Loading... <p style="text-align: left"><span style="font-size: 20px"><strong><span style="font-size: 20px;text-decoration: underline">Symbolic</span></strong></span>是一个开源的企业平台,旨在建立、配置和管理您的庞大分布式数据中心为目的开源框架,代表了目前最先进的数据中心解决方案的集中管理平台。</p> <hr /> <h2 style="text-align: left"><strong>特征</strong></h2> <ol class="custom_num list-paddingleft-1"> <li class="list-num-1-1 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>属于RedHat认证协议栈的应用</span></p> </li> <li class="list-num-1-2 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>具于func后端应用</span></p> </li> <li class="list-num-1-3 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>支持 RHEL、Centos及Fedora</span></p> </li> <li class="list-num-1-4 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>先进的拖放标签管理(Ajax)</span></p> </li> <li class="list-num-1-5 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>提供Cobbler支持</span></p> </li> <li class="list-num-1-6 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>灵活管理操作用户、主机</span></p> </li> <li class="list-num-1-7 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>组和权限管理标记</span></p> </li> <li class="list-num-1-8 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>先进的基于Web的Ajax接口</span></p> </li> <li class="list-num-1-9 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>支持LDAP,Kerberos和本地认证</span></p> </li> <li class="list-num-1-10 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>符合JEE标准</span></p> </li> <li class="list-num-1-11 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>完全可定制的业务</span></p> </li> <li class="list-num-1-12 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>灵活的管理用户和主机</span></p> </li> <li class="list-num-1-13 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>安全的SSL连接</span></p> </li> <li class="list-num-1-14 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>虚拟机管理</span></p> </li> <li class="list-num-1-15 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>可定制的插件支持</span></p> </li> <li class="list-num-1-16 list-num-paddingleft-1"> <p style="margin-bottom: 5px"><span>执行各种语言编写的外部脚本(Python、Groovy、bashshell)</span></p> </li> </ol> <h2 style="text-align: left"><strong>如何部署平台?</strong></h2> <hr /> <p style="text-align: left"><span style="font-size: 12px">192.168.0.1 symbolic.example.com – Symbolic Machine (管理端)<br style="text-align: left" />192.168.0.2 station1.example.com – Symbolic Client (被控端)<br style="text-align: left" />平台架构图</span><br style="text-align: left" />1、如没有内部DNS服务器,需要修改hosts</p> <pre class="brush:bash;toolbar:false">echo "127.0.0.1 localhost.localdomain localhost " > /etc/hosts echo "192.168.0.1 symbolic.example.com symbolic certmaster" >> /etc/hosts echo "192.168.0.2 station1.example.com station1 " >> /etc/hosts</pre> <p style="text-align: left">2、安装EPEL包</p> <pre class="brush:bash;toolbar:false">rpm -Uvh http://download.fedora.redhat.com/pub/epel/5/i386/epel-release-5-3.noarch.rpm</pre> <p style="text-align: left">3、安装Certmaster and Func</p> <pre class="brush:bash;toolbar:false">yum install certmaster func smolt</pre> <p style="text-align: left">注:也可参考源码安装方式<br style="text-align: left" />4、启用端口,记得在防火墙开启以下端口</p> <pre class="brush:bash;toolbar:false">51235/TCP on symbolic.example.com 51234/TCP on symbolic.example.com 51234/TCP on station1.example.com</pre> <p style="text-align: left">5、配置func日志分隔</p> <p style="text-align: left"><span>#vi /etc/logrotate.d/func_rotate</span></p> <pre class="brush:bash;toolbar:false">/var/log/func/audit.log { missingok notifempty rotate 4 weekly postrotate if [ -f /var/lock/subsys/funcd ]; then /etc/init.d/funcd condrestart fi endscript } /var/log/func/func.log { missingok notifempty copytruncate rotate 4 weekly }</pre> <p style="text-align: left">6、配置Certmaster及func</p> <pre class="brush:bash;toolbar:false">#chkconfig certmaster on #service certmaster start #chkconfig funcd on #service funcd start</pre> <p style="text-align: left">7、查看被控端认证请求</p> <p style="text-align: left"><span>certmaster-ca –list</span></p> <pre class="brush:bash;toolbar:false">[root@symbolic ~]# certmaster-ca --list symbolic.example.com</pre> <p style="text-align: left">8、认证主机</p> <pre class="brush:bash;toolbar:false">#certmaster-ca --sign symbolic.example.com</pre> <p style="text-align: left">9、下载并安装Symbolic</p> <pre class="brush:bash;toolbar:false">wget http://downloads.sourceforge.net/symbolic/symbolic-{VERSION}.noarch.rpm yum --nogpgcheck localinstall symbolic-{VERSION}.noarch.rpm</pre> <p style="text-align: left">10、配置JAVA_HOME</p> <pre class="brush:bash;toolbar:false">#vi /etc/sysconfig/symbolic ... JAVA_HOME="/usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0" ...</pre> <p style="text-align: left">11、配置启用symbolic</p> <pre class="brush:bash;toolbar:false">#symbolic-setup #service symbolic start #chkconfig symbolic on</pre> <p style="text-align: left">12、完毕,访问平台</p> <p><span>http://symbolic.example.com:8081/symbolic</span><br /><span>Username: root</span><br /><span>Password: pass</span></p> <p style="text-align: left"><strong>如何添加主机?</strong><br style="text-align: left" />1、安装EPEL包</p> <pre class="brush:bash;toolbar:false">rpm -Uvh http://download.fedora.redhat.com/pub/epel/5/i386/epel-release-5-3.noarch.rpm</pre> <p style="text-align: left">2、安装Func与Smolt</p> <pre class="brush:bash;toolbar:false">yum install func smolt</pre> <p style="text-align: left">3、配置hosts</p> <pre class="brush:bash;toolbar:false">echo "127.0.0.1 localhost.localdomain localhost " > /etc/hosts echo "192.168.0.1 symbolic.example.com symbolic certmaster" >> /etc/hosts echo "192.168.0.2 station1.example.com station1 " >> /etc/hosts</pre> <p style="text-align: left">4、配置客户端certmaster配置</p> <p style="text-align: left"><span>#vi /etc/certmaster/minion.conf</span></p> <pre class="brush:bash;toolbar:false"># configuration for minions [main] certmaster = symbolic.example.com log_level = DEBUG cert_dir = /etc/pki/certmaster</pre> <p style="text-align: left">5、启动func服务</p> <pre class="brush:bash;toolbar:false">chkconfig funcd on service funcd start</pre> <p style="text-align: left">6、到服务器主进行认证,方法见部署平台第8点。在平台Admin → Reload Certs可以看到请求的主机清单。<br style="text-align: left" /><strong>在线文档V1.5.0</strong><br style="text-align: left" /></p> <p style="text-align: left"><strong>http://www.opensymbolic.org/sites/opensymbolic.org/files/docs/v1.5.0/html/index.html</strong></p> <p style="text-align: left"><strong><br /><span>译文:</span>http://www.opensymbolic.org/sites/opensymbolic.org/files/docs/v1.2.1/html/Symbolic-Tutorial.html#Symbolic-Tutorial-Server_Configuration</strong></p> <p style="text-align: left">转自:http://blog.liuts.com/post/208/#entrymore</p> 最后修改:2021 年 12 月 10 日 10 : 53 AM © 允许规范转载 赞赏 如果觉得我的文章对你有用,请随意赞赏 赞赏作者 支付宝微信