一、saltstack的安装部署
主机环境:
server1: 172.25.60.1 master
server2: 172.25.60.2 minion
1、 server1安装软件
[root@server1 2018]# ls
libsodium-1.0.16-1.el7.x86_64.rpm
openpgm-5.2.122-2.el7.x86_64.rpm
python2-libcloud-2.0.0-2.el7.noarch.rpm
python-cherrypy-5.6.0-2.el7.noarch.rpm
python-crypto-2.6.1-2.el7.x86_64.rpm
python-futures-3.0.3-1.el7.noarch.rpm
python-msgpack-0.4.6-1.el7.x86_64.rpm
python-psutil-2.2.1-1.el7.x86_64.rpm
python-tornado-4.2.1-1.el7.x86_64.rpm
python-zmq-15.3.0-3.el7.x86_64.rpm
PyYAML-3.11-1.el7.x86_64.rpm
repodata
salt-2018.3.3-1.el7.noarch.rpm
salt-api-2018.3.3-1.el7.noarch.rpm
salt-cloud-2018.3.3-1.el7.noarch.rpm
salt-master-2018.3.3-1.el7.noarch.rpm
salt-minion-2018.3.3-1.el7.noarch.rpm
salt-ssh-2018.3.3-1.el7.noarch.rpm
salt-syndic-2018.3.3-1.el7.noarch.rpm
zeromq-4.1.4-7.el7.x86_64.rpm
[root@server1 2018]# yum install -y *
2、server1上编辑配置文件,并开启master和minion
[root@server1 2018]# cd /etc/salt/
[root@server1 salt]# vim minion
写入:master: 172.25.60.1
[root@server1 salt]# systemctl start salt-master
[root@server1 salt]# systemctl start salt-minion
[root@server1 salt]# netstat -antlp
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 709/sshd
tcp 0 0 0.0.0.0:4505 0.0.0.0:* LISTEN 1192/python
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 881/master
tcp 0 0 0.0.0.0:4506 0.0.0.0:* LISTEN 1198/python
tcp 0 0 172.25.60.1:22 172.25.60.250:52332 ESTABLISHED 1036/sshd: root@pts
tcp6 0 0 :::22 :::* LISTEN 709/sshd
tcp6 0 0 ::1:25 :::* LISTEN 881/master
##
4505端口:用来链接slave,发布订阅
4506端口:请求响应,模式为:zmq(消息队列)
3、server2也安装上述软件包,编辑配置文件,并开启minion
[root@server2 2018]# cd /etc/salt/
[root@server2 salt]# vim minion
master: 172.25.60.1
[root@server2 salt]# systemctl start salt-minion
4、在master添加minion(master和minion交换公钥的过程)
[root@server1 salt]# salt-key -L #查看 minion 列表(这时候 saltstack-minion是红色的)
[root@server1 salt]# salt-key -A # 添加显示的所有主机
[root@server1 salt]# salt-key -L
5、查看
[root@server1 salt]# yum install -y lsof
[root@server1 salt]# lsof -i :4505
6、测试
[root@server1 minions]# salt '*' test.ping
[root@server1 minions]# salt '*' cmd.run hostname
[root@server1 minions]# salt '*' cmd.run df
二、配置keepalived高可用
1、在server1建立/srv/salt目录,建立keepalived目录,进到目录里边编辑安装keepalived的sls推送文件
[root@server1 salt]# mkdir keepalived
[root@server1 salt]# cd keepalived/
[root@server1 keepalived]# mkdir files
[root@server1 keepalived]# vim install.sls
[root@server1 keepalived]# cat install.sls
kp-install:
pkg.installed:
- pkgs:
- keepalived
file.managed:
- name: /etc/keepalived/keepalived.conf
- source: salt://keepalived/files/keepalived.conf
- template: jinja
{% if grains['fqdn'] == 'server1' %} # server1是master
STATE: MASTER
VRID: 51
PRIORITY: 100
{% elif grains['fqdn'] == 'server2' %} # server2是backup
STATE: BACKUP
VRID: 51
PRIORITY: 50
{% endif %}
service.running:
- name: keepalived
- reload: True
- watch:
- file: kp-install
2、编辑 keepalived的脚本,配置文件远程发送到到sevrer1中/srv/salt/keepalived/files
扫描二维码关注公众号,回复:
6560954 查看本文章
[root@server2 keepalived]# scp keepalived.conf server1:/srv/salt/keepalived/files
[root@server1 files]# cat keepalived.conf
! Configuration File for keepalived
global_defs {
notification_email {
root@localhost
}
notification_email_from keepalived@localhost
smtp_server 127.0.0.1
smtp_connect_timeout 30
router_id LVS_DEVEL
}
vrrp_instance VI_1 {
state {{ STATE }}
interface eth0
virtual_router_id {{ VRID }}
priority {{ PRIORITY }}
advert_int 1
authentication {
auth_type PASS
auth_pass 1111
}
virtual_ipaddress {
172.25.60.100
}
}
在server1上执行
[root@server1 yum.repos.d]# salt server2 state.sls keepalived install