linux 部署
1、d2 安裝以後的配置
centos系統安裝後的基本配置: 1.經常使用軟件安裝: yum install -y bash-completion vim lrzsz wget expect net-tools nc nmap tree dos2unix htop iftop iotop unzip telnet sl psmisc nethogs glances bc 2.主機名和網絡 hostnamectl set-hostname python3 echo "10.0.0.100 python3">>/etc/hosts 3.關閉防火牆 iptables -L iptables -F systemctl disable firewalld [root@python3 ~]# getenforce Enforcing [root@python3 ~]# setenforce 0 [root@python3 ~]# getenforce [root@python3 ~]# vim /etc/selinux/config Linux命令 命令的基本構成 命令體 選項 參數(對象) ls -l /var 參數:文件 文件類型: d :目錄 f :普通文件 l :連接 b :塊設備,磁盤 光驅 c :字符設備 p :管道 s :套接字 命令提示符: [root@oldboy ~]# [oldguo@oldboy ~]$ 經常使用快捷鍵(bash shell支持的快捷鍵) ctrl + c cancel 取消當前的操做 ctrl + l (小寫字母L) clear(命令) ctrl + d 退出當前用戶 ctrl + r查找(歷史命令)。 history|grep [TAB]: 1.命令補全 2.參數補全 瞭解一下: ctrl + a 把光標移動到行首 ctrl + e 把光標移動到行尾 ctrl+ u 把光標到行首的內容刪除/剪切 ctrl + y 粘貼 delete 光標所在處從前日後刪除內容 ctrl + k 把光標到行尾的內容刪除/剪切 ctrl + → 向右移動一個單詞 ctrl + ← 向左移動一個單詞 ctrl + s 鎖屏 ctrl + q 解鎖 獲取幫助 --help man info 關機重啓 reboot poweroff ============================ linux命令分類 1.針對不一樣文件的管理命令 1.1 目錄 FHS 文件系統層次化標準 絕對路徑:從"/"開始一個具體路徑 相對路徑:從當前目錄開始的具體路徑(pwd能夠查看當前所在目錄) /3層/oldboy/教室3 /3層/oldboy/教室2 1.1.1 建立目錄: mkdir /oldboy mkdir -p /a/b/c 1.1.2 查詢目錄 ls -ld /oldboy tree /a tree -L 2 / 1.1.3 刪除目錄(危險) rm -rf /oldboy 經過文件句柄,有可能能夠找回丟失數據(前提:不能重啓,不能有大量數據寫入) 1.1.4 修改目錄(剪切,複製) mv /root/oldboy/ /tmp mv /root/oldguo/ /tmp/oldguo.bak mv oldboy old cp -r /tmp/old / cp -a 1.1.5 切換目錄 cd / cd /oldboy cd oldboy cd .. cd - cd 小技巧: [root@python3 tmp]# mkdir a{1..10} [root@python3 tmp]# mkdir dir{a..f} [root@python3 tmp]# ls -ld dir* [root@python3 tmp]# rm -rf dir* 1.2 普通文件 1.2.0 種類 ASCII TEXT:純文本文件(操做最多的) LSB Exe:二進制的可執行文件(命令,程序) 壓縮文件:zip tar gz bz2 cpio iso 二進制數據文件: 等. 1.2.1 文件建立 touch a.txt 1.2.2 文件刪除 rm -rf a.txt 1.2.3 文件查看 ls -l a.txt 看文件屬性 (1)小文件內容查看 cat /etc/passwd cat /etc/passwd /etc/shadow cat -n /etc/passwd (2)分頁顯示大文件內容 more /var/log/secure less /var/log/secure (3)文件前多少行 head /etc/passwd head -n3 /etc/passwd head -3 /etc/passwd (4)文件後多少行 tail -2 /etc/passwd tail -f /var/log/secure 1.2.4 剪切 複製 mv 命令和目錄的操做同樣 cp 命令和目錄的區別不須要加-r (加上也不報錯) 1.2.5 內容修改 重定向 > 覆蓋重定向 cat /etc/passwd >a.txt >> 追加劇定向 cat /etc/passwd >>a.txt echo "10.0.0.100 python3" >>/etc/hosts vim 編輯器 命令模式:初始模式 vim passwd 功能: 1.查看文件內容 上下左右光標移動 page up page down翻頁 G 光標到達最後一行 1G 光標到達第一行(gg) 10G 第10行 ^ 光標到達行首 $ 光標到達行尾 / 搜索關鍵字 yy 複製光標所在行 Nyy 複製N行 dd 刪除/剪切 Ndd 刪除/剪切N行 p 粘貼 x(del) 刪除光標所在字符 dG 刪除光標到文本末尾 d$ 從光標刪除到行尾,包括貫標所在字符 d^ 從光標刪除到行首,不包括光標所在字符 r 替換光標所在字符 ZZ 保存退出 u 撤銷上次操做 編輯模式: a :在光標以後錄入數據 i :在光標以前錄入數據 o :在光標下一行開啓新行錄入數據 A I O ESC 小技巧:每編輯完一行就ESC,退回到命令模式 末行模式 :q! :wq! :set nu :set nonu :%s/root/ROOT/g 連接(快捷方式) ln -s passwd passwd.lnk ls ls -l ls -ld ls -al ls -ltr 2. 磁盤 和 文件系統 2.1 企業級磁盤類型 SAS 容量 :900G 主機版 存儲版 轉速:15K 品牌:IBM HDS EMC 緩存: 接口速度:16Gb SSD: Sata3 PCI-E Flash盤 2.2 文件系統 方便用戶使用和管理磁盤硬件的,輔助系統(Filesystem) Linux文件系統類型: ext2 ext3 ext4 XFS 2.3 文件系統管理 [root@python3 ~]# ls -l /dev/sd* brw-rw---- 1 root disk 8, 0 Jan 3 15:28 /dev/sda brw-rw---- 1 root disk 8, 1 Jan 3 15:28 /dev/sda1 brw-rw---- 1 root disk 8, 2 Jan 3 15:28 /dev/sda2 brw-rw---- 1 root disk 8, 16 Jan 3 15:28 /dev/sdb [root@python3 ~]# fdisk -l 2.3.1 分區 fdisk /dev/sdb m n p w 2.3.2 格式化成文件系統(XFS) mkfs.xfs /dev/sdb1 2.3.3 掛載設備 mkdir /data mount /dev/sdb1 /data 2.3.4 查看掛載的磁盤使用狀況 df -h 2.3.5 自動掛載文件系統 vim /etc/fstab /dev/sdb1 /data xfs defaults 0 0 使用UUID更加安全 UUID=9fb2ec36-6a60-4394-9bfa-369261844d56 /data xfs defaults 0 0 Raid 功能特性: 1.將多塊磁盤合併成一塊磁盤,提供更大的存儲空間 2.能夠提供更高的IO能力 3.數據物理層面的高安全 Raid的工做級別 : raid0:條帶化功能,性能極高,安全性和單盤同樣 至少兩塊盤,理論上盤越多性能越高 raid1:鏡像功能,性能沒有明顯提高,安全性高. 浪費一半空間 raid10:鏡像+條帶化 ,至少四快盤,性能和安全兼顧 浪費通常空間 raid5:帶有校驗功能的條帶化 存儲數據時,根據數據計算校驗值,存儲到第三塊盤. 寫入性能較低 讀數據性能較高 至少三快盤,只容許一塊盤損壞,浪費1/n的磁盤空間 適合於讀多寫少的場景 3.用戶,組,權限 3.1 用戶的做用 登陸系統 管理系統對象 3.2 用戶的定義 用戶名(uid),密碼,家目錄(/home/oldboy),家目錄下會有環境變量文件等. 每一個用戶都必須有一個工做組,建立時沒指定,自動建立一個同名的組 3.3 組 組名字,GID 3.4 用戶和組的管理 組的管理: groupadd -g 1001 dev groupadd -g 1002 sa groupadd -g 1003 dba tail -3 /etc/group dev:x:1001: sa:x:1002: dba:x:1003: groupdel dba groupmod -g 10086 dev 用戶的管理: useradd -u 10011 -g dev oldguo id oldguo passwd oldguo su - oldboy userdel -r oldboy usermod -u 3000 oldguo 權限: 權限是做用在文件上的屬性. 普通權限的規劃: r 4 w 2 x 1 rw- r-- r-- root root passwd 目錄 文件 r ls cat more ,vim w 目錄下的修改 vim > x 目錄下全部操做都依賴於x 可執行程序 rwxr-xr-x chmod -R 755 /data chwon -R oldguo:dev /data chmod -R 755 /data chown -R oldguo:dev /data 4.程序管理 ps -ef|grep mysql kill 1234 kill -9 1234 pkill mysqld yum install -y httpd [root@python3 ~]# systemctl start httpd [root@python3 ~]# systemctl restart httpd [root@python3 ~]# systemctl stop httpd [root@python3 ~]# systemctl restart httpd 5.網絡管理 ip a ifconfig ping vim /etc/sysconfig/network-scripts/ifcfg-eth0 systemctl restart network
2、d3 環境搭建
經典互聯網架構 昨天補充: 查看已啓動服務的端口 netstat -tulnp |grep 80 ss -tulnp|grep 80 前期鋪墊: 1. Linux要能上網 2. 掌握Linux軟件包安裝方法 2.1 rpm包管理 2.1.1 光盤掛載 mount /dev/cdrom /mnt cd /mnt ls 2.1.2 安裝rpm包 rpm -ivh vsftpd-3.0.2-22.el7.x86_64.rpm rpm -Uvh vsftpd-3.0.2-22.el7.x86_64.rpm 2.13 卸載rpm rpm -e vsftpd-3.0.2-22.el7.x86_64 2.1.4 rpm包的查詢 [root@python3 ~]# rpm -q vsftpd vsftpd-3.0.2-22.el7.x86_64 [root@python3 ~]# rpm -q vsftp package vsftp is not installed [root@python3 ~]# [root@python3 ~]# rpm -qa |grep vsf [root@python3 ~]# which vim /usr/bin/vim [root@python3 ~]# rpm -qf /usr/bin/vim **2.1.5 額外補充 A ----> B ---> C A BC B DF F AC rpm -ivh a b c d e f 2.2 yum 使用 2.2.1 使用aliyun yum站點源 Base源 cd /etc/yum.repos.d/ mv *.repo /tmp wget http://mirrors.aliyun.com/repo/Centos-7.repo EPEL源 yum install -y epel-release 2.2.2 使用yum安裝軟件 yum install -y openssl openssl-devel 2.2.3 軟件包查詢及組安裝 yum list |grep vsftpd yum grouplist yum groupinstall "Development Tools" 2.2.4 卸載軟件包 yum remove 2.2.5 優化yum源 (1)本地鏡像yum源(光盤掛載到/mnt下) [local] name=localios baseurl=file:///mnt gpgcheck=0 yum clean all yum install -y vsftpd (2)局域網yum源(ftp) 1.安裝ftp軟件 yum install -y vsftpd 2.啓動ftp服務 [root@python3 ~]# systemctl start vsftpd [root@python3 ~]# systemctl enable vsftpd 3.建立站點目錄,並將光盤軟件拷貝其中 [root@python3 ~]# cp -a /mnt/* /var/ftp/pub/centos7 4.生成ftp站點的yum源配置文件 [ftp] name=centos7 baseurl=ftp://10.0.0.100/pub/centos7 gpgcheck=0 5.安裝軟件測試 yum install openssl-devel bzip2-devel expat-devel gdbm-devel readline-devel sqlite-devel gcc gcc-c++ openssl-devel zlib zlib-devel -y 2.3 源碼包應用 2.3.1 解壓 .zip unzip xxx.zip .tar .tar.gz .tgz .tar.bz2 .tar.xz tar xf xxx.tar .iso mount -o loop xxx.iso /test .cpio cpio -idcmv < xxx.cpio 2.3.2 源碼包安裝 確認已經安裝 yum install gcc* yum install -y openssl* (1)python3.6源碼包安裝 ./configure ------> 定製功能 make make install mysql 源碼包 cmake make make install (2) redis 源碼包安裝 make 修改環境變量 vim /etc/profile 添加如下一行: export PATH=/opt/redis-3.2.10/src:$PATH 生效配置 source /etc/profile (3) 讓python連接redis unzip redis-py-master.zip cd redis-py-master python3 setup.py install 對redis的單實例進行鏈接操做 python3 >>>import redis >>>r = redis.StrictRedis(host='localhost', port=6379) >>>r.set('name', 'oldguo') True >>>r.get('name') 'oldguo' 3. 二進制包(mysql5.7.20) 3.1 解壓及製做軟鏈接 tar xf mysql-5.7.20-linux-glibc2.12-x86_64.tar.gz ln -s mysql-5.7.20-linux-glibc2.12-x86_64 mysql 3.2 編輯環境變量 vim /etc/profile 添加如下一行: export PATH=/opt/mysql/bin:$PATH 生效配置: source /etc/profile 3.3 卸載自帶mariadb yum remove mariadb-libs 3.4 生成配置文件(/etc/my.cnf) vim /etc/my.cnf [mysqld] basedir=/opt/mysql datadir=/opt/mysql/data socket=/tmp/mysql.sock user=mysql log_error=/var/log/mysql.log log_bin=/opt/mysql/data/mysql-bin server_id=100 [mysql] socket=/tmp/mysql.sock 3.5 建立用戶和數據目錄,並受權 useradd mysql mkdir /opt/mysql/data chown -R mysql.mysql /opt/mysql 3.6 初始化數據 [root@python3 ~]# mysqld --initialize-insecure --basedir=/opt/mysql --datadir=/opt/mysql/data --user=mysql 2019-01-04T03:58:03.128958Z 0 [Warning] TIMESTAMP with implicit DEFAULT value is deprecated. Please use --explicit_defaults_for_timestamp server option (see documentation for more details). 2019-01-04T03:58:03.142436Z 0 [ERROR] Could not open file '/var/log/mysql.log' for error logging: Permission denied 2019-01-04T03:58:03.142492Z 0 [ERROR] Aborting 報錯解決: touch /var/log/mysql.log chown -R mysql.mysql /var/log/mysql.log 再次初始化: mysqld --initialize-insecure --basedir=/opt/mysql --datadir=/opt/mysql/data --user=mysql 3.7 啓動mysql cd /opt/mysql/support-files ./mysql.server start cp mysql.server /etc/init.d/mysqld /etc/init.d/mysqld restart 擴展:使用systemctl 管理mysql vim /etc/systemd/system/mysqld.service [Unit] Description=MySQL Server Documentation=man:mysqld(8) Documentation=http://dev.mysql.com/doc/refman/en/using-systemd.html After=network.target After=syslog.target [Install] WantedBy=multi-user.target [Service] User=mysql Group=mysql ExecStart=/opt/mysql/bin/mysqld --defaults-file=/etc/my.cnf LimitNOFILE = 5000 systemctl restart mysqld netstat -tulnp |grep 3306 3.8 測試python3連接mysql 建立mysql連接用戶 grant all on *.* to root@'10.0.0.%' identified by '123'; create database bbs charset utf8; python代碼測試: pip3 install --upgrade pip pip3 install pymysql vim testmysql.py #!/usr/bin/python3 import pymysql db = pymysql.connect("10.0.0.100","root","123","bbs" ) cursor = db.cursor() cursor.execute("SELECT VERSION()") data = cursor.fetchone() print ("Database version : %s " % data) db.close() python3 testmysql.py 4.經典互聯網架構項目(LNMP) LNMPT = Linux Nginx MySQL PHP LNMPJ = Linux Nginx MySQL PHP LNMP架構環境部署 1) 使用官方Nginx yum源 [root@nginx ~]# vim /etc/yum.repos.d/nginx.repo [nginx] name=nginx repo baseurl=http://nginx.org/packages/centos/7/$basearch/ gpgcheck=0 enabled=1 #安裝Nginx [root@nginx ~]# yum install nginx -y 2) 啓動Nginx,並將Nginx加入開機自啓 systemctl start nginx systemctl enable nginx 3) 使用第三方擴展源安裝php7.1 rpm -Uvh https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm rpm -Uvh https://mirror.webtatic.com/yum/el7/webtatic-release.rpm [root@nginx ~]# yum remove php-mysql-5.4 php php-fpm php-common [root@nginx ~]# vim /etc/yum.repos.d/php.repo [php] name = php Repository baseurl = http://us-east.repo.webtatic.com/yum/el7/x86_64/ gpgcheck = 0 [root@nginx ~]# yum -y install php71w php71w-cli php71w-common php71w-devel php71w-embedded php71w-gd php71w-mcrypt php71w-mbstring php71w-pdo php71w-xml php71w-fpm php71w-mysqlnd php71w-opcache php71w-pecl-memcached php71w-pecl-redis php71w-pecl-mongodb 3) 配置php-fpm用戶與Nginx的運行用戶保持一致 [root@nginx ~]# sed -i '/^user/c user = www' /etc/php-fpm.d/www.conf [root@nginx ~]# sed -i '/^group/c group = www' /etc/php-fpm.d/www.conf 4) 啓動php-fpm,並將其加入開機自啓 [root@nginx ~]# systemctl start php-fpm [root@nginx ~]# systemctl enable php-fpm 5) 安裝mysql數據庫 [root@nginx ~]# mysqladmin password '123' [root@nginx ~]# mysql -uroot -p123 2.LNMP架構環境配置 vim /etc/nginx/conf.d/php.conf server { server_name 10.0.0.12; listen 80; root /code/wordpress; index index.php index.html; location ~ \.php$ { root /code/bbs; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } LNMuWSGI+redis
django.txtphp
django項目: 依賴包 [root@web01 ~]# yum install openssl-devel bzip2-devel expat-devel gdbm-devel readline-devel sqlite-devel gcc gcc-c++ openssl-devel zlib zlib-devel -y 1.安裝python3 [root@web01 ~]# wget https://www.python.org/ftp/python/3.7.2/Python-3.7.2.tgz [root@web01 ~]# tar xf Python-3.6.2.tgz [root@web01 ~]# cd Python-3.6.2/ [root@web01 Python-3.6.2]# ./configure --prefix=/usr/local/ [root@web01 Python-3.6.2]# make && make install [root@web01 Python-3.6.2]# ./configure && make && make install 2.安裝Django框架和uwsgi vim re.txt asn1crypto==0.24.0 beautifulsoup4==4.6.3 bs4==0.0.1 certifi==2018.4.16 cffi==1.11.5 chardet==3.0.4 Click==7.0 cryptography==2.3.1 Django==1.11.9 Flask==1.0.2 Flask-Cors==3.0.6 gevent==1.3.6 greenlet==0.4.15 idna==2.7 ItsDangerous==1.1.0 Jinja2==2.10 lxml==4.2.6 MarkupSafe==1.0 numpy==1.15.3 Pillow==5.3.0 pycparser==2.18 PyMySQL==0.9.2 pytz==2018.7 requests==2.19.1 selenium==3.141.0 six==1.11.0 urllib3==1.23 virtualenv==16.1.0 Werkzeug==0.14.1 wordcloud==1.5.0 pip3 install -i https://pypi.doubanio.com/simple/ -r re.txt pip3 install -i https://pypi.doubanio.com/simple/ uwsgi 3.測試uwsgi是否正常,新建 test.py文件,內容以下: [root@web01 ~]# vim test.py def application(env, start_response): start_response('200 OK', [('Content-Type','text/html')]) return [b"Hello Django"] #而後在終端運行: uwsgi --http :8001 --wsgi-file test.py & 4.測試django是否正常,運行: [root@web01 ~]# django-admin.py startproject demosite [root@web01 ~]# cd demosite [root@web01 demosite]# python3 manage.py runserver 0.0.0.0:8002 在瀏覽器內輸入:http://127.0.0.1:8002,檢查django是否運行正常。 5.配置uwsgi [root@web01 demosite]# vim /root/demosite/uwsgi.ini [uwsgi] socket = 127.0.0.1:9999 master = true workers = 2 max-requests = 1000 buffer-size = 30000 pidfile = /run/uwsgi.pid daemonize = /var/log/uwsgi.log uwsgi --ini /root/demosite/uwsgi.ini & 6.配置Nginx [root@web01 demosite]# vim /etc/nginx/conf.d/py.conf server { listen 80; server_name 10.0.0.100; client_max_body_size 100M; location / { index index.html; include uwsgi_params; uwsgi_pass 127.0.0.1:9999; uwsgi_param UWSGI_SCRIPT demosite.wsgi; uwsgi_param UWSGI_CHDIR /root/demosite; } } 重啓nginx
django項目.txthtml
[root@web01 BBS]# cat /etc/nginx/conf.d/py.conf server { listen 80; server_name py.test.com; client_max_body_size 100M; location /static { alias /code/BBS/static/; } location /media { alias /code/BBS/media; } location / { index index.html; include uwsgi_params; uwsgi_pass 127.0.0.1:9090; #uwsgi_param UWSGI_SCRIPT demosite.wsgi; #uwsgi_param UWSGI_CHDIR /root/demosite; uwsgi_param UWSGI_SCRIPT BBS.wsgi; uwsgi_param UWSGI_CHDIR /code/BBS; } vim re.txt asn1crypto==0.24.0 beautifulsoup4==4.6.3 bs4==0.0.1 certifi==2018.4.16 cffi==1.11.5 chardet==3.0.4 Click==7.0 cryptography==2.3.1 Django==1.11.9 Flask==1.0.2 Flask-Cors==3.0.6 gevent==1.3.6 greenlet==0.4.15 idna==2.7 ItsDangerous==1.1.0 Jinja2==2.10 lxml==4.2.6 MarkupSafe==1.0 numpy==1.15.3 Pillow==5.3.0 pycparser==2.18 PyMySQL==0.9.2 pytz==2018.7 requests==2.19.1 selenium==3.141.0 six==1.11.0 urllib3==1.23 virtualenv==16.1.0 Werkzeug==0.14.1 wordcloud==1.5.0 pip3 install -i https://pypi.doubanio.com/simple/ -r re.txt [root@web01 BBS]# cat uwsgi.ini [uwsgi] socket = 127.0.0.1:9090 master = true workers = 2 reload-mercy = 10 vacuum = true max-requests = 1000 limit-as = 512 buffer-size = 30000 uwsgi - - ini uwsgi.ini
lnmp.txtnode
LNMP架構環境部署 1) 使用官方倉庫安裝Nginx [root@nginx ~]# vim etc/yum.repos.d/nginx.repo [nginx] name=nginx repo baseurl=http://nginx.org/packages/centos/7/$basearch/ gpgcheck=0 enabled=1 #安裝Nginx [root@nginx ~]# yum install nginx -y 2) 啓動Nginx,並將Nginx加入開機自啓 [root@nginx ~]# systemctl start nginx [root@nginx ~]# systemctl enable nginx 3) 使用第三方擴展源安裝php7.1 rpm -Uvh https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm rpm -Uvh https://mirror.webtatic.com/yum/el7/webtatic-release.rpm [root@nginx ~]# yum remove php-mysql-5.4 php php-fpm php-common [root@nginx ~]# /etc/yum.repos.d/php.repo [php] name = php Repository baseurl = http://us-east.repo.webtatic.com/yum/el7/x86_64/ gpgcheck = 0 [root@nginx ~]# yum -y install php71w php71w-cli php71w-common php71w-devel php71w-embedded php71w-gd php71w-mcrypt php71w-mbstring php71w-pdo php71w-xml php71w-fpm php71w-mysqlnd php71w-opcache php71w-pecl-memcached php71w-pecl-redis php71w-pecl-mongodb 3) 配置php-fpm用戶與Nginx的運行用戶保持一致 [root@nginx ~]# sed -i '/^user/c user = www' /etc/php-fpm.d/www.conf [root@nginx ~]# sed -i '/^group/c group = www' /etc/php-fpm.d/www.conf 4) 啓動php-fpm,並將其加入開機自啓 [root@nginx ~]# systemctl start php-fpm [root@nginx ~]# systemctl enable php-fpm 5) 安裝mysql數據庫 [root@nginx ~]# mysqladmin password '123' [root@nginx ~]# mysql -uroot -p123 2.LNMP架構環境配置 vim /etc/nginx/conf.d/php.conf server { server_name 10.0.0.12; listen 80; root /code/wordpress; index index.php index.html; location ~ \.php$ { root /code/bbs; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } yum -y groupinstall "Development tools" yum install openssl-devel bzip2-devel expat-devel gdbm-devel readline-devel sqlite-devel pip3 install django pip3 install uwsgi cat test.py def application(env, start_response): start_response('200 OK', [('Content-Type','text/html')]) return [b"Hello Django"] uwsgi --http :8888 --wsgi-file test.py [root@web01 code]# cat /code/BBS/uwsgi.ini [uwsgi] socket = 127.0.0.1:9090 #chdir = /code/BBS/BBS workers = 2 max-requests = 1000 buffer-size = 30000 pidfile = /run/uwsgi.pid daemonize = /var/log/uwsgi.log [root@web01 code]# cat /etc/nginx/conf.d/py.conf server { listen 80; server_name py.test.com; index index.html; client_max_body_size 100M; location / { include uwsgi_params; uwsgi_pass 127.0.0.1:9090; uwsgi_param UWSGI_SCRIPT BBS.wsgi; uwsgi_param UWSGI_CHDIR /code/BBS; } } django-admin.py startproject mysite python3 manage.py startapp blog vim /code/mysite/mysite/settings.py 在INSTALLED_APPS 列表裏添加'blog'APP 修改ALLOWED_HOSTS,['*'],可讓任何IP訪問 TEMPLATES裏添加模板路徑os.path.join(BASE_DIR, 'templates') 尾部添加 STATICFILES_DIRS = ( os.path.join(BASE_DIR,'static'), ) vim /code/mysite/templates/index.html
三。d4測試django而且使用ansible
LNM+Python Django+uwsgi+redis項目 0.安裝項目中須要的包 pip3 install -i https://pypi.doubanio.com/simple/ -r re.txt vim re.txt asn1crypto==0.24.0 beautifulsoup4==4.6.3 bs4==0.0.1 certifi==2018.4.16 cffi==1.11.5 chardet==3.0.4 Click==7.0 cryptography==2.3.1 Django==1.11.9 Flask==1.0.2 Flask-Cors==3.0.6 gevent==1.3.6 greenlet==0.4.15 idna==2.7 ItsDangerous==1.1.0 Jinja2==2.10 lxml==4.2.6 MarkupSafe==1.0 numpy==1.15.3 Pillow==5.3.0 pycparser==2.18 PyMySQL==0.9.2 pytz==2018.7 requests==2.19.1 selenium==3.141.0 six==1.11.0 urllib3==1.23 virtualenv==16.1.0 Werkzeug==0.14.1 wordcloud==1.5.0 1.數據庫的處理 1.1 上傳bbs.sql 1.2 在mysql中建立bbs庫,並導入數據庫SQL腳本 mysql> create database bbs charset utf8mb4; mysql> use bbs mysql> source /opt/bbs.sql mysql> drop database bbs; 1.3 查看項目settings.py配置文件,修改如下兩處 ALLOWED_HOSTS = ['*'] DATABASES = { 'default': { 'ENGINE': 'django.db.backends.mysql', 'NAME': 'bbs', 'HOST': "10.0.0.100", 'USER': 'root', 'PASSWORD': '123', 'PORT': 3306, } MySQL用戶的定義 USERNAME@'白名單' 白名單: 主機域IP地址 root@'localhost' root@'10.0.0.110' root@'10.0.0.%' root@'10.0.0.0/255.255.240.0' root@'10.0.0.5%' root@'%' grant all grant select,update,insert DATABASES = { 'default': { 'ENGINE': 'django.db.backends.mysql', 'NAME': 'bbs', 'HOST': "10.0.0.100", 'USER': 'bbs', 'PASSWORD': '123', 'PORT': 3306, } } 2. BBS項目部署 2.1 配置Nginx [root@web01 BBS]# vim /etc/nginx/conf.d/py.conf server { listen 80; server_name 10.0.0.100; client_max_body_size 100M; location /static { alias /opt/BBS/static/; } location /media { alias /opt/BBS/media; } location / { index index.html; include uwsgi_params; uwsgi_pass 127.0.0.1:9090; uwsgi_param UWSGI_SCRIPT BBS.wsgi; uwsgi_param UWSGI_CHDIR /opt/BBS; } } 2.2 配置uwsgi 關閉全部已有的uwsgi進程 kill -9 `ps -ef |grep uwsgi|awk {'print $2'}` [root@web01 BBS]# vim uwsgi.ini [uwsgi] socket = 127.0.0.1:9090 master = true workers = 2 reload-mercy = 10 vacuum = true max-requests = 1000 limit-as = 512 buffer-size = 30000 啓動uwsgi uwsgi --ini uwsgi.ini & 重啓nginx systemctl restart nginx ================== Python 在運維工做中的經典應用 ansible 1.安裝ansible wget -O /etc/yum.repos.d/epel.repo http://mirrors.aliyun.com/repo/epel-7.repo curl -o /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo yum install ansible -y 克隆虛擬機 hostnamectl set-hostname standby vim /etc/sysconfig/network-scripts/ifcfg-eth0 IPADDR=10.0.0.200 UUID行刪掉 vim /etc/hosts 10.0.0.200 standby systemctl restart network +++++++++++++++++++++++++++++++ Linux的 SSHD(22) 驗證方式: (1)用戶+密碼(PAM) (2)祕鑰驗證(公鑰:鑰匙和私鑰:鎖) 經過祕鑰對實現,須要將公鑰分發到各節點 +++++++++++++++++++++++++++++++ 2.管理被控端,管理機先生成祕鑰,而後推送公鑰 ssh-keygen ssh-copy-id -i ~/.ssh/id_rsa.pub root@10.0.0.200 [root@demo ~]# for i in {1..12};do ssh-copy-id -i ~/.ssh/id_rsa.pub root@10.0.0.$i;done 3.配置被管理的主機清單 [root@demo ~]# vim /etc/ansible/hosts [web] 10.0.0.100 10.0.0.200 4.使用ansible的ad-hoc測試 [root@demo ~]# ansible all -m ping 10.0.0.12 | SUCCESS => { "changed": false, "ping": "pong" } 10.0.0.11 | SUCCESS => { "changed": false, "ping": "pong" } #執行遠程命令 [root@demo ~]# ansible all -m shell -a "df -h" 10.0.0.12 | CHANGED | rc=0 >> Filesystem Size Used Avail Use% Mounted on /dev/sda3 98G 3.4G 95G 4% / devtmpfs 477M 0 477M 0% /dev tmpfs 488M 0 488M 0% /dev/shm tmpfs 488M 7.7M 480M 2% /run tmpfs 488M 0 488M 0% /sys/fs/cgroup /dev/sda1 197M 102M 96M 52% /boot tmpfs 98M 0 98M 0% /run/user/0 10.0.0.11 | CHANGED | rc=0 >> Filesystem Size Used Avail Use% Mounted on /dev/sda3 98G 1.6G 97G 2% / devtmpfs 981M 0 981M 0% /dev tmpfs 992M 124K 992M 1% /dev/shm tmpfs 992M 9.6M 982M 1% /run tmpfs 992M 0 992M 0% /sys/fs/cgroup /dev/sda1 197M 102M 96M 52% /boot tmpfs 199M 0 199M 0% /run/user/0 5.ansible playbook自動化安裝nginx [root@demo ~]# vim playbook_nginx.yml - hosts: web remote_user: root vars: http_port: 80 tasks: - name: Add Nginx Yum Repository yum_repository: name: nginx description: Nginx Repository baseurl: http://nginx.org/packages/centos/7/$basearch/ gpgcheck: no - name: Install Nginx Server yum: name=nginx state=present - name: Configure Nginx Server template: src=./default.conf.template dest=/etc/nginx/conf.d/default.conf notify: Restart Nginx Server - name: Start Nginx Server service: name=nginx state=started enabled=yes handlers: - name: Restart Nginx Server service: name=nginx state=restarted 6. default.conf.template文件以下 [root@demo ~]#vim default.conf.template server { listen {{ http_port }}; server_name localhost; location / { root /usr/share/nginx/html; index index.html index.htm; } } 7.執行ansible-playbook 檢查語法 [root@demo ~]# ansible-playbook --syntax playbook_nginx.yml 模擬執行 [root@demo ~]# ansible-playbook -C playbook_nginx.yml 執行 [root@demo ~]# ansible-playbook playbook_nginx.yml ============================================================= Docker容器技術 0、環境準備類: curl http://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo -o /etc/yum.repos.d/docker-ce.repo wget -O /etc/yum.repos.d/epel.repo http://mirrors.aliyun.com/repo/epel-7.repo curl -o /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo yum install -y yum-utils device-mapper-persistent-data lvm2 yum list docker-ce.x86_64 --showduplicates | sort -r yum install -y --setopt=obsoletes=0 \ docker-ce-17.03.2.ce-1.el7.centos.x86_64 \ docker-ce-selinux-17.03.2.ce-1.el7.centos.noarch systemctl daemon-reload systemctl restart docker docker version docker info 配置鏡像加速 阿里雲Docker-hub https://cr.console.aliyun.com/cn-hangzhou/mirrors mkdir -p /etc/docker tee /etc/docker/daemon.json <<-'EOF' { "registry-mirrors": ["https://68rmyzg7.mirror.aliyuncs.com"] } EOF 或者: vim /etc/docker/daemon.json { "registry-mirrors": ["https://68rmyzg7.mirror.aliyuncs.com"] } 1. pull經常使用鏡像 docker pull centos:6.9 docker pull centos:7.5.1804 docker pull nginx CPU MEM IO OS : Kernel
ansible.txtpython
LNM+Python Django+uwsgi+redis項目 0.安裝項目中須要的包 pip3 install -i https://pypi.doubanio.com/simple/ -r re.txt vim re.txt asn1crypto==0.24.0 beautifulsoup4==4.6.3 bs4==0.0.1 certifi==2018.4.16 cffi==1.11.5 chardet==3.0.4 Click==7.0 cryptography==2.3.1 Django==1.11.9 Flask==1.0.2 Flask-Cors==3.0.6 gevent==1.3.6 greenlet==0.4.15 idna==2.7 ItsDangerous==1.1.0 Jinja2==2.10 lxml==4.2.6 MarkupSafe==1.0 numpy==1.15.3 Pillow==5.3.0 pycparser==2.18 PyMySQL==0.9.2 pytz==2018.7 requests==2.19.1 selenium==3.141.0 six==1.11.0 urllib3==1.23 virtualenv==16.1.0 Werkzeug==0.14.1 wordcloud==1.5.0 1.數據庫的處理 1.1 上傳bbs.sql 1.2 在mysql中建立bbs庫,並導入數據庫SQL腳本 mysql> create database bbs charset utf8mb4; mysql> use bbs mysql> source /opt/bbs.sql mysql> drop database bbs; 1.3 查看項目settings.py配置文件,修改如下兩處 ALLOWED_HOSTS = ['*'] DATABASES = { 'default': { 'ENGINE': 'django.db.backends.mysql', 'NAME': 'bbs', 'HOST': "10.0.0.100", 'USER': 'root', 'PASSWORD': '123', 'PORT': 3306, } MySQL用戶的定義 USERNAME@'白名單' 白名單: 主機域IP地址 root@'localhost' root@'10.0.0.110' root@'10.0.0.%' root@'10.0.0.0/255.255.240.0' root@'10.0.0.5%' root@'%' grant all grant select,update,insert DATABASES = { 'default': { 'ENGINE': 'django.db.backends.mysql', 'NAME': 'bbs', 'HOST': "10.0.0.100", 'USER': 'bbs', 'PASSWORD': '123', 'PORT': 3306, } } 2. BBS項目部署 2.1 配置Nginx [root@web01 BBS]# vim /etc/nginx/conf.d/py.conf server { listen 80; server_name 10.0.0.100; client_max_body_size 100M; location /static { alias /opt/BBS/static/; } location /media { alias /opt/BBS/media; } location / { index index.html; include uwsgi_params; uwsgi_pass 127.0.0.1:9090; uwsgi_param UWSGI_SCRIPT BBS.wsgi; uwsgi_param UWSGI_CHDIR /opt/BBS; } } 2.2 配置uwsgi 關閉全部已有的uwsgi進程 kill -9 `ps -ef |grep uwsgi|awk {'print $2'}` [root@web01 BBS]# vim uwsgi.ini [uwsgi] socket = 127.0.0.1:9090 master = true workers = 2 reload-mercy = 10 vacuum = true max-requests = 1000 limit-as = 512 buffer-size = 30000 啓動uwsgi uwsgi --ini uwsgi.ini & 重啓nginx systemctl restart nginx ================== Python 在運維工做中的經典應用 ansible 1.安裝ansible wget -O /etc/yum.repos.d/epel.repo http://mirrors.aliyun.com/repo/epel-7.repo curl -o /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo yum install ansible -y 克隆虛擬機 hostnamectl set-hostname standby vim /etc/sysconfig/network-scripts/ifcfg-eth0 IPADDR=10.0.0.200 UUID行刪掉 vim /etc/hosts 10.0.0.200 standby systemctl restart network +++++++++++++++++++++++++++++++ Linux的 SSHD(22) 驗證方式: (1)用戶+密碼(PAM) (2)祕鑰驗證(公鑰:鑰匙和私鑰:鎖) 經過祕鑰對實現,須要將公鑰分發到各節點 +++++++++++++++++++++++++++++++ 2.管理被控端,管理機先生成祕鑰,而後推送公鑰 ssh-keygen ssh-copy-id -i ~/.ssh/id_rsa.pub root@10.0.0.200 [root@demo ~]# for i in {1..12};do ssh-copy-id -i ~/.ssh/id_rsa.pub root@10.0.0.$i;done 3.配置被管理的主機清單 [root@demo ~]# vim /etc/ansible/hosts [web] 10.0.0.100 10.0.0.200 4.使用ansible的ad-hoc測試 [root@demo ~]# ansible all -m ping 10.0.0.12 | SUCCESS => { "changed": false, "ping": "pong" } 10.0.0.11 | SUCCESS => { "changed": false, "ping": "pong" } #執行遠程命令 [root@demo ~]# ansible all -m shell -a "df -h" 10.0.0.12 | CHANGED | rc=0 >> Filesystem Size Used Avail Use% Mounted on /dev/sda3 98G 3.4G 95G 4% / devtmpfs 477M 0 477M 0% /dev tmpfs 488M 0 488M 0% /dev/shm tmpfs 488M 7.7M 480M 2% /run tmpfs 488M 0 488M 0% /sys/fs/cgroup /dev/sda1 197M 102M 96M 52% /boot tmpfs 98M 0 98M 0% /run/user/0 10.0.0.11 | CHANGED | rc=0 >> Filesystem Size Used Avail Use% Mounted on /dev/sda3 98G 1.6G 97G 2% / devtmpfs 981M 0 981M 0% /dev tmpfs 992M 124K 992M 1% /dev/shm tmpfs 992M 9.6M 982M 1% /run tmpfs 992M 0 992M 0% /sys/fs/cgroup /dev/sda1 197M 102M 96M 52% /boot tmpfs 199M 0 199M 0% /run/user/0 5.ansible playbook自動化安裝nginx [root@demo ~]# vim playbook_nginx.yml - hosts: web remote_user: root vars: http_port: 80 tasks: - name: Add Nginx Yum Repository yum_repository: name: nginx description: Nginx Repository baseurl: http://nginx.org/packages/centos/7/$basearch/ gpgcheck: no - name: Install Nginx Server yum: name=nginx state=present - name: Configure Nginx Server template: src=./default.conf.template dest=/etc/nginx/conf.d/default.conf notify: Restart Nginx Server - name: Start Nginx Server service: name=nginx state=started enabled=yes handlers: - name: Restart Nginx Server service: name=nginx state=restarted 6. default.conf.template文件以下 [root@demo ~]#vim default.conf.template server { listen {{ http_port }}; server_name localhost; location / { root /usr/share/nginx/html; index index.html index.htm; } } 7.執行ansible-playbook 檢查語法 [root@demo ~]# ansible-playbook --syntax playbook_nginx.yml 模擬執行 [root@demo ~]# ansible-playbook -C playbook_nginx.yml 執行 [root@demo ~]# ansible-playbook playbook_nginx.yml ============================================================= Docker容器技術 0、環境準備類: curl http://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo -o /etc/yum.repos.d/docker-ce.repo wget -O /etc/yum.repos.d/epel.repo http://mirrors.aliyun.com/repo/epel-7.repo curl -o /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo yum install -y yum-utils device-mapper-persistent-data lvm2 yum list docker-ce.x86_64 --showduplicates | sort -r yum install -y --setopt=obsoletes=0 \ docker-ce-17.03.2.ce-1.el7.centos.x86_64 \ docker-ce-selinux-17.03.2.ce-1.el7.centos.noarch systemctl daemon-reload systemctl restart docker docker version docker info 配置鏡像加速 阿里雲Docker-hub https://cr.console.aliyun.com/cn-hangzhou/mirrors mkdir -p /etc/docker tee /etc/docker/daemon.json <<-'EOF' { "registry-mirrors": ["https://68rmyzg7.mirror.aliyuncs.com"] } EOF 或者: vim /etc/docker/daemon.json { "registry-mirrors": ["https://68rmyzg7.mirror.aliyuncs.com"] } 1. pull經常使用鏡像 docker pull centos:6.9 docker pull centos:7.5.1804 docker pull nginx CPU MEM IO OS : Kernel #進入centos環境 docker run -it centos:6.9 查看 cat /etc/redhat-release
4、d5 docker使用
設置下次開機啓動 systemctl enable docker systemctl start docker ps -ef | grep docker or docker version 1. 鏡像管理 1.1 獲取鏡像 docker search centos docker pull centos:6.9 docker pull centos:7.5.1804 docker pull nginx 1.2 查詢鏡像 docker images docker images -q docker inspect ID/name:tag 1.3 刪除鏡像 docker rmi ID docker rmi `docker images -q` docker rmi $(docker images -q) 1.4 導入導出鏡像 [root@docker ~]# docker image save nginx >/opt/nginx.tar.gz [root@docker ~]# docker image load -i /opt/nginx.tar.gz 1.5 啓動容器並獲取鏡像 [root@docker ~]# docker run -d -p 80:80 httpd [root@docker ~]# docker ps -a [root@docker ~]# docker images 1.6 docker一步一步學習製做鏡像 語法: 第一個鏡像建立: docker ps -a docker commit xxxxxx oldguo/wordpress:v1 docker images 製做鏡像: centos7.5+vim+net-tools+iproute+sshd 1.啓動新容器 docker run -it --name "centos7.5" 76d6bc25b8a5 2.優化yum源 mv /etc/yum.repos.d/*.repo /tmp echo -e "[ftp]\nname=ftp\nbaseurl=ftp://10.0.0.100/pub/centos7\ngpgcheck=0">/etc/yum.repos.d/ftp.repo 3. 安裝必須軟件包 yum install -y vim net-tools iproute openssh-* -y 4.啓動SSHD mkdir /var/run/sshd echo 'UseDNS no' >> /etc/ssh/sshd_config sed -i -e '/pam_loginuid.so/d' /etc/pam.d/sshd echo 'root:123456' | chpasswd /usr/bin/ssh-keygen -A /usr/sbin/sshd -D 注意: 以上操做作完以後,會一直不退出,須要用如下命令退回到宿主機,並不關閉容器 ctrl p q 5.製做鏡像 docker ps -a docker commit centos7.5 oldguo/centos7_sshd:v2 ## Centos7.5 [root@docker sshd]# vim dockerfile FROM centos:7.5.1804 RUN mv /etc/yum.repos.d/*.repo /tmp RUN echo -e "[ftp]\nname=ftp\nbaseurl=ftp://10.0.0.100/pub/centos7\ngpgcheck=0">/etc/yum.repos.d/ftp.repo RUN yum install -y openssh-server RUN yum install -y openssh-clients RUN yum install net-tools* -y RUN yum install iproute-* -y RUN mkdir /var/run/sshd RUN echo 'UseDNS no' >> /etc/ssh/sshd_config RUN sed -i -e '/pam_loginuid.so/d' /etc/pam.d/sshd RUN echo 'root:123456' | chpasswd RUN /usr/bin/ssh-keygen -A EXPOSE 22 CMD ["/usr/sbin/sshd", "-D"] docker build -t "oldguo/centos7_sshd:v3" /opt/dockerfile =========================================== 2. 容器基本管理 2.0 容器的類型 工具類:vim docker run -it --name="test_vim" 3fe2fe0dab2e /bin/bash 服務類:nginx docker run -d -p 8080:80 --name="discuz" nginx:1.14 netstat -lnp| grep 8080 docker ps -a 2.1 容器的多類啓動方式 (1)交互式啓動 [root@docker ~]# docker run -it --name "testcentos" centos:6.9 /bin/bash 主要是針對於工具類的容器,一旦exit容器,容器就自動關閉 echo "<html><body><h1>HI,wudi</h1></body></html>" >index.html (2)守護式啓動 1.交互式啓動容器+Ctrl+p+q [root@docker ~]# docker run -it --name "testnginx" nginx /bin/bash 加ctrl+p+q [root@docker ~]# docker attach testnginx 2.死循環 docker run --name testnginx1 -d nginx /bin/sh -c "while true ;do echo hello world; sleep 1;done" 3.服務前臺運行 sshd -D nginx -g "" hang 夯住 2.2 容器的經常使用管理命令 docker ps -a -q -l docker rm 容器ID|容器名稱 批量刪除已關閉 docker rm -v $(docker ps -aq -f status=exited) 批量強制刪除全部 docker rm -f `docker ps -a –q` docker top nginx docker inspect nginx docker attach 容器ID|容器名稱(工具類)配合ctrl+p+q docker exec -i -t 容器ID|容器名稱 /bin/bash(服務類),通常是作服務類容器調試用 [root@docker ~]# docker exec -it centos6.9 /bin/bash docker stop docker kill docker start -i docker restart 容器ID|容器名稱 3. 數據卷的使用(持久化) 4.製做私有倉庫 4.1 配置私有倉庫 docker run -d -p 5000:5000 --restart=always --name registry -v /opt/Registry:/var/lib/registry registry vim /etc/docker/daemon.json { "registry-mirrors": ["https://68rmyzg7.mirror.aliyuncs.com"], "insecure-registries": ["10.0.0.100:5000"] } systemctl restart docker 4.2 使用本地鏡像: 4.2.1 製做本地鏡像並push到 [root@docker ~]# docker tag nginx 10.0.0.100:5000/oldguo/nginx:v1 [root@docker ~]# docker images [root@docker ~]# docker push 10.0.0.100:5000/oldguo/nginx:v1 4.2.2 異地進行pull鏡像 [root@docker ~]# docker pull 10.0.0.100:5000/oldguo/nginx:v1 故障轉移:(高可用) 1.主備系統
k8s技術mysql
1.快速部署K8S環境 k8s-m :10.0.0.11 k8s-n1 :10.0.0.12 k8s-n2 :10.0.0.13 2.全部節點安裝docker環境及依賴 2.1 上傳docker-k8s.zip軟件到各節點/opt,並解壓 2.2 進入目錄進行安裝 cd /opt/docker-k8s yum localinstall -y *.rpm 3.master端軟件安裝 3.1 上傳k8s-master.zip到/opt,並解壓 3.2 進入目錄並安裝 cd /opt/k8s-master yum localinstall -y *.rpm 4.node節點軟件安裝 4.1 上傳k8s-node到兩個node節點/opt並解壓 4.2 進入目錄進行安裝 cd /opt/k8s-node yum localinstall -y *.rpm 5.配置主節點ETCD vim /etc/etcd/etcd.conf ETCD_LISTEN_CLIENT_URLS="http://0.0.0.0:2379" ETCD_ADVERTISE_CLIENT_URLS="http://10.0.0.11:2379" 重啓服務並測試 systemctl restart etcd.service systemctl enable etcd.service etcdctl set name oldguo etcdctl get name 6.配置Master節點 vim /etc/kubernetes/apiserver KUBE_API_ADDRESS="--insecure-bind-address=0.0.0.0" KUBE_API_PORT="--port=8080" KUBE_ETCD_SERVERS="--etcd-servers=http://10.0.0.11:2379" KUBE_SERVICE_ADDRESSES="--service-cluster-ip-range=10.254.0.0/16" KUBE_ADMISSION_CONTROL="--admission-control=NamespaceLifecycle,NamespaceExists,LimitRanger,SecurityContextDeny,ResourceQuota" vim /etc/kubernetes/config 重啓服務 systemctl enable kube-apiserver.service systemctl start kube-apiserver.service systemctl enable kube-controller-manager.service systemctl start kube-controller-manager.service systemctl enable kube-scheduler.service systemctl start kube-scheduler.service 7.node節點配置 vim /etc/kubernetes/config KUBE_MASTER="--master=http://10.0.0.11:8080" vim /etc/kubernetes/kubelet KUBELET_ADDRESS="--address=10.0.0.12/13" KUBELET_HOSTNAME="--hostname-override=10.0.0.12/13" KUBELET_API_SERVER="--api-servers=http://10.0.0.11:8080" 重啓服務 systemctl enable kubelet.service systemctl start kubelet.service systemctl enable kube-proxy.service systemctl start kube-proxy.service 8.驗證節點狀態 [root@k8s-m ~]# kubectl get nodes 9.全部節點配置flannel網絡 yum install flannel -y sed -i 's#http://127.0.0.1:2379#http://10.0.0.11:2379#g' /etc/sysconfig/flanneld etcdctl mk /atomic.io/network/config '{ "Network": "172.16.0.0/16" }' etcdctl get /atomic.io/network/config { "Network": "172.16.0.0/16" } master節點: systemctl enable flanneld.service systemctl start flanneld.service service docker restart systemctl restart kube-apiserver.service systemctl restart kube-controller-manager.service systemctl restart kube-scheduler.service ifconfig -a node節點: systemctl enable flanneld.service systemctl start flanneld.service service docker restart systemctl restart kubelet.service systemctl restart kube-proxy.service 10.配置master爲鏡像倉庫 #master節點 vim /etc/sysconfig/docker OPTIONS='--selinux-enabled --log-driver=journald --signature-verification=false --registry-mirror=https://registry.docker-cn.com --insecure-registry=10.0.0.11:5000' systemctl restart docker ======================================================================================================= 配置本地register docker tag nginx 10.0.0.11:5000/oldguo/nginx:v1 docker run -d -p 5000:5000 --restart=always --name registry -v /opt/myregistry:/var/lib/registry registry docker push 10.0.0.11:5000/oldguo/nginx:v1 #node節點 vim /etc/sysconfig/docker OPTIONS='--selinux-enabled --log-driver=journald --signature-verification=false --insecure-registry=10.0.0.11:5000' systemctl restart docker docker pull 10.0.0.11:5000/oldguo/nginx:v1 ===================================== 二.k8s核心資源管理 1.PODS 1.1 建立 建立第一個pod mkdir /opt/yml -p cd /opt/yml [root@k8s-m yml]# cat k8s_pod.yml apiVersion: v1 kind: Pod metadata: name: nginx labels: app: web spec: containers: - name: nginx image: 10.0.0.11:5000/oldguo/nginx:v1 ports: - containerPort: 80 [root@k8s-m yml]# kubctl create -f k8s_pod.yml 1.2 查詢 kubectl get pod kubectl get pod -o wide kubectl describe pod 報錯: ++++++++++++++++++++++++++++++++++++++++ failed to "StartContainer" for "POD" with ErrImagePull: "image pull failed for registry.access.redhat.com/rhel7/pod-infrastructure:latest, this may be because there are no credentials on this request. details: (open /etc/docker/certs.d/registry.access.redhat.com/redhat-ca.crt: no such file or directory)" +++++++++++++++++++++++++++++++++++++++ registry.access.redhat.com/rhel7/pod-infrastructure:latest ++++++++++++++++++++++++++++++++++++++ 解決: master:上傳準備好的容器爲本地register(pod-infrastructure-latest.tar.gz) [root@k8s-m opt]# docker load -i pod-infrastructure-latest.tar.gz [root@k8s-m opt]# docker images [root@k8s-m opt]# docker tag docker.io/tianyebj/pod-infrastructure:latest 10.0.0.11:5000/oldguo/pod-infrastructure:latest [root@k8s-m opt]# docker images [root@k8s-m opt]# docker push 10.0.0.11:5000/oldguo/pod-infrastructure:latest node:(全部node節點) [root@k8s-n1 ~]# vim /etc/kubernetes/kubelet KUBELET_POD_INFRA_CONTAINER="--pod-infra-container-image=10.0.0.11:5000/oldguo/pod-infrastructure:latest" systemctl restart kubelet.service 1.3 刪除 [root@k8s-m yml]# kubectl delete pod nginx 1.4 更新 master: [root@k8s-m yml]# docker pull nginx [root@k8s-m yml]# docker tag docker.io/nginx:latest 10.0.0.11:5000/oldguo/nginx:v2 [root@k8s-m yml]# docker push 10.0.0.11:5000/oldguo/nginx:v2 [root@k8s-m yml]# kubectl replace --force -f k8s_pod.yml 2.RC(ReplicationController) 做用:高可用 master: 配置yml文件 vim k8s_nginx_rc.yml apiVersion: v1 kind: ReplicationController metadata: name: nginx spec: replicas: 3 selector: app: nginx template: metadata: labels: app: nginx spec: containers: - name: nginx image: 10.0.0.11:5000/oldguo/nginx:v1 ports: - containerPort: 80 [root@k8s-m yml]# kubectl create -f k8s_nginx_rc.yml [root@k8s-m yml]# kubectl get rc [root@k8s-m yml]# kubectl delete rc nginx 副本數增刪 1.修改配置文件 vim k8s_nginx_rc.yml [root@k8s-m yml]# kubectl replace -f k8s_nginx_rc.yml 2.kubectl edit rc nginx 3.kubectl scale rc nginx --replicas=4 滾動升級及回滾: cp k8s_nginx_rc.yml k8s_nginx1_rc.yml kubectl rolling-update nginx -f k8s_nginx1_rc.yml --update-period=10s 注: 升級出現問題時,升級過程當中出現bug.使用如下命令回滾(前提是沒有升級完) [root@k8s-master ~]# kubectl rolling-update nginx nginx2 --rollback 回退方案便是相反操做便可。 3.Service 建立svc配置文件 vim k8s_nginx_svc.yml apiVersion: v1 kind: Service metadata: name: nginxsvc spec: type: NodePort ports: - port: 80 nodePort: 30001 selector: app: nginx2 [root@k8s-m yml]# kubectl create -f k8s_nginx_svc.yml [root@k8s-m yml]# kubectl get svc [root@k8s-m yml]# curl -I 10.0.0.13:30001 [root@k8s-m yml]# curl -I 10.0.0.12:30001 deployment資源管理: vim k8s_nginx_dev.yml apiVersion: extensions/v1beta1 kind: Deployment metadata: name: nginx spec: replicas: 2 template: metadata: labels: app: nginx spec: containers: - name: nginx image: 10.0.0.11:5000/oldguo/nginx:v2 ports: - containerPort: 80 [root@k8s-m yml]# kubectl create -f k8s_nginx_dev.yml [root@k8s-m yml]# kubectl get deployment deployment滾動升級 kubectl set image deployment/nginx nginx=10.0.0.11:5000/oldguo/nginx:v1 kubectl rollout undo deployment/nginx 實現自動pod伸縮 [root@k8s-m yml]# kubectl autoscale deployment nginx --min=2 --max=6 --cpu-percent=80
相關文章
- 1. linux 項目部署部署
- 2. Linux部署Oracle
- 3. 【Linux】部署apache
- 4. Linux部署geoserver
- 5. linux——部署DNS
- 6. IntelliJIDEALicenseServer Linux 部署
- 7. Linux-Maven部署
- 8. .NetCore3.1 部署 Linux
- 9. linux 部署yapi
- 10. Linux部署Tomcat
- 更多相關文章...
- • Maven 自動化部署 - Maven教程
- • ionic 頭部與底部 - ionic 教程
- • 使用阿里雲OSS+CDN部署前端頁面與加速靜態資源
- • Docker容器實戰(七) - 容器眼光下的文件系統
相關標籤/搜索
每日一句
-
每一个你不满意的现在,都有一个你没有努力的曾经。
歡迎關注本站公眾號,獲取更多信息
相關文章
- 1. linux 項目部署部署
- 2. Linux部署Oracle
- 3. 【Linux】部署apache
- 4. Linux部署geoserver
- 5. linux——部署DNS
- 6. IntelliJIDEALicenseServer Linux 部署
- 7. Linux-Maven部署
- 8. .NetCore3.1 部署 Linux
- 9. linux 部署yapi
- 10. Linux部署Tomcat