openstack 虛擬機增長VIP
openstack 虛擬機增長VIPnode
###給虛擬機增長VIP #######方法1 source /root/admin-openrc.sh ##查詢中網絡ID neutron net-list |grep private ###查看網絡接口信息 neutron port-list --network_id=$(neutron net-list |grep private |awk '{print $2}') ###建立VIP接口 #--security-group default neutron port-create --fixed-ip ip_address=10.10.100.7 private os_vip=10.10.100.10 ####查詢到你要幫定VIP的接口ID neutron port-list --network_id=$(neutron net-list |grep private |awk '{print $2}') |grep '10.10.100.5"' neutron port-list --network_id=$(neutron net-list |grep private |awk '{print $2}') |grep '10.10.100.5"' |awk '{print $2}' ####給找到的網絡接口添加VIP地址 neutron port-update $(neutron port-list --network_id=$(neutron net-list |grep private |awk '{print $2}') |grep '10.10.100.11"' |awk '{print $2}') --allowed_address_pairs list=true type=dict ip_address=10.10.100.10 ####接口信息 neutron port-show $(neutron port-list --network_id=$(neutron net-list |grep private |awk '{print $2}') |grep '10.10.100.11"' |awk '{print $2}') ################方法2 source /root/admin-openrc.sh neutron port-create --fixed-ip ip_address=10.10.100.10 private ###查詢到你要綁定IP的接口ID neutron port-list --network_id=$(neutron net-list |grep private |awk '{print $2}') |grep '10.10.100.3"' |awk '{print $2}' ####取消安全組對應端口的管理 neutron port-update --no-security-groups --port-security-enabled=False $(neutron port-list --network_id=$(neutron net-list |grep private |awk '{print $2}') |grep '10.10.100.9"' |awk '{print $2}') ####接口信息 neutron port-show $(neutron port-list --network_id=$(neutron net-list |grep private |awk '{print $2}') |grep '10.10.100.9"' |awk '{print $2}') ####取消安全組對應端口的管理 vip neutron port-update --no-security-groups --port-security-enabled=False $(neutron port-list --network_id=$(neutron net-list |grep private |awk '{print $2}') |grep '10.10.100.7"' |awk '{print $2}') ####接口信息 vip neutron port-show $(neutron port-list --network_id=$(neutron net-list |grep private |awk '{print $2}') |grep '10.10.100.7"' |awk '{print $2}')
###操做實例: keepalived vip安全
#######操做過程網絡
[root@node171 ~]# source admin-openrc.sh [root@node171 ~]# neutron port-create --fixed-ip ip_address=192.168.3.207 public Created a new port: +-----------------------+-----------------------------------------------------------------------------------------------------------------+ | Field | Value | +-----------------------+-----------------------------------------------------------------------------------------------------------------+ | admin_state_up | True | | allowed_address_pairs | | | binding:host_id | | | binding:profile | {} | | binding:vif_details | {} | | binding:vif_type | unbound | | binding:vnic_type | normal | | device_id | | | device_owner | | | dns_assignment | {"hostname": "host-192-168-3-207", "ip_address": "192.168.3.207", "fqdn": "host-192-168-3-207.openstacklocal."} | | dns_name | | | extra_dhcp_opts | | | fixed_ips | {"subnet_id": "41e4d673-f502-4ed2-8844-994bd3d135f1", "ip_address": "192.168.3.207"} | | id | e260f45f-a437-4d90-a46c-f23ed0c2440d | | mac_address | fa:16:3e:c3:0d:fe | | name | vip1 | | network_id | 1fc9dafc-8f5e-4c53-82d1-1b6e432f88fd | | port_security_enabled | True | | security_groups | 81b83d75-e8c7-4cd4-bcf5-7013d83cbc9c | | status | DOWN | | tenant_id | 3e2c6c87f087404a80826d0467e2e37a | +-----------------------+-----------------------------------------------------------------------------------------------------------------+ [root@node171 ~]# neutron port-update $(neutron port-list --network_id=$(neutron net-list |grep public |awk '{print $2}') |grep '192.168.3.205"' |awk '{print $2}') --allowed_address_pairs list=true type=dict ip_address=192.168.3.207 Updated port: 101ac8ae-bce5-4992-96df-b77ee41b2467 [root@node171 ~]# neutron port-show $(neutron port-list --network_id=$(neutron net-list |grep public |awk '{print $2}') |grep '192.168.3.205"' |awk '{print $2}') +-----------------------+-----------------------------------------------------------------------------------------------------------------+ | Field | Value | +-----------------------+-----------------------------------------------------------------------------------------------------------------+ | admin_state_up | True | | allowed_address_pairs | {"ip_address": "192.168.3.207", "mac_address": "fa:16:3e:81:b1:cd"} | | binding:host_id | node172 | | binding:profile | {} | | binding:vif_details | {"port_filter": true} | | binding:vif_type | bridge | | binding:vnic_type | normal | | device_id | e22f47d1-7081-483f-af44-136990374667 | | device_owner | compute:nova | | dns_assignment | {"hostname": "host-192-168-3-205", "ip_address": "192.168.3.205", "fqdn": "host-192-168-3-205.openstacklocal."} | | dns_name | | | extra_dhcp_opts | | | fixed_ips | {"subnet_id": "41e4d673-f502-4ed2-8844-994bd3d135f1", "ip_address": "192.168.3.205"} | | id | 101ac8ae-bce5-4992-96df-b77ee41b2467 | | mac_address | fa:16:3e:81:b1:cd | | name | | | network_id | 1fc9dafc-8f5e-4c53-82d1-1b6e432f88fd | | port_security_enabled | True | | security_groups | 81b83d75-e8c7-4cd4-bcf5-7013d83cbc9c | | status | ACTIVE | | tenant_id | 3e2c6c87f087404a80826d0467e2e37a | +-----------------------+-----------------------------------------------------------------------------------------------------------------+ [root@node171 ~]# neutron port-update $(neutron port-list --network_id=$(neutron net-list |grep public |awk '{print $2}') |grep '192.168.3.206"' |awk '{print $2}') --allowed_address_pairs list=true type=dict ip_address=192.168.3.207 Updated port: 9993629f-8f6b-44da-a413-ec3b5af88091 [root@node171 ~]# neutron port-show $(neutron port-list --network_id=$(neutron net-list |grep public |awk '{print $2}') |grep '192.168.3.206"' |awk '{print $2}') +-----------------------+-----------------------------------------------------------------------------------------------------------------+ | Field | Value | +-----------------------+-----------------------------------------------------------------------------------------------------------------+ | admin_state_up | True | | allowed_address_pairs | {"ip_address": "192.168.3.207", "mac_address": "fa:16:3e:d4:14:98"} | | binding:host_id | node174 | | binding:profile | {} | | binding:vif_details | {"port_filter": true} | | binding:vif_type | bridge | | binding:vnic_type | normal | | device_id | 61d7d9ac-b7fa-40b6-a1b1-6cc5dde5503e | | device_owner | compute:nova | | dns_assignment | {"hostname": "host-192-168-3-206", "ip_address": "192.168.3.206", "fqdn": "host-192-168-3-206.openstacklocal."} | | dns_name | | | extra_dhcp_opts | | | fixed_ips | {"subnet_id": "41e4d673-f502-4ed2-8844-994bd3d135f1", "ip_address": "192.168.3.206"} | | id | 9993629f-8f6b-44da-a413-ec3b5af88091 | | mac_address | fa:16:3e:d4:14:98 | | name | | | network_id | 1fc9dafc-8f5e-4c53-82d1-1b6e432f88fd | | port_security_enabled | True | | security_groups | 81b83d75-e8c7-4cd4-bcf5-7013d83cbc9c | | status | ACTIVE | | tenant_id | 3e2c6c87f087404a80826d0467e2e37a | +-----------------------+-----------------------------------------------------------------------------------------------------------------+
#############node-1oop
##################vm node-1 操做以下 yum install -y keepalived echo ' global_defs { router_id LVS_DEVEL } vrrp_instance VI_1 { state MASTER interface eth0 virtual_router_id 203 priority 100 advert_int 1 authentication { auth_type PASS auth_pass 2829 } virtual_ipaddress { 192.168.3.207/22 dev eth0 } } ' >/etc/keepalived/keepalived.conf ######### systemctl enable keepalived.service systemctl restart keepalived.service systemctl status keepalived.service ip address ##################vm node-1 操做以下 yum install -y keepalived echo ' global_defs { router_id LVS_DEVEL } vrrp_instance VI_1 { state BACKUP interface eth0 virtual_router_id 203 priority 99 advert_int 1 authentication { auth_type PASS auth_pass 2829 } virtual_ipaddress { 192.168.3.207/22 dev eth0 } } ' >/etc/keepalived/keepalived.conf ######### systemctl enable keepalived.service systemctl restart keepalived.service systemctl status keepalived.service ip address
#####檢查spa
#####################################vm node-1 操做 [root@node-1 ~]# ip address 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN qlen 1 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc pfifo_fast state UP qlen 1000 link/ether fa:16:3e:81:b1:cd brd ff:ff:ff:ff:ff:ff inet 192.168.3.205/22 brd 192.168.3.255 scope global dynamic eth0 valid_lft 86079sec preferred_lft 86079sec inet 192.168.3.207/22 scope global secondary eth0 valid_lft forever preferred_lft forever inet6 fe80::f816:3eff:fe81:b1cd/64 scope link valid_lft forever preferred_lft forever ##################################### vm node-2 操做 [root@node-2 ~]# ping 192.168.3.207 PING 192.168.3.207 (192.168.3.207) 56(84) bytes of data. 64 bytes from 192.168.3.207: icmp_seq=1 ttl=64 time=0.661 ms 64 bytes from 192.168.3.207: icmp_seq=2 ttl=64 time=0.394 ms ##################################### vm node-1 操做 [root@node-1 ~]# systemctl stop keepalived.service [root@node-1 ~]# ip address 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN qlen 1 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc pfifo_fast state UP qlen 1000 link/ether fa:16:3e:81:b1:cd brd ff:ff:ff:ff:ff:ff inet 192.168.3.205/22 brd 192.168.3.255 scope global dynamic eth0 valid_lft 73060sec preferred_lft 73060sec inet6 fe80::f816:3eff:fe81:b1cd/64 scope link valid_lft forever preferred_lft forever ##################################### vm node-2 操做 [root@node-2 ~]# ip addr 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN qlen 1 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1450 qdisc pfifo_fast state UP qlen 1000 link/ether fa:16:3e:d4:14:98 brd ff:ff:ff:ff:ff:ff inet 192.168.3.206/22 brd 192.168.3.255 scope global dynamic eth0 valid_lft 65713sec preferred_lft 65713sec inet 192.168.3.207/22 scope global secondary eth0 valid_lft forever preferred_lft forever inet6 fe80::f816:3eff:fed4:1498/64 scope link valid_lft forever preferred_lft forever #################################### vm node-1 操做 [root@node-1 ~]# ping 192.168.3.207 PING 192.168.3.207 (192.168.3.207) 56(84) bytes of data. 64 bytes from 192.168.3.207: icmp_seq=1 ttl=64 time=0.554 ms
相關文章
- 1. 虛擬IP(VIP)
- 2. 增長VirtualBox虛擬機磁盤容量
- 3. 爲Xen虛擬機增長硬盤和增長容量
- 4. VMWARE虛擬機系統中增長新的虛擬硬盤
- 5. openstack虛擬機rescue模式
- 6. openstack修改虛擬機ip
- 7. openstack 創建虛擬機
- 8. openstack-8-創建虛擬機
- 9. openstack創建windows虛擬機
- 10. Openstack 虛擬機通信
- 更多相關文章...
- • Hibernate實現增刪改查 - Hibernate教程
- • SQLite Autoincrement(自動遞增) - SQLite教程
- • 漫談MySQL的鎖機制
- • Docker容器實戰(一) - 封神Server端技術
相關標籤/搜索
每日一句
-
每一个你不满意的现在,都有一个你没有努力的曾经。
歡迎關注本站公眾號,獲取更多信息
相關文章