OpenStack Pike Volet 7
OpenStack Pike Volet 7
2017/09/03
Volet 7
2
[root@dlp ~(keystone)]#
openstack user create --domain default --project service --password servicepassword cinder
+---------------------+----------------------------------+
| Field | Value |
+---------------------+----------------------------------+
| default_project_id | c9ab6e9feb4d444c8f637fcfe7a67305 |
| domain_id | default |
| enabled | True |
| id | 13227a1f01a74b9dabca292e90ddff72 |
| name | cinder |
| options | {} |
| password_expires_at | None |
+---------------------+----------------------------------+
2
3
[root@dlp ~(keystone)]#
openstack role add --project service --user cinder admin
# add service entry for cinder
[root@dlp ~(keystone)]#
openstack service create --name cinderv2 --description "OpenStack Block Storage" volumev2
+-------------+----------------------------------+
| Field | Value |
+-------------+----------------------------------+
| description | OpenStack Block Storage |
| enabled | True |
| id | c9bdb04fc83b4ef5bba9d20d0a244305 |
| name | cinderv2 |
| type | volumev2 |
+-------------+----------------------------------+
[root@dlp ~(keystone)]#
openstack service create --name cinderv3 --description "OpenStack Block Storage" volumev3
+-------------+----------------------------------+
| Field | Value |
+-------------+----------------------------------+
| description | OpenStack Block Storage |
| enabled | True |
| id | a47d8dae08a34f5895ad9ae9167dd34f |
| name | cinderv3 |
| type | volumev3 |
+-------------+----------------------------------+
[root@dlp ~(keystone)]#
export controller=10.0.0.30
# add endpoint for cinder (v2 public)
[root@dlp ~(keystone)]#
openstack endpoint create --region RegionOne volumev2 public
http://$controller:8776/v2/%\(tenant_id\)s
+--------------+----------------------------------------+
| Field | Value |
+--------------+----------------------------------------+
| enabled | True |
| id | ea4329823ed343c4954842825e5298df |
| interface | public |
| region | RegionOne |
| region_id | RegionOne |
3
4
| service_id | c9bdb04fc83b4ef5bba9d20d0a244305 |
| service_name | cinderv2 |
| service_type | volumev2 |
| url | http://10.0.0.30:8776/v2/%(tenant_id)s |
+--------------+----------------------------------------+
[root@dlp ~(keystone)]#
openstack endpoint create --region RegionOne volumev2 internal
http://$controller:8776/v2/%\(tenant_id\)s
+--------------+----------------------------------------+
| Field | Value |
+--------------+----------------------------------------+
| enabled | True |
| id | 7427a12891ee4b978fd9eeeba242187c |
| interface | internal |
| region | RegionOne |
| region_id | RegionOne |
| service_id | c9bdb04fc83b4ef5bba9d20d0a244305 |
| service_name | cinderv2 |
| service_type | volumev2 |
| url | http://10.0.0.30:8776/v2/%(tenant_id)s |
+--------------+----------------------------------------+
[root@dlp ~(keystone)]#
openstack endpoint create --region RegionOne volumev2 admin
http://$controller:8776/v2/%\(tenant_id\)s
+--------------+----------------------------------------+
| Field | Value |
+--------------+----------------------------------------+
| enabled | True |
| id | ea986e27b21b4d859e6445e534855739 |
| interface | admin |
| region | RegionOne |
| region_id | RegionOne |
| service_id | c9bdb04fc83b4ef5bba9d20d0a244305 |
| service_name | cinderv2 |
| service_type | volumev2 |
| url | http://10.0.0.30:8776/v2/%(tenant_id)s |
+--------------+----------------------------------------+
[root@dlp ~(keystone)]#
openstack endpoint create --region RegionOne volumev3 public
http://$controller:8776/v3/%\(tenant_id\)s
4
5
+--------------+----------------------------------------+
| Field | Value |
+--------------+----------------------------------------+
| enabled | True |
| id | f793db29f57a498c80d5949dc9ffd2a3 |
| interface | public |
| region | RegionOne |
| region_id | RegionOne |
| service_id | a47d8dae08a34f5895ad9ae9167dd34f |
| service_name | cinderv3 |
| service_type | volumev3 |
| url | http://10.0.0.30:8776/v3/%(tenant_id)s |
+--------------+----------------------------------------+
[root@dlp ~(keystone)]#
openstack endpoint create --region RegionOne volumev3 internal
http://$controller:8776/v3/%\(tenant_id\)s
+--------------+----------------------------------------+
| Field | Value |
+--------------+----------------------------------------+
| enabled | True |
| id | 6470b642208442a0b2542d47b8f7b760 |
| interface | internal |
| region | RegionOne |
| region_id | RegionOne |
| service_id | a47d8dae08a34f5895ad9ae9167dd34f |
| service_name | cinderv3 |
| service_type | volumev3 |
| url | http://10.0.0.30:8776/v3/%(tenant_id)s |
+--------------+----------------------------------------+
[root@dlp ~(keystone)]#
openstack endpoint create --region RegionOne volumev3 admin
http://$controller:8776/v3/%\(tenant_id\)s
+--------------+----------------------------------------+
| Field | Value |
+--------------+----------------------------------------+
| enabled | True |
| id | 63d0f95bc9884a97885ac4012b101e2f |
| interface | admin |
| region | RegionOne |
| region_id | RegionOne |
| service_id | a47d8dae08a34f5895ad9ae9167dd34f |
| service_name | cinderv3 |
| service_type | volumev3 |
5
6
| url | http://10.0.0.30:8776/v3/%(tenant_id)s |
+--------------+----------------------------------------+
[2] Add a User and Database on MariaDB for Cinder.
[root@dlp ~(keystone)]#
mysql -u root -p
Enter password:
Welcome to the MariaDB monitor. Commands end with ; or \g.
Your MariaDB connection id is 48
Server version: 10.1.20-MariaDB MariaDB Server
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
MariaDB [(none)]>
create database cinder;
Bye
[3] Install Cinder Service.
# install from Pike, EPEL
[root@dlp ~(keystone)]#
yum --enablerepo=centos-openstack-pike,epel -y install openstack-cinder
[4] Configure Cinder.
[root@dlp ~(keystone)]#
mv /etc/cinder/cinder.conf /etc/cinder/cinder.conf.org
[root@dlp ~(keystone)]#
vi /etc/cinder/cinder.conf
6
7
# create new
[DEFAULT]
# define own IP address
my_ip = 10.0.0.30
log_dir = /var/log/cinder
state_path = /var/lib/cinder
auth_strategy = keystone
# RabbitMQ connection info
transport_url = rabbit://openstack:[email protected]
[oslo_concurrency]
lock_path = $state_path/tmp
[root@dlp ~(keystone)]#
chmod 640 /etc/cinder/cinder.conf
[root@dlp ~(keystone)]#
chgrp cinder /etc/cinder/cinder.conf
[root@dlp ~(keystone)]#
su -s /bin/bash cinder -c "cinder-manage db sync"
[root@dlp ~(keystone)]#
systemctl start openstack-cinder-api openstack-cinder-scheduler
[root@dlp ~(keystone)]#
systemctl enable openstack-cinder-api openstack-cinder-scheduler
# show status
root@dlp ~(keystone)#
openstack volume service list
7
8
+------------------+---------------+------+---------+-------+-----------------------
-----+
| Binary | Host | Zone | Status | State | Updated At
|
+------------------+---------------+------+---------+-------+-----------------------
-----+
| cinder-scheduler | dlp.srv.world | nova | enabled | up | 2017-09-
07T05:01:54.000000 |
+------------------+---------------+------+---------+-------+-----------------------
-----+
[5] If SELinux enabled, change policy like follows.
[root@dlp ~(keystone)]#
vi cinder-server_pol.te
# create new
require {
type cinder_volume_exec_t;
type neutron_t;
type cinder_api_exec_t;
type cinder_scheduler_exec_t;
type cinder_backup_exec_t;
class file getattr;
}
[root@dlp ~(keystone)]#
checkmodule -m -M -o cinder-server_pol.mod cinder-server_pol.te
[root@dlp ~(keystone)]#
semodule -i cinder-server_pol.pp
8
9
success
[root@dlp ~(keystone)]#
firewall-cmd --reload
success
9
10
[root@storage ~]#
yum --enablerepo=centos-openstack-pike,epel -y install openstack-cinder python2-crypto
targetcli
[2] Configure Cinder Volume.
[root@storage ~]#
mv /etc/cinder/cinder.conf /etc/cinder/cinder.conf.org
[root@storage ~]#
vi /etc/cinder/cinder.conf
# create new
10
11
[DEFAULT]
# define own IP address
my_ip = 10.0.0.50
log_dir = /var/log/cinder
state_path = /var/lib/cinder
auth_strategy = keystone
# RabbitMQ connection info
transport_url = rabbit://openstack:[email protected]
# Glance connection info
glance_api_servers = http://10.0.0.30:9292
[oslo_concurrency]
lock_path = $state_path/tmp
[root@storage ~]#
chmod 640 /etc/cinder/cinder.conf
[root@storage ~]#
chgrp cinder /etc/cinder/cinder.conf
[root@storage ~]#
systemctl start openstack-cinder-volume
[root@storage ~]#
systemctl enable openstack-cinder-volume
11