目錄
3、關閉selinux、firewalld、NetworkManager
電腦配置感人,偏熱愛學習,技術也差,經常虛擬機搭建一套環境後叫苦連連,無法支撐別的技術部署實踐或者有時玩崩,
根據習慣,做一些初始化操作,僅用於日常練習,不安全不安全不安全。
centos7.5虛擬機初始化操作
1、設置默認eth0網卡名稱
# 初次安裝打開kernel選項設置默認eth0
TAB鍵+net.ifnames=0 biosdevname=0
# 遠程連接
SecureCRT--選項--會話選項--仿真--終端--xterm--後面兩個勾上--外觀--字體和編碼
2、網絡信息規劃
#規劃網段
虛擬機--編輯--虛擬網絡編輯器--NET--網段以及DHCP配置
#IP設置
vi /etc/sysconfig/network-scripts/ifcfg-eth0
TYPE=Ethernet
PROXY_METHOD=none
BROWSER_ONLY=no
BOOTPROTO=static
DEFROUTE=yes
NAME=eth0
DEVICE=eth0
ONBOOT=yes
IPADDR=192.168.192.128
NETMASK=255.255.255.0
GATEWAY=192.168.192.2
systemctl restart network
#DNS設置
vi /etc/resolv.conf
nameserver 192.168.192.2
3、關閉selinux、firewalld、NetworkManager
sed -i 's/enforcing/disabled/g' /etc/selinux/config
systemctl stop firewalld
systemctl disable firewalld
systemctl disable NetworkManager
4、主機名規劃與解析
hostnamectl set-hostname k8s-master
cat /etc/hosts
127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
192.168.192.128 k8s-master
192.168.192.129 k8s-node1
192.168.192.130 k8s-node2
5、安裝yum源和常用包
cd /etc/yum.repos.d
wget http://mirrors.aliyun.com/repo/epel-7.repo
yum install -y net-tools vim lrzsz tree screen lsof tcpdump nc mtr nmap openssl-devel wget telnet unzip bind-utils ntpdate
6、時間定時同步
which ntpdate
/usr/sbin/ntpdate
crontab -e
*/60 * * * * /usr/sbin/ntpdate pool.ntp.org > /dev/null 2>&1
7、內核優化
vim /etc/sysctl.conf
vm.swappiness = 0
vm.max_map_count=655360
kernel.sysrq = 1
fs.file-max=65535
net.core.somaxconn = 65535
net.ipv4.conf.all.rp_filter = 0
net.ipv4.conf.default.rp_filter = 0
net.ipv4.conf.default.arp_announce = 2
net.ipv4.conf.lo.arp_announce = 2
net.ipv4.conf.all.arp_announce = 2
net.ipv4.tcp_max_tw_buckets = 5000
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_max_syn_backlog = 1024
net.ipv4.tcp_synack_retries = 2
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.tcp_fin_timeout = 30
net.ipv4.neigh.default.gc_stale_time = 120
net.ipv6.conf.all.disable_ipv6 = 1
net.ipv6.conf.default.disable_ipv6 = 1
net.ipv6.conf.lo.disable_ipv6 = 1
8、製作快照
每個階段製作快照便於恢復,然後reboot。
拷貝虛擬機到其他節點,修改地址與主機名。