentOS-Vault.repo
CentOS-CR.repo CentOS-fasttrack.repo CentOS-Sources.repo
[root@localhost yum.repos.d]# mkdir bak
[root@localhost yum.repos.d]# mv * bak/
mv: cannot move ‘bak’ to a subdirectory of itself, ‘bak/bak’
[root@localhost yum.repos.d]# vi abc.repo
[abc]
name=abc
baseurl=file:///abc
gpgcheck=0
enabled=1
[root@localhost yum.repos.d]# yum makecache
- 關閉核心防護和防火牆
[root@localhost ~]# systemctl stop firewalld
[root@localhost ~]# systemctl disable firewalld
[root@localhost ~]# setenforce 0
[root@localhost ~]# vi /etc/selinux/config
SELINUX=disable
1.3 安裝kvm所需要的軟件
yum groupinstall -y "GNOME Desktop" ####安裝 GNOME 桌面環境 如果裝了圖形界面不需要裝了
yum -y install qemu-kvm ####KVM 模塊
yum -y install qemu-kvm-tools ####KVM 調試工具,可不安裝
yum -y install virt-install ####構建虛擬機的命令行工具
yum -y install qemu-img ####qemu 組件,創建磁盤、 啓動虛擬機等
yum -y install bridge-utils ####網絡支持工具
yum -y install libvirt ####虛擬機管理工具
yum -y install virt-manager ####圖形界面管理虛擬機
注意: 在使用 yum 安裝完桌面後執行 ln -sf /lib/systemd/system/graphical.target
/etc/systemd/system/default.target 命 令 , 將 系 統 的 默 認 運 行 target 更 改 爲
graphical.targe。 重啓後系統將進入圖形化界面。 若不執行上述命令更改系統的默認運行
target, 重啓時可能報錯
ln -sf /lib/systemd/system/graphical.target /etc/systemd/system/default.target
1.4 重啓驗證
[root@localhost ~]# init 6
[root@localhost ~]# cat /proc/cpuinfo | grep vmx ###查看CPU是否支持虛擬化
[root@localhost ~]# lsmod | grep kvm //查看KVM模塊是否安裝
kvm_intel 188644 0
kvm 621480 1 kvm_intel
irqbypass 13503 1 kvm
1.5 開啓libvirtd服務
[root@localhost ~]# systemctl start libvirtd ####開啓libvirtd服務
[root@localhost ~]# systemctl enable libvirtd ####開機啓動libvirtd服務
1.6 設置kvm網絡
宿主服務器安裝完成 KVM, 首先要設定網絡, 在 libvirt 中運行 KVM 網絡有兩種方法:
NAT 和 Bridge, 默認是 NAT。
關於兩種模式的說明:
●用戶模式, 即 NAT 方式, 這種方式是默認網絡, 數據包由 NAT 方式通過主機的接口進行
傳送, 可以訪問外網, 但是無法從外部訪問虛擬機網絡。
●橋接模式, 這種模式允許虛擬機像一臺獨立的主機一樣擁有網絡, 外部的機器可以直接
訪問到虛擬機內部, 但需要網卡支持, 一般有線網卡都支持。
這裏以 Bridge(橋接) 爲例。
[root@localhost ~]# vim /etc/sysconfig/network-scripts/ifcfg-ens33
BRIDGE=br0 //添加這個參數
//註釋掉ip信息
#IPADDR=192.168.247.14
#GATEWAY=192.168.247.2
#NETMASK=255.255.255.0
#DNS1=8.8.8.8
#DNS2=114.114.114.114
[root@localhost ~]# vim /etc/sysconfig/network-scripts/ifcfg-br0
TYPE=Bridge
OTPROTO=static
DEFROUTE=yes
PEERDNS=yes //
PEERROUTES=yes //
IPV4_FAILURE_FATAL=no
IPV6INIT=yes
IPV6_AUTOCONF=yes
IPV6_DEFROUTE=yes
IPV6_PEERDNS=yes //
IPV6_PEERROUTES=yes //
IPV6_FAILURE_FATAL=no
IPV6_ADDR_GEN_MODE=stable-privacy
NAME=br0
DEVICE=br0
ONBOOT=yes
IPADDR=192.168.247.14
NETMASK=255.255.255.0
GATEWAY=192.168.247.2
DNS1=8.8.8.8
DNS2=114.114.114.114
[root@localhost ~]# systemctl restart network
[root@localhost ~]# ifconfig
br0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 192.168.247.14 netmask 255.255.255.0 broadcast 192.168.247.255
ens33: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
二:centos鏡像製作
2.0 centos鏡像製作思路
1、部署KVM,KVM的網絡要橋接,(能分配IP地址、而且能上網)
2、安裝centos7.6操作系統,在設置鏡像的屬性
3、正常的安裝操作系統,時區、分區、最小化安裝、網絡(DHCP能獲取IP地址)、設置root密碼
4、yum源優化(我們國內用163的YUM源)
5、防火牆核心防護做優化(根據你的業務需求優化)
6、OpenStack雲優化–centos-cloud-init.sh(商業版有用,社區版無用)
7、grub優化
2.1 將centos 7 、CentOS7-Base-163.repo和centos-cloud-init.sh 上傳到服務器
[root@localhost opt]# ll
total 4554760
-rw-r--r--. 1 root root 1458 Mar 10 17:28 CentOS7-Base-163.repo
-rw-r--r--. 1 root root 4664066048 Mar 10 17:30 CentOS-7-x86_64-DVD-1908.iso
-rw-r--r--. 1 root root 1735 Mar 10 17:28 centos-cloud-init.sh
drwxr-xr-x. 2 root root 6 Oct 31 2018 rh
2.2 開啓libvirtd(或者在圖形界面終端設置,更簡單)
[root@localhost opt]# mkdir -p /data_kvm
[root@localhost opt]# mkdir -p /data_kvm/iso
[root@localhost opt]# mkdir -p /data_kvm/store
[root@localhost ~]# virt-manager
詳細步驟可以看我之前的操作文檔
2.2.1 添加存儲池
[root@localhost opt]# mv CentOS-7-x86_64-DVD-1908.iso /data_kvm/iso/
2.2.2 創建虛擬機
步驟略有不同的位置我會標出來
[外鏈圖片轉存失敗,源站可能有防盜鏈機制,建議將圖片保存下來直接上傳(img-iTmuyAqK-1584006404300)(C:\Users\Administrator\AppData\Roaming\Typora\typora-user-images\1583833520945.png)]
備註:在創建鏡像或者創建自定義存儲時,若是直接創建,就是qcow2格式
若是想要做img格式,需要在存儲池裏先創建raw卷,然後在創建虛擬機的時候,指定自定義存儲
開始安裝
最小化安裝
這裏爲了區分,將宿主機主機名修改一下
[root@localhost opt]# hostnamectl set-hostname gsy
[root@localhost opt]# su
[root@gsy opt]#
2.3 登錄虛擬機
[root@localhost ~]# ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 52:54:00:50:9d:92 brd ff:ff:ff:ff:ff:ff
inet 192.168.247.129/24 brd 192.168.247.255 scope global noprefixroute dynamic eth0
valid_lft 5358540sec preferred_lft 5358540sec
inet6 fe80::5e28:9c13:f79e:c76d/64 scope link noprefixroute
valid_lft forever preferred_lft forever
[root@localhost ~]# ping 8.8.8.8
PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data.
64 bytes from 8.8.8.8: icmp_seq=1 ttl=128 time=34.9 ms
64 bytes from 8.8.8.8: icmp_seq=2 ttl=128 time=36.6 ms
^C
--- 8.8.8.8 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1001ms
rtt min/avg/max/mdev = 34.987/35.799/36.611/0.812 ms
[root@localhost ~]# ping www.baidu.com
PING www.a.shifen.com (180.101.49.12) 56(84) bytes of data.
64 bytes from 180.101.49.12 (180.101.49.12): icmp_seq=1 ttl=128 time=11.0 ms
64 bytes from 180.101.49.12 (180.101.49.12): icmp_seq=2 ttl=128 time=7.59 ms
64 bytes from 180.101.49.12 (180.101.49.12): icmp_seq=3 ttl=128 time=9.63 ms
^C
--- www.a.shifen.com ping statistics ---
- 修改虛擬機yum倉庫
[root@localhost ~]# cd /etc/yum.repos.d/
[root@localhost yum.repos.d]# mkdir bak
[root@localhost yum.repos.d]# mv * bak
mv: cannot move ‘bak’ to a subdirectory of itself, ‘bak/bak’
[root@localhost yum.repos.d]# ls
bak
[root@localhost yum.repos.d]# scp [email protected]:/opt/CentOS7-Base-163.repo ./
[root@localhost yum.repos.d]# ls
bak CentOS7-Base-163.repo
[root@localhost yum.repos.d]# yum clean all
Loaded plugins: fastestmirror
Cleaning repos: base extras updates
[root@localhost yum.repos.d]# yum list
2.4 安裝一些裝機必備的組件
[root@localhost yum.repos.d]# yum -y install vim net-tools bash-completion
2.5 關閉防火牆、核心防護
[root@localhost yum.repos.d]# vi /etc/sysconfig/selinux
SELINUX=disabled
[root@localhost yum.repos.d]# setenforce 0
[root@localhost yum.repos.d]# systemctl stop firewalld
[root@localhost yum.repos.d]# systemctl disable firewalld
Removed symlink /etc/systemd/system/multi-user.target.wants/firewalld.service.
Removed symlink /etc/systemd/system/dbus-org.fedoraproject.FirewallD1.service.
2.6 OpenStack雲優化–centos-cloud-init.sh(商業版有用,社區版無用)
[root@localhost yum.repos.d]# scp [email protected]:/opt/centos-cloud-init.sh ./
[root@localhost yum.repos.d]# ls
bak CentOS7-Base-163.repo centos-cloud-init.sh
[root@localhost yum.repos.d]# mv centos-cloud-init.sh cloud-init.sh
[root@localhost yum.repos.d]# chmod 755 cloud-init.sh
[root@localhost yum.repos.d]# chmod +x cloud-init.sh
[root@localhost yum.repos.d]# sed -i 's/\r//g' cloud-init.sh
[root@localhost yum.repos.d]# mv cloud-init.sh /usr/bin/
[root@localhost yum.repos.d]# echo ' /bin/bash /usr/bin/cloud-init.sh' >> /etc/rc.d/rc.local
2.7 grub優化
[root@localhost yum.repos.d]# vim /etc/sysconfig/grub
GRUB_TIMEOUT=5
GRUB_DISTRIBUTOR="$(sed 's, release .*$,,g' /etc/system-release)"
GRUB_DEFAULT=saved
GRUB_DISABLE_SUBMENU=true
GRUB_TERMINAL_OUTPUT="console"
GRUB_CMDLINE_LINUX="crashkernel=auto console=ttyS0,115200n8 rhgb quiet"
GRUB_DISABLE_RECOVERY="true"
- 修改開機啓動參數後,使用grub2-mkconfig 命令使得參數設置有效
[root@localhost yum.repos.d]# grub2-mkconfig -o /boot/grub2/grub.cfg
Generating grub configuration file ...
Found linux image: /boot/vmlinuz-3.10.0-1062.el7.x86_64
Found initrd image: /boot/initramfs-3.10.0-1062.el7.x86_64.img
Found linux image: /boot/vmlinuz-0-rescue-2453516ae82e4840a8b05a6816d89b91
Found initrd image: /boot/initramfs-0-rescue-2453516ae82e4840a8b05a6816d89b91.img
done
2.8 備註:ssh 連接較慢的修改
sed 's/.*UseDNS.*/UseDNS no/g' /etc/ssh/sshd_config -i
sed 's/^#PermitRootLogin.*/PermitRootLogin yes/g' /etc/ssh/sshd_config -i
sed 's/GSSAPIAuthentication.*/GSSAPIAuthentication no/g' /etc/ssh/sshd_config -i
2.9 重啓虛擬機,查看鏡像
[root@localhost yum.repos.d]# reboot
在服務器上查看
[root@gsy opt]# cd /var/lib/libvirt/images/
[root@gsy images]# ls
centos7.0.qcow2
[root@gsy images]# cp centos7.0.qcow2 /data_kvm/store/centos7.0.qcow2
[root@gsy store]# ls
centos.7.0.qcow2
三:依照現有鏡像創建新的虛擬機
3.1 查看狀態
[root@gsy data_kvm]# virsh start centos7.0
error: Domain is already active
[root@gsy store]# virsh list --all
Id Name State
----------------------------------------------------
4 centos7.0-2 running
5 centos7.0 running
[root@gsy data_kvm]# virsh dominfo centos7.0
Id: 5
Name: centos7.0
UUID: 2453516a-e82e-4840-a8b0-5a6816d89b91
OS Type: hvm
State: running
CPU(s): 2
CPU time: 60.7s
Max memory: 2097152 KiB
Used memory: 2097152 KiB
Persistent: yes
Autostart: disable
Managed save: no
Security model: selinux
Security DOI: 0
Security label: system_u:system_r:svirt_t:s0:c139,c633 (permissive)
[root@gsy store]# virsh dominfo centos7.0-2
Id: 4
Name: centos7.0-2
UUID: 00e45a74-d1b6-4fec-a6e6-422ba5b11deb
OS Type: hvm
State: running
CPU(s): 2
CPU time: 63.7s
Max memory: 2097152 KiB
Used memory: 2097152 KiB
Persistent: yes
Autostart: disable
Managed save: no
Security model: selinux
Security DOI: 0
Security label: system_u:system_r:svirt_t:s0:c107,c189 (permissive)
[root@gsy store]# virsh console centos7.0
Connected to domain centos7.0
Escape character is ^]
CentOS Linux 7 (Core)
Kernel 3.10.0-1062.el7.x86_64 on an x86_64
localhost login: root
密碼:
Last login: Tue Mar 10 19:28:52 on tty1
[root@localhost ~]#
[root@localhost ~]# init 0
[ 1164.571474] Power down.
[root@gsy store]# virsh console centos7.0
error: The domain is not running
[root@gsy store]# virsh start centos7.0
Domain centos7.0 started
四:創建一個img格式的鏡像,上傳到openstack測試
4.1 將imgscp到控制節點
[root@ct opt]# scp [email protected]:/data_kvm/store/gsy.img ./
The authenticity of host '192.168.247.14 (192.168.247.14)' can't be established.
ECDSA key fingerprint is SHA256:U3w1AX+lJGEWG/GGjCj3jP82B2sbAe0eV2dzkv7n2ok.
ECDSA key fingerprint is MD5:1b:2d:e0:41:2f:c5:fd:13:7b:66:8c:fb:cf:f7:96:b0.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '192.168.247.14' (ECDSA) to the list of known hosts.
[email protected]'s password:
gsy.img 62% 12GB 78.4MB/s 01:38 ETA
[root@ct opt]# ls
gsy.img openstack_rocky openstack_rocky.tar.gz
4.2 創建卷
名爲gsy,鏡像文件是gsy.img,磁盤格式爲raw,–container-format bare 共享的–progress顯示進程
備註:另外一種方法
openstack image list //查看已有鏡像列表
openstack image show 鏡像名 //查看鏡像的具體信息
openstack image create --file 鏡像文件名 --disk-format qcow2 --container-format bare --public centos7
//創建鏡像,創建一個qcow2格式的鏡像,名字爲centos7
openstack image delete 鏡像名 //刪除鏡像
[root@ct opt(keystone_admin)]# glance image-create --name "gsy" --file gsy.img --disk-format raw --container-format bare --progress
[> ] 1% 13.30
[=============================>] 100% 13.39
+------------------+----------------------------------------------------------------------------------+
| Property | Value
|
+------------------+----------------------------------------------------------------------------------+
| checksum | 9e3faabdbddc848dbed11ef151c3b526
|
| container_format | bare
|
| created_at | 2020-03-12T05:30:06Z
|
| disk_format | raw
|
| id | 9c80fd3d-8f3e-4c3b-84e5-fab2916a041b
|
| min_disk | 0
|
| min_ram | 0
|
| name | gsy
|
| os_hash_algo | sha512
|
| os_hash_value | 2fce238e911f68676ba583295b11e5563c27b47d6abca17f3af108d7dc5e931b6354ec4a31156971 |
| | de0c7087ad3664310f9706b74b70e910e493e0869b37f816
|
| os_hidden | False
|
| owner | cd08a577c9d1405c8aa8615808a2f242
|
| protected | False
|
| size | 21474836480
|
| status | active
|
| tags | []
|
| updated_at | 2020-03-12T05:37:37Z
|
| virtual_size | Not available
|
| visibility | shared
|
+------------------+---------------------------------------------------------------------------------+
4.3 創建實例
13.46孵化,14.04 完成
4.4 查看實例
[root@comp1 ~]# tail -f /var/log/nova/nova-compute.log
[root@ct opt(keystone_admin)]# ceph -s
cluster:
id: 15200f4f-1a57-46c5-848f-9b8af9747e54
health: HEALTH_OK
services:
mon: 3 daemons, quorum ct,comp1,comp2
mgr: ct(active), standbys: comp1, comp2
osd: 3 osds: 3 up, 3 in
data:
pools: 3 pools, 192 pgs
objects: 3.40 k objects, 23 GiB
usage: 73 GiB used, 2.9 TiB / 3.0 TiB avail
pgs: 192 active+clean
io:
client: 255 B/s wr, 0 op/s rd, 0 op/s wr
You have new mail in /var/spool/mail/root
4.5 綁定浮動IP,實現互聯互通
ssh鏈接
依舊ping不通外網
[root@host-192-168-0-23 ~]# rpm -q centos-release
centos-release-7-7.1908.0.el7.centos.x86_64
五:解決dashboard中實例控制檯code:1006報錯問題
5.1 修改計算節點的配置文件:/etc/nova/nova.conf
所有的計算節點都修改,指向本地的主機名
[root@comp1 ~]# vi /etc/nova/nova.conf
10977 vncserver_proxyclient_address=comp1
10978 vncserver_listen=0.0.0.0
5.2 重啓nova-compute服務
[root@comp1 ~]# systemctl restart openstack-nova-compute
[root@comp2 ~]# systemctl restart openstack-nova-compute
5.3 再次查看
