Ansible随记:修订间差异
小无编辑摘要 |
小无编辑摘要 |
||
第93行: | 第93行: | ||
====others==== | ====others==== | ||
ansible k8s -m shell -a "rpm --import file:///etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-7"<br /> | ansible k8s -m shell -a "rpm --import file:///etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-7"<br /> | ||
<br /> | |||
=== playbook === | |||
==== copy ==== | |||
--- | |||
- hosts: all | |||
<nowiki> </nowiki> tasks: | |||
<nowiki> </nowiki> - name: copy kubernetes server executeable file to master node | |||
<nowiki> </nowiki> copy: | |||
<nowiki> </nowiki> src: '<nowiki>{{ item.src }}</nowiki>' | |||
<nowiki> </nowiki> dest: '<nowiki>{{item.dest}}</nowiki>' | |||
<nowiki> </nowiki> with_items: | |||
<nowiki> </nowiki> - {src: './apiextensions-apiserver', dest: '/opt/k8s/bin/'} | |||
<nowiki> </nowiki> - {src: './kubeadm', dest: '/opt/k8s/bin/'} | |||
<nowiki> </nowiki> - {src: './kube-apiserver', dest: '/opt/k8s/bin/'} | |||
<nowiki> </nowiki> - {src: './kube-controller-manager', dest: '/opt/k8s/bin/'} | |||
<nowiki> </nowiki> - {src: './kubectl', dest: '/opt/k8s/bin/'} | |||
<nowiki> </nowiki> - {src: './kubelet', dest: '/opt/k8s/bin/'} | |||
<nowiki> </nowiki> - {src: './kube-proxy', dest: '/opt/k8s/bin/'} | |||
<nowiki> </nowiki> - {src: './kube-scheduler', dest: '/opt/k8s/bin/'} | |||
<nowiki> </nowiki> - {src: './mounter', dest: '/opt/k8s/bin/'} | |||
[[分类:Linux]] | [[分类:Linux]] |
2020年4月11日 (六) 17:51的版本
For linux and kubernetes
hosts
[k8s] k8s-node-1 ansible_ssh_host=172.16.139.102 k8s-node-2 ansible_ssh_host=172.16.139.103 k8s-node-3 ansible_ssh_host=172.16.139.104 [test] 192.168.1.250 ansible_ssh_port=1234 192.168.1.251 ansible_ssh_user=xxx ansible_ssh_pass=yyy
module
selinux
ansible k8s -m selinux -m selinux -a state=disabled
https://my.oschina.net/ozakilsc/blog/693023
shell
ansible k8s -m shell -a getenforce
ansible k8s -m shell -a hostname
ansible k8s -m shell -a "iptables -F && iptables -X && iptables -F -t nat && iptables -t nat -X && iptables -t raw -F && iptables -t raw -X && iptables -t mangle -F && iptables -t mangle -X"
ansible k8s -m shell -a "modprobe bridge && modprobe br_netfilter && sysctl -p /etc/sysctl.d/kubernetes.conf"
ansible k8s -m shell -a "timedatectl set-timezone Asia/Shanghai && timedatectl status"
ansible all -m shell -a "rpm -Uvh http://www.elrepo.org/elrepo-release-7.0-3.el7.elrepo.noarch.rpm"
ansible all -m shell -a "yum --enablerepo=elrepo-kernel install -y kernel-lt"
ansible all -m shell -a "grub2-set-default 0"
ping
(用于判断远程客户端是否在线)
ansible k8s -m ping
command
(ansible default module)
yum
(default state:installed)
ansible k8s -m yum -a 'name=vim state=installed'
ansible k8s -m yum -a 'name=vim'
ansible k8s -m yum -a 'name=vim, httpd'
ansible k8s -km yum -a "name=yum-utils,chrony,conntrack,ipvsadm,ipset,jq,iptables,curl,sysstat,libseccomp,wget,socat,git"
ansible k8s -m yum -a 'name=vsftpd state=removed'
ansible k8s -m yum -a "name=bridge-utils"
service
ansible k8s -m service -a " name='nginx' enabled=yes"
ansible k8s -m service -a "name=httpd state=started"
ansible k8s -m service -a "name=firewalld state=stopped enabled=no"
ansible k8s -km service -a "name=postfix state=stopped enabled=no"
ansible k8s -m service -a "name=chronyd enabled=yes state=started"
copy
ansible k8s -m copy -a "src=./kubernetes.conf dest=/etc/sysctl.d/"
file
ansible k8s -m file -a "path=/opt/k8s/bin state=directory"
ansible k8s -m file -a "path=/opt/k8s/work state=directory"
ansible k8s -m file -a "path=/opt/k8s/work state=absent"
others
ansible k8s -m shell -a "rpm --import file:///etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-7"
playbook
copy
--- - hosts: all tasks: - name: copy kubernetes server executeable file to master node copy: src: '{{ item.src }}' dest: '{{item.dest}}' with_items: - {src: './apiextensions-apiserver', dest: '/opt/k8s/bin/'} - {src: './kubeadm', dest: '/opt/k8s/bin/'} - {src: './kube-apiserver', dest: '/opt/k8s/bin/'} - {src: './kube-controller-manager', dest: '/opt/k8s/bin/'} - {src: './kubectl', dest: '/opt/k8s/bin/'} - {src: './kubelet', dest: '/opt/k8s/bin/'} - {src: './kube-proxy', dest: '/opt/k8s/bin/'} - {src: './kube-scheduler', dest: '/opt/k8s/bin/'} - {src: './mounter', dest: '/opt/k8s/bin/'}