packestack 部署openstack

一、部署packstack
1.1 简介
对于openstack初学者而言，传统部署openstack流程是在过于繁琐，需要多台虚拟机，packstack完美解决这个问题，可以减少了许多繁琐且容易出错的部署流程，packstack可以选择单节点或双节点部署，本次完美使用单节点部署allinone。

1.2 性能搭配
推荐处理器内核至少3个（i5-8300H四核八线程），尽量按你最大的核心分配，否则正式安装会很慢！！！内存推荐6G（4G应该也没问题）。

1.3 准备工作

1.设置免密与、/etc/hosts
2.关闭防火墙、SElinux、NetManager
3.时间同步
4.更换repo源
关闭防火墙

systemctl disable firewalld &&\
systemctl stop firewalld &&\
systemctl disable NetworkManager &&\
systemctl stop NetworkManager &&\
systemctl enable network &&\
systemctl start network
关闭SElinux

vi /etc/selinux/config

修改SELINUX=disabled=
setenforce 0
同步时间ntpdate

yum install ntpdate -y
ntpdate ntp1.aliyun.com
systemctl enable ntpdate
date
1.4 安装
更换阿里云的repo源

mv /etc/yum.repos.d/CentOS-Base.repo /etc/yum.repos.d/CentOS-Base.repo.backup
curl -o /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo
yum makecache
安装openstack-queens，本质只是下载了Q版的repo源，在/etc/yum.repos.d/可以查看到repo源。

yum update -y

yum install -y centos-release-openstack-stein
正式安装

yum install -y openstack-packstack
正式部署

本机大概用了45分钟，此命令非常占用cpu，八代i5u，1cpu3内核也要45分钟，建议至少是这个配置，内存6G就行。因为我电脑只有4内核，所以没敢全给，之前2内核也是很久很久甚至没有成功。

packstack --allinone
安装成功，如果没有出现下列成功提示，请往下浏览，看看有没有我踩过的坑。

**** Installation completed successfully ******
Additional information:
* A new answerfile was created in: /root/packstack-answers-20230510-184017.txt
* Time synchronization installation was skipped. Please note that unsynchronized time on server instances might be problem for some OpenStack components.
* File /root/keystonerc_admin has been created on OpenStack client host 172.25.254.229. To use the command line tools you need to source the file.
* To access the OpenStack Dashboard browse to http://172.25.254.229/dashboard .
Please, find your login credentials stored in the keystonerc_admin in your home directory.
* Because of the kernel update the host 172.25.254.229 requires reboot.
* The installation log file is available at: /var/tmp/packstack/20230510-184016-REJ4An/openstack-setup.log
* The generated manifests are available at: /var/tmp/packstack/20230510-184016-REJ4An/manifests

部署完成后操作：

1. wget http://download.cirros-cloud.net/0.3.4/cirros-0.3.4-x86_64-disk.img

2. glance image-create --name image-s --file /root/cirros-0.3.4-x86_64-disk.img --disk-format qcow2 --container-format bare

3. 创建虚拟机

二、出现的问题
2.1 安装中断临时文件
/root下会生产多个临时安装文件，如果因为某些原因安装中断，可以使用answer继续上次的安装，嫌麻烦也可以不管，实际没有影响。

packtack --answer-file=packstack-answers-20180529-075406.txt
2.2 提示某个安装包出错
提示python2-qpid-proton-0.22.0-1.el7.x86_64安装包出错

172.25.254.229_controller.pp: [ ERROR ]
Applying Puppet manifests [ ERROR ]

ERROR : Error appeared during Puppet run: 172.25.254.229_controller.pp
Error: Execution of '/usr/bin/yum -d 0 -e 0 -y install openstack-keystone' returned 1: Error: Package: python2-qpid-proton-0.22.0-1.el7.x86_64 (centos-openstack-queens)
You will find full trace in log /var/tmp/packstack/20230510-173731-PznIbV/manifests/172.25.254.229_controller.pp.log
Please check log file /var/tmp/packstack/20230510-173731-PznIbV/openstack-setup.log for more information
Additional information:
* A new answerfile was created in: /root/packstack-answers-20230510-173732.txt
* Time synchronization installation was skipped. Please note that unsynchronized time on server instances might be problem for some OpenStack components.
* File /root/keystonerc_admin has been created on OpenStack client host 172.25.254.229. To use the command line tools you need to source the file.
* To access the OpenStack Dashboard browse to http://172.25.254.229/dashboard .
Please, find your login credentials stored in the keystonerc_admin in your home directory.
尝试手动yum install安装，解决，如果是其它安装包也是同样的方法。

yum install -y python2-qpid-proton-0.22.0-1.el7.x86_64
2.3 leatherman版本太高
提示 facter: error while loading shared libraries: leatherman_curl.so.1.3.0: cannot open shared object file: No such file or directory，leatherman 1.3 版本过高，可以降为1.10 版本。

Installing:
Clean Up [ DONE ]
Discovering ip protocol version [ DONE ]
Setting up ssh keys [ DONE ]
Preparing servers [ DONE ]
Pre installing Puppet and discovering hosts' details[ ERROR ]

ERROR : Failed to run remote script, stdout:
stderr: Warning: Permanently added '172.25.254.229' (ECDSA) to the list of known hosts.
+ trap t ERR
+ facter -p
facter: error while loading shared libraries: leatherman_curl.so.1.3.0: cannot open shared object file: No such file or directory
++ t
++ exit 127

Please check log file /var/tmp/packstack/20230510-173400-VVUxZW/openstack-setup.log for more information
Additional information:
* A new answerfile was created in: /root/packstack-answers-20230510-173401.txt
* Time synchronization installation was skipped. Please note that unsynchronized time on server instances might be problem for some OpenStack components.

yum downgrade leatherman命令降级，已解决。

[root@openstack yum.repos.d]# yum list | grep leatherman
leatherman.x86_64 1.10.0-1.el7 @epel
leatherman-devel.x86_64 1.10.0-1.el7 epel

[root@openstack yum.repos.d]# yum downgrade leatherman

[root@openstack yum.repos.d]# yum list | grep leatherman
leatherman.x86_64 1.3.0-9.el7 @centos-openstack-queens
leatherman.x86_64 1.10.0-1.el7 epel
leatherman-devel.x86_64 1.10.0-1.el7 epel

三、安装成功
浏览器 http://192.168.136.56/dashboard/auth/login/ 登录页面，IP根据主机IP更改。

cat /root/keystonerc_admin 查看admin用户密码

cat /root/keystonerc_demo 查看demo用户密码

链接外网

网络连接：NAT模式

OpenStack部署方式：--allinone

1.将OpenStack主机网卡添加到br-ex网桥上

2.调整网络配置

3.为虚拟机实例分配浮动IP地址

4.在linux计算机上通过SSH访问虚拟机实例

1.将OpenStack主机网卡添加到br-ex网桥上

其中ens33是主机网卡，“br”开头的是网桥，以下命令可查看网桥

[root@node-a ~]# ovs-vsctl list-br
br-ex
br-int

br-ex是外部网桥，br-int是集成网桥，以下命令可以查看网桥的端口

[root@node-a ~]# ovs-vsctl list-ports br-ex
patch-provnet-72ad633c-84ad-4053-94dc-b226a1799588-to-br-int
[root@node-a ~]#

目前只有一个br-int的Patch端口，并没有端口连接到OpenStack上的外部接口，因此当前OpenStack云平台上的实例无法与外网通信，这里改用网卡配置来将OpenStack主机上的网卡作为一个端口添加到br-ex网桥上（根据自己的网络环境来替换其中的网卡名称、IP地址和DNS服务器等参数值）

创建与br-ex相关的网络配置文件

对ifcfg-br-ex配置文件进行修改

[root@node-a network-scripts]# vi ifcfg-br-ex

关键修改TYPE，DEVICETYPE，以及NAME、DEVICE的值

TYPE="OVSBridge"
DEVICETYPE=ovs
PROXY_METHOD="none"
BROWSER_ONLY="no"
BOOTPROTO="static"
DEFROUTE="yes"
IPV4_FAILURE_FATAL="no"
IPV6INIT="yes"
IPV6_AUTOCONF="yes"
IPV6_DEFROUTE="yes"
IPV6_FAILURE_FATAL="no"
IPV6_ADDR_GEN_MODE="stable-privacy"
NAME="br-ex"
DEVICE="br-ex"
ONBOOT="yes"
IPADDR=192.168.187.128
PREFIX=24
GATEWAY=192.168.187.2
DNS1=114.114.114.114

对ifcfg-ens33配置文件修改

[root@node-a network-scripts]# vi ifcfg-ens33

关键修改TYPE, 添加最后两行定义

TYPE="OVSPort"
PROXY_METHOD="none"
BROWSER_ONLY="no"
BOOTPROTO="static"
DEFROUTE="yes"
IPV4_FAILURE_FATAL="no"
IPV6INIT="yes"
IPV6_AUTOCONF="yes"
IPV6_DEFROUTE="yes"
IPV6_FAILURE_FATAL="no"
IPV6_ADDR_GEN_MODE="stable-privacy"
NAME="ens33"
UUID="c69819c0-e818-4bf7-9df1-db90a30fa5cc"
DEVICE="ens33"
ONBOOT="yes"
DEVICETYPE=ovs
OVS_BRIDGE=br-ex

重启网络

[root@node-a network-scripts]# systemctl restart network

使用ip命令验证配置更改

再次查看br-ex网桥端口

2.调整网络配置
以admin用户登录OpenStack，在“管理员”仪表板下找到“路由”节点，定义了一个名为“route1”的路由器，这是一个虚拟路由器，用于连接外部网络和内部网络，但不符合实际网络环境，所以需要对现有的网络进行重新配置。

（1）清除现有路由器的网关

（2）配置外部网络

从“管理员”仪表盘中打开网络列表，选择“public”网络打开其详情界面

将外部网络现有的子网删除

再创一个同名的子网

(3)调整路由器配置

以demo用户登录OpenStack，打开路由列表