一、为不同的环境设置不同的文件目录
1.1 修改配置文件 /etc/salt/master
[root@node1 salt]# vim /etc/salt/master
file_roots: base: - /srv/salt/base dev: - /srv/salt/dev prod: - /srv/salt/prod
1.2 创建对应的文件夹
[root@node1 salt]# mkdir -p /srv/salt/{base,dev,prod}
1.3 重启服务
[root@node1 salt]# systemctl restart salt-master
二、文件管理
2.1准备入口文件
更改 base 环境的 dns 配置,首先在 base 文件夹下创建入口文件 top.sls
[root@node1 salt]# cd /srv/salt/base/
[root@node1 base]# vim top.sls
base:
'web1':
- dns_file
2.2 配置分发文件说明
[root@node1 base]# vim dns_file.sls
resolv_conf: file.managed: - name: /etc/resolv.conf - source: salt://files/resolv.conf - user: root - group: root - mode: 644
2.3 执行文件分发操作
[root@node1 base]# mkdir files
[root@node1 base]# vim files/resolv.conf
nameserver 8.8.8.8
2.4 测试
[root@node1 base]# salt '*' state.highstate saltenv=base test
web2: ---------- ID: states Function: no.None Result: False Comment: No Top file or master_tops data matches found. Changes: Summary for web2 ------------ Succeeded: 0 Failed: 1 ------------ Total states run: 1 Total run time: 0.000 ms web3: ---------- ID: states Function: no.None Result: False Comment: No Top file or master_tops data matches found. Changes: ………… web1: ---------- ID: resolv_conf Function: file.managed Name: /etc/resolv.conf Result: None Comment: The file /etc/resolv.conf is set to be changed Started: 17:33:30.626072 Duration: 48.745 ms Changes: ---------- diff: --- +++ @@ -1,3 +1 @@ -# Generated by NetworkManager -search localdomain -nameserver 172.25.254.2 +nameserver 8.8.8.8 Summary for web1 ------------ Succeeded: 1 (unchanged=1, changed=1) Failed: 0 ------------ Total states run: 1 Total run time: 48.745 ms
2.5 运行
[root@node1 base]# salt '*' state.highstate saltenv=base False
2.6 检测
[root@node1 base]# salt 'web1' cmd.run 'cat /etc/resolv.conf'
2.7 修改所有节点 的 resolv.conf 配置
给issue 文件追加内容
[root@node1 base]# vim top.sls
base: 'L@web1,web2,web3,db1,db2': - dns- issue - rpm_pkgs
[root@node1 base]# vim dns_file.sls
resolv_conf: file.managed: - name: /etc/resolv.conf - source: salt://files/resolv.conf - user: root - group: root - mode: 644 - template: jinja - defaults: DNS_IP: 192.168.113.254
[root@node1 base]# mkdir -p /srv/salt/base/files
[root@node1 base]# vim files/resolv.conf
nameserver 8.8.4.4
[root@node1 base]# vim issue.sls
issue_file: file.append: - name: /etc/issue - text: - Red Hat Enterprise Linux 7 - Tedu Ltd Server
[root@node1 base]# vim rpm_pkgs.sls
rpms: file.directory: - name: /opt/rpm_pkgs - user: root - group: root - dir_mode: 755 - file_mode: 644
[root@node1 base]# salt '*' state.highstate saltenv=base test=True
web1: ---------- ID: resolv_conf Function: file.managed Name: /etc/resolv.conf Result: None Comment: The file /etc/resolv.conf is set to be changed Started: 20:09:06.189301 Duration: 893.458 ms Changes: ---------- diff: --- +++ @@ -1,3 +1 @@ -# Generated by NetworkManager -search localdomain -nameserver 172.25.254.2 +nameserver 8.8.4.4 ---------- ID: issue_file Function: file.append Name: /etc/issue Result: None Comment: File /etc/issue is set to be updated Started: 20:09:07.082933 Duration: 2.67 ms Changes: ---------- diff: --- +++ @@ -1,3 +1,5 @@ S Kernel on an m +Red Hat Enterprise Linux 7 +Tedu Ltd Server ---------- ID: rpms Function: file.directory Name: /opt/rpm_pkgs Result: None Comment: The following files will be changed: /opt/rpm_pkgs: directory - new Started: 20:09:07.085724 Duration: 0.432 ms Changes: Summary for web1 ------------ Succeeded: 3 (unchanged=3, changed=2) Failed: 0 ------------ Total states run: 3 Total run time: 896.560 ms web2: ---------- ID: resolv_conf Function: file.managed Name: /etc/resolv.conf Result: None Comment: The file /etc/resolv.conf is set to be changed Started: 20:09:06.520386 Duration: 1121.741 ms Changes: ---------- diff: --- +++ @@ -1,3 +1 @@ -# Generated by NetworkManager -search localdomain -nameserver 172.25.254.2 +nameserver 8.8.4.4 ---------- ID: issue_file Function: file.append Name: /etc/issue Result: None Comment: File /etc/issue is set to be updated Started: 20:09:07.642292 Duration: 2.611 ms Changes: ---------- diff: --- +++ @@ -1,3 +1,5 @@ S Kernel on an m +Red Hat Enterprise Linux 7 +Tedu Ltd Server ---------- ID: rpms Function: file.directory Name: /opt/rpm_pkgs Result: None Comment: The following files will be changed: /opt/rpm_pkgs: directory - new Started: 20:09:07.645019 Duration: 0.426 ms Changes: Summary for web2 ------------ Succeeded: 3 (unchanged=3, changed=2) Failed: 0 ------------ Total states run: 3 Total run time: 1.125 s db1: ---------- ID: resolv_conf Function: file.managed Name: /etc/resolv.conf Result: None Comment: The file /etc/resolv.conf is set to be changed Started: 20:09:06.055239 Duration: 1069.927 ms Changes: ---------- diff: --- +++ @@ -1,4 +1 @@ -# Generated by NetworkManager -search localdomain -nameserver 192.168.2.1 -nameserver 172.25.254.2 +nameserver 8.8.4.4 ---------- ID: issue_file Function: file.append Name: /etc/issue Result: None Comment: File /etc/issue is set to be updated Started: 20:09:07.125304 Duration: 2.857 ms Changes: ---------- diff: --- +++ @@ -1,3 +1,5 @@ S Kernel on an m +Red Hat Enterprise Linux 7 +Tedu Ltd Server ---------- ID: rpms Function: file.directory Name: /opt/rpm_pkgs Result: None Comment: The following files will be changed: /opt/rpm_pkgs: directory - new Started: 20:09:07.128287 Duration: 0.441 ms Changes: Summary for db1 ------------ Succeeded: 3 (unchanged=3, changed=2) Failed: 0 ------------ Total states run: 3 Total run time: 1.073 s web3: ---------- ID: resolv_conf Function: file.managed Name: /etc/resolv.conf Result: None Comment: The file /etc/resolv.conf is set to be changed Started: 20:09:06.368308 Duration: 915.69 ms Changes: ---------- diff: --- +++ @@ -1,3 +1 @@ -# Generated by NetworkManager -search localdomain -nameserver 172.25.254.2 +nameserver 8.8.4.4 ---------- ID: issue_file Function: file.append Name: /etc/issue Result: None Comment: File /etc/issue is set to be updated Started: 20:09:07.284136 Duration: 3.062 ms Changes: ---------- diff: --- +++ @@ -1,3 +1,5 @@ S Kernel on an m +Red Hat Enterprise Linux 7 +Tedu Ltd Server ---------- ID: rpms Function: file.directory Name: /opt/rpm_pkgs Result: None Comment: The following files will be changed: /opt/rpm_pkgs: directory - new Started: 20:09:07.287324 Duration: 0.45 ms Changes: Summary for web3 ------------ Succeeded: 3 (unchanged=3, changed=2) Failed: 0 ------------ Total states run: 3 Total run time: 919.202 ms db2: ---------- ID: resolv_conf Function: file.managed Name: /etc/resolv.conf Result: None Comment: The file /etc/resolv.conf is set to be changed Started: 20:09:06.578547 Duration: 493.823 ms Changes: ---------- diff: --- +++ @@ -1,3 +1 @@ -# Generated by NetworkManager -search localdomain -nameserver 172.25.254.2 +nameserver 8.8.4.4 ---------- ID: issue_file Function: file.append Name: /etc/issue Result: None Comment: File /etc/issue is set to be updated Started: 20:09:07.072509 Duration: 2.762 ms Changes: ---------- diff: --- +++ @@ -1,3 +1,5 @@ S Kernel on an m +Red Hat Enterprise Linux 7 +Tedu Ltd Server ---------- ID: rpms Function: file.directory Name: /opt/rpm_pkgs Result: None Comment: The following files will be changed: /opt/rpm_pkgs: directory - new Started: 20:09:07.075408 Duration: 0.423 ms Changes: Summary for db2 ------------ Succeeded: 3 (unchanged=3, changed=2) Failed: 0 ------------ Total states run: 3 Total run time: 497.008 ms
[root@node1 base]# salt '*' state.highstate saltenv=base test=False
[root@node1 base]# salt '*' cmd.run 'cat /etc/resolv.conf'
[root@node1 base]# salt '*' cmd.run 'ls -l /opt/'
[root@node1 base]# salt '*' cmd.run "cat /etc/issue |grep -A 2 Red"
三、配置项目
配置history命令显示时间
配置系统内核参数 net.ipv4.ip_forward 打开路由转发
创建用户zhang3
设置初始化密码为123456
配置用户初次登陆必须修改密码
3.1 配置top.sls
[root@node1 base]# vim top.sls
base: 'L@web1,web2,web3,db1,db2': - init/history - init/sysctl - init/add_user
3.2 配置history.sls
[root@node1 base]# vim init/history.sls
history_file: file.append: - name: /etc/profile - text: - export HISTORYFORMAT="[%F_%T]:"
3.3 配置sysctl.sls
[root@node1 base]# vim init/sysctl.sls
net_ipv4.ip_forward: sysctl.present: - value: 1
3.4 配置add_user.sls
[root@node1 base]# vim init/add_user.sls
useradd zhang3: #添加用户 cmd.run: - unless: id zhang3 echo 123456|passwd --stdin root: #修改密碼 cmd.run: - onlyif: id zhang3 chage -d0 zhang3: #设置初次登录修改密码策略 cmd.run: - onlyif: id zhang3
3.5 测试
[root@node1 base]# salt '*' state.highstate saltenv=base test=True
web2: ---------- ID: history_file Function: file.append Name: /etc/profile Result: None Comment: File /etc/profile is set to be updated Started: 20:53:48.826389 Duration: 6.303 ms Changes: ---------- diff: --- +++ @@ -74,3 +74,4 @@ unset i unset -f pathmunge +export HISTORYFORMAT="[%F_%T]:" ---------- ID: net_ipv4.ip_forward Function: sysctl.present Result: None Comment: Sysctl option net_ipv4.ip_forward might be changed, we failed to check config file at /etc/sysctl.d/99-salt.conf. The file is either unreadable, or missing. Started: 20:53:48.834509 Duration: 444.162 ms Changes: ---------- ID: useradd_zhang3 Function: cmd.run Result: None Comment: Command "useradd_zhang3" would have been executed Started: 20:53:49.279489 Duration: 21.675 ms Changes: ---------- ID: echo 123456|passwd --stdin root Function: cmd.run Result: True Comment: onlyif execution failed Started: 20:53:49.301337 Duration: 8.862 ms Changes: ---------- ID: chage -d0 zhang3 Function: cmd.run Result: True Comment: onlyif execution failed Started: 20:53:49.310391 Duration: 8.55 ms Changes: Summary for web2 ------------ Succeeded: 5 (unchanged=3, changed=1) Failed: 0 ------------ Total states run: 5 Total run time: 489.552 ms web3: ---------- ID: history_file Function: file.append Name: /etc/profile Result: None Comment: File /etc/profile is set to be updated Started: 20:53:49.189855 Duration: 7.214 ms Changes: ---------- diff: --- +++ @@ -74,3 +74,4 @@ unset i unset -f pathmunge +export HISTORYFORMAT="[%F_%T]:" ---------- ID: net_ipv4.ip_forward Function: sysctl.present Result: None Comment: Sysctl option net_ipv4.ip_forward might be changed, we failed to check config file at /etc/sysctl.d/99-salt.conf. The file is either unreadable, or missing. Started: 20:53:49.198787 Duration: 47.317 ms Changes: ---------- ID: useradd_zhang3 Function: cmd.run Result: None Comment: Command "useradd_zhang3" would have been executed Started: 20:53:49.247100 Duration: 8.712 ms Changes: ---------- ID: echo 123456|passwd --stdin root Function: cmd.run Result: True Comment: onlyif execution failed Started: 20:53:49.255980 Duration: 10.439 ms Changes: ---------- ID: chage -d0 zhang3 Function: cmd.run Result: True Comment: onlyif execution failed Started: 20:53:49.266583 Duration: 15.065 ms Changes: Summary for web3 ------------ Succeeded: 5 (unchanged=3, changed=1) Failed: 0 ------------ Total states run: 5 Total run time: 88.747 ms db1: ---------- ID: history_file Function: file.append Name: /etc/profile Result: None Comment: File /etc/profile is set to be updated Started: 20:53:49.934751 Duration: 6.928 ms Changes: ---------- diff: --- +++ @@ -74,3 +74,4 @@ unset i unset -f pathmunge +export HISTORYFORMAT="[%F_%T]:" ---------- ID: net_ipv4.ip_forward Function: sysctl.present Result: None Comment: Sysctl option net_ipv4.ip_forward might be changed, we failed to check config file at /etc/sysctl.d/99-salt.conf. The file is either unreadable, or missing. Started: 20:53:49.943448 Duration: 572.594 ms Changes: ---------- ID: useradd_zhang3 Function: cmd.run Result: None Comment: Command "useradd_zhang3" would have been executed Started: 20:53:50.516913 Duration: 7.899 ms Changes: ---------- ID: echo 123456|passwd --stdin root Function: cmd.run Result: True Comment: onlyif execution failed Started: 20:53:50.524982 Duration: 8.226 ms Changes: ---------- ID: chage -d0 zhang3 Function: cmd.run Result: True Comment: onlyif execution failed Started: 20:53:50.533404 Duration: 8.202 ms Changes: Summary for db1 ------------ Succeeded: 5 (unchanged=3, changed=1) Failed: 0 ------------ Total states run: 5 Total run time: 603.849 ms web1: ---------- ID: history_file Function: file.append Name: /etc/profile Result: None Comment: File /etc/profile is set to be updated Started: 20:53:52.297910 Duration: 6.668 ms Changes: ---------- diff: --- +++ @@ -74,3 +74,4 @@ unset i unset -f pathmunge +export HISTORYFORMAT="[%F_%T]:" ---------- ID: net_ipv4.ip_forward Function: sysctl.present Result: None Comment: Sysctl option net_ipv4.ip_forward might be changed, we failed to check config file at /etc/sysctl.d/99-salt.conf. The file is either unreadable, or missing. Started: 20:53:52.306369 Duration: 149.86 ms Changes: ---------- ID: useradd_zhang3 Function: cmd.run Result: None Comment: Command "useradd_zhang3" would have been executed Started: 20:53:52.457076 Duration: 9.451 ms Changes: ---------- ID: echo 123456|passwd --stdin root Function: cmd.run Result: True Comment: onlyif execution failed Started: 20:53:52.466704 Duration: 8.66 ms Changes: ---------- ID: chage -d0 zhang3 Function: cmd.run Result: True Comment: onlyif execution failed Started: 20:53:52.475542 Duration: 9.109 ms Changes: Summary for web1 ------------ Succeeded: 5 (unchanged=3, changed=1) Failed: 0 ------------ Total states run: 5 Total run time: 183.748 ms db2: ---------- ID: history_file Function: file.append Name: /etc/profile Result: None Comment: File /etc/profile is set to be updated Started: 20:53:50.796859 Duration: 7.861 ms Changes: ---------- diff: --- +++ @@ -74,3 +74,4 @@ unset i unset -f pathmunge +export HISTORYFORMAT="[%F_%T]:" ---------- ID: net_ipv4.ip_forward Function: sysctl.present Result: None Comment: Sysctl option net_ipv4.ip_forward might be changed, we failed to check config file at /etc/sysctl.d/99-salt.conf. The file is either unreadable, or missing. Started: 20:53:50.806454 Duration: 219.199 ms Changes: ---------- ID: useradd_zhang3 Function: cmd.run Result: None Comment: Command "useradd_zhang3" would have been executed Started: 20:53:51.026499 Duration: 10.024 ms Changes: ---------- ID: echo 123456|passwd --stdin root Function: cmd.run Result: True Comment: onlyif execution failed Started: 20:53:51.036731 Duration: 166.817 ms Changes: ---------- ID: chage -d0 zhang3 Function: cmd.run Result: True Comment: onlyif execution failed Started: 20:53:51.203873 Duration: 11.691 ms Changes: Summary for db2 ------------ Succeeded: 5 (unchanged=3, changed=1) Failed: 0 ------------ Total states run: 5 Total run time: 415.592 ms
3.6 运行检测
[root@node1 base]# salt '*' state.highstate saltenv=base test=False
web1: ---------- ID: history_file Function: file.append Name: /etc/profile Result: True Comment: File /etc/profile is in correct state Started: 20:59:02.816332 Duration: 6.71 ms Changes: ---------- ID: net.ipv4.ip_forward Function: sysctl.present Result: True Comment: Sysctl value net.ipv4.ip_forward = 1 is already set Started: 20:59:02.824619 Duration: 119.326 ms Changes: ---------- ID: useradd zhang3 Function: cmd.run Result: True Comment: Command "useradd zhang3" run Started: 20:59:02.944856 Duration: 238.726 ms Changes: ---------- pid: 15438 retcode: 0 stderr: stdout: ---------- ID: echo 123456|passwd --stdin root Function: cmd.run Result: True Comment: Command "echo 123456|passwd --stdin root" run Started: 20:59:03.183785 Duration: 441.791 ms Changes: ---------- pid: 15445 retcode: 0 stderr: stdout: Changing password for user root. passwd: all authentication tokens updated successfully. ---------- ID: chage -d0 zhang3 Function: cmd.run Result: True Comment: Command "chage -d0 zhang3" run Started: 20:59:03.625769 Duration: 142.791 ms Changes: ---------- pid: 15461 retcode: 0 stderr: stdout: Summary for web1 ------------ Succeeded: 5 (changed=3) Failed: 0 ------------ Total states run: 5 Total run time: 949.344 ms web2: ---------- ID: history_file Function: file.append Name: /etc/profile Result: True Comment: File /etc/profile is in correct state Started: 20:59:03.052625 Duration: 6.965 ms Changes: ---------- ID: net.ipv4.ip_forward Function: sysctl.present Result: True Comment: Sysctl value net.ipv4.ip_forward = 1 is already set Started: 20:59:03.061223 Duration: 31.778 ms Changes: ---------- ID: useradd zhang3 Function: cmd.run Result: True Comment: Command "useradd zhang3" run Started: 20:59:03.094172 Duration: 898.344 ms Changes: ---------- pid: 15102 retcode: 0 stderr: stdout: ---------- ID: echo 123456|passwd --stdin root Function: cmd.run Result: True Comment: Command "echo 123456|passwd --stdin root" run Started: 20:59:03.992757 Duration: 285.178 ms Changes: ---------- pid: 15136 retcode: 0 stderr: stdout: Changing password for user root. passwd: all authentication tokens updated successfully. ---------- ID: chage -d0 zhang3 Function: cmd.run Result: True Comment: Command "chage -d0 zhang3" run Started: 20:59:04.278136 Duration: 200.56 ms Changes: ---------- pid: 15143 retcode: 0 stderr: stdout: Summary for web2 ------------ Succeeded: 5 (changed=3) Failed: 0 ------------ Total states run: 5 Total run time: 1.423 s db2: ---------- ID: history_file Function: file.append Name: /etc/profile Result: True Comment: File /etc/profile is in correct state Started: 20:59:01.635525 Duration: 6.95 ms Changes: ---------- ID: net.ipv4.ip_forward Function: sysctl.present Result: True Comment: Sysctl value net.ipv4.ip_forward = 1 is already set Started: 20:59:01.645388 Duration: 411.074 ms Changes: ---------- ID: useradd zhang3 Function: cmd.run Result: True Comment: Command "useradd zhang3" run Started: 20:59:02.057348 Duration: 1223.669 ms Changes: ---------- pid: 14948 retcode: 0 stderr: stdout: ---------- ID: echo 123456|passwd --stdin root Function: cmd.run Result: True Comment: Command "echo 123456|passwd --stdin root" run Started: 20:59:03.281214 Duration: 1104.784 ms Changes: ---------- pid: 14957 retcode: 0 stderr: stdout: Changing password for user root. passwd: all authentication tokens updated successfully. ---------- ID: chage -d0 zhang3 Function: cmd.run Result: True Comment: Command "chage -d0 zhang3" run Started: 20:59:04.386271 Duration: 41.183 ms Changes: ---------- pid: 14965 retcode: 0 stderr: stdout: Summary for db2 ------------ Succeeded: 5 (changed=3) Failed: 0 ------------ Total states run: 5 Total run time: 2.788 s web3: ---------- ID: history_file Function: file.append Name: /etc/profile Result: True Comment: File /etc/profile is in correct state Started: 20:59:03.435729 Duration: 6.858 ms Changes: ---------- ID: net.ipv4.ip_forward Function: sysctl.present Result: True Comment: Sysctl value net.ipv4.ip_forward = 1 is already set Started: 20:59:03.444273 Duration: 31.748 ms Changes: ---------- ID: useradd zhang3 Function: cmd.run Result: True Comment: Command "useradd zhang3" run Started: 20:59:03.477440 Duration: 376.603 ms Changes: ---------- pid: 14825 retcode: 0 stderr: stdout: ---------- ID: echo 123456|passwd --stdin root Function: cmd.run Result: True Comment: Command "echo 123456|passwd --stdin root" run Started: 20:59:03.854320 Duration: 988.137 ms Changes: ---------- pid: 14832 retcode: 0 stderr: stdout: Changing password for user root. passwd: all authentication tokens updated successfully. ---------- ID: chage -d0 zhang3 Function: cmd.run Result: True Comment: Command "chage -d0 zhang3" run Started: 20:59:04.842672 Duration: 616.962 ms Changes: ---------- pid: 14839 retcode: 0 stderr: stdout: Summary for web3 ------------ Succeeded: 5 (changed=3) Failed: 0 ------------ Total states run: 5 Total run time: 2.020 s db1: ---------- ID: history_file Function: file.append Name: /etc/profile Result: True Comment: File /etc/profile is in correct state Started: 20:59:04.695357 Duration: 6.211 ms Changes: ---------- ID: net.ipv4.ip_forward Function: sysctl.present Result: True Comment: Sysctl value net.ipv4.ip_forward = 1 is already set Started: 20:59:04.703099 Duration: 268.77 ms Changes: ---------- ID: useradd zhang3 Function: cmd.run Result: True Comment: Command "useradd zhang3" run Started: 20:59:04.973150 Duration: 274.212 ms Changes: ---------- pid: 14525 retcode: 0 stderr: stdout: ---------- ID: echo 123456|passwd --stdin root Function: cmd.run Result: True Comment: Command "echo 123456|passwd --stdin root" run Started: 20:59:05.247554 Duration: 257.399 ms Changes: ---------- pid: 14531 retcode: 0 stderr: stdout: Changing password for user root. passwd: all authentication tokens updated successfully. ---------- ID: chage -d0 zhang3 Function: cmd.run Result: True Comment: Command "chage -d0 zhang3" run Started: 20:59:05.505137 Duration: 144.971 ms Changes: ---------- pid: 14538 retcode: 0 stderr: stdout: Summary for db1 ------------ Succeeded: 5 (changed=3) Failed: 0 ------------ Total states run: 5 Total run time: 951.563 ms
[root@node1 base]# salt '*' cmd.run 'id zhang3'
[root@node1 base]# salt '*' cmd.run 'sysctl -a|grep "net.ipv4.ip_forward = 1"'
四、 源码安裝nginx
使用Dev环境
编译源码安装步骤
由于 nginx 源码安装是一个独立工作,我们建立一个项目
4.1 创建项目
[root@node1 dev]# mkdir initpkg
[root@node1 dev]# vim initpkg/pkg_install.sls
init_pkg_install: pkg.installed: - names: - gcc - gcc-c++ - make - autoconf - openssl-devel - pcre-devel
4.2 安装依赖包 initpkg.sls
[root@node1 dev]# mkdir initpkg
[root@node1 dev]# vim initpkg/install.sls
init-pkg-install: pkg.installed: - names: - gcc - gcc-c++ - make - autoconf - openssl - openssl-devel - lsof - tree - lrzsz
4.3 源码编译安装 pcre
[root@node1 dev]# mkdir pcre
[root@node1 dev]# vim pcre/install.sls
include: - initpkg.install pcre-source-install: file.managed: - name: /usr/local/src/pcre-8.38.tar.gz - source: salt://pcre/files/pcre-8.38.tar.gz - user: root - group: root - mode: 755 cmd.run: - name: cd /usr/local/src && tar xf pcre-8.38.tar.gz && cd pcre-8.38 && ./configure --prefix=/usr/local/pcre && make && make install - unless: test -d /usr/local/pcre - reuqire: - file: pcre-source-install
4.4 编译安装nginx
[root@node1 dev]# mkdir nginx
[root@node1 dev]# vim nginx/install.sls
include: - initpkg.install - pcre.install nginx-source-install: file.managed: - name: /usr/local/src/nginx-1.12.2.tar.gz - source: salt://nginx/files/nginx-1.12.2.tar.gz - user: root - group: root - mode: 755 cmd.run: - name: cd /usr/local/src && tar xf nginx-1.12.2.tar.gz && cd nginx-1.12.2 && ./configure --prefix=/usr/local/nginx --with-http_ssl_module --with-http_stub_status_module --with-file-aio --with-http_dav_module --with-pcre=/usr/local/src/pcre-8.38 && make && make install - unless: test -d /usr/local/nginx - require: - file: nginx-source-install - pkg: init-pkg-install - file: pcre-source-install nginx-init: file.managed: - name: /etc/init.d/nginx - source: salt://nginx/files/nginx - user: root - group: root - mode: 755 cmd.run: - name: chkconfig --add nginx - unless: chkconfig --list |grep nginx - reuqire: - cmd: nginx-source-install - file: nginx-init
4.5 配置top
[root@node1 dev]# vim top.sls
[root@node1 dev]# cd nginx/
[root@node1 nginx]# mkdir files
[root@node1 nginx]# cd files/
4.6 下载包
[root@node1 files]# ll
-rw-r--r--. 1 root root 1936 Apr 3 22:28 nginx -rw-r--r--. 1 root root 981687 Oct 17 2017 nginx-1.12.2.tar.gz
[root@node1 files]# cd ../../pcre/
[root@node1 pcre]# mkdir files
[root@node1 pcre]# cd files
[root@node1 files]# ll
[root@node1 files]# vim nginx
#!/bin/sh # # nginx - this script starts and stops the nginx daemin # # chkconfig: - 85 15 # description: Nginx is an HTTP(S) server, HTTP(S) reverse # proxy and IMAP/POP3 proxy server # processname: nginx # config: /usr/local/nginx/conf/nginx.conf # pidfile: /usr/local/nginx/logs/nginx.pid # Source function library. . /etc/rc.d/init.d/functions # Source networking configuration. . /etc/sysconfig/network # Check that networking is up. [ "$NETWORKING" = "no" ] && exit 0 nginx="/usr/local/nginx/sbin/nginx" prog=$(basename $nginx) NGINX_CONF_FILE="/usr/local/nginx/conf/nginx.conf" lockfile=/var/lock/subsys/nginx start() { [ -x $nginx ] || exit 5 [ -f $NGINX_CONF_FILE ] || exit 6 echo -n $"Starting $prog: " daemon $nginx -c $NGINX_CONF_FILE retval=$? echo [ $retval -eq 0 ] && touch $lockfile return $retval } stop() { echo -n $"Stopping $prog: " killproc $prog -QUIT retval=$? echo [ $retval -eq 0 ] && rm -f $lockfile return $retval } restart() { configtest || return $? stop start } reload() { configtest || return $? echo -n $"Reloading $prog: " killproc $nginx -HUP RETVAL=$? echo } force_reload() { restart } configtest() { $nginx -t -c $NGINX_CONF_FILE } rh_status() { status $prog } rh_status_q() { rh_status >/dev/null 2>&1 } case "$1" in start) rh_status_q && exit 0 $1 ;; stop) rh_status_q || exit 0 $1 ;; restart|configtest) $1 ;; reload) rh_status_q || exit 7 $1 ;; force-reload) force_reload ;; status) rh_status ;; condrestart|try-restart) rh_status_q || exit 0 ;; *) echo $"Usage: $0 {start|stop|status|restart|condrestart|try-restart|reload|force-reload|configtest}" exit 2 esac
4.7 检测
[root@node1 dev]# tree
. ├── initpkg │ └── install.sls ├── nginx │ ├── files │ │ ├── nginx │ │ └── nginx-1.12.2.tar.gz │ └── install.sls ├── pcre │ ├── files │ │ └── pcre-8.38.tar.gz │ └── install.sls └── top.sls 5 directories, 7 files
4.8 测试
[root@node1 files]# salt 'web1' state.highstate env=dev test
4.9 运行
[root@node1 files]# salt 'web1' state.highstate env=dev test=False
ID: nginx-init Function: file.managed Name: /etc/init.d/nginx Result: True Comment: File /etc/init.d/nginx updated Started: 22:39:24.379206 Duration: 68.116 ms Changes: ---------- diff: New file mode: 0755 ---------- ID: nginx-init Function: cmd.run Name: chkconfig --add nginx Result: True Comment: Command "chkconfig --add nginx" run Started: 22:39:24.447622 Duration: 81.706 ms Changes: ---------- pid: 34327 retcode: 0 stderr: stdout: Summary for web1 ------------- Succeeded: 15 (changed=13) Failed: 0 ------------- Total states run: 15 Total run time: 449.603 s
检测
[root@node1 dev]# salt 'web1' cmd.run 'ls -l /usr/local/nginx' web1: total 4 drwxr-xr-x. 2 root root 4096 Apr 3 22:39 conf drwxr-xr-x. 2 root root 40 Apr 3 22:39 html drwxr-xr-x. 2 root root 6 Apr 3 22:39 logs drwxr-xr-x. 2 root root 19 Apr 3 22:39 sbin
4.10 启动
[root@node1 dev]# salt 'web1' cmd.run 'systemctl restart nginx' web1: [root@node1 dev]# salt 'web1' cmd.run 'netstat -ntlp|grep nginx' web1: tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 35214/nginx: master
访问成功
