临风赏月
临风赏月

ansible组件介绍和简单playbook测试

一、ansible inventory

在大规模的配置管理工作中,管理不同业务的机器,机器的信息都存放在ansible的inventory组件里面。在工作中,配置部署针对的主机必须先存放在Inventory里面,然后ansible才能对它进行操作。默认的Ansible的inventory是一个静态的INI格式的文件/etc/ansible/hosts。可以通过ANSIBLE_HOSTS环境变量指定或运行ansible和ansible-playbook的时候用-i参数临时设置。

1.定义主机和主机组

2.多个Inventory列表

修改配置文件:/etc/ansible/ansible.cfg 

[root@hadoop1010 inventory]# ll
total 12
-rw-r--r-- 1 root root 93 Mar  7 18:46 docker
-rw-r--r-- 1 root root 93 Mar  7 19:36 hadoop
-rw-r--r-- 1 root root 67 Mar  7 19:29 hosts
[root@hadoop1010 inventory]# vim /etc/ansible/ansible.cfg 

# config file for ansible -- https://ansible.com/
# ===============================================

# nearly all parameters can be overridden in ansible-playbook
# or with command line flags. ansible will read ANSIBLE_CONFIG,
# ansible.cfg in the current working directory, .ansible.cfg in
# the home directory or /etc/ansible/ansible.cfg, whichever it
# finds first

[defaults]

# some basic default values...

inventory      = /etc/ansible/hosts,/root/ansible/inventory/hosts,/root/ansible/inventory/docker,/root/ansible/inventory/hadoop

[root@hadoop1010 inventory]# cat hadoop 
[hadoop]
192.168.10.1[0:2]
[hadoop_vars]
ansible_ssh_pass='123456'
[ansible:children]
hadoop
[root@hadoop1010 inventory]# cat docker 
[docker]
192.168.10.1[1:2]
[docker_vars]
ansible_ssh_pass='123456'
[ansible:children]
docker
[root@hadoop1010 inventory]# ansible hadoop -m ping -o
192.168.10.11 | SUCCESS => {"changed": false, "ping": "pong"}
192.168.10.10 | SUCCESS => {"changed": false, "ping": "pong"}
192.168.10.12 | SUCCESS => {"changed": false, "ping": "pong"}
[root@hadoop1010 inventory]# ansible docker -m ping -o
192.168.10.12 | SUCCESS => {"changed": false, "ping": "pong"}
192.168.10.11 | SUCCESS => {"changed": false, "ping": "pong"}

其实ansible中的多个inventory跟单个文件的区别不是很大,采用多个inventory的好处是可以吧不同环境的主机或不同业务的主机放在不同的Inventory文件里面,方便日常维护。

3. 动态Inventory

在生产工作中会有大量的主机列表。若手动维护这些列表是一件麻烦的事情。ansible还支持动态的Inventory,动态Inventory就是ansible所有的Inventory文件里面的主机列表信息和变量信息都支持从外部拉取。比如,从zabbix监控系统或是cmdb系统拉取所有的主机信息,然后用ansible进行管理。这样更方便地将Ansible与其他运维系统结合起来。

#!/usr/bin/env python3
# -*- coding:utf-8 -*-
import argparse
import sys
import json


def lists():
    r = {}
    host = ['192.168.10.1' + str(i) for i in range(0, 2)]
    hosts = {'hosts': host}
    r['docker'] = hosts
    return json.dumps(r, indent=3)


def hosts(name):
    r = {'ansible_ssh_pass': '123456'}
    cpis = dict(r.items())
    return json.dumps(cpis)


if __name__ == '__main__':
    parser = argparse.ArgumentParser()
    parser.add_argument('-l', '--list', help='hosts list', action='store_true')
    parser.add_argument('-H', '--host', help='hosts vars')
    args = vars(parser.parse_args())

    if args['list']:
        print(lists())
    elif args['host']:
        print(hosts(args['host']))
    else:
        parser.print_help()

动态inventory测试:

root@hadoop1010 inventory]# ll
total 16
-rw-r--r-- 1 root root  93 Mar  7 18:46 docker
-rw-r--r-- 1 root root  93 Mar  7  2023 hadoop
-rw-r--r-- 1 root root  81 Mar  7  2023 hosts
-rwxr-xr-x 1 root root 749 Mar  7  2023 hosts.py
[root@hadoop1010 inventory]# ansible -i hosts.py docker -m ping -o
192.168.10.11 | SUCCESS => {"changed": false, "ping": "pong"}
192.168.10.10 | SUCCESS => {"changed": false, "ping": "pong"}
[root@hadoop1010 inventory]#

Inventory 常用内置参数

ansible_ssh_host: 定义host ssh地址 ansible_ssh_host=192.168.10.10

ansible_ssh_port: 定义hots ssh端口 snsible_ssh_port=5000

ansible_ssh_user: 定义hosts ssh 认证用户 ansible_ssh_user=machine

ansible_ssh_pass: 定义hosts ssh认证密码 ansible_ssh_pass=‘123456’

ansible_duso: 定义hosts sudo的用户 ansible_sudo=machine

ansible_sdo_pass: 定义hosts sudo密码 ansible_sudo_pass=‘123456’

ansible_sudo_exe: 定义hosts duso 路径 ansible_sudo_exe=/usr/bin/sudo密码

ansible_ssh_private_key_file: 定义hosts私钥 ansible_ssh_private_key_file=/root/key

ansible_shell_type: 定义hosts shell类型 ansible_shell_type=bash

ansible_python_interpreter: 定义hosts任务执行python的路径 ansible_python_interpreter=/usr/bin/python2.6

ansible_interpreter: 定义hosts其他语言解析器路径 ansible_interpreter=/usr/bin/ruby

二、ansible Ad-Hoc命令

我们通常会用命令行地形式使用ansible模块,ansible自带很多模块,可以直接使用这些模块,目前Ansible已经自带了259多个模块,使用: ansible-doc -l 查看这些模块。

  1. 执行命令
    ansible命令都是并发执行地,我们可以针对目标主机执行任何命令。默认地并发数目由ansible.cfg中地forks值来控制。也可以在运行ansible命令时通过-f指定并发数。若碰到执行任务时间很长地时间,也可以使用ansible地异步执行功能来执行。

简单测试命令:

[root@hadoop1010 inventory]# echo `date`;ansible docker  -m shell -a "sleep 3s;hostname" -f 1;echo `date`
Tue Mar 7 23:54:37 CST 2023
192.168.10.10 | SUCCESS | rc=0 >>
hadoop1010

192.168.10.11 | SUCCESS | rc=0 >>
hadoop1011

192.168.10.12 | SUCCESS | rc=0 >>
hadoop1012

Tue Mar 7 23:54:48 CST 2023
[root@hadoop1010 inventory]# echo `date`;ansible docker  -m shell -a "sleep 3s;hostname" -f 10;echo `date`
Tue Mar 7 23:54:53 CST 2023
192.168.10.12 | SUCCESS | rc=0 >>
hadoop1012

192.168.10.10 | SUCCESS | rc=0 >>
hadoop1010

192.168.10.11 | SUCCESS | rc=0 >>
hadoop1011

Tue Mar 7 23:54:57 CST 2023
[root@hadoop1010 inventory]# echo `date`;ansible docker  -m shell -a "sleep 3s;hostname" -f 100;echo `date`
Tue Mar 7 23:55:10 CST 2023
192.168.10.12 | SUCCESS | rc=0 >>
hadoop1012

192.168.10.11 | SUCCESS | rc=0 >>
hadoop1011

192.168.10.10 | SUCCESS | rc=0 >>
hadoop1010

Tue Mar 7 23:55:15 CST 2023

测试发现加了并行度-f,执行效率提高了很多。

  1. 复制文件:
[root@hadoop1010 inventory]# ansible hadoop -m copy -a "src=/etc/crontab dest=/etc/crontab"
192.168.10.12 | SUCCESS => {
    "changed": false, 
    "checksum": "0759951e48189cfb96720fe249675fb44ace16be", 
    "gid": 0, 
    "group": "root", 
    "mode": "0644", 
    "owner": "root", 
    "path": "/etc/crontab", 
    "size": 480, 
    "state": "file", 
    "uid": 0
}
192.168.10.10 | SUCCESS => {
    "changed": false, 
    "checksum": "0759951e48189cfb96720fe249675fb44ace16be", 
    "gid": 0, 
    "group": "root", 
    "mode": "0644", 
    "owner": "root", 
    "path": "/etc/crontab", 
    "size": 480, 
    "state": "file", 
    "uid": 0
}
  1. 包和服务管理
    简单测试用例:
[root@hadoop1010 inventory]# ansible hadoop -m yum -a 'name=httpd state=latest' -f 100 -o

192.168.10.10 | SUCCESS => {"changed": true, "msg": "", "rc": 0, "results": ["Loaded plugins: fastestmirror, langpacks\nLoading mirror speeds from cached hostfile\nResolving Dependencies\n--> R
unning transaction check\n---> Package httpd.x86_64 0:2.4.6-67.el7.centos will be updated\n--> Processing Dependency: httpd = 2.4.6-67.el7.centos for package: mod_session-2.4.6-67.el7.centos.x86_64\n---> Package httpd.x86_64 0:2.4.6-98.el7.centos.6 will be an update\n--> Processing Dependency: httpd-tools = 2.4.6-98.el7.centos.6 for package: httpd-2.4.6-98.el7.centos.6.x86_64\n--> Running transaction check\n---> Package httpd-tools.x86_64 0:2.4.6-67.el7.centos will be updated\n---> Package httpd-tools.x86_64 0:2.4.6-98.el7.centos.6 will be an update\n---> Package mod_session.x86_64 0:2.4.6-67.el7.centos will be updated\n---> Package mod_session.x86_64 0:2.4.6-98.el7.centos.6 will be an update\n--> Processing Dependency: apr-util-openssl for package: mod_session-2.4.6-98.el7.centos.6.x86_64\n--> Running transaction check\n---> Package apr-util-openssl.x86_64 0:1.5.2-6.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package              Arch       Version                      Repository   Size\n================================================================================\nUpdating:\n httpd                x86_64     2.4.6-98.el7.centos.6        updates     2.7 M\nInstalling for dependencies:\n apr-util-openssl     x86_64     1.5.2-6.el7                  os           20 k\nUpdating for dependencies:\n httpd-tools          x86_64     2.4.6-98.el7.centos.6        updates      94 k\n mod_session          x86_64     2.4.6-98.el7.centos.6        updates      64 k\n\nTransaction Summary\n================================================================================\nInstall             ( 1 Dependent package)\nUpgrade  1 Package  (+2 Dependent packages)\n\nTotal download size: 2.9 M\nDownloading packages:\nDelta RPMs disabled because /usr/bin/applydeltarpm not installed.\n--------------------------------------------------------------------------------\nTotal                                              1.5 MB/s | 2.9 MB  00:01     \nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n  Updating   : httpd-tools-2.4.6-98.el7.centos.6.x86_64                     1/7 \n  Updating   : httpd-2.4.6-98.el7.centos.6.x86_64                           2/7 \n  Installing : apr-util-openssl-1.5.2-6.el7.x86_64                          3/7 \n  Updating   : mod_session-2.4.6-98.el7.centos.6.x86_64                     4/7 \n  Cleanup    : mod_session-2.4.6-67.el7.centos.x86_64                       5/7 \n  Cleanup    : httpd-2.4.6-67.el7.centos.x86_64                             6/7 \n  Cleanup    : httpd-tools-2.4.6-67.el7.centos.x86_64                       7/7 \n  Verifying  : httpd-2.4.6-98.el7.centos.6.x86_64                           1/7 \n  Verifying  : mod_session-2.4.6-98.el7.centos.6.x86_64                     2/7 \n  Verifying  : apr-util-openssl-1.5.2-6.el7.x86_64                          3/7 \n  Verifying  : httpd-tools-2.4.6-98.el7.centos.6.x86_64                     4/7 \n  Verifying  : mod_session-2.4.6-67.el7.centos.x86_64                       5/7 \n  Verifying  : httpd-2.4.6-67.el7.centos.x86_64                             6/7 \n  Verifying  : httpd-tools-2.4.6-67.el7.centos.x86_64                       7/7 \n\nDependency Installed:\n  apr-util-openssl.x86_64 0:1.5.2-6.el7                                         \n\nUpdated:\n  httpd.x86_64 0:2.4.6-98.el7.centos.6                                          \n\nDependency Updated:\n  httpd-tools.x86_64 0:2.4.6-98.el7.centos.6                                    \n  mod_session.x86_64 0:2.4.6-98.el7.centos.6                                    \n\nComplete!\n"]}
192.168.10.11 | SUCCESS => {"changed": true, "msg": "", "rc": 0, "results": ["Loaded plugins: fastestmirror, langpacks\nLoading mirror speeds from cached hostfile\nResolving Dependencies\n--> R
unning transaction check\n---> Package httpd.x86_64 0:2.4.6-67.el7.centos will be updated\n--> Processing Dependency: httpd = 2.4.6-67.el7.centos for package: mod_session-2.4.6-67.el7.centos.x86_64\n---> Package httpd.x86_64 0:2.4.6-98.el7.centos.6 will be an update\n--> Processing Dependency: httpd-tools = 2.4.6-98.el7.centos.6 for package: httpd-2.4.6-98.el7.centos.6.x86_64\n--> Running transaction check\n---> Package httpd-tools.x86_64 0:2.4.6-67.el7.centos will be updated\n---> Package httpd-tools.x86_64 0:2.4.6-98.el7.centos.6 will be an update\n---> Package mod_session.x86_64 0:2.4.6-67.el7.centos will be updated\n---> Package mod_session.x86_64 0:2.4.6-98.el7.centos.6 will be an update\n--> Processing Dependency: apr-util-openssl for package: mod_session-2.4.6-98.el7.centos.6.x86_64\n--> Running transaction check\n---> Package apr-util-openssl.x86_64 0:1.5.2-6.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package              Arch       Version                      Repository   Size\n================================================================================\nUpdating:\n httpd                x86_64     2.4.6-98.el7.centos.6        updates     2.7 M\nInstalling for dependencies:\n apr-util-openssl     x86_64     1.5.2-6.el7                  os           20 k\nUpdating for dependencies:\n httpd-tools          x86_64     2.4.6-98.el7.centos.6        updates      94 k\n mod_session          x86_64     2.4.6-98.el7.centos.6        updates      64 k\n\nTransaction Summary\n================================================================================\nInstall             ( 1 Dependent package)\nUpgrade  1 Package  (+2 Dependent packages)\n\nTotal download size: 2.9 M\nDownloading packages:\nDelta RPMs disabled because /usr/bin/applydeltarpm not installed.\n--------------------------------------------------------------------------------\nTotal                                              4.1 MB/s | 2.9 MB  00:00     \nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n  Updating   : httpd-tools-2.4.6-98.el7.centos.6.x86_64                     1/7 \n  Updating   : httpd-2.4.6-98.el7.centos.6.x86_64                           2/7 \n  Installing : apr-util-openssl-1.5.2-6.el7.x86_64                          3/7 \n  Updating   : mod_session-2.4.6-98.el7.centos.6.x86_64                     4/7 \n  Cleanup    : mod_session-2.4.6-67.el7.centos.x86_64                       5/7 \n  Cleanup    : httpd-2.4.6-67.el7.centos.x86_64                             6/7 \n  Cleanup    : httpd-tools-2.4.6-67.el7.centos.x86_64                       7/7 \n  Verifying  : httpd-2.4.6-98.el7.centos.6.x86_64                           1/7 \n  Verifying  : mod_session-2.4.6-98.el7.centos.6.x86_64                     2/7 \n  Verifying  : apr-util-openssl-1.5.2-6.el7.x86_64                          3/7 \n  Verifying  : httpd-tools-2.4.6-98.el7.centos.6.x86_64                     4/7 \n  Verifying  : mod_session-2.4.6-67.el7.centos.x86_64                       5/7 \n  Verifying  : httpd-2.4.6-67.el7.centos.x86_64                             6/7 \n  Verifying  : httpd-tools-2.4.6-67.el7.centos.x86_64                       7/7 \n\nDependency Installed:\n  apr-util-openssl.x86_64 0:1.5.2-6.el7                                         \n\nUpdated:\n  httpd.x86_64 0:2.4.6-98.el7.centos.6                                          \n\nDependency Updated:\n  httpd-tools.x86_64 0:2.4.6-98.el7.centos.6                                    \n  mod_session.x86_64 0:2.4.6-98.el7.centos.6                                    \n\nComplete!\n"]}

[root@hadoop1010 inventory]# ansible hadoop -m shell -a "netstat -tpln|grep httpd"
192.168.10.11 | SUCCESS | rc=0 >>
tcp        0      0 0.0.0.0:80              0.0.0.0:*               LISTEN      18242/httpd         
tcp        0      0 0.0.0.0:8443            0.0.0.0:*               LISTEN      18242/httpd         

192.168.10.12 | SUCCESS | rc=0 >>
tcp        0      0 0.0.0.0:80              0.0.0.0:*               LISTEN      18183/httpd         
tcp        0      0 0.0.0.0:8443            0.0.0.0:*               LISTEN      18183/httpd         

192.168.10.10 | SUCCESS | rc=0 >>
tcp        0      0 0.0.0.0:80              0.0.0.0:*               LISTEN      11663/httpd         
tcp        0      0 0.0.0.0:8443            0.0.0.0:*               LISTEN      11663/httpd         

[root@hadoop1010 inventory]# ansible hadoop -m service -a 'name=httpd state=stopped' -f 100 -o
192.168.10.10 | SUCCESS => {"changed": true, "name": "httpd", "state": "stopped", "status": {"ActiveEnterTimestamp": "Tue 2023-03-07 16:04:45 CST", "ActiveEnterTimestampMonotonic": "2526690314"
, "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "-.mount systemd-journald.socket remote-fs.target network.target nss-lookup.target tmp.mount system.slice basic.target", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Tue 2023-03-07 16:04:44 CST", "AssertTimestampMonotonic": "2526408337", "Before": "shutdown.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Tue 2023-03-07 16:04:44 CST", "ConditionTimestampMonotonic": "2526408337", "Conflicts": "shutdown.target", "ControlGroup": "/system.slice/httpd.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "The Apache HTTP Server", "DevicePolicy": "auto", "Documentation": "man:httpd(8) man:apachectl(8)", "EnvironmentFile": "/etc/sysconfig/httpd (ignore_errors=no)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "11663", "ExecMainStartTimestamp": "Tue 2023-03-07 16:04:44 CST", "ExecMainStartTimestampMonotonic": "2526409566", "ExecMainStatus": "0", "ExecReload": "{ path=/usr/sbin/httpd ; argv[]=/usr/sbin/httpd $OPTIONS -k graceful ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/httpd ; argv[]=/usr/sbin/httpd $OPTIONS -DFOREGROUND ; ignore_errors=no ; start_time=[Tue 2023-03-07 16:04:44 CST] ; stop_time=[n/a] ; pid=11663 ; code=(null) ; status=0/0 }", "ExecStop": "{ path=/bin/kill ; argv[]=/bin/kill -WINCH ${MAINPID} ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/httpd.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "httpd.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Tue 2023-03-07 16:04:44 CST", "InactiveExitTimestampMonotonic": "2526409602", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "control-group", "KillSignal": "18", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "15582", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "15582", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "11663", "MemoryAccounting": "no", "MemoryCurrent": "84697088", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "httpd.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "main", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "yes", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice -.mount basic.target", "RequiresMountsFor": "/var/tmp", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "inherit", "StandardInput": "null", "StandardOutput": "journal", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StatusText": "Total requests: 0; Current requests/sec: 0; Current traffic:   0 B/sec", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "7", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "notify", "UMask": "0022", "UnitFilePreset": "disabled", "UnitFileState": "disabled", "WatchdogTimestamp": "Tue 2023-03-07 16:04:45 CST", "WatchdogTimestampMonotonic": "2526690275", "WatchdogUSec": "0"}}192.168.10.12 | SUCCESS => {"changed": true, "name": "httpd", "state": "stopped", "status": {"ActiveEnterTimestamp": "Tue 2023-03-07 16:04:45 CST", "ActiveEnterTimestampMonotonic": "2518831853"
, "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "network.target system.slice remote-fs.target systemd-journald.socket nss-lookup.target tmp.mount -.mount basic.target", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Tue 2023-03-07 16:04:44 CST", "AssertTimestampMonotonic": "2518561304", "Before": "shutdown.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Tue 2023-03-07 16:04:44 CST", "ConditionTimestampMonotonic": "2518561304", "Conflicts": "shutdown.target", "ControlGroup": "/system.slice/httpd.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "The Apache HTTP Server", "DevicePolicy": "auto", "Documentation": "man:httpd(8) man:apachectl(8)", "EnvironmentFile": "/etc/sysconfig/httpd (ignore_errors=no)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "18183", "ExecMainStartTimestamp": "Tue 2023-03-07 16:04:44 CST", "ExecMainStartTimestampMonotonic": "2518563358", "ExecMainStatus": "0", "ExecReload": "{ path=/usr/sbin/httpd ; argv[]=/usr/sbin/httpd $OPTIONS -k graceful ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/httpd ; argv[]=/usr/sbin/httpd $OPTIONS -DFOREGROUND ; ignore_errors=no ; start_time=[Tue 2023-03-07 16:04:44 CST] ; stop_time=[n/a] ; pid=18183 ; code=(null) ; status=0/0 }", "ExecStop": "{ path=/bin/kill ; argv[]=/bin/kill -WINCH ${MAINPID} ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/httpd.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "httpd.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Tue 2023-03-07 16:04:44 CST", "InactiveExitTimestampMonotonic": "2518563428", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "control-group", "KillSignal": "18", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "15584", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "15584", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "18183", "MemoryAccounting": "no", "MemoryCurrent": "94916608", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "httpd.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "main", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "yes", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice -.mount basic.target", "RequiresMountsFor": "/var/tmp", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "inherit", "StandardInput": "null", "StandardOutput": "journal", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StatusText": "Total requests: 0; Current requests/sec: 0; Current traffic:   0 B/sec", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "7", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "notify", "UMask": "0022", "UnitFilePreset": "disabled", "UnitFileState": "disabled", "WatchdogTimestamp": "Tue 2023-03-07 16:04:45 CST", "WatchdogTimestampMonotonic": "2518831813", "WatchdogUSec": "0"}}192.168.10.11 | SUCCESS => {"changed": true, "name": "httpd", "state": "stopped", "status": {"ActiveEnterTimestamp": "Tue 2023-03-07 16:04:45 CST", "ActiveEnterTimestampMonotonic": "2521760220"
, "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "tmp.mount system.slice nss-lookup.target systemd-journald.socket basic.target -.mount remote-fs.target network.target", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Tue 2023-03-07 16:04:44 CST", "AssertTimestampMonotonic": "2521497141", "Before": "shutdown.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Tue 2023-03-07 16:04:44 CST", "ConditionTimestampMonotonic": "2521497140", "Conflicts": "shutdown.target", "ControlGroup": "/system.slice/httpd.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "The Apache HTTP Server", "DevicePolicy": "auto", "Documentation": "man:httpd(8) man:apachectl(8)", "EnvironmentFile": "/etc/sysconfig/httpd (ignore_errors=no)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "18242", "ExecMainStartTimestamp": "Tue 2023-03-07 16:04:44 CST", "ExecMainStartTimestampMonotonic": "2521498748", "ExecMainStatus": "0", "ExecReload": "{ path=/usr/sbin/httpd ; argv[]=/usr/sbin/httpd $OPTIONS -k graceful ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/httpd ; argv[]=/usr/sbin/httpd $OPTIONS -DFOREGROUND ; ignore_errors=no ; start_time=[Tue 2023-03-07 16:04:44 CST] ; stop_time=[n/a] ; pid=18242 ; code=(null) ; status=0/0 }", "ExecStop": "{ path=/bin/kill ; argv[]=/bin/kill -WINCH ${MAINPID} ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/httpd.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "httpd.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Tue 2023-03-07 16:04:44 CST", "InactiveExitTimestampMonotonic": "2521498797", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "control-group", "KillSignal": "18", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "15584", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "15584", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "18242", "MemoryAccounting": "no", "MemoryCurrent": "84500480", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "httpd.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "main", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "yes", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice -.mount basic.target", "RequiresMountsFor": "/var/tmp", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "inherit", "StandardInput": "null", "StandardOutput": "journal", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StatusText": "Total requests: 0; Current requests/sec: 0; Current traffic:   0 B/sec", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "7", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "notify", "UMask": "0022", "UnitFilePreset": "disabled", "UnitFileState": "disabled", "WatchdogTimestamp": "Tue 2023-03-07 16:04:45 CST", "WatchdogTimestampMonotonic": "2521760187", "WatchdogUSec": "0"}}

[root@hadoop1010 inventory]# ansible hadoop -m shell -a "netstat -tpln|grep httpd"
192.168.10.12 | FAILED | rc=1 >>
non-zero return code

192.168.10.10 | FAILED | rc=1 >>
non-zero return code

192.168.10.11 | FAILED | rc=1 >>
non-zero return code
  1. 用户管理
    测试样例:
#普通加密:
[root@hadoop1010 inventory]# python3 -c 'import crypt; print (crypt.crypt("123456","machine110"))'
maBYdC7TaW1Vk
[root@hadoop1010 inventory]# ansible hadoop -m user -a 'name=machine10  password="maBYdC7TaW1Vk"' -f 5 -o
192.168.10.12 | SUCCESS => {"append": false, "changed": true, "comment": "", "group": 1007, "home": "/home/machine10", "move_home": false, "name": "machine10", "password": "NOT_LOGGING_PASSWORD
", "shell": "/bin/bash", "state": "present", "uid": 1007}192.168.10.10 | SUCCESS => {"append": false, "changed": true, "comment": "", "group": 1007, "home": "/home/machine10", "move_home": false, "name": "machine10", "password": "NOT_LOGGING_PASSWORD
", "shell": "/bin/bash", "state": "present", "uid": 1007}192.168.10.11 | SUCCESS => {"append": false, "changed": true, "comment": "", "group": 1007, "home": "/home/machine10", "move_home": false, "name": "machine10", "password": "NOT_LOGGING_PASSWORD
", "shell": "/bin/bash", "state": "present", "uid": 1007}[root@hadoop1010 inventory]# ansible hadoop -m user -a 'name=machine110  password="maBYdC7TaW1Vk"' -f 5 -o
192.168.10.12 | SUCCESS => {"changed": true, "comment": "", "createhome": true, "group": 1008, "home": "/home/machine110", "name": "machine110", "password": "NOT_LOGGING_PASSWORD", "shell": "/b
in/bash", "state": "present", "system": false, "uid": 1008}192.168.10.10 | SUCCESS => {"changed": true, "comment": "", "createhome": true, "group": 1008, "home": "/home/machine110", "name": "machine110", "password": "NOT_LOGGING_PASSWORD", "shell": "/b
in/bash", "state": "present", "system": false, "uid": 1008}192.168.10.11 | SUCCESS => {"changed": true, "comment": "", "createhome": true, "group": 1008, "home": "/home/machine110", "name": "machine110", "password": "NOT_LOGGING_PASSWORD", "shell": "/b
in/bash", "state": "present", "system": false, "uid": 1008}[root@hadoop1010 inventory]# ssh 192.168.10.11 -l machine110
[email protected]'s password: 
[machine110@hadoop1011 ~]$ logout
Connection to 192.168.10.11 closed.
[root@hadoop1010 inventory]# ssh 192.168.10.12 -l machine110
[email protected]'s password: 
[machine110@hadoop1012 ~]$ logout
Connection to 192.168.10.12 closed.
[root@hadoop1010 inventory]# 

#python 3.x 版本(sha512 加密算法):
[root@hadoop1010 inventory]# pip3 install passlib
WARNING: Running pip install with root privileges is generally not a good idea. Try `pip3 install --user` instead.
Collecting passlib
  Downloading https://files.pythonhosted.org/packages/3b/a4/ab6b7589382ca3df236e03faa71deac88cae040af60c071a78d254a62172/passlib-1.7.4-py2.py3-none-any.whl (525kB)
    100% |████████████████████████████████| 532kB 226kB/s 
Installing collected packages: passlib
Successfully installed passlib-1.7.4
[root@hadoop1010 inventory]# python3.6
Python 3.6.8 (default, Nov 16 2020, 16:55:22) 
[GCC 4.8.5 20150623 (Red Hat 4.8.5-44)] on linux
Type "help", "copyright", "credits" or "license" for more information.
>>> from  passlib.hash import sha512_crypt

#设置密码为:machine
[root@hadoop1010 inventory]# python3 -c 'from  passlib.hash  import sha512_crypt;  import  getpass;  print (sha512_crypt.encrypt(getpass.getpass()))'
Password: 
$6$rounds=656000$BJMIzZasbvoswqQH$qMmlcpWbFAyD5o/8VrnW9RM1twr0gTz/QG/N4Fp6D6idGRONVtIyisqtsBla/Q0LD034AIIhdRQgbRbawkAC81
[root@hadoop1010 inventory]# ansible hadoop -m user -a 'name=machine111  password="$6$rounds=656000$BJMIzZasbvoswqQH$qMmlcpWbFAyD5o/8VrnW9RM1twr0gTz/QG/N4Fp6D6idGRONVtIyisqtsBla/Q0LD034AIIhdRQg
bRbawkAC81"' -f 5 -o192.168.10.10 | SUCCESS => {"changed": true, "comment": "", "createhome": true, "group": 1009, "home": "/home/machine111", "name": "machine111", "password": "NOT_LOGGING_PASSWORD", "shell": "/b
in/bash", "state": "present", "system": false, "uid": 1009}192.168.10.12 | SUCCESS => {"changed": true, "comment": "", "createhome": true, "group": 1009, "home": "/home/machine111", "name": "machine111", "password": "NOT_LOGGING_PASSWORD", "shell": "/b
in/bash", "state": "present", "system": false, "uid": 1009}192.168.10.11 | SUCCESS => {"changed": true, "comment": "", "createhome": true, "group": 1009, "home": "/home/machine111", "name": "machine111", "password": "NOT_LOGGING_PASSWORD", "shell": "/b
in/bash", "state": "present", "system": false, "uid": 1009}[root@hadoop1010 inventory]# ssh 192.168.10.11 -l machine111
#测试登录成功
[email protected]'s password: 
[machine111@hadoop1011 ~]$

三、 Ansible playbook

playbook是ansible进行配置管理的组件,实际生产工作中,编写playbook进行自动化运维

四、 ansible facts

facts组件时ansible用于采集被管机器设备信息的一个功能,可以使用setup模块查机器的所有facts信息,可用filter来查看指定的信息。

root@hadoop1010 inventory]# ansible hadoop -m yum -a 'name=facter state=latest'
192.168.10.12 | SUCCESS => {
    "changed": true, 
    "msg": "warning: /var/cache/yum/x86_64/7/epel/packages/facter-2.4.1-1.el7.x86_64.rpm: Header V3 RSA/SHA256 Signature, key ID 352c64e5: NOKEY\nImporting GPG key 0x352C64E5:\n Userid     : \"
Fedora EPEL (7) \"\n Fingerprint: 91e9 7d7c 4a5e 96f1 7f3e 888f 6a2f aea2 352c 64e5\n From       : http://mirrors.cloud.tencent.com/epel/RPM-GPG-KEY-EPEL-7\n",     "rc": 0, 
    "results": [
        "Loaded plugins: fastestmirror, langpacks\nLoading mirror speeds from cached hostfile\nResolving Dependencies\n--> Running transaction check\n---> Package facter.x86_64 0:2.4.1-1.el7 wi
ll be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package          Arch             Version                 Repository      Size\n================================================================================\nInstalling:\n facter           x86_64           2.4.1-1.el7             epel           101 k\n\nTransaction Summary\n================================================================================\nInstall  1 Package\n\nTotal download size: 101 k\nInstalled size: 271 k\nDownloading packages:\nPublic key for facter-2.4.1-1.el7.x86_64.rpm is not installed\nRetrieving key from http://mirrors.cloud.tencent.com/epel/RPM-GPG-KEY-EPEL-7\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n  Installing : facter-2.4.1-1.el7.x86_64                                    1/1 \n  Verifying  : facter-2.4.1-1.el7.x86_64                                    1/1 \n\nInstalled:\n  facter.x86_64 0:2.4.1-1.el7                                                   \n\nComplete!\n"    ]
}
192.168.10.11 | SUCCESS => {
    "changed": true, 
    "msg": "warning: /var/cache/yum/x86_64/7/epel/packages/facter-2.4.1-1.el7.x86_64.rpm: Header V3 RSA/SHA256 Signature, key ID 352c64e5: NOKEY\nImporting GPG key 0x352C64E5:\n Userid     : \"
Fedora EPEL (7) \"\n Fingerprint: 91e9 7d7c 4a5e 96f1 7f3e 888f 6a2f aea2 352c 64e5\n From       : http://mirrors.cloud.tencent.com/epel/RPM-GPG-KEY-EPEL-7\n",     "rc": 0, 
    "results": [
        "Loaded plugins: fastestmirror, langpacks\nLoading mirror speeds from cached hostfile\nResolving Dependencies\n--> Running transaction check\n---> Package facter.x86_64 0:2.4.1-1.el7 wi
ll be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package          Arch             Version                 Repository      Size\n================================================================================\nInstalling:\n facter           x86_64           2.4.1-1.el7             epel           101 k\n\nTransaction Summary\n================================================================================\nInstall  1 Package\n\nTotal download size: 101 k\nInstalled size: 271 k\nDownloading packages:\nPublic key for facter-2.4.1-1.el7.x86_64.rpm is not installed\nRetrieving key from http://mirrors.cloud.tencent.com/epel/RPM-GPG-KEY-EPEL-7\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n  Installing : facter-2.4.1-1.el7.x86_64                                    1/1 \n  Verifying  : facter-2.4.1-1.el7.x86_64                                    1/1 \n\nInstalled:\n  facter.x86_64 0:2.4.1-1.el7                                                   \n\nComplete!\n"    ]
}
192.168.10.10 | SUCCESS => {
    "changed": true, 
    "msg": "", 
    "rc": 0, 
    "results": [
        "Loaded plugins: fastestmirror, langpacks\nLoading mirror speeds from cached hostfile\nResolving Dependencies\n--> Running transaction check\n---> Package facter.x86_64 0:2.4.1-1.el7 wi
ll be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package          Arch             Version                 Repository      Size\n================================================================================\nInstalling:\n facter           x86_64           2.4.1-1.el7             epel           101 k\n\nTransaction Summary\n================================================================================\nInstall  1 Package\n\nTotal download size: 101 k\nInstalled size: 271 k\nDownloading packages:\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n  Installing : facter-2.4.1-1.el7.x86_64                                    1/1 \n  Verifying  : facter-2.4.1-1.el7.x86_64                                    1/1 \n\nInstalled:\n  facter.x86_64 0:2.4.1-1.el7                                                   \n\nComplete!\n"    ]
}
[root@hadoop1010 inventory]# ansible hadoop -m shell -a 'rpm -qa httpd facter'
 [WARNING]: Consider using yum, dnf or zypper module rather than running rpm

192.168.10.11 | SUCCESS | rc=0 >>
httpd-2.4.6-98.el7.centos.6.x86_64
facter-2.4.1-1.el7.x86_64

192.168.10.12 | SUCCESS | rc=0 >>
httpd-2.4.6-98.el7.centos.6.x86_64
facter-2.4.1-1.el7.x86_64

192.168.10.10 | SUCCESS | rc=0 >>
facter-2.4.1-1.el7.x86_64
httpd-2.4.6-98.el7.centos.6.x86_64

[root@hadoop1010 inventory]# ansible hadoop -m facter
192.168.10.10 | SUCCESS => {
    "architecture": "x86_64", 
    "bios_release_date": "11/12/2020", 
    "bios_vendor": "Phoenix Technologies LTD", 
    "bios_version": "6.00", 
    "blockdevice_sda_model": "VMware Virtual S", 
    "blockdevice_sda_size": 53687091200, 
    "blockdevice_sda_vendor": "VMware,", 
    "blockdevice_sr0_model": "VMware SATA CD00", 
    "blockdevice_sr0_size": 8694792192, 
    "blockdevice_sr0_vendor": "NECVMWar", 
    "blockdevices": "sda,sr0", 
    "boardmanufacturer": "Intel Corporation", 
    "boardproductname": "440BX Desktop Reference Platform", 
    "boardserialnumber": "None", 
    "changed": false, 
    "domain": "localdomain", 
    "facterversion": "2.4.1", 
    "filesystems": "xfs", 
    "fqdn": "hadoop1010.localdomain", 
    "gid": "root", 
    "hardwareisa": "x86_64", 
    "hardwaremodel": "x86_64", 
    "hostname": "hadoop1010", 
    "id": "root", 
    "interfaces": "docker0,ens33,flannel_1,lo", 
    "ipaddress": "172.30.24.1", 
    "ipaddress_docker0": "172.30.24.1", 
    "ipaddress_ens33": "192.168.10.10", 
    "ipaddress_flannel_1": "172.30.24.0", 
    "ipaddress_lo": "127.0.0.1", 
    "is_virtual": true, 
    "kernel": "Linux", 
    "kernelmajversion": "4.19", 
    "kernelrelease": "4.19.12-1.el7.elrepo.x86_64", 
    "kernelversion": "4.19.12", 
    "macaddress": "02:42:0f:5b:a7:51", 
    "macaddress_docker0": "02:42:0f:5b:a7:51", 
    "macaddress_ens33": "00:0c:29:66:35:7d", 
    "macaddress_flannel_1": "5e:9c:ed:8d:bf:c2", 
    "manufacturer": "VMware, Inc.", 
    "memoryfree": "2.91 GB", 
    "memoryfree_mb": "2979.63", 
    "memorysize": "3.83 GB", 
    "memorysize_mb": "3921.13", 
    "mtu_docker0": 1500, 
    "mtu_ens33": 1500, 
    "mtu_flannel_1": 1450, 
    "mtu_lo": 65536, 
    "netmask": "255.255.255.0", 
    "netmask_docker0": "255.255.255.0", 
    "netmask_ens33": "255.255.255.0", 
    "netmask_flannel_1": "255.255.255.255", 
    "netmask_lo": "255.0.0.0", 
    "network_docker0": "172.30.24.0", 
    "network_ens33": "192.168.10.0", 
    "network_flannel_1": "172.30.24.0", 
    "network_lo": "127.0.0.0", 
    "operatingsystem": "CentOS", 
    "operatingsystemmajrelease": "7", 
    "operatingsystemrelease": "7.4.1708", 
    "os": {
        "family": "RedHat", 
        "name": "CentOS", 
        "release": {
            "full": "7.4.1708", 
            "major": "7", 
            "minor": "4"
        }
    }, 
    "osfamily": "RedHat", 
    "partitions": {
        "sda1": {
            "filesystem": "xfs", 
            "mount": "/boot", 
            "size": "2097152", 
            "uuid": "984f99bd-0b89-4270-8ec0-296e8765f63c"
        }, 
        "sda2": {
            "filesystem": "LVM2_member", 
            "size": "102758400"
        }
    }, 
    "path": "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/home/hadoop-2.6.5/bin:/home/hadoop-2.6.5/sbin:/home/java/bin:/home/zookeeper/bin", 
    "physicalprocessorcount": 2, 
    "processor0": "11th Gen Intel(R) Core(TM) i5-11320H @ 3.20GHz", 
    "processor1": "11th Gen Intel(R) Core(TM) i5-11320H @ 3.20GHz", 
    "processorcount": 2, 
    "processors": {
        "count": 2, 
        "models": [
            "11th Gen Intel(R) Core(TM) i5-11320H @ 3.20GHz", 
            "11th Gen Intel(R) Core(TM) i5-11320H @ 3.20GHz"
        ], 
        "physicalcount": 2
    }, 
    "productname": "VMware Virtual Platform", 
    "ps": "ps -ef", 
    "rubyplatform": "x86_64-linux", 
    "rubysitedir": "/usr/local/share/ruby/site_ruby/", 
    "rubyversion": "2.0.0", 
    "selinux": false, 
    "serialnumber": "VMware-56 4d e1 7d 04 4b e5 79-c3 b1 65 80 f6 66 35 7d", 
    "sshecdsakey": "AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBFBgzEnfN0Qxw0Zabi7p06kE2u+zmWRUB0JpxTQBdgRpS5KLHzPfAydR7/egNSjfuzlvzqU0CeToiyWqtanxXmo=", 
    "sshed25519key": "AAAAC3NzaC1lZDI1NTE5AAAAIHUQZVeOEA/4YoGe8T9ZHQR3pg253QD9BWnt7KRQDCH2", 
    "sshfp_ecdsa": "SSHFP 3 1 83f193529c42860b08b2973e43e8d9210172dacd\nSSHFP 3 2 0c6571c721d71600538a5bdb6998f45904d732e6c9d69fc5cfc73ae47da24f4b", 
    "sshfp_ed25519": "SSHFP 4 1 6a4a1b8eeb6b9d0f16620a0d5c3d3c01b540be93\nSSHFP 4 2 cb4b230ae9f8e5f645d0b4c122d6fa84b230f20b47f1a4b6b1f98177affd927b", 
    "sshfp_rsa": "SSHFP 1 1 20b5c4fbfeafb859fb644fe7ea887982aa37c552\nSSHFP 1 2 39f2e18e727e04d034ca6dce45603d9a0eeed8201841f293c680cee8651260e3", 
    "sshrsakey": "AAAAB3NzaC1yc2EAAAADAQABAAABAQDrus8AgKdZ6lsPqCfaIuUMPbc8XRMiw0BrMTK92bk24HKc9ABQ3mowDjZXfj1s9OpVIAX4bSHSqxzLpvdZEEv911pvz2Zllxvu0xbwnjbhJJBiywMk/GDuq+oTYeEY3viGoOmGA4q8ZbPkgzV
FxRmg3OLUc8vFasrnXQ60iS20gFhuZVMxrBM58TUOubZaqiUDaOxkMPIY+TzP7+Vox24N1YTIwfh6vEsA/jPICDvZo3QecAwMnEg7yKAs0q3sDiDZozCou3o7qJZUM3QOTVKhLqYnWh97zruWErWo6fdkGHzTkOCMV5VnYYtPpiuxUCBHt4gLVBvd1tkCwSJtOap7",     "state": "absent", 
    "swapfree": "0.00 MB", 
    "swapfree_mb": "0.00", 
    "swapsize": "0.00 MB", 
    "swapsize_mb": "0.00", 
    "system_uptime": {
        "days": 0, 
        "hours": 1, 
        "seconds": 5574, 
        "uptime": "1:32 hours"
    }, 
    "timezone": "CST", 
    "type": "Other", 
    "uniqueid": "a8c00a0a", 
    "uptime": "1:32 hours", 
    "uptime_days": 0, 
    "uptime_hours": 1, 
    "uptime_seconds": 5574, 
    "uuid": "7DE14D56-4B04-79E5-C3B1-6580F666357D", 
    "virtual": "vmware"
}

五、 Ansible role

实际生产工作过程中,很多不同业务需要编写很多playbook文件,如果时间久了,维护playbook是一件艰难的事情,这个时候我们就可以采用role的方式管理playbook。

role只是对我们日常使用的playbook的目录结构进行一些规范,与日常的playbook没什么区别。
部署nginx的playbook目录:
ansible组件介绍和简单playbook测试_第1张图片
role的所有文件内容都是在nginx目录下。

  • site.yaml文件是role引用的入口文件,文件的名字可以随意定义
  • files目录里面存放一些静态文件;
  • handler目录里面存放一些task的handler;
  • tasks目录里面就是平时写的playbook中的task;
  • templates目录里面存放着jinja2模板文件;
  • vars目录下存放着变量文件。

playbook调测过程实例:


[root@hadoop1010 roles]# cd /etc/ansible/roles
[root@hadoop1010 roles]# mkdir nginx
[root@hadoop1010 roles]# cd nginx/
[root@hadoop1010 nginx]# mkdir {files,handlers,tasks,templates,vars}
[root@hadoop1010 nginx]# ansible-playbook -i hosts site.yaml
ERROR! Syntax Error while loading YAML.


The error appears to have been in '/etc/ansible/roles/nginx/site.yaml': line 3, column 10, but may
be elsewhere in the file depending on the exact syntax problem.

The offending line appears to be:

- hosts: 192.168.10.12
    roles:
         ^ here

exception type: <class 'yaml.scanner.ScannerError'>
exception: mapping values are not allowed in this context
  in "", line 3, column 10
[root@hadoop1010 nginx]# ansible-playbook --syntax-check site.yaml 
ERROR! Syntax Error while loading YAML.


The error appears to have been in '/etc/ansible/roles/nginx/site.yaml': line 3, column 10, but may
be elsewhere in the file depending on the exact syntax problem.

The offending line appears to be:

- hosts: 192.168.10.12
    roles:
         ^ here

exception type: <class 'yaml.scanner.ScannerError'>
exception: mapping values are not allowed in this context
  in "", line 3, column 1
[root@hadoop1010 nginx]# ansible-playbook --syntax-check site.yaml 
ERROR! Syntax Error while loading YAML.


The error appears to have been in '/etc/ansible/roles/nginx/tasks/main.yaml': line 3, column 9, but may
be elsewhere in the file depending on the exact syntax problem.

The offending line appears to be:

- name: Install nginx package
     yum: name=nginx-{{version}} state=present
        ^ here
We could be wrong, but this one looks like it might be an issue with
missing quotes.  Always quote template expression brackets when they
start a value. For instance:

    with_items:
      - {{ foo }}

Should be written as:

    with_items:
      - "{{ foo }}"

exception type: <class 'yaml.scanner.ScannerError'>
exception: mapping values are not allowed in this context
  in "", line 3, column 9
[root@hadoop1010 nginx]# vim site.yaml 
[root@hadoop1010 nginx]# vim tasks/main.yaml 
[root@hadoop1010 nginx]# ansible-playbook --syntax-check site.yaml 
ERROR! Syntax Error while loading YAML.


The error appears to have been in '/etc/ansible/roles/nginx/handlers/main.yaml': line 3, column 13, but may
be elsewhere in the file depending on the exact syntax problem.

The offending line appears to be:

- name: restart nginx
     service: name=nginx state=restarted
            ^ here

exception type: <class 'yaml.scanner.ScannerError'>
exception: mapping values are not allowed in this context
  in ""
[root@hadoop1010 nginx]# vim handlers/main.yaml 
[root@hadoop1010 nginx]# ansible-playbook --syntax-check site.yaml 

playbook: site.yaml
[root@hadoop1010 nginx]# ansible-playbook --syntax-check site.yaml 

playbook: site.yaml

[root@hadoop1010 nginx]# ansible-playbook -i hosts site.yaml

PLAY [192.168.10.12] ****************************************************************************************************************************************************************************

TASK [Gathering Facts] **************************************************************************************************************************************************************************
ok: [192.168.10.12]

TASK [nginx : Install nginx package] ************************************************************************************************************************************************************
changed: [192.168.10.12]

TASK [nginx : Copy nginx.conf Template] *********************************************************************************************************************************************************
changed: [192.168.10.12]

TASK [nginx : Copy index html] ******************************************************************************************************************************************************************
changed: [192.168.10.12]

TASK [nginx : make sure nginx service running] **************************************************************************************************************************************************
fatal: [192.168.10.12]: FAILED! => {"changed": false, "msg": "Unable to start service nginx: Job for nginx.service failed because the control process exited with error code. See \"systemctl sta
tus nginx.service\" and \"journalctl -xe\" for details.\n"}	to retry, use: --limit @/etc/ansible/roles/nginx/site.retry

PLAY RECAP **************************************************************************************************************************************************************************************
192.168.10.12              : ok=4    changed=3    unreachable=0    failed=1   

[root@hadoop1010 nginx]# vim templates/nginx.conf.j2 
[root@hadoop1010 nginx]# ansible-playbook -i hosts site.yaml

PLAY [192.168.10.12] ****************************************************************************************************************************************************************************

TASK [Gathering Facts] **************************************************************************************************************************************************************************
ok: [192.168.10.12]

TASK [nginx : Install nginx package] ************************************************************************************************************************************************************
ok: [192.168.10.12]

TASK [nginx : Copy nginx.conf Template] *********************************************************************************************************************************************************
ok: [192.168.10.12]

TASK [nginx : Copy index html] ******************************************************************************************************************************************************************
ok: [192.168.10.12]

TASK [nginx : make sure nginx service running] **************************************************************************************************************************************************
fatal: [192.168.10.12]: FAILED! => {"changed": false, "msg": "Unable to start service nginx: Job for nginx.service failed because the control process exited with error code. See \"systemctl sta
tus nginx.service\" and \"journalctl -xe\" for details.\n"}	to retry, use: --limit @/etc/ansible/roles/nginx/site.retry

PLAY RECAP **************************************************************************************************************************************************************************************
192.168.10.12              : ok=4    changed=0    unreachable=0    failed=1   

[root@hadoop1010 nginx]# vim templates/nginx.conf.j2 
[root@hadoop1010 nginx]# vim templates/nginx.conf.j2 
[root@hadoop1010 nginx]# grep ansible_processor_cores * -R
templates/nginx.conf.j2:woker_processes {{ansible_processor_cores}};
[root@hadoop1010 nginx]# vim templates/nginx.conf.j2 
[root@hadoop1010 nginx]# ansible-playbook -i hosts site.yaml

PLAY [192.168.10.12] ****************************************************************************************************************************************************************************

TASK [Gathering Facts] **************************************************************************************************************************************************************************
ok: [192.168.10.12]

TASK [nginx : Install nginx package] ************************************************************************************************************************************************************
ok: [192.168.10.12]

TASK [nginx : Copy nginx.conf Template] *********************************************************************************************************************************************************
ok: [192.168.10.12]

TASK [nginx : Copy index html] ******************************************************************************************************************************************************************
ok: [192.168.10.12]

TASK [nginx : make sure nginx service running] **************************************************************************************************************************************************
ok: [192.168.10.12]

PLAY RECAP **************************************************************************************************************************************************************************************
192.168.10.12              : ok=5    changed=0    unreachable=0    failed=0   

[root@hadoop1010 nginx]# tree .
.
├── files
│   └── index.html
├── handlers
│   └── main.yaml
├── hosts
├── site.retry
├── site.yaml
├── tasks
│   └── main.yaml
├── templates
│   └── nginx.conf.j2
└── vars

5 directories, 7 files

你可能感兴趣的:(ansible)

  • ansible的安装、使用 ytym00
    简介高度模块化,调用特定的模块,完成特定的任务,基于Yaml,来完成批量任务的模板化,来支持playbook。基于Python语言实现,主要使用Paramiko、PyYAML和JinJa2三个关键模块,部署简单(agentless),主从模式,支持自定义模块,支持playbook,幂等性:允许重复执行N次,没有变化时,只会执行第一次。特点:1、Configuration(cfengine,chef
  • Ubuntu Juju 与 Ansible的区别 xidianjiapei001 #Kubernetesubuntuansiblelinux云原生Juju
    JujuandAnsiblearebothpowerfultoolsusedformanagingandorchestratingITinfrastructureandapplications,buttheyhavedifferentapproachesandusecases.Here’sabreakdownofthekeydifferencesbetweenthem:1.ConceptualFo
  • ansible安全优化篇 happy_king_zi 运维自动化配置管理安全ansible安全devops
    一、安全概况对与一台全新安装的服务器,尤其是直接面向公网的服务器来说:最重要的一项配置就是安全配置。针对非授权连接和截取通信信息等攻击行为,避免攻击手段带来的危害,处理方法有以下方法:使用安全加密的通信方式——使用https加密传输;禁止root用户远程登录并充分利用sudo;移除非必需的软件,只开发需要用到的端口;遵守权限最小化原则;及时更新操作系统和软件——修复旧版本的bug,并使用新版本的最
  • Ansible架构介绍与安装 2401_86637445 ansible架构
    一、介绍Ansible什么是Ansible?Ansible是一款自动化运维工具,其主要功能是帮助运维实现IT工作的自动化、降低人为操作失误、提高业务自动化率、提升运维工作效率。实现了批量系统配置、批量程序部署、批量运行命令等功能。ansiblepuppetsaltstack主流的三种。ansible自动化运维工具被红帽收购阿里巴巴在用saltstackpython开发。无客户端,只需安装SSH、P
  • Linux学习-Ansible(一) 丢爸 Linuxlinux学习ansible
    环境-Rocky-Linux8.6安装部署Ansible#安装ansible[root@harboransible]#dnfinstall-yansible-core#查看安装信息[root@harboransible]#ansible-doc--versionansible-doc[core2.12.2]configfile=/root/ansible/ansible.cfgconfigured
  • Ansible简单部署与使用 大哥您好 Linuxansible数据库运维linux
    目录环境安装Ansibleaptinstallmarkupsafeerror配置Ansible创建个人目录ansible.cfghosts测试Ansibleping批量执行自定义命令环境Ubuntu20.04安装Ansibleaptinstallsudoaptinstallansiblemarkupsafeerror安装成功后,尝试运行ansible,部分环境下会有如下报错:ubuntu@ubun
  • Ansible自动化部署kubernetes集群 theo.wu kubernetesansible自动化
    机器环境介绍1.1.机器信息介绍IPhostnameapplicationCPUMemory192.168.204.129k8s-master01etcd,kube-apiserver,kube-controller-manager,kube-scheduler,kubelet,kube-proxy,containerd2C4G192.168.204.130k8s-worker01etcd,kub
  • Linux之ansible的playbook剧本(yaml文件) 小橞 linuxansible运维服务器
    playbook剧本一个剧本(即playbook),可以包含多个play每个play用于在指定的主机上,通过模块和参数执行相应的任务每个play可以包含多个任务。任务有模块和参数构成。paly要建立在ansible文件夹下才能使用因为yaml文件对格式要求很严格所有本人在编写时会设置一下vim编译器的一些功能格式setai:自动缩进setts=2:设置tab键缩进两个空格setet:将tab键转换
  • ansible_find模块 打败404 ansiblelinux
    found_files:changed:falsefiles:-path:/etc/yum.repos.d/example1.repomode:'0644'size:1542-path:/etc/yum.repos.d/example2.repomode:'0644'size:2842matched:21.find模块返回的格式2.在后面调用的时候按照相应的key取对应的value3.支持正则表达
  • ansible入门 打败404 运维linuxansible
    一、ansible简介1、ansible是什么?ansible是目前最受运维欢迎的自动化运维工具,基于Python开发,集合了众多运维工具(SaltStackpuppet、chef、func、fabric)的优点,实现了批量系统配置、批量程序部署、批量运行命令等功能。ansible是基于paramiko开发的,并且基于模块化工作,本身没有批量部署的能力。真正具有批量部署的是ansible所运行的模
  • 使用Ansible实现高效服务器配置管理的最佳实践 范范0825 ansible服务器运维
    使用Ansible实现高效服务器配置管理的最佳实践在现代IT运维中,服务器的配置管理是一个关键环节。传统的手动配置方法不仅耗时耗力,而且容易出错,特别是在规模庞大的服务器集群中,配置的一致性难以保证。Ansible作为一款无代理的自动化运维工具,通过其易用性和灵活性,提供了一种高效的服务器配置管理解决方案。本指南将从基础到高级应用,详细介绍使用Ansible实现高效服务器配置管理的最佳实践。目录什
  • 使用ansible的剧本制作salt-master与salt-minion的安装与启动服务过程 qq_42750608 linuxansibleansible
    虚拟机版本:RockyLinuxrelease8.6(GreenObsidian)准备几台虚拟机ipv4地址主机名192.168.137.13center192.168.137.14sp-1192.168.137.15sp-2192.168.137.16sp-3一、center主机的配置1.vim/etc/hosts127.0.0.1localhostlocalhost.localdomainlo
  • Ansible Tower与AWX:构建可视化的运维自动化解决方案 勤劳兔码农 运维ansible自动化
    AnsibleTower与AWX:构建可视化的运维自动化解决方案引言随着企业数字化转型的深入,运维自动化逐渐成为IT管理的重要组成部分。Ansible作为一种简单、灵活且功能强大的自动化工具,广泛应用于配置管理、应用部署和任务自动化中。然而,在大规模、复杂的企业环境中,单纯使用Ansible命令行来管理和执行任务,难以满足对自动化流程的可视化、可审计和权限管理等高级需求。为了解决这些问题,RedH
  • Ansible在CentOS下批量部署Nginx到Kubernetes集群 酱江奖 RHELzabbix自学ansiblecentosnginx
    在现代云计算环境中,Kubernetes(简称K8s)作为容器编排平台的标准,广泛应用于应用程序的管理和部署。Ansible作为一种自动化运维工具,可以帮助我们高效地完成各种任务,包括在Kubernetes集群上部署应用。本文将详细介绍如何在CentOS操作系统中使用Ansible来批量部署Nginx服务至Kubernetes环境,并通过具体示例说明每一步的操作。环境准备1.安装Ansible确保
  • 双vip高可用的MySQL集群 Hi,你好啊 数据库mysql数据库高可用
    文章目录项目介绍项目架构项目环境项目步骤环境准备Ansible服务器部署1、安装Ansible2、配置免密登录3、修改Ansible的主机清单Prometheus部署1、下载软件包2、二进制安装PrometheusServer3、通过服务管理Prometheus4、安装node_exporter5、安装mysqld_exporter6、添加被监控的服务器部署MySQL集群(基于GTID的半同步)1
  • 【DevOps工具篇】使用Ansible部署Keycloak oauth2proxy 和 单点登录(SSO)设置 小涵 DevOps企业级项目实战devopsansible运维ldapkeycloakproxyoauth
    【DevOps工具篇】使用Ansible部署Keycloakoauth2proxy和单点登录(SSO)设置目录【DevOps工具篇】使用Ansible部署Keycloakoauth2proxy和单点登录(SSO)设置Ansible基础知识部署Keycloak创建OIDC-客户端创建oauth2proxy部署顶级AnsiblePlaybookHost.iniplaybook.yaml推荐超级课程:D
  • ansible register 之用法 图灵AI云 ansibleansibleregister
    ansibleregister这个功能非常有用。当我们需要判断对执行了某个操作或者某个命令后,如何做相应的响应处理(执行其他ansible语句),则一般会用到register。举个例子:我们需要判断sda6是否存在,如果存在了就执行一些相应的脚本,则可以为该判断注册一个register变量,并用它来判断是否存在,存在返回succeeded,失败就是failed.-name:Createaregis
  • linux自动化运维之ansible实战 浓黑的daidai 运维自动化ansible
    ansible基础介绍优点-相比于saltatack和puppet,没有客户端,更轻量级-只是一个工具,可以很容易实现分布式拓展-更强的远程执行命令特点-模块化-支持自定义模块,可以用任何语言编写模块-基于python语言实现-部署简单,基于python和ssh,agentless,无需代理-安全安装yum安装首先安装epel源:yuminstallepel-release-y下载ansible:
  • ansible实战自动化运维项目 清风 001 Linux系统运维
    Ansible是一个强大的自动化工具,广泛应用于配置管理、应用部署、任务自动化和IT环境编排。在实际生产环境中,Ansible可以帮助运维团队高效地管理服务器、应用和服务。以下是一个详细的Ansible自动化运维项目的生产实际案例,包括代码和详细讲解。项目背景假设我们有一个Web应用,需要在多台服务器上进行部署和配置。我们使用Ansible来自动化以下任务:安装必要的软件包。部署应用代码。配置和启
  • python自动化运维项目实战_全网稀缺的Python/Django/Ansible Playbook自动化运维项目实战视频课程... weixin_39977642 python自动化运维项目实战
    配置文件properties比yml优先级高SpringBoot使用一个全句的配置文件,配置文件名是固定的;application.propertiesapplication.yml配置文件的作用:修改SpringBoot自动配置的默认值,SpringBoot在底层都给我们自动配置好了。YAML,是/不是一个标记语言标记语言:以前的配置文件:xxx.xmlyaml:以数据为中心,比json、xml
  • ansible自动化运维 芷阳99 自动化运维运维ansible自动化
    1、ansble介绍ansble为一款批量化处理系统配置的服务,对批量化系统部署、批量程序部署、批量运行命令、批量修改服务、批量安装软件包、批量修改配置等诸多功能。ansible基于SSH架构,含有丰富的模块,支持win、路由器、交换机远程操作。查看playbook的网址:https://galaxy.ansible.com2、ansble部署环境准备ansible:192.168.4.10nod
  • ansible自动化运维项目 不会代码的小林 运维
    Ansible是一个基于Python开发的开源自动化运维工具,它通过其模块化的架构和强大的功能,实现了配置管理、批量系统配置、程序部署和运行命令等任务,旨在帮助运维工程师提高工作效能并减少重复性劳动。下面将深入探讨Ansible在自动化运维项目中的具体应用和优势:Ansible的基础架构与组件核心组件:Ansible的运作依赖于几个关键组件,包括连接插件、主机清单、模块、插件以及剧本。其中,连接插
  • ansible自动化运维项目 shiming8879 运维ansible自动化
    在MySQL中创建数据库和表是数据库管理的基础步骤,它们构成了数据存储和操作的基础结构。下面,我将详细介绍如何在MySQL中创建数据库和表,包括创建数据库的基本语法、设计表的考虑因素、表的创建过程、数据类型和约束的使用等,力求内容详尽且不少于2000字。一、创建数据库在MySQL中,数据库是一个创建简单的操作,使用CREATEDATABASE语句即可完成。这个语句允许你指定数据库的名称,并可选地指
  • 使用Ansible进行自动化运维 weixin_58606202 运维ansible自动化
    引言简介自动化运维在现代IT基础架构管理中扮演着重要角色。通过自动化,我们可以提高效率、减少人为错误和加速部署流程。本篇文章将深入介绍如何使用Ansible这款强大的工具来实现自动化运维,帮助你简化服务器管理和配置任务。什么是Ansible?Ansible是一款开源的自动化工具,基于Python开发,不需要在被管理的节点上安装任何客户端代理。它采用一种简洁的YAML格式来编写配置文件,通过SSH协
  • Ansible基础安装与配置 powerx_yc pythonshell开发工具
    ==========================================================================================二、Ansible基础安装与配置==========================================================================================1、An
  • 使用Ansible-playbook 自建CA,并签发客户端IP证书 运维小弟| srebro.cn 运维ansible网络ssl
    使用Ansible-playbook自建CA,并签发客户端IP证书需求使用Ansible-playbook来签发客户端IP证书签发单个IP地址,比如脚本中使用{{inventory_hostname}}来获取主机的IP地址作为证书签发地址----name:GenerateandsignclientIPcertificatehosts:nginxbecome:truevars:#CAsettings
  • paramiko CryptographyDeprecationWarning weixin_34228387
    报错如图:解决:importwarningswarnings.filterwarnings(action='ignore',module='.*paramiko.*')复制代码详细可以看:github.com/ansible/ans…
  • 执行ansible报CryptographyDeprecationWarning rockstics ansiblepython开发语言
    现象:执行ansible报CryptographyDeprecationWarning/usr/local/lib/python3.6/site-packages/ansible/parsing/vault/init.py:44:CryptographyDeprecationWarning:Python3.6isnolongersupportedbythePythoncoreteam.Theref
  • 探索Ansible自动化运维:提高效率的关键工具 一个代码猎人 笔记本自动化部署/运维运维ansible自动化
    探索Ansible自动化运维:提高效率的关键工具在现代IT环境中,自动化已经成为提高效率、减少错误和优化资源利用的重要手段。作为一款领先的开源自动化工具,Ansible在运维、配置管理和应用部署等方面得到了广泛应用。本文将介绍Ansible的核心概念,并通过一个实际项目示例,展示如何利用Ansible来实现自动化运维。1.Ansible简介Ansible是由RedHat开发的一款自动化工具,旨在简
  • ansible详解 husterlichf ansibleansible
    一、语法usage:ansible[-h][--version][-v][-b][--become-methodBECOME_METHOD][--become-userBECOME_USER][-K|--become-password-fileBECOME_PASSWORD_FILE][-iINVENTORY][--list-hosts][-lSUBSET][-PPOLL_INTERVAL][-B
  • ios内付费 374016526 ios内付费
    近年来写了很多IOS的程序,内付费也用到不少,使用IOS的内付费实现起来比较麻烦,这里我写了一个简单的内付费包,希望对大家有帮助。   具体使用如下: 这里的sender其实就是调用者,这里主要是为了回调使用。 [KuroStoreApi kuroStoreProductId:@"产品ID" storeSender:self storeFinishCallBa
  • 20 款优秀的 Linux 终端仿真器 brotherlamp linuxlinux视频linux资料linux自学linux教程
      终端仿真器是一款用其它显示架构重现可视终端的计算机程序。换句话说就是终端仿真器能使哑终端看似像一台连接上了服务器的客户机。终端仿真器允许最终用户用文本用户界面和命令行来访问控制台和应用程序。(LCTT 译注:终端仿真器原意指对大型机-哑终端方式的模拟,不过在当今的 Linux 环境中,常指通过远程或本地方式连接的伪终端,俗称“终端”。) 你能从开源世界中找到大量的终端仿真器,它们
  • Solr Deep Paging(solr 深分页) eksliang solr深分页solr分页性能问题
    转载请出自出处:http://eksliang.iteye.com/blog/2148370 作者:eksliang(ickes) blg:http://eksliang.iteye.com/ 概述 长期以来,我们一直有一个深分页问题。如果直接跳到很靠后的页数,查询速度会比较慢。这是因为Solr的需要为查询从开始遍历所有数据。直到Solr的4.7这个问题一直没有一个很好的解决方案。直到solr
  • 数据库面试题 18289753290 面试题 数据库
    1.union ,union all 网络搜索出的最佳答案: union和union all的区别是,union会自动压缩多个结果集合中的重复结果,而union all则将所有的结果全部显示出来,不管是不是重复。 Union:对两个结果集进行并集操作,不包括重复行,同时进行默认规则的排序; Union All:对两个结果集进行并集操作,包括重复行,不进行排序; 2.索引有哪些分类?作用是
  • Android TV屏幕适配 酷的飞上天空 android
    先说下现在市面上TV分辨率的大概情况 两种分辨率为主 1.720标清,分辨率为1280x720. 屏幕尺寸以32寸为主,部分电视为42寸 2.1080p全高清,分辨率为1920x1080 屏幕尺寸以42寸为主,此分辨率电视屏幕从32寸到50寸都有   适配遇到问题,已1080p尺寸为例: 分辨率固定不变,屏幕尺寸变化较大。 如:效果图尺寸为1920x1080,如果使用d
  • Timer定时器与ActionListener联合应用 永夜-极光 java
    功能:在控制台每秒输出一次   代码: package Main; import javax.swing.Timer; import java.awt.event.*; public class T { private static int count = 0; public static void main(String[] args){
  • Ubuntu14.04系统Tab键不能自动补全问题解决 随便小屋 Ubuntu 14.04
    Unbuntu 14.4安装之后就在终端中使用Tab键不能自动补全,解决办法如下:   1、利用vi编辑器打开/etc/bash.bashrc文件(需要root权限) sudo vi /etc/bash.bashrc  接下来会提示输入密码 2、找到文件中的下列代码 #enable bash completion in interactive shells #if
  • 学会人际关系三招 轻松走职场 aijuans 职场
    要想成功,仅有专业能力是不够的,处理好与老板、同事及下属的人际关系也是门大学问。如何才能在职场如鱼得水、游刃有余呢?在此,教您简单实用的三个窍门。   第一,多汇报 最近,管理学又提出了一个新名词“追随力”。它告诉我们,做下属最关键的就是要多请示汇报,让上司随时了解你的工作进度,有了新想法也要及时建议。不知不觉,你就有了“追随力”,上司会越来越了解和信任你。   第二,勤沟通 团队的力
  • 《O2O:移动互联网时代的商业革命》读书笔记 aoyouzi 读书笔记
    移动互联网的未来:碎片化内容+碎片化渠道=各式精准、互动的新型社会化营销。   O2O:Online to OffLine 线上线下活动 O2O就是在移动互联网时代,生活消费领域通过线上和线下互动的一种新型商业模式。   手机二维码本质:O2O商务行为从线下现实世界到线上虚拟世界的入口。   线上虚拟世界创造的本意是打破信息鸿沟,让不同地域、不同需求的人
  • js实现图片随鼠标滚动的效果 百合不是茶 JavaScript滚动属性的获取图片滚动属性获取页面加载
    1,获取样式属性值 top 与顶部的距离 left 与左边的距离 right 与右边的距离 bottom 与下边的距离 zIndex 层叠层次     例子:获取左边的宽度,当css写在body标签中时 <div id="adver" style="position:absolute;top:50px;left:1000p
  • ajax同步异步参数async bijian1013 jqueryAjaxasync
            开发项目开发过程中,需要将ajax的返回值赋到全局变量中,然后在该页面其他地方引用,因为ajax异步的原因一直无法成功,需将async:false,使其变成同步的。         格式: $.ajax({ type: 'POST', ur
  • Webx3框架(1) Bill_chen eclipsespringmaven框架ibatis
    Webx是淘宝开发的一套Web开发框架,Webx3是其第三个升级版本;采用Eclipse的开发环境,现在支持java开发; 采用turbine原型的MVC框架,扩展了Spring容器,利用Maven进行项目的构建管理,灵活的ibatis持久层支持,总的来说,还是一套很不错的Web框架。 Webx3遵循turbine风格,velocity的模板被分为layout/screen/control三部
  • 【MongoDB学习笔记五】MongoDB概述 bit1129 mongodb
    MongoDB是面向文档的NoSQL数据库,尽量业界还对MongoDB存在一些质疑的声音,比如性能尤其是查询性能、数据一致性的支持没有想象的那么好,但是MongoDB用户群确实已经够多。MongoDB的亮点不在于它的性能,而是它处理非结构化数据的能力以及内置对分布式的支持(复制、分片达到的高可用、高可伸缩),同时它提供的近似于SQL的查询能力,也是在做NoSQL技术选型时,考虑的一个重要因素。Mo
  • spring/hibernate/struts2常见异常总结 白糖_ Hibernate
    Spring ①ClassNotFoundException: org.aspectj.weaver.reflect.ReflectionWorld$ReflectionWorldException 缺少aspectjweaver.jar,该jar包常用于spring aop中   ②java.lang.ClassNotFoundException: org.sprin
  • jquery easyui表单重置(reset)扩展思路 bozch formjquery easyuireset
    在jquery easyui表单中 尚未提供表单重置的功能,这就需要自己对其进行扩展。 扩展的时候要考虑的控件有: combo,combobox,combogrid,combotree,datebox,datetimebox 需要对其添加reset方法,reset方法就是把初始化的值赋值给当前的组件,这就需要在组件的初始化时将值保存下来。 在所有的reset方法添加完毕之后,就需要对fo
  • 编程之美-烙饼排序 bylijinnan 编程之美
    package beautyOfCoding; import java.util.Arrays; /* *《编程之美》的思路是:搜索+剪枝。有点像是写下棋程序:当前情况下,把所有可能的下一步都做一遍;在这每一遍操作里面,计算出如果按这一步走的话,能不能赢(得出最优结果)。 *《编程之美》上代码有很多错误,且每个变量的含义令人费解。因此我按我的理解写了以下代码: */
  • Struts1.X 源码分析之ActionForm赋值原理 chenbowen00 struts
    struts1在处理请求参数之前,首先会根据配置文件action节点的name属性创建对应的ActionForm。如果配置了name属性,却找不到对应的ActionForm类也不会报错,只是不会处理本次请求的请求参数。 如果找到了对应的ActionForm类,则先判断是否已经存在ActionForm的实例,如果不存在则创建实例,并将其存放在对应的作用域中。作用域由配置文件action节点的s
  • [空天防御与经济]在获得充足的外部资源之前,太空投资需有限度 comsci 资源
          这里有一个常识性的问题:       地球的资源,人类的资金是有限的,而太空是无限的.....       就算全人类联合起来,要在太空中修建大型空间站,也不一定能够成功,因为资源和资金,技术有客观的限制.... &
  • ORACLE临时表—ON COMMIT PRESERVE ROWS daizj oracle临时表
    ORACLE临时表 转 临时表:像普通表一样,有结构,但是对数据的管理上不一样,临时表存储事务或会话的中间结果集,临时表中保存的数据只对当前 会话可见,所有会话都看不到其他会话的数据,即使其他会话提交了,也看不到。临时表不存在并发行为,因为他们对于当前会话都是独立的。 创建临时表时,ORACLE只创建了表的结构(在数据字典中定义),并没有初始化内存空间,当某一会话使用临时表时,ORALCE会
  • 基于Nginx XSendfile+SpringMVC进行文件下载 denger 应用服务器Webnginx网络应用lighttpd
        在平常我们实现文件下载通常是通过普通 read-write方式,如下代码所示。 @RequestMapping("/courseware/{id}") public void download(@PathVariable("id") String courseID, HttpServletResp
  • scanf接受char类型的字符 dcj3sjt126com c
    /* 2013年3月11日22:35:54 目的:学习char只接受一个字符 */ # include <stdio.h> int main(void) { int i; char ch; scanf("%d", &i); printf("i = %d\n", i); scanf("%
  • 学编程的价值 dcj3sjt126com 编程
    发一个人会编程, 想想以后可以教儿女, 是多么美好的事啊, 不管儿女将来从事什么样的职业, 教一教, 对他思维的开拓大有帮助   像这位朋友学习:   http://blog.sina.com.cn/s/articlelist_2584320772_0_1.html   VirtualGS教程 (By @林泰前): 几十年的老程序员,资深的
  • 二维数组(矩阵)对角线输出 飞天奔月 二维数组
    今天在BBS里面看到这样的面试题目,   1,二维数组(N*N),沿对角线方向,从右上角打印到左下角如N=4: 4*4二维数组  { 1 2 3 4 } { 5 6 7 8 } { 9 10 11 12 } {13 14 15 16 } 打印顺序  4 3 8 2 7 12 1 6 11 16 5 10 15 9 14 13 要
  • Ehcache(08)——可阻塞的Cache——BlockingCache 234390216 并发ehcacheBlockingCache阻塞
    可阻塞的Cache—BlockingCache          在上一节我们提到了显示使用Ehcache锁的问题,其实我们还可以隐式的来使用Ehcache的锁,那就是通过BlockingCache。BlockingCache是Ehcache的一个封装类,可以让我们对Ehcache进行并发操作。其内部的锁机制是使用的net.
  • mysqldiff对数据库间进行差异比较 jackyrong mysqld
      mysqldiff该工具是官方mysql-utilities工具集的一个脚本,可以用来对比不同数据库之间的表结构,或者同个数据库间的表结构    如果在windows下,直接下载mysql-utilities安装就可以了,然后运行后,会跑到命令行下: 1) 基本用法    mysqldiff --server1=admin:12345
  • spring data jpa 方法中可用的关键字 lawrence.li javaspring
    spring data jpa 支持以方法名进行查询/删除/统计。 查询的关键字为find 删除的关键字为delete/remove (>=1.7.x) 统计的关键字为count (>=1.7.x)   修改需要使用@Modifying注解 @Modifying @Query("update User u set u.firstna
  • Spring的ModelAndView类 nicegege spring
    项目中controller的方法跳转的到ModelAndView类,一直很好奇spring怎么实现的? /* * Copyright 2002-2010 the original author or authors. * * Licensed under the Apache License, Version 2.0 (the "License"); * yo
  • 搭建 CentOS 6 服务器(13) - rsync、Amanda rensanning centos
    (一)rsync Server端 # yum install rsync # vi /etc/xinetd.d/rsync service rsync { disable = no flags = IPv6 socket_type = stream wait
  • Learn Nodejs 02 toknowme nodejs
    (1)npm是什么 npm is the package manager for node 官方网站:https://www.npmjs.com/ npm上有很多优秀的nodejs包,来解决常见的一些问题,比如用node-mysql,就可以方便通过nodejs链接到mysql,进行数据库的操作 在开发过程往往会需要用到其他的包,使用npm就可以下载这些包来供程序调用 &nb
  • Spring MVC 拦截器 xp9802 spring mvc
    Controller层的拦截器继承于HandlerInterceptorAdapter HandlerInterceptorAdapter.java  1  public   abstract   class  HandlerInterceptorAdapter  implements  HandlerIntercep
按字母分类: ABCDEFGHIJKLMNOPQRSTUVWXYZ其他