-e5651c91ea8f4875ab4272337398cabe.JPG)
用saltstack搭建lamp架构
查看整体文件结构:
[root@master prod]# tree
.
├── modules
│ ├── application
│ │ └── php
│ │ ├── files
│ │ │ ├── init.d.php-fpm
│ │ │ ├── ins-oniguruma.sh
│ │ │ ├── install.sh
│ │ │ ├── oniguruma-6.9.4.tar.gz
│ │ │ ├── php-7.4.25.tar.gz
│ │ │ ├── php-fpm.conf.default
│ │ │ ├── php-fpm.service
│ │ │ ├── php.ini-production
│ │ │ └── www.conf.default
│ │ └── install.sls
│ ├── database
│ │ └── mysql
│ │ ├── files
│ │ │ ├── my.cnf
│ │ │ ├── mysql-5.7.35-linux-glibc2.12-x86_64.tar.gz
│ │ │ ├── mysqld.service
│ │ │ ├── mysqld.sh
│ │ │ └── mysql.server
│ │ └── install.sls
│ └── web
│ └── apache
│ ├── files
│ │ ├── apr-1.7.0.tar.gz
│ │ ├── apr-util-1.6.1.tar.gz
│ │ ├── httpd-2.4.48.tar.gz
│ │ ├── httpd.conf
│ │ ├── httpd.service
│ │ └── install.sh
│ └── install.sls
└── zabbix
├── apache.sls
├── files
│ ├── index.php
│ ├── install.sh
│ ├── my.cnf
│ ├── mysql.conf
│ ├── rc.local
│ ├── start.sh
│ ├── vhosts.conf
│ ├── zabbix-5.4.4.tar.gz
│ ├── zabbix_agentd.service
│ ├── zabbix_server.conf
│ └── zabbix_server.service
├── main.sls
├── mysql.sls
└── zabbix.sls
编写 apache
install.sls文件:
[root@master apache]# pwd
/srv/salt/prod/modules/web/apache
[root@master apache]# vim install.sls
[root@master modules]# cat install.sls
"Development Tools":
pkg.group_installed
httpd-dep-pakcgae:
pkg.installed:
- pkgs:
- openssl-devel
- pcre-devel
- expat-devel
- libtool
- gcc
- gcc-c++
- make
create-user-apache:
user.present:
- name: apache
- createhome: false
- system: true
- shell: /sbin/nologin
copy-software-apache-pkg:
file.managed:
- names:
- /usr/src/apr-1.7.0.tar.gz:
- source: salt://modules/web/apache/files/apr-1.7.0.tar.gz
- /usr/src/apr-util-1.6.1.tar.gz:
- source: salt://modules/web/apache/files/apr-util-1.6.1.tar.gz
- /usr/src/httpd-2.4.48.tar.gz:
- source: salt://modules/web/apache/files/httpd-2.4.48.tar.gz
salt://modules/web/apache/files/install.sh:
cmd.script
/usr/local/apache/conf/httpd.conf:
file.managed:
- source: salt://modules/web/apache/files/httpd.conf
- user: root
- group: root
- mode: '0644'
/usr/lib/systemd/system/httpd.service:
file.managed:
- source: salt://modules/web/apache/files/httpd.service
- user: root
- group: root
- mode: '0644'
[root@master zabbix]# pwd
/srv/salt/prod/zabbix
[root@master zabbix]# vim apache.sls
[root@master zabbix]# cat apache.sls
include:
- modules.web.apache.install
/usr/include/httpd:
file.symlink:
- target: .usr/local/apache/include
/usr/local/apache/htdocs/zabbix:
file.directory:
- user: root
- group: root
- mode: '0755'
- makedirs: true
/usr/local/apache/conf/extra/vhosts.conf:
file.managed:
- source: salt://zabbix/files/vhosts.conf
- user: root
- group: root
- mode: '0644'
/usr/local/apache/htdocs/zabbix/index.php:
file.managed:
- source: salt://zabbix/files/index.php
- user: root
- group: root
- mode: '0644'
httpd.service:
service.running:
- enable: true
install.sh文件:
[root@master files]# vim install.sh
[root@master files]# cat install.sh
#!/bin/bash
cd /usr/src
rm -rf apr-1.7.0 apr-util-1.6.1 httpd-2.4.48
tar xf apr-1.7.0.tar.gz
tar xf apr-util-1.6.1.tar.gz
tar xf httpd-2.4.48.tar.gz
cd apr-1.7.0
sed -i '/$RM "$cfgfile"/d' configure
./configure --prefix=/usr/local/apr && \
make && make install && \
cd ../apr-util-1.6.1
./configure --prefix=/usr/local/apr-util --with-apr=/usr/local/apr && \
make && make install && \
cd ../httpd-2.4.48
./configure --prefix=/usr/local/apache \
--enable-so \
--enable-ssl \
--enable-cgi \
--enable-rewrite \
--with-zlib \
--with-pcre \
--with-apr=/usr/local/apr \
--with-apr-util=/usr/local/apr-util/ \
--enable-modules=most \
--enable-mpms-shared=all \
--with-mpm=prefork && \
make && make install
httpd.service文件:
[root@master files]# vim httpd.service
[root@master files]# cat httpd.service
[Unit]
Description=httpd server daemon
After=network.target
[Service]
Type=forking
ExecStart=/usr/local/apache/bin/apachectl start
ExecStop=/usr/local/apache/bin/apachectl stop
ExecReload=/bin/kill -HUP $MAINPID
[Install]
WantedBy=multi-user.target
编写 mysql
[root@master mysql]# vim install.sls
[root@master mysql]# cat install.sls
ncurses-compat-libs:
pkg.installed
mysql:
user.present:
- system: true
- createhome: false
- shell: /sbin/nologin
/usr/local:
archive.extracted:
- source: salt://modules/database/mysql/files/mysql-5.7.35-linux-glibc2.12-x86_64.tar.gz
file.symlink:
- name: /usr/local/mysql
- target: /usr/local/mysql-5.7.35-linux-glibc2.12-x86_64
/usr/local/mysql:
file.directory:
- user: mysql
- group: mysql
- mode: '0755'
- recurse:
- user
- group
/opt/data:
file.directory:
- user: mysql
- group: mysql
- mode: '0755'
- makedirs: true
- recurse:
- user
- group
/etc/profile.d/mysqld.sh:
file.managed:
- source: salt://modules/database/mysql/files/mysqld.sh
- user: root
- group: root
- mode: '0755'
/usr/local/mysql/support-files/mysql.server:
file.managed:
- source: salt://modules/database/mysql/files/mysql.server
- user: mysql
- group: mysql
- mode: '0755'
/usr/lib/systemd/system/mysqld.service:
file.managed:
- source: salt://modules/database/mysql/files/mysqld.service
- user: root
- group: root
- mode: '0644'
mysql-initialize:
cmd.run:
- name: '/usr/local/mysql/bin/mysqld --initialize-insecure --user=mysql --datadir=/opt/data/'
[root@master zabbix]# pwd
/srv/salt/prod/zabbix
[root@master zabbix]# vim mysql.sls
[root@master zabbix]# cat mysql.sls
include:
- modules.database.mysql.install
lamp-dep-package:
pkg.installed:
- pkgs:
- ncurses-devel
- openssl-devel
- openssl
- cmake
- mariadb-devel
/usr/local/include/mysql:
file.symlink:
- target: /usr/local/mysql/include
/etc/ld.so.conf.d/mysql.conf:
file.managed:
- source: salt://zabbix/files/mysql.conf
- user: root
- group: root
- mode: '0644'
/etc/my.cnf:
file.managed:
- source: salt://zabbix/files/my.cnf
- user: root
- group: root
- mode: '0644'
mysqld.service:
service.running:
- enable: true
set-password-mysql:
cmd.run:
- name: /usr/local/mysql/bin/mysql -e "set password = password('123456');"
编写 php
[root@master php]# pwd
/srv/salt/prod/modules/application/php
[root@master php]# vim install.sls
[root@master php]# cat install.sls
/tmp/oniguruma-devel-6.8.2-2.el8.x86_64.rpm:
file.managed:
- source: salt://modules/application/php/files/oniguruma-devel-6.8.2-2.el8.x86_64.rpm
- user: root
- group: root
- mode: '0644'
cmd.run:
- name: yum -y install /tmp/oniguruma-devel-6.8.2-2.el8.x86_64.rpm
php-dep-package:
pkg.installed:
- pkgs:
- libzip
- libzip-devel
- libxml2
- libxml2-devel
- libsqlite3x-devel
- openssl
- openssl-devel
- bzip2
- bzip2-devel
- libcurl
- libcurl-devel
- libicu-devel
- libjpeg-turbo
- libjpeg-turbo-devel
- libpng
- libpng-devel
- openldap-devel
- pcre-devel
- freetype
- freetype-devel
- gmp
- gmp-devel
- libmcrypt
- libmcrypt-devel
- readline
- readline-devel
- libxslt
- libxslt-devel
- mhash
- mhash-devel
- php-mysqlnd
/usr/src:
archive.extracted:
- source: salt://modules/application/php/files/php-7.4.25.tar.gz
salt://modules/application/php/files/install.sh:
cmd.script
copy-file-php:
file.managed:
- names:
- /usr/local/php7/etc/php-fpm.conf:
- source: salt://modules/application/php/files/php-fpm.conf.default
- /usr/local/php7/etc/php-fpm.d/www.conf:
- source: salt://modules/application/php/files/www.conf.default
- /etc/php.ini:
- source: salt://modules/application/php/files/php.ini-production
- /etc/init.d/php-fpm:
- source: salt://modules/application/php/files/init.d.php-fpm
- user: root
- group: root
- mode: '0755'
- /usr/lib/systemd/system/php-fpm.service:
- source: salt://modules/application/php/files/php-fpm.service
php-fpm.service:
service.running:
- enable: true
编写总执行文件:
[root@master zabbix]# pwd
/srv/salt/prod/zabbix
[root@master zabbix]# vim main.sls
[root@master zabbix]# cat main.sls
include:
- zabbix.apache
- zabbix.mysql
- modules.application.php.install
最后执行:
[root@master zabbix]# salt 'node1' state.sls zabbix.main saltenv=prod
//node1上查看端口
[root@node1 ~]# ss -anlt
State Recv-Q Send-Q Local Address:Port Peer Address:Port
LISTEN 0 128 127.0.0.1:9000 0.0.0.0:*
LISTEN 0 128 0.0.0.0:22 0.0.0.0:*
LISTEN 0 80 *:3306 *:*
LISTEN 0 128 *:80 *:*
LISTEN 0 128 [::]:22 [::]:*
效果图:
编写 zabbix 状态文件
[root@master zabbix]# vim zabbix.sls
[root@master zabbix]# cat zabbix.sls
zabbix-dep-package:
pkg.installed:
- pkgs:
- net-snmp-devel
- libevent-devel
zabbix:
user.present:
- system: true
- createhome: false
- shell: /sbin/nologin
/usr/src:
archive.extracted:
- source: salt://zabbix/files/zabbix-5.4.4.tar.gz
zabbix-install:
cmd.script:
- name: salt://zabbix/files/install.sh
/usr/local/etc/zabbix_server.conf:
file.managed:
- source: salt://zabbix/files/zabbix_server.conf
/var/lib/mysql:
file.directory:
- user: root
- group: root
- mode: '0755'
- makedirs: true
- recurse:
- user
- group
/tmp/mysql.sock:
file.symlink:
- target: /var/lib/mysql
- watch:
- file: /var/lib/mysql
zabbix-start:
cmd.run:
- name: zabbix_server
- name: zabbix_agentd
php-fpm.service:
service.running:
- reload: true
/usr/local/apache/htdocs/zabbix/conf:
file.directory:
- mode: '0777'
/usr/local/apache/htdocs/zabbix/:
cmd.run:
- name: "cp ui/* /usr/local/apache/htdocs/zabbix/ -r" -e "yes"
httpd.service:
service.running:
- reload: true
/opt/start.sh:
file.managed:
- source: salt://zabbix/files/start.sh
- mode: '0755'
/etc/rc.d/rc.local:
file.managed:
- source: salt://zabbix/files/rc.local
效果图:
评论区