保护企业私有云 创建Openstack yum 源操作示例
发布时间:2022-05-26 12:04:10 所属栏目:云计算 来源:互联网
导读:对于企业的 Openstack 私有云,出于安全和某些因素的考虑,有些服务器无法访问公网,导致服务器无法更新某些 RPM 包,同时内部常有 Openstack 新特性开发需求、版本的维护与升级,因此非常有必要构建企业私有的 openstack yum 源。 构建 openstack yum 源有
|
2.nginx配置: [root@yumserver wget-yum]# rpm -ivh http://nginx.org/packages/centos/6/noarch/RPMS/nginx-release-centos-6-0.el6.ngx.noarch.rpm [root@yumserver wget-yum]# yum -y install nginx [root@yumserver wget-yum]# vi /etc/nginx/nginx.conf 复制 <span style="color: rgb(69, 69, 69); font-family: Arial, sans-serif; font-size: 14px; line-height: 20px;">[root@yumserver wget-yum]# vi /etc/nginx/nginx.conf</span> user nginx; worker_processes 8; error_log /var/log/nginx/error.log warn; pid /var/run/nginx.pid; events { worker_connections 8192; } http { autoindex on; autoindex_exact_size off; autoindex_localtime on; charset utf-8,gbk; include /etc/nginx/mime.types; default_type application/octet-stream; log_format main '$remote_addr - $remote_user [$time_local] "$request" ' '$status $body_bytes_sent "$http_referer" ' '"$http_user_agent" "$http_x_forwarded_for"'; access_log /var/log/nginx/access.log main; sendfile on; keepalive_timeout 65; include /etc/nginx/conf.d/*.conf; } [root@yumserver wget-yum]# vi /etc/nginx/conf.d/default.conf server { listen 80; server_name openstack-yum-server.cn; location / { #root html; root /wget-yum; autoindex on; index index.html index.htm; } error_page 500 502 503 504 /50x.html; location = /50x.html { root /usr/share/nginx/html; } } [root@yumserver wget-yum]# /etc/init.d/nginx restart 3. release.rpm制作: (1).下载icehouse源码包: [root@yumserver ~]# wget https://repos.fedorapeople.org/repos/openstack/openstack-icehouse/rdo-release-icehouse-4.src.rpm (2).创建padraig用户和组: [root@yumserver ~]# groupadd -g 2000 padraig [root@yumserver ~]# useradd -u 2000 -g padraig -m padraig -d /home -s /bin/bash (3).解压rpm,并修改各个 .repo 文件的 url: [root@yumserver ~]# rpm -i rdo-release-icehouse-4.src.rpm 修改 .repo 文件,以 rdo-release.repo 为例 复制 [openstack-havana] name=OpenStack Havana Repository baseurl=http://openstack-yum-server.cn/openstack/openstack-havana/epel-6/ enabled=1 skip_if_unavailable=0 gpgcheck=0 gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-RDO-Havana priority=98 (4).修改 .spec 文件内容: [root@yumserver ~]# cd rpmbuild/ [root@yumserver rpmbuild]# SOURCES SPECS [root@yumserver ~]# cd SPECS [root@yumserver SPECS]# vi rdo-release.spec URL: https://github.com/redhat-openstack/rdo-release Source0: rdo-release.repo Source1: RPM-GPG-KEY-RDO-Icehouse Source2: foreman.repo Source3: RPM-GPG-KEY-foreman Source4: puppetlabs.repo Source5: RPM-GPG-KEY-puppetlabs Source6: epel.repo Source7: RPM-GPG-KEY-EPEL-6 %install install -p -D -m 644 %{SOURCE0} %{buildroot}%{_sysconfdir}/yum.repos.d/rdo-release.repo install -p -D -m 644 %{SOURCE2} %{buildroot}%{_sysconfdir}/yum.repos.d/foreman.repo install -p -D -m 644 %{SOURCE4} %{buildroot}%{_sysconfdir}/yum.repos.d/puppetlabs.repo install -p -D -m 644 %{SOURCE6} %{buildroot}%{_sysconfdir}/yum.repos.d/epel.repo #GPG Keys install -Dpm 644 %{SOURCE1} %{buildroot}%{_sysconfdir}/pki/rpm-gpg/RPM-GPG-KEY-RDO-Icehouse install -Dpm 644 %{SOURCE3} %{buildroot}%{_sysconfdir}/pki/rpm-gpg/RPM-GPG-KEY-foreman install -Dpm 644 %{SOURCE5} %{buildroot}%{_sysconfdir}/pki/rpm-gpg/RPM-GPG-KEY-puppetlabs install -Dpm 644 %{SOURCE7} %{buildroot}%{_sysconfdir}/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6 for repo in rdo-release foreman puppetlabs epel ; do (5).修改SOURCES文件内容,并增加相应文件: [root@yumserver SPECS]# cd ../SOURCES [root@yumserver SOURCES]# ls epel.repo foreman.repo puppetlabs.repo rdo-release.repo RPM-GPG-KEY-EPEL-6 RPM-GPG-KEY-foreman RPM-GPG-KEY-puppetlabs RPM-GPG-KEY-RDO-Icehouse (6).重新打包rpm: [root@yumserver SPECS]# yum -y install rpm-build [root@yumserver SPECS]# pwd /root/rpmbuild/SPECS [root@yumserver SPECS]# rpmbuild -ba rdo-release.spec (编辑:桂林站长网) 【声明】本站内容均来自网络,其相关言论仅代表作者个人观点,不代表本站立场。若无意侵犯到您的权利,请及时与联系站长删除相关内容! |
站长推荐