一、控制节点(192.168.26.240)
1.source admin-openstack.sh #获得admin凭证
2.创建 swift 用户,给 swift 用户添加 admin 角色:
- openstack user create --domain default --password=swift swift
- openstack role add --project service --user swift admin
3. 创建 swift 服务条目,创建对象存储服务 API 端点,dashboard中看效果
openstack service create --name swift --description "OpenStack Object Storage" object-store
openstack endpoint create --region RegionOne object-store public http://controller:8080/v1/AUTH_%\(tenant_id\)s
openstack endpoint create --region RegionOne object-store internal http://controller:8080/v1/AUTH_%\(tenant_id\)s
openstack endpoint create --region RegionOne object-store admin http://controller:8080/v1
4.安装软件包
yum install openstack-swift-proxy python-swiftclient python-keystoneclient python-keystonemiddleware memcached -y
5. 从对象存储的仓库源中获取代理服务的配置文件
curl -o /etc/swift/proxy-server.conf https://git.openstack.org/cgit/openstack/swift/plain/etc/proxy-server.conf-sample?h=stable/pike
6.配置文件
# vi /etc/swift/proxy-server.conf
#在[DEFAULT]项,配置Swift对象存储服务组件使用的端口、用户和配置路径
[DEFAULT]
# bind_ip = 0.0.0.0
bind_port = 8080
# bind_timeout = 30
# backlog = 4096
swift_dir = /etc/swift
user = swift
#在[pipeline:main]项,启用相关的模块
[pipeline:main]
pipeline = catch_errors gatekeeper healthcheck proxy-logging cache container_sync bulk ratelimit authtoken keystoneauth container-quotas account-quotas slo dlo versioned_writes proxy-logging proxy-server
#在[app:proxy-server]项,启用自动账户创建
[app:proxy-server]
use = egg:swift#proxy
account_autocreate = true
#在[filter:keystoneauth]项,配置操作用户角色
[filter:keystoneauth]
use = egg:swift#keystoneauth
operator_roles = admin, user
#在[filter:authtoken]项,配置keystone身份认证服务组件访问
[filter:authtoken]
paste.filter_factory = keystonemiddleware.auth_token:filter_factory
auth_uri = http://controller:5000
auth_url = http://controller:35357
memcached_servers = controller:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = swift
password = swift
delay_auth_decision = True
#在[filter:cache]项,配置MemCached的访问路径
[filter:cache]
use = egg:swift#memcache
memcache_servers = controller:11211
二、存储节点配置(192.168.26.242),sda系统盘,sdb数据盘,xfs格式
1.安装服务工具包
yum install xfsprogs rsync -y
2.数据盘配置 /dev/sdb
mkfs.xfs /dev/sdb #格式化xfs
mkdir -p /srv/node/sdb #创建挂载点目录结构
#编辑``/etc/fstab``文件并添加以下内容
/dev/sdb /srv/node/sdb xfs noatime,nodiratime,nobarrier,logbufs=8 0 2
mount /srv/node/sdb #挂载硬盘
3.文件配置rsync
vi /etc/rsyncd.conf
uid = swift
gid = swift
log file = /var/log/rsyncd.log
pid file = /var/run/rsyncd.pid
address = 192.168.26.242
[account]
max connections = 2
path = /srv/node/
read only = False
lock file = /var/lock/account.lock
[container]
max connections = 2
path = /srv/node/
read only = False#
lock file = /var/lock/container.lock
[object]
max connections = 2
path = /srv/node/
read only = False
lock file = /var/lock/object.lock
启动 “rsyncd” 服务和配置它随系统启动
systemctl enable rsyncd.service
systemctl start rsyncd.service
4.安装和配置Swift对象存储服务组件
#安装软件包
yum install openstack-swift-account openstack-swift-container \
openstack-swift-object
#从对象存储源仓库中获取accounting, container以及object服务配置文件
curl -o /etc/swift/account-server.conf https://git.openstack.org/cgit/openstack/swift/plain/etc/account-server.conf-sample?h=stable/pike
curl -o /etc/swift/container-server.conf https://git.openstack.org/cgit/openstack/swift/plain/etc/container-server.conf-sample?h=stable/pike
curl -o /etc/swift/object-server.conf https://git.openstack.org/cgit/openstack/swift/plain/etc/object-server.conf-sample?h=stable/pike
vi /etc/swift/account-server.conf
[DEFAULT]
bind_ip = 192.168.26.242
bind_port = 6002
# bind_timeout = 30
# backlog = 4096
user = swift
swift_dir = /etc/swift
devices = /srv/node
mount_check = true
[pipeline:main]
pipeline = healthcheck recon account-server
[filter:recon]
use = egg:swift#recon
recon_cache_path = /var/cache/swift
vi /etc/swift/container-server.conf
[DEFAULT]
bind_ip = 192.168.26.242
bind_port = 6001
# bind_timeout = 30
# backlog = 4096
user = swift
swift_dir = /etc/swift
devices = /srv/node
mount_check = true
[pipeline:main]
pipeline = healthcheck recon account-server
[filter:recon]
use = egg:swift#recon
recon_cache_path = /var/cache/swift
vi /etc/swift/object-server.conf
[DEFAULT]
bind_ip = 192.168.26.242
bind_port = 6000
# bind_timeout = 30
# backlog = 4096
user = swift
swift_dir = /etc/swift
devices = /srv/node
mount_check = true
[pipeline:main]
pipeline = healthcheck recon account-server
[filter:recon]
use = egg:swift#recon
recon_cache_path = /var/cache/swift
recon_lock_path = /var/lock
5.创建目录,更改权限
chown -R swift:swift /srv/node
mkdir -p /var/cache/swift
chown -R root:swift /var/cache/swift
chmod -R 775 /var/cache/swift
三、控制节点:
1.创建目录,更改权限创建,分发并初始化环(rings)
#在/etc/swift/目录创建账户Account Ring,只有一个硬盘,只能创建一个副本
swift-ring-builder account.builder create 10 1 1 #创建基本 account.builder 文件
#添加每个节点到 ring 中
swift-ring-builder account.builder add \
--region 1 --zone 1 --ip 192.168.26.242 --port 6002 --device sdb --weight 100
swift-ring-builder account.builder #验证 ring 的内容
[[email protected] swift]# swift-ring-builder account.builder
account.builder, build version 2, id 5a28a7bcb2d843f3ab511975cffbe299
1024 partitions, 1.000000 replicas, 1 regions, 1 zones, 1 devices, 0.00 balance, 0.00 dispersion
The minimum number of hours before a partition can be reassigned is 1 (0:00:00 remaining)
The overload factor is 0.00% (0.000000)
Ring file account.ring.gz is up-to-date
Devices: id region zone ip address:port replication ip:port name weight partitions balance flags meta
0 1 1 192.168.26.242:6002 192.168.26.242:6002 sdb 500.00 1024 0.00
swift-ring-builder account.builder rebalance #平衡 ring
#在/etc/swift/目录创建容器container.builder,只有一个硬盘,只能创建一个副本
swift-ring-builder container.builder create 10 1 1 #创建基本 container.builder 文件
#添加每个节点到 ring 中
swift-ring-builder container.builder add \
--region 1 --zone 1 --ip 192.168.26.242 --port 6001 --device sdb --weight 100
swift-ring-builder container.builder #验证 ring 的内容
swift-ring-builder container.builder rebalance #平衡 ring
#在/etc/swift/目录创建对象object.builder,只有一个硬盘,只能创建一个副本
swift-ring-builder object.builder create 10 1 1 #创建基本 object.builder 文件
#添加每个节点到 ring 中
swift-ring-builder container.builder add \
--region 1 --zone 1 --ip 192.168.26.242 --port 6000 --device sdb --weight 100
swift-ring-builder object.builder #验证 ring 的内容
swift-ring-builder object.builder #平衡 ring
2.复制``account.ring.gz``,container.ring.gz``和``object.ring.gz 文件到每个存储节点和其他运行了代理服务的额外节点的 /etc/swift 目录。
3.配置/etc/swift/swift.conf
#从对象存储源仓库中获取 /etc/swift/swift.conf 文件
curl -o /etc/swift/swift.conf \
https://git.openstack.org/cgit/openstack/swift/plain/etc/swift.conf-sample?h=stable/pike
vi /etc/swift/swift.conf
[swift-hash]
swift_hash_path_suffix = start
swift_hash_path_prefix = end
[storage-policy:0]
name = Policy-0
default = yes
复制``swift.conf`` 文件到每个存储节点和其他允许了代理服务的额外节点的 /etc/swift 目录,
修改权限:chown -R root:swift /etc/swift/*
四、启动服务:swift-init all start
#控制节点
systemctl enable openstack-swift-proxy.service memcached.service
systemctl start openstack-swift-proxy.service memcached.service
#存储节点
systemctl enable openstack-swift-account.service openstack-swift-account-auditor.service \
openstack-swift-account-reaper.service openstack-swift-account-replicator.service
systemctl start openstack-swift-account.service openstack-swift-account-auditor.service \
openstack-swift-account-reaper.service openstack-swift-account-replicator.service
systemctl enable openstack-swift-container.service \
openstack-swift-container-auditor.service openstack-swift-container-replicator.service \
openstack-swift-container-updater.service
systemctl start openstack-swift-container.service \
openstack-swift-container-auditor.service openstack-swift-container-replicator.service \
openstack-swift-container-updater.service
systemctl enable openstack-swift-object.service openstack-swift-object-auditor.service \
openstack-swift-object-replicator.service openstack-swift-object-updater.service
systemctl start openstack-swift-object.service openstack-swift-object-auditor.service \
openstack-swift-object-replicator.service openstack-swift-object-updater.service
五:验证:swift stat