CentOS Stream 9
Sponsored Link

OpenStack Antelope : Pre-Requirements2023/04/14

 
This is the example of Cloud Computing by OpenStack Antelope.
Install some services that some components of OpenStack needs for system requirements on here.
This example is based on the environment like follows.
        eth0|10.0.0.30 
+-----------+-----------+
|   [ dlp.srv.world ]   |
|     (Control Node)    |
|                       |
|  MariaDB    RabbitMQ  |
|  Memcached  Nginx     |
+-----------------------+

[1]
[2]
[3] Add the Repository of Openstack Antelope and also Upgrade CentOS Stream System.
[root@dlp ~]#
dnf -y install centos-release-openstack-antelope

[root@dlp ~]#
sed -i -e "s/enabled=1/enabled=0/g" /etc/yum.repos.d/CentOS-OpenStack-antelope.repo

[root@dlp ~]#
dnf --enablerepo=centos-openstack-antelope -y upgrade

[4] Install RabbitMQ, Memcached, Nginx.
[root@dlp ~]#
dnf -y install rabbitmq-server memcached nginx-mod-stream
[root@dlp ~]#
vi /etc/my.cnf.d/mariadb-server.cnf
# add into [mysqld] section

[mysqld]
.....
.....
# default value 151 is not enough on Openstack environment
max_connections=1024

[root@dlp ~]#
vi /etc/sysconfig/memcached
# line 5 : change

OPTIONS="-l
0.0.0.0,::
"
[root@dlp ~]#
mv /etc/nginx/nginx.conf /etc/nginx/nginx.conf.org

[root@dlp ~]#
vi /etc/nginx/nginx.conf
# create new

user nginx;
worker_processes auto;
error_log /var/log/nginx/error.log;
pid /run/nginx.pid;
include /usr/share/nginx/modules/*.conf;
events {
    worker_connections 1024;
}
http {
    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
                      '$status $body_bytes_sent "$http_referer" '
                      '"$http_user_agent" "$http_x_forwarded_for"';
    access_log  /var/log/nginx/access.log  main;
    sendfile            on;
    tcp_nopush          on;
    tcp_nodelay         on;
    keepalive_timeout   65;
    types_hash_max_size 4096;
    include             /etc/nginx/mime.types;
    default_type        application/octet-stream;
    include /etc/nginx/conf.d/*.conf;
}

[root@dlp ~]#
systemctl restart mariadb rabbitmq-server memcached nginx

[root@dlp ~]#
systemctl enable mariadb rabbitmq-server memcached nginx

# add openstack user
# set any password you like for [password]

[root@dlp ~]#
rabbitmqctl add_user openstack password

Adding user "openstack" ...
Done. Don't forget to grant the user permissions to some virtual hosts! See 'rabbitmqctl help set_permissions' to learn more.
[root@dlp ~]#
rabbitmqctl set_permissions openstack ".*" ".*" ".*"

Setting permissions for user "openstack" in vhost "/" ...
[5] If SELinux is enabled, change policy.
[root@dlp ~]#
vi rabbitmqctl.te
# create new

module rabbitmqctl 1.0;

require {
        type rabbitmq_t;
        type tmpfs_t;
        type init_var_run_t;
        type rabbitmq_t;
        class sock_file { getattr read };
        class file { execute map read write };
        class process execmem;
}

#============= rabbitmq_t ==============
allow rabbitmq_t self:process execmem;
allow rabbitmq_t tmpfs_t:file { execute read write };
allow rabbitmq_t tmpfs_t:file map;
allow rabbitmq_t init_var_run_t:sock_file { getattr read };

[root@dlp ~]#
checkmodule -m -M -o rabbitmqctl.mod rabbitmqctl.te

[root@dlp ~]#
semodule_package --outfile rabbitmqctl.pp --module rabbitmqctl.mod

[root@dlp ~]#
semodule -i rabbitmqctl.pp

[6] If Firewalld is running, allow ports for services.
[root@dlp ~]#
firewall-cmd --add-service={mysql,memcache}

success
[root@dlp ~]#
firewall-cmd --add-port=5672/tcp

success
[root@dlp ~]#
firewall-cmd --runtime-to-permanent

success
Matched Content