程序员经验分享-hwhale

OpenStack实战

2023-05-16

开源OpenStack实战

公有云

一个用户就是一个VPC虚拟私有云

在同一个VPC中的不同子网可以互通

不同VPC之间不能互通

一个VPC 就属于regin一个路由器

VPC不可以跨Regin

两个租户是不可以打通的

Regin:区域 代表一个数据中心 比如 北京 上海 广州 新加坡

数据中心之间不能互通

私网弹性ip绑定当了内部网络的路由器上

可用区:AZ

一个区域包含多个 可用区

每个AZ都拥有独立的供电和网络系统

同一个region的不同AZ之间内网是互通的

如果性能和延迟有要求,建议多个互访的业务放在同一个AZ中

Apache mysql

MySQL主备 建议放在同一个Regin

弹性IP就相当于一个公网地址

在这里插入图片描述

安全组的概念相当于防火墙规则

不同的VPC内IP地址可以重叠

管理员做的事

1.上传镜像 选共享和公有

2.云主机类型

3.网络 创建公有网络

4.创建项目 创建用户

用用户进来user1

1.设置私有网络 随便设 IP地址 可以不设网关 点激活DHCP

2.设置路由 设置网关public 添加接口(内部接口)

3.创建安全组 添加规则 创建秘钥对(私钥)申请浮动ip地址

4.创建云主机 关联的是私有网络 绑定浮动IP地址

删除 用户user

1.终止实例

2.删除秘钥对

3.释放弹性IP 删除安全组

删除路由

1.清除网关 2.删除接口 3.删除路由器 4.删除网络

删除admin

去identity删除项目再删除用户

[root@controller ~]# ip netns ls #查看路由器
qdhcp-609d8813-4efb-417a-b65f-d7dde64874d1
qrouter-4a0b6433-e7f4-487d-b15c-a8b3605aaaf7
qdhcp-9475de03-a228-4499-9d56-3a3805c06740
[root@controller ~]# ip netns delete qdhcp-9475de03-a228-4499-9d56-3a3805c06740 #删除路由器的DHCP

登录云主机

先把秘钥传给controller节点,再修改权限,最后登录
[root@controller ~]# chmod 400 key100.pem 
[root@controller ~]# ll key100.pem 
-r--------. 1 root root 1675 Aug 30 16:51 key100.pem
[root@controller ~]# ssh -i key100.pem cloud-user@192.168.100.12
Last login: Tue Aug 30 13:37:35 2022 from 192.168.100.50
[cloud-user@huawei-cloud ~]$ 

查询NAT路由表
[root@controller ~]#  netns exec qrouter-4a0b6433-e7f4-487d-b15c-a8b3605aaaf7 iptables -t nat -nL

创建云主机

查询云主机
[root@controller ~]# nova --os-username user1 --os-tenant-name hqy --os-auth-url=http://192.168.100.80:5000/v2.0/ list
[root@controller ~]# nova --os-username user1 --os-tenant-name hqy --os-auth-url=http://192.168.100.80:5000/v2.0/  --os-password redhat list
+--------------------------------------+--------------+--------+------------+-------------+-----------------------------------------+
| ID                                   | Name         | Status | Task State | Power State | Networks                                |
+--------------------------------------+--------------+--------+------------+-------------+-----------------------------------------+
| fcf51f41-fc75-47db-89c7-d82d7c4798f4 | huawei_cloud | ACTIVE | -          | Running     | IT_network=192.168.88.1, 192.168.100.12 |
+--------------------------------------+--------------+--------+------------+-------------+-----------------------------------------+
[root@controller ~(keystone_user1)]# nova list

删除云主机
[root@controller ~(keystone_user1)]# nova delete huawei_cloud 
Request to delete server huawei_cloud has been accepted.

设置变量
[root@controller ~]# cp keystonerc_admin keystonerc_user1
[root@controller ~]# vi keystonerc_user1 
export OS_USERNAME=user1
export OS_TENANT_NAME=hqy
export OS_PASSWORD=redhat
export OS_AUTH_URL=http://192.168.100.80:5000/v2.0/
export OS_REGION_NAME=WuHan
export PS1='[\u@\h \W(keystone_user1)]\$ '

[root@controller ~]# source keystonerc_user1 
[root@controller ~(keystone_user1)]# echo $OS_USERNAME
user1
[root@controller ~(keystone_user1)]# nova list

NTP服务器查OpenStack界面

[root@controller ~(keystone_user1)]# scp keystonerc_user1 root@ntp:/root
[root@controller ~(keystone_user1)]# which nova
/usr/bin/nova
[root@controller ~(keystone_user1)]# rpm -qf /usr/bin/nova
python-novaclient-2.20.0-1.el7ost.noarch
[root@ntp ~(keystone_user1)]# yum -y install python-novaclient-2.20.0-1.el7ost.noarch  #安装OpenStack客户端 
[root@ntp ~(keystone_user1)]# nova list
+--------------------------------------+--------------+--------+------------+-------------+-----------------------------------------+
| ID                                   | Name         | Status | Task State | Power State | Networks                                |
+--------------------------------------+--------------+--------+------------+-------------+-----------------------------------------+
| fcf51f41-fc75-47db-89c7-d82d7c4798f4 | huawei_cloud | ACTIVE | -          | Running     | IT_network=192.168.88.1, 192.168.100.12 |

Horizon

Nova

[root@controller ~]# cd /etc/nova/
[root@controller ~]#  source keystonerc_user1 
[root@controller ~(keystone_user1)]# nova list
删除云主机
[root@controller ~(keystone_user1)]# nova delete huawei_cloud 
Request to delete server huawei_cloud has been accepted.
删除秘钥对
[root@controller ~(keystone_user1)]# nova --help |grep key

[root@controller ~(keystone_user1)]# nova keypair-list 查询秘钥对
+--------+-------------------------------------------------+
| Name   | Fingerprint                                     |
+--------+-------------------------------------------------+
| key100 | 88:48:bf:84:fc:f9:fc:3b:71:43:80:01:01:8f:22:8d |
+--------+-------------------------------------------------+
[root@controller ~(keystone_user1)]# nova keypair-delete key100

glance

[root@controller ~]# vi /etc/glance/glance-cache.conf 
[root@controller ~]# cd /var/lib/glance/images/ #打开镜像存放的位置
[root@controller images]# ll -h  #查看镜像的大小和ID号
total 675M
-rw-r-----. 1 glance glance 341M Jun  5 05:10 081f5061-3ca3-403c-8578-bb23bea5c715
-rw-r-----. 1 glance glance 334M Aug 30 01:42 4a9ed2fe-afee-4162-8bbb-d45273870106

[root@controller ~(keystone_user1)]# glance image-list #查glance镜像
+--------------------------------------+---------+-------------+------------------+-----------+--------+
| ID                                   | Name    | Disk Format | Container Format | Size      | Status |
+--------------------------------------+---------+-------------+------------------+-----------+--------+
| 4a9ed2fe-afee-4162-8bbb-d45273870106 | centos7 | qcow2       | bare             | 349966336 | active |
| 081f5061-3ca3-403c-8578-bb23bea5c715 | m1.web  | qcow2       | bare             | 356777984 | active |
+--------------------------------------+---------+-------------+------------------+-----------+--------+
[root@controller ~(keystone_user1)]#

neutron

[root@controller ~]# cd /etc/neutron/
查看路由信息
[root@controller ~(keystone_user1)]# neutron router-list
[root@controller ~(keystone_user1)]# neutron router-list

| id                                   | name     | external_gateway_info                                                                                  |
+--------------------------------------+----------+-----------------------------
| 4a0b6433-e7f4-487d-b15c-a8b3605aaaf7 | my-route | {"network_id": "9475de03-a228-4499-9d56-3a3805c06740", "enable_snat": true, "external_fixed_ips": [{"subnet_id": "2ff64bab-b970-4e70-88f3-a285f3426d91", "ip_address": "192.168.100.11"}]} |
删除路由的网关
[root@controller ~(keystone_user1)]# neutron  router-gateway-clear my-route
删除接口
[root@controller ~(keystone_user1)]# neutron help router-interface-delete
[root@controller ~(keystone_user1)]# neutron subnet-list
+--------------------------------------+---------------+------------------+------------------------------------------------------+
| id                                   | name          | cidr             | allocation_pools                                     |
+--------------------------------------+---------------+------------------+------------------------------------------------------+
| 6f09a606-7a08-4819-992c-e9146df6dc41 | it_subnet01   | 192.168.88.0/24  | {"start": "192.168.88.1", "end": "192.168.88.253"}   |
| 2ff64bab-b970-4e70-88f3-a285f3426d91 | public-subnet | 192.168.100.0/24 | {"start": "192.168.100.10", "end": "192.168.100.20"} |
+--------------------------------------+---------------+------------------+------------------------------------------------------+
删除路由子接口
[root@controller ~(keystone_user1)]# neutron router-interface-delete my-route subnet=it_subnet01  
[root@controller ~(keystone_user1)]# neutron router-delete my-route 路由接口删掉
Deleted router: my-route
[root@controller ~(keystone_user1)]# neutron subnet-delete  it_subnet01 删除子网
[root@controller ~(keystone_user1)]# neutron net-list
+--------------------------------------+------------+-------------------------------------------------------+
| id                                   | name       | subnets                                               |
+--------------------------------------+------------+-------------------------------------------------------+
| 9475de03-a228-4499-9d56-3a3805c06740 | public     | 2ff64bab-b970-4e70-88f3-a285f3426d91 192.168.100.0/24 |
| 609d8813-4efb-417a-b65f-d7dde64874d1 | IT_network |                                                       |
[root@controller ~(keystone_user1)]# neutron net-delete  IT_network 删除内部网络
[root@controller ~(keystone_user1)]# neutron --help |grep sec
[root@controller ~(keystone_user1)]# neutron security-group-list
+--------------------------------------+---------+-------------+
| id                                   | name    | description |
+--------------------------------------+---------+-------------+
| 1ca4701c-7636-4c3c-be41-9c99e0bc08a4 | default | default     |
| 93a1f7e1-57f4-4171-8841-a2ea2ac708e0 | sg01    | s01         |
删除安全组
[root@controller ~(keystone_user1)]# neutron security-group-delete sg01
删除浮动ip
[root@controller ~(keystone_user1)]# neutron help floatingip-delete 浮动IP地址需要删除ID
[root@controller ~(keystone_user1)]# neutron floatingip-delete 516e58e2-0628-4461-988b-867151c00b6b
删除

cinder

[root@controller ~]# cd /etc/cinder/
[root@controller nova]# cd /var/log/cinder/
[root@controller nova]# tail -f * |grep -iE '(err|warn)'
[root@controller nova]# tail -f * |grep -iE -A3 -B3 '(err|warn)'
[root@controller nova]# tail -f scheduler.log |grep -iE -A3 -B3 '(varn|err
[root@controller cinder]# lvdisplay 
[root@controller cinder]# vgdisplay

查询cinder的磁盘信息
[root@controller ~]# cinder --os-username user1 --os-tenant-name hqy --os-auth-url=http://192.168.100.80:5000/v2.0/  --os-password redhat list
+--------------------------------------+--------+--------------+------+-------------+----------+--------------------------------------+
|                  ID                  | Status | Display Name | Size | Volume Type | Bootable |             Attached to              |
+--------------------------------------+--------+--------------+------+-------------+----------+--------------------------------------+
| cbf7e256-e571-471c-961d-c57e86bf13ee | in-use |     hat1     |  1   |     None    |  false   | fcf51f41-fc75-47db-89c7-d82d7c4798f4 |
+--------------------------------------+--------+--------------+------+-------------+----------+--------------------------------------+

[root@controller ~(keystone_user1)]# cinder list
+--------------------------------------+-----------+--------------+------+-------------+----------+-------------+
|                  ID                  |   Status  | Display Name | Size | Volume Type | Bootable | Attached to |
+--------------------------------------+-----------+--------------+------+-------------+----------+-------------+
| cbf7e256-e571-471c-961d-c57e86bf13ee | available |     hat1     |  1   |     None    |  false   |             |
+--------------------------------------+-----------+--------------+------+-------------+----------+-------------+
[root@controller ~(keystone_user1)]# cinder delete hat1
[root@controller ~(keystone_user1)]# cinder list
+----+--------+--------------+------+-------------+----------+-------------+
| ID | Status | Display Name | Size | Volume Type | Bootable | Attached to |
+----+--------+--------------+------+-------------+----------+-------------+

heat

ceilometer

keystone

swift

删除swift对象容器
[root@controller ~(keystone_user1)]# swift delete IT

在admin中的项目添加swift

[外链图片转存失败,源站可能有防盗链机制,建议将图片保存下来直接上传(img-ArCRGj29-1663149614800)(C:\Users\27119\AppData\Roaming\Typora\typora-user-images\image-20220830205821902.png)]

然后在user中选择对象存储,创建容器上传文件

[外链图片转存失败,源站可能有防盗链机制,建议将图片保存下来直接上传(img-5loA4FHg-1663149614801)(C:\Users\27119\AppData\Roaming\Typora\typora-user-images\image-20220830210133897.png)]

在admin中删除网络,镜像服务

删除网络
[root@controller ~(keystone_user1)]# source keystonerc_admin 
[root@controller ~(keystone_admin)]# neutron net-list
+--------------------------------------+--------+-------------------------------------------------------+
| id                                   | name   | subnets                                               |
+--------------------------------------+--------+-------------------------------------------------------+
| 9475de03-a228-4499-9d56-3a3805c06740 | public | 2ff64bab-b970-4e70-88f3-a285f3426d91 192.168.100.0/24 |
+--------------------------------------+--------+-------------------------------------------------------+
[root@controller ~(keystone_admin)]# neutron net-delete public
删除镜像
[root@controller ~(keystone_admin)]# glance image-list
+--------------------------------------+---------+-------------+------------------+-----------+--------+
| ID                                   | Name    | Disk Format | Container Format | Size      | Status |
+--------------------------------------+---------+-------------+------------------+-----------+--------+
| 4a9ed2fe-afee-4162-8bbb-d45273870106 | centos7 | qcow2       | bare             | 349966336 | active |
| 081f5061-3ca3-403c-8578-bb23bea5c715 | m1.web  | qcow2       | bare             | 356777984 | active |
+--------------------------------------+---------+-------------+------------------+-----------+--------+
[root@controller ~(keystone_admin)]# glance image-delete  centos7
删除受保护的镜像
[root@controller ~(keystone_admin)]# glance image-show m1.web
[root@controller ~(keystone_admin)]# glance help image-update
[root@controller ~(keystone_admin)]# glance  image-update --is-protected false m1.web
+------------------+--------------------------------------+
| Property         | Value                                |
+------------------+--------------------------------------+
| checksum         | 0f3dbcece8ea9d9c5b256e7b274250f0     |
| container_format | bare                                 |
| created_at       | 2022-06-04T21:09:45                  |
| deleted          | False                                |
| deleted_at       | None                                 |
| disk_format      | qcow2                                |
| id               | 081f5061-3ca3-403c-8578-bb23bea5c715 |
| is_public        | True                                 |
| min_disk         | 10                                   |
| min_ram          | 2048                                 |
| name             | m1.web                               |
| owner            | f6d20b148bdc4aa881722fa17df0edb5     |
| protected        | True                              |
| size             | 356777984                            |
| status           | active                               |
| updated_at       | 2022-08-31T01:08:52                  |
| virtual_size     | None                                 |
+------------------+--------------------------------------+
[root@controller ~(keystone_admin)]# glance image-delete m1.web
删除规格
[root@controller ~(keystone_admin)]# nova --help |grep fla
[root@controller ~(keystone_admin)]# nova flavor-list
+--------------------------------------+-----------+-----------+------+-----------+------+-------+-------------+-----------+
| ID                                   | Name      | Memory_MB | Disk | Ephemeral | Swap | VCPUs | RXTX_Factor | Is_Public |
+--------------------------------------+-----------+-----------+------+-----------+------+-------+-------------+-----------+
| 1                                    | m1.tiny   | 512       | 1    | 0         |      | 1     | 1.0         | True      |
| 2                                    | m1.small  | 2048      | 20   | 0         |      | 1     | 1.0         | True      |
| 3                                    | m1.medium | 4096      | 40   | 0         |      | 2     | 1.0         | True      |
| 4                                    | m1.large  | 8192      | 80   | 0         |      | 4     | 1.0         | True      |
| 5                                    | m1.xlarge | 16384     | 160  | 0         |      | 8     | 1.0         | True      |
| da1b444e-01a3-411b-be6c-b4083f64c26e | w2.small  | 2048      | 10   | 0         |      | 1     | 1.0         | True      |
+--------------------------------------+-----------+-----------+------+-----------+------+-------+-------------+-----------+
[root@controller ~(keystone_admin)]# nova flavor-delete  w2.small


删除用户
[root@controller ~(keystone_admin)]# keystone user-list
+----------------------------------+------------+---------+----------------------+
|                id                |    name    | enabled |        email         |
+----------------------------------+------------+---------+----------------------+
| 90a3f71704324b6ebabe408b7710cc8c |   admin    |   True  |    root@localhost    |
| 4d9a9a5f0627466c85afc135024ca264 | ceilometer |   True  | ceilometer@localhost |
| f303370bf9ad44a7a1261838c53db79e |   cinder   |   True  |   cinder@localhost   |
| 57a25a11befd470bb08e4f849153807a |   glance   |   True  |   glance@localhost   |
| 9a076111970445d28c4d07fef201a08a |    hony    |   True  |                      |
| 1e1b06b236364e7a8313aabd6ca2441a |  neutron   |   True  |  neutron@localhost   |
| 67afebf91dfb45f6b29eba4ce301f9a9 |    nova    |   True  |    nova@localhost    |
| 4643f95bf6a047efb68b4bcfc56b86db |   swift    |   True  |   swift@localhost    |
| 5f89a7365fe94d7c96150bc3d870f9fc |   user1    |   True  |    user1@hqy.com     |
+----------------------------------+------------+---------+---------

[root@controller ~(keystone_admin)]# keystone user-delete user1

删除项目/租户
[root@controller ~(keystone_admin)]# keystone tenant-list
+----------------------------------+----------+---------+
|                id                |   name   | enabled |
+----------------------------------+----------+---------+
| f6d20b148bdc4aa881722fa17df0edb5 |  admin   |   True  |
| 768bb44e5cb846cfa3abae5d98d43785 |   hqy    |   True  |
| dbc1b47a90b14d79aacdf10b8c5336de | services |   True  |
+----------------------------------+----------+---------+
[root@controller ~(keystone_admin)]# keystone tenant-delete hqy

OpenStack创建流程

管理员角色

一、创建租户、创建用户、用户关联用户

创建租户
[root@controller ~(keystone_admin)]# keystone --help |grep tenant
[root@controller ~(keystone_admin)]# keystone help tenant-create
[root@controller ~(keystone_admin)]# keystone tenant-create --name hqy
+-------------+----------------------------------+
|   Property  |              Value               |
+-------------+----------------------------------+
| description |                                  |
|   enabled   |               True               |
|      id     | 0e36403b9e2a434ea9f6dd2db1066b1b |
|     name    |               hqy                |
+-------------+----------------------------------+

创建用户并关联
[root@controller ~(keystone_admin)]# keystone help user-create
[root@controller ~(keystone_admin)]# keystone user-create --name user1 --tenant hqy --pass redhat
+----------+----------------------------------+
| Property |              Value               |
+----------+----------------------------------+
|  email   |                                  |
| enabled  |               True               |
|    id    | 7accfbfd31634549b402e71b7f4b4850 |
|   name   |              user1               |
| tenantId | 0e36403b9e2a434ea9f6dd2db1066b1b |
| username |              user1               |
+----------+----------------------------------+

创建规格 <>必选项
[root@controller ~(keystone_admin)]# keystone help user-create
[root@controller ~(keystone_admin)]# nova flavor-create m1.web auto 1024 10 2
+--------------------------------------+--------+-----------+------+-----------+------+-------+-------------+-----------+
| ID                                   | Name   | Memory_MB | Disk | Ephemeral | Swap | VCPUs | RXTX_Factor | Is_Public |
+--------------------------------------+--------+-----------+------+-----------+------+-------+-------------+-----------+
| 4e78a9b5-346b-4720-9e66-12a20aa0ad78 | m1.web | 1024      | 10   | 0         |      | 2     | 1.0         | True      |
+--------------------------------------+--------+-----------+------+

二、上传镜像

先把镜像上传到虚拟机上
[root@controller ~(keystone_admin)]# ls
anaconda-ks.cfg  key100.pem        keystonerc_user1
answers.txt      keystonerc_admin  small.img
[root@controller ~(keystone_admin)]# glance --help |grep image
[root@controller ~(keystone_admin)]# glance help image-create
[root@controller ~(keystone_admin)]# glance image-create --name huawei_cloud --disk-format qcow2 --container-format bare --file /root/small.img --is-public True --progress
[=============================>] 100%
+------------------+--------------------------------------+
| Property         | Value                                |
+------------------+--------------------------------------+
| checksum         | 0f3dbcece8ea9d9c5b256e7b274250f0     |
| container_format | bare                                 |
| created_at       | 2022-08-31T02:08:11                  |
| deleted          | False                                |
| deleted_at       | None                                 |
| disk_format      | qcow2                                |
| id               | 84689ccc-1361-4012-8fbc-5b36aa8b2421 |
| is_public        | True                                 |
| min_disk         | 0                                    |
| min_ram          | 0                                    |
| name             | huawei_cloud                         |
| owner            | f6d20b148bdc4aa881722fa17df0edb5     |
| protected        | False                                |
| size             | 356777984                            |
| status           | active                               |
| updated_at       | 2022-08-31T02:08:13                  |
| virtual_size     | None                                 |
+------------------+--------------------------------------+

三、创建外部网络

[root@controller ~(keystone_admin)]# neutron net-create --tenant-id hqy public
[root@controller ~(keystone_admin)]# neutron net-list
+--------------------------------------+--------+---------+
| id                                   | name   | subnets |
+--------------------------------------+--------+---------+
| 27fed1dc-86d7-4302-a390-976e7f25428e | public |         |
+--------------------------------------+--------+---------+
[root@controller ~(keystone_admin)]# neutron help net-update
[root@controller ~(keystone_admin)]# neutron net-update --router:external=True public
[root@controller ~(keystone_admin)]# neutron net-update --shared=True public
[root@controller ~(keystone_admin)]# neutron net-show public
+---------------------------+--------------------------------------+
| Field                     | Value                                |
+---------------------------+--------------------------------------+
| admin_state_up            | True                                 |
| id                        | 2a68e561-d842-4a22-b289-4fb9de0db23b |
| name                      | public                               |
| provider:network_type     | vxlan                                |
| provider:physical_network |                                      |
| provider:segmentation_id  | 11                                   |
| router:external           | True                                 |
| shared                    | True                                 |
| status                    | ACTIVE                               |
| subnets                   |                                      |
| tenant_id                 | hqy                                  |
+---------------------------+--------------------------------------+
[root@controller ~(keystone_admin)]# neutron help subnet-create 


创建子网
[root@controller ~(keystone_admin)]# neutron subnet-create --name publicsubnet01 --allocation-pool start=192.168.100.61,end=192.168.100.70 --disable-dhcp public 192.168.100.0/24

租户角色

1.创建私有网络

[root@controller ~(keystone_admin)]# source keystonerc_user1 
[root@controller ~(keystone_user1)]# neutron net-create private
[root@controller ~(keystone_user1)]# neutron help subnet-create
[root@controller ~(keystone_user1)]# neutron subnet-create --name subnet02 --enable-dhcp private 192.168.88.0/24
Created a new subnet:
+-------------------+----------------------------------------------------+
| Field             | Value                                              |
+-------------------+----------------------------------------------------+
| allocation_pools  | {"start": "192.168.88.2", "end": "192.168.88.254"} |
| cidr              | 192.168.88.0/24                                    |
| dns_nameservers   |                                                    |
| enable_dhcp       | True                                               |
| gateway_ip        | 192.168.88.1                                       |
| host_routes       |                                                    |
| id                | 975450b3-021d-4e92-bd4e-4a064eb855db               |
| ip_version        | 4                                                  |
| ipv6_address_mode |                                                    |
| ipv6_ra_mode      |                                                    |
| name              | subnet02                                           |
| network_id        | 98e09d62-a542-4c07-9ee4-f37031466f37               |
| tenant_id         | 0e36403b9e2a434ea9f6dd2db1066b1b                   |

2.创建路由

创建路由
[root@controller ~(keystone_user1)]# neutron router-create my_route
设置网关
[root@controller ~(keystone_user1)]# neutron router-gateway-set my_route public
添加路由接口
[root@controller ~(keystone_user1)]# neutron router-interface-add my_route subne=subnet02

3.创建安全组

创建安全组
[root@controller ~(keystone_user1)]# neutron security-group-create SG01
查询安全组规则
[root@controller ~(keystone_user1)]# neutron help security-group-rule-create
添加安全组规则
[root@controller ~(keystone_user1)]# neutron  security-group-rule-create    --direction=ingress --ethertype=IPv4  --protocol=tcp --port-range-min=22  --port-range-max=22 SG01
Created a new security_group_rule:
+-------------------+--------------------------------------+
| Field             | Value                                |
+-------------------+--------------------------------------+
| direction         | ingress                              |
| ethertype         | IPv4                                 |
| id                | 55ff8166-60d2-464d-b2a8-b25f6dee2856 |
| port_range_max    | 22                                   |
| port_range_min    | 22                                   |
| protocol          | tcp                                  |
| remote_group_id   |                                      |
| remote_ip_prefix  |                                      |
| security_group_id | b02e910d-74fc-4387-b77c-72b6420720b1 |
| tenant_id         | 0e36403b9e2a434ea9f6dd2db1066b1b     |
+-------------------+--------------------------------------+
放行80端口
[root@controller ~(keystone_user1)]# neutron  security-group-rule-create    --direction=ingress --ethertype=IPv4  --protocol=tcp --port-range-min=80  --port-range-max=80 SG01
放行ICMP协议
[root@controller ~(keystone_user1)]# neutron  security-group-rule-create    --direction=ingress --ethertype=IPv4  --protocol=icmp SG01

4.创建私钥

[root@controller ~(keystone_user1)]# nova keypair-add key888 > key888.pub
[root@controller ~(keystone_user1)]# mv key888.pub key888.pem
[root@controller ~(keystone_user1)]# chmod 400 key888.pem

5.创建浮动ip

[root@controller ~(keystone_user1)]# neutron floatingip-create public
Created a new floatingip:
+---------------------+--------------------------------------+
| Field               | Value                                |
+---------------------+--------------------------------------+
| fixed_ip_address    |                                      |
| floating_ip_address | 192.168.100.62                       |
| floating_network_id | 2a68e561-d842-4a22-b289-4fb9de0db23b |
| id                  | abe27c23-52e1-479c-b45d-6c1d16fee578 |
| port_id             |                                      |
| router_id           |                                      |
| status              | DOWN                                 |
| tenant_id           | 0e36403b9e2a434ea9f6dd2db1066b1b     |
+---------------------+--------------------------------------+

6.创建云主机

查询云主机
[root@controller ~(keystone_user1)]# nova --help |grep boot
创建云主机
[root@controller ~(keystone_user1)]# nova boot --flavor m1.web  --image huawei_cloud --nic net-id=98e09d62-a542-4c07-9ee4-f37031466f37  --key-name key888 --security-group SG01 1

7.绑定浮动ip

[root@controller ~(keystone_user1)]# neutron port-list
+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+
| id                                   | name | mac_address       | fixed_ips                                                                           |
+--------------------------------------+------+-------------------+-------------------------------------------------------------------------------------+
| 49edecbd-9891-433a-b46b-e32de4336d45 |      | fa:16:3e:4e:6c:1d | {"subnet_id": "975450b3-021d-4e92-bd4e-4a064eb855db", "ip_address": "192.168.88.3"} |
| 6bf47749-3b75-4912-bbfe-22cb12193c4a |      | fa:16:3e:ac:b5:cf | {"subnet_id": "975450b3-021d-4e92-bd4e-4a064eb855db", "ip_address": "192.168.88.4"} |
| d23e7986-f024-439c-b781-7dc13c75a142 |      | fa:16:3e:2c:a9:e3 | {"subnet_id": "975450b3-021d-4e92-bd4e-4a064eb855db", "ip_address": "192.168.88.1"} |
[root@controller ~(keystone_user1)]#  neutron floatingip-associate  abe27c23-52e1-479c-b45d-6c1d16fee578 6bf47749-3b75-4912-bbfe-22cb12193c4a

8.登录云主机

[root@controller ~(keystone_user1)]# ssh -i key888.pem cloud-user@192.168.100.62

OpenStack基本命令

查询所有的服务
[root@controller ~]# openstack-service status
查看Nova配置
[root@controller ~]# vi /etc/nova/nova.conf 
重启Nova服务
[root@controller ~]# systemctl restart openstack-nova-novncproxy.service
[root@controller ~]# systemctl restart nova
[root@controller ~]# cd /etc/libvirt/qemu
[root@controller qemu]# ls
instance-00000005.xml  networks

_address": “192.168.88.1”} |
[root@controller ~(keystone_user1)]# neutron floatingip-associate abe27c23-52e1-479c-b45d-6c1d16fee578 6bf47749-3b75-4912-bbfe-22cb12193c4a


#### 8.登录云主机

[root@controller ~(keystone_user1)]# ssh -i key888.pem cloud-user@192.168.100.62




## OpenStack基本命令

查询所有的服务
[root@controller ~]# openstack-service status
查看Nova配置
[root@controller ~]# vi /etc/nova/nova.conf
重启Nova服务
[root@controller ~]# systemctl restart openstack-nova-novncproxy.service
[root@controller ~]# systemctl restart nova
[root@controller ~]# cd /etc/libvirt/qemu
[root@controller qemu]# ls
instance-00000005.xml networks
本文内容由网友自发贡献,版权归原作者所有,本站不承担相应法律责任。如您发现有涉嫌抄袭侵权的内容,请联系:hwhale#tublm.com(使用前将#替换为@)

openstack

OpenStack实战 的相关文章

随机推荐

  • Linux C/C++ 学习路线(已拿腾讯、百度等)

    Linux C C 从零基础到入门 到熟悉的一些路线 xff0c 对于想走这个方向的同学 xff0c 可以认真看看 xff0c 分享到这里来 xff0c 希望对于正在走 Linux C C 路上的同学能有所帮助 我将大致按照以下的目录 xf

  • python架构之Django学习------基础篇一

    学习环境 xff1a ubuntu16 0 4 1 创建虚拟环境 mkvirtualenv test test为虚拟环境名称 2 删除虚拟环境 rmvirtualenv 3 在制定的虚拟环境上工作 workon test 4 退出虚拟环境

  • 无人机取证——飞行日志分析取证

    前言 随着科技发展日新月异 xff0c 利用无人机犯罪的途径和案例越来越多 xff0c 无人机除了拍照录像的用途外 xff0c 亦可能被有心人士用于运送违法物品等不法行为 xff0c 甚至 xff0c 若是绑上自制炸弹 xff0c 刻意飞去

  • 树莓派4B(4G/8G)安装Ubuntu18.04桌面版+ROS(Melodic)+Realsense SDK(T265+D400系列)

    文章目录 前言一 下载安装树莓派4B镜像 xff08 Ubuntu mate 18 04 xff09 1 树莓派4B服务器镜像2 准备物品3 镜像烧录4 安装桌面基础软件5 为了防止树莓派内存不够 xff0c 需要增加交换空间 xff0c

  • C++程序员这行能干一辈子吗?

    有人说 xff0c 程序员这一行就是吃青春饭 xff0c 不能干一辈子 xff0c 因为程序员面对的是一份高强度的工作 xff0c 同时面临着技术的快速迭代 xff0c 对于身体素质 学习能力等都有很高的要求 xff0c 所以很多人都面临入

  • 学习记录--PID(角度双环)

    一 xff0c 理论理解 参考 xff1a 从不懂到会用 xff01 PID从理论到实践 哔哩哔哩 bilibili 1 三个参数 Kp xff1a 比例系数 xff1a pid gt p out 61 pid gt kp pid gt e

  • FreeRTOS多任务调度器原理

    1 xff1a 多任务启动 1 xff1a 创建空闲任务 2 xff1a 配置SysTick和PendSV为最低优先级 3 xff1a 配置SysTick寄存器 4 xff1a 调用SVC中断 2 xff1a SVC业务流程 1 xff1a

  • 立创EDA使用教程

    1 xff1a 绘制原理图 1 1 放置元件 立创EDA可以在线编辑 xff0c 不同于AD和PADS需要自己绘制或者导入封装 立创可以直接在线拉取别人的封装过来使用 xff0c 当然也可以自己绘制 1 2添加导线和网络 W是连线 xff0

  • ubuntu电脑共享文件夹给另一台windows电脑

    1 xff1a 安装samba工具 sudo apt get install samba samba version 2 xff1a 配置共享文件夹路径 vi etc samba smb conf 在文件末尾添加 share comment

  • FreeRTOS 学习(一)

    一 使用FreeRTOS点亮LED灯 在STM32有一定基础 xff0c 在开始学习操作系统的小白 xff0c 介绍使用STM32用操作系统点亮第一盏灯 xff0c 这也是学习单片机最开始的地方 xff1b 下面来图文配置 xff0c 我这

  • FreeRTOS的启动流程,编码风格与调试方法

    一 启动流程 RTOS主要有两种比较流行的启动方式 xff0c 下面会通过伪代码讲解两种启动方式的区别 xff0c 然后看看STM32cubeMX集成的FreeRTOS采用哪种启动方式 1 方法一 xff1a 在main函数中将硬件初始化

  • 2021AIOps挑战赛|基于移动通信网络运维中的多指标时空序列预测

    2021国际AIOps挑战赛决赛暨AIOps创新高峰论坛于2021年5月13日在北京成功举行 本文根据中国移动研究院首席科学家 人工智能与智慧运营中心总经理冯俊兰博士现场发言纪要整理而成 演讲内容 各位领导 xff0c 各位老师 xff0c

  • python架构之Django学习------基础篇二

    学习环境 xff1a ubuntu16 0 4 1 创建项目 django admin startproject studypy studypy为项目名称 注意 xff1a 项目创建完成之后 xff0c 会有一个文件夹和项目名称一样 xff

  • VNC配置端口占用

    问题描述 xff1a 配置VNC环境时 执行systemctl配置端口发现有些端口被占用 systemctl status vncserver span class token operator span user 64 span clas

  • SNMP概述

    目录 SNMP的架构 SNMP的版本 SNMPv1 v2c 报文结构 操作类型 工作原理 SNMPv3 报文结构 SNMPv3体系结构 工作原理 用户组和用户名 SNMP的配置 基本配置 v2c配置 SNMPv3配置 xff08 USM用户

  • (18)ROS学习-TF坐标变换之静态坐标变换

    1 坐标msg消息 xff1a 订阅发布模型中数据载体 msg 是一个重要实现 xff0c 首先需要了解一下 xff0c 在坐标转换实现中常用的 msg geometry msgs TransformStamped和geometry msg

  • CentOS8.4 Samba服务配置

    目录 Samba服务简介 基本操作 Samba服务主配置文件 全局配置参数 局部配置参数 题一 创建共享资源 创建系统用户组和系统用户并查看 对系统用户设置Samba密码 查看已设置Samba密码的用户 建立共享资源目录并分配权限 修改主配

  • X86汇编语言从实模式到保护模式(Linux环境搭建)

    前言 在学完了计算机组成原理和王爽的汇编语言后 xff0c 虽然操作系统的理论知识能看懂了 xff0c 但做起xv6和ucore实验还是有一定难度 xff0c 所以还是得补一补x86汇编的知识 环境搭建 xff1a 因为书中的工具包和环境都

  • 【机器学习】二分类算法实现及算法精度比较

    文章目录 一 数据集选择1 感知机2 K近邻 xff08 knn xff09 3 朴素贝叶斯4 决策树id35 逻辑斯蒂回归总结 一 数据集选择 鸢尾花数据集 iris data Iris数据集是常用的分类实验数据集 xff0c 由Fish

  • OpenStack实战

    开源OpenStack实战 公有云 一个用户就是一个VPC虚拟私有云 在同一个VPC中的不同子网可以互通 不同VPC之间不能互通 一个VPC 就属于regin一个路由器 VPC不可以跨Regin 两个租户是不可以打通的 Regin xff1

热门标签