如何通过puppet管理远程docker容器并配置puppet和实现变更
发表于:2025-02-07 作者:千家信息网编辑
千家信息网最后更新 2025年02月07日,这篇文章将为大家详细讲解有关如何通过puppet管理远程docker容器并配置puppet和实现变更,小编觉得挺实用的,因此分享给大家做个参考,希望大家阅读完这篇文章后可以有所收获。前提准备:1.ma
千家信息网最后更新 2025年02月07日如何通过puppet管理远程docker容器并配置puppet和实现变更
这篇文章将为大家详细讲解有关如何通过puppet管理远程docker容器并配置puppet和实现变更,小编觉得挺实用的,因此分享给大家做个参考,希望大家阅读完这篇文章后可以有所收获。
前提准备:
1.master和docker节点上分别安装好puppet master和puppet agent;
2.docker节点上安装好docker1.2.0、nsenter(被脚本用于连接容器),并pull一个镜像:training/webapp
master上的准备工作:
创建docker模块:
mkdir -p /etc/puppet/modules/docker/{manifests,files,templates}vi /etc/puppet/modules/docker/manifests/init.pp#编写docker类class docker { exec { "dockerlaunch" : command => "/usr/bin/docker run -d -p 1000:5000 --name webbase training/webapp python app.py && /usr/bin/docker run -d -p 2000:5000 --name web1 --link webbase:webbase training/webapp python app.py", } exec { "dockerlogs" : command => "/bin/mkdir -p /var/log/dockerlaunch && /usr/bin/docker inspect webbase >> /var/log/dockerlaunch/webbase.log && /usr/bin/docker inspect web1 >> /var/log/dockerlaunch/web1.log", } file { "/root/status.log" : ensure => file, mode => '740', content => "docker container is running:webbase and web1 please use broswer access the ip address of docker.hzg.com and the 1000 or the 2000 port.You can use the control.sh script help you to manage the container", } file { "/root/control.sh" : ensure => file, mode => '1777', source => "puppet:///modules/docker/control.sh", } notify { "Docker container is running on node $fqdn !": }}编写管理脚本,并放置到/etc/puppet/modules/docker/files目录中:
vi control.sh#脚本如下#!/bin/bash#used for access the specific container#written by Hochikongwhile truedo{read -p "What you want to do?try input 'help' to get some tips(please input the words in ''): " whatif [ $what = 'help' ];then echo "################################################################################################################################"; echo " The helping information about this script "; echo "################################################################################################################################"; echo "COMMAND INFO "; echo "################################################################################################################################"; echo "'status' get the info about the running containers. "; echo "'access' access the specific contianer. "; echo "'manage' manage the contianer,such as 'start','stop' and 'delete'. "; echo "'exit' exit this script. "; echo "'statusa' show the infomation about all containers. "; echo "'statusl' show the latest infomation about container. "; echo "################################################################################################################################"; echo "MAINCOMMAND SUBCOMMAND INFO "; echo "################################################################################################################################"; echo "'manage' 'start' launch a exist contianer "; echo "'manage' 'stop' stop a running container "; echo "'manage' 'delete' detele a not-running container "; echo "'manage' 'status' get the info about the running containers "; echo "'manage' 'statusa' show the infomation about all containers. "; echo "'manage' 'statusl' show the latest infomation about container. "; echo "################################################################################################################################";fi if [ $what = 'status' ];then echo "The running containers are:\n"; docker ps;fiif [ $what = 'statusa' ];then echo "All containers's status:\n"; docker ps -a;fiif [ $what = 'statusl' ];then echo "The latest infomation about containers:\n"; docker ps -l;fi if [ $what = 'access' ];then read -p "Please input the specific container's name:" name; CPID=$(docker inspect --format '{{.State.Pid}}' $name); nsenter --target $CPID --mount --uts --ipc --net --pid;fiif [ $what = 'manage' ];then while true do { read -p "Please input the container name which you want to manage,or 'exit',or 'help'?: " name2; if [ $name2 = 'help' ]; then echo "#############################################################################################################"; echo " SUBCOMMAND INFO "; echo "#############################################################################################################"; echo " 'start' launch a exist contianer "; echo " 'stop' stop a running container "; echo " 'delete' detele a not-running container "; echo " 'status' get the info about the running containers "; echo " 'statusa' show the infomation about all containers. "; echo " 'statusl' show the latest infomation about container. "; echo "#############################################################################################################"; break; fi if [ $name2 = 'status' ]; then echo "Running container:"; docker ps;continue; fi if [ $name2 = 'exit' ]; then echo "Exiting"; break; fi if [ $name2 = 'statusa' ]; then echo "All infomation about containers:\n"; docker ps -a;continue; elif [ $name2 = 'statusl' ]; then echo "The latest infomation about containers:\n"; docker ps -l;continue; fi read -p "Do you want to 'start' or 'stop' or 'delete' your container?: " what2; if [ $what2 = 'start' ]; then echo "Notice:Please make sure this container is not running"; docker start $name2;continue elif [ $what2 = 'stop' ]; then echo "Notice:container is stopping"; docker stop $name2;continue; elif [ $what2 = 'delete' ]; then echo "Notice:You cannot delete a running container,if the container is running,please stop it first!"; docker rm $name2;continue; else echo "Error:Command Error,no such command!";continue; fi }donefiif [ $what = 'exit' ];then exit;fi}done编辑/etc/puppet/manifests/nodes/docker.hzg.com.pp,加载docker类:
node 'docker.hzg.com' { include docker}编辑/etc/puppet/manifests/site.pp,加载docker节点的配置,增加这么一行:
import "nodes/docker.hzg.com.pp"
编辑/etc/puppet/fileserver.conf,授权docker对modules和files的访问,添加内容:
[files] path /etc/puppet/files allow docker.hzg.com# allow *.example.com# deny *.evil.example.com# allow 192.168.0.0/24[files] path /etc/puppet/modules allow *.hzg.com
编辑/etc/puppet/puppet.conf,在[main]那一段增加以下内容(可选):
modulepath = /etc/puppet/modules
PS:因为我使用puppet kick实现配置,要为agent做点配置工作:
agent上:
编辑puppet.conf,在[agent]那段增加以下内容(可选):
listen = true
实现配置:
master上:
root@workgroup:~# puppet kick docker.hzg.comWarning: Puppet kick is deprecated. See http://links.puppetlabs.com/puppet-kick-deprecationWarning: Failed to load ruby LDAP library. LDAP functionality will not be availableTriggering docker.hzg.comGetting statusstatus is successdocker.hzg.com finished with exit code 0Finished
因为我没有配置LDAP,所以有些警告内容。
检查docker节点上的信息:
root@docker:~# lsBACKUPDockerfile control.sh Dockerfile hzg.sh init.pp status.log test2.sh test.py util-linux-2.24root@docker:~# cd /var/log/dockerlaunch/root@docker:/var/log/dockerlaunch# lsweb1.log webbase.logroot@docker:/var/log/dockerlaunch# cd ~root@docker:~# docker psCONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES050ebb07cf25 training/webapp:latest "python app.py" About a minute ago Up About a minute 0.0.0.0:2000->5000/tcp web1 0ef5d56e4c89 training/webapp:latest "python app.py" About a minute ago Up About a minute 0.0.0.0:1000->5000/tcp web1/webbase,webbase
可以看到相应的东西都创建了。
关于"如何通过puppet管理远程docker容器并配置puppet和实现变更"这篇文章就分享到这里了,希望以上内容可以对大家有一定的帮助,使各位可以学到更多知识,如果觉得文章不错,请把它分享出去让更多的人看到。
配置
内容
节点
容器
管理
篇文章
脚本
更多
装好
准备
工作
不错
实用
一行
东西
信息
前提
文章
模块
目录
数据库的安全要保护哪些东西
数据库安全各自的含义是什么
生产安全数据库录入
数据库的安全性及管理
数据库安全策略包含哪些
海淀数据库安全审计系统
建立农村房屋安全信息数据库
易用的数据库客户端支持安全管理
连接数据库失败ssl安全错误
数据库的锁怎样保障安全
广东广电网络机顶盒服务器云主机
如何看账号的服务器
网络安全的微视频咋做
云服务器能不能安装c4d软件
服务器维修南昌
安卓系统需要几个软件开发人员
俄罗斯网络安全建设视频
局域网网络测试软件开发
怎样才能与服务器建立安全关系
更改数据库表提示保存不了
小程序能访问公众号数据库
无线网络安全问题及解决方法
rigup数据库安全吗
网络安全 重于泰山
蒲公英软件开发
58同城找服务器
青浦区口碑好软件开发诚信服务
服务器算发广播
linux 数据库
tcC语言软件开发工具
日本腾云服务器
服务器上架安装图
苏州企业通用阿里云服务器
河南工程学院数据库考试试卷
甘肃中职网络安全技能大赛
交通运输网络安全联盟
浙江数据库日志审计管理系统
邮件撤回成功到达对方服务器
自建轻量应用服务器
寄递业务四大数据库是指哪些
