OpenStack Epoxy : Pre-Requirements2025/05/21 |
|
This is the example of Cloud Computing by OpenStack Epoxy.
Install some services that some components of OpenStack needs for system requirements on here.
eth0|10.0.0.30
+-----------+-----------+
| [ dlp.srv.world ] |
| (Control Node) |
| |
| MariaDB RabbitMQ |
| Memcached Nginx |
+-----------------------+
|
| [1] | |
| [2] | |
| [3] | Add the Repository of Openstack Epoxy and also Upgrade CentOS Stream System. |
|
[root@dlp ~]# dnf -y install centos-release-openstack-epoxy [root@dlp ~]# sed -i -e "s/enabled=1/enabled=0/g" /etc/yum.repos.d/CentOS-OpenStack-epoxy.repo [root@dlp ~]# dnf --enablerepo=centos-openstack-epoxy -y upgrade |
| [4] | Install RabbitMQ, Memcached, Nginx. |
|
[root@dlp ~]#
dnf -y install rabbitmq-server memcached nginx-mod-stream
[root@dlp ~]#
vi /etc/my.cnf.d/mariadb-server.cnf # add into [mysqld] section [mysqld] ..... ..... # default value 151 is not enough on Openstack environment max_connections=1024
[root@dlp ~]#
vi /etc/sysconfig/memcached # line 5 : change OPTIONS="-l 0.0.0.0,:: "
mv /etc/nginx/nginx.conf /etc/nginx/nginx.conf.org
[root@dlp ~]#
vi /etc/nginx/nginx.conf # create new
user nginx;
worker_processes auto;
error_log /var/log/nginx/error.log;
pid /run/nginx.pid;
include /usr/share/nginx/modules/*.conf;
events {
worker_connections 1024;
}
http {
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
'$status $body_bytes_sent "$http_referer" '
'"$http_user_agent" "$http_x_forwarded_for"';
access_log /var/log/nginx/access.log main;
sendfile on;
tcp_nopush on;
tcp_nodelay on;
keepalive_timeout 65;
types_hash_max_size 4096;
include /etc/nginx/mime.types;
default_type application/octet-stream;
include /etc/nginx/conf.d/*.conf;
}
[root@dlp ~]#
systemctl restart mariadb rabbitmq-server memcached nginx [root@dlp ~]# systemctl enable mariadb rabbitmq-server memcached nginx # add openstack user # set any password you like for [password] [root@dlp ~]# rabbitmqctl add_user openstack password Adding user "openstack" ... Done. Don't forget to grant the user permissions to some virtual hosts! See 'rabbitmqctl help set_permissions' to learn more. [root@dlp ~]# rabbitmqctl set_permissions openstack ".*" ".*" ".*" Setting permissions for user "openstack" in vhost "/" ... |
| [5] | If SELinux is enabled, change policy. |
|
[root@dlp ~]#
vi rabbitmqctl.te # create new
module rabbitmqctl 1.0;
require {
type rabbitmq_t;
type tmpfs_t;
type init_var_run_t;
type rabbitmq_t;
class sock_file { getattr read };
class file { execute map read write };
class process execmem;
}
#============= rabbitmq_t ==============
allow rabbitmq_t self:process execmem;
allow rabbitmq_t tmpfs_t:file { execute read write };
allow rabbitmq_t tmpfs_t:file map;
allow rabbitmq_t init_var_run_t:sock_file { getattr read };
checkmodule -m -M -o rabbitmqctl.mod rabbitmqctl.te [root@dlp ~]# semodule_package --outfile rabbitmqctl.pp --module rabbitmqctl.mod [root@dlp ~]# semodule -i rabbitmqctl.pp |
| [6] | If Firewalld is running, allow ports for services. |
|
[root@dlp ~]# firewall-cmd --add-service={mysql,memcache} success [root@dlp ~]# firewall-cmd --add-port=5672/tcp success [root@dlp ~]# firewall-cmd --runtime-to-permanent success |
| Sponsored Link |
|
|