本文档详细介绍了如何使用Ansible在两台主机上进行Apache HTTP服务器的源码安装。首先配置了主机名和DNS解析,然后通过SSH免密登录设置。接着,创建项目文件夹并下载必要的源码包,编写主机变量和安装脚本。最后,通过Ansible playbook执行安装步骤,并关闭防火墙和SELinux以允许HTTP访问。
文章目录
Ansible源码安装apache
ansible源码安装apache
准备两台主机
| hostname | ip |
|---|---|
| master | 192.168.91.128 |
| node2 | 192.168.91.130 |
添加域名解析
[root@master ~]# vim /etc/hosts
127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
192.168.91.130 node2
配合SSH免密登陆
[root@master ~]# ssh-keygen -t rsa #生成密钥,指定加密方式 ,下面默认一路回车即可
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Created directory '/root/.ssh'.
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
SHA256:m9UgEbkFLID4MnlRrsmn76K0ARRhb6NEScTM1etAfEM root@ansible
The key's randomart image is:
+---[RSA 3072]----+
|*O=+=E .++ |
|+==+ +. o.. |
| =.=o o..o. |
|*.=+.. .. o |
|.=+ + S . . |
|. o . + |
| o. o |
|. +. |
|.o oo |
+----[SHA256]-----+
[root@master ~]# ssh-copy-id root@node2 #传递公钥
/usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: "/root/.ssh/id_rsa.pub"
The authenticity of host 'httpd (192.168.91.130)' can't be established.
ECDSA key fingerprint is SHA256:+wH81RHiBmLpbkuk2OWGZxVRziiaNwJ9KAVjGtEM8zs.
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
root@httpd's password:
Number of key(s) added: 1
Now try logging into the machine, with: "ssh 'root@node2'"
and check to make sure that only the key(s) you wanted were added.
创建项目文件夹
[root@master project]# tree /opt/project/
/opt/project/
├── ansible.cfg
├── group_vars
├── host_vars
│ ├── 192.168.91.129
│ └── gaofan.yml
├── inventories
├── packages
│ ├── apr-1.7.0.tar.gz
│ ├── apr-util-1.6.1.tar.gz
│ └── httpd-2.4.48.tar.gz
└── playbook
├── files
│ └── vsftpd.conf
├── firewalld.yml
├── httpd-install.yml
├── httpd_size.yml
├── test.yml
├── user.yml
├── vars
│ ├── run
│ ├── runtime.yml
│ └── run.yml
└── vsftpd.yml
下载源码包
apr源码包地址: https://mirrors.tuna.tsinghua.edu.cn/apache/apr/apr-1.7.0.tar.gz
httpd源码包地址: https://mirrors.tuna.tsinghua.edu.cn/apache/httpd/httpd-2.4.48.tar.gz
apr_util源码包地址: https://mirrors.tuna.tsinghua.edu.cn/apache/apr/apr-util-1.6.1.tar.gz
[root@master ~] wget https://mirrors.tuna.tsinghua.edu.cn/apache/apr/apr-1.7.0.tar.gz
[root@master ~] wget https://mirrors.tuna.tsinghua.edu.cn/apache/httpd/httpd-2.4.48.tar.gz
[root@master ~] wget https://mirrors.tuna.tsinghua.edu.cn/apache/apr/apr-util-1.6.1.tar.gz
[root@master ~] mv apr-1.7.0.tar.gz apr-util-1.6.1.tar.gz httpd-2.4.48.tar.gz /opt/project/packages/
编写主机变量文件 gaofan.yml文件
[root@master ~]# vim /opt/project/host_vars/gaofan.yml
---
# 编译工具
tools: gcc,gcc-c++,perl,perl-devel,expat-devel,pcre-devel,pcre
# 编译安装apr
apr_install: " cd /root/apr-1.7.0/ && ./configure --prefix=/usr/local/apr && make && make install "
# 编译安装apr-util
apr_util_intall: " cd /root/apr-util-1.6.1/ && ./configure --prefix=/usr/local/apr-util --with-apr=/usr/local/apr && make && make install "
# 编译安装httpd
httpd_install: " cd /root/httpd-2.4.48/ && ./configure --prefix=/usr/local/httpd --with-apr=/usr/local/apr --with-apr-util=/usr/local/apr-util && make && make install "
编写源码安装apache文件httpd_size.yml文件
[root@master ~]# vim /opt/project/playbook/httpd_size.yml
---
- hosts: httpd
vars_files:
- /opt/project/host_vars/gaofan.yml #指定变量文件
tasks:
- name: install server tools #安装编译工具
yum:
name: "{{ tools }}"
state: present
- name: copy package apr #将本地压缩包解压后,传到远程主机上
unarchive:
src: /opt/project/packages/apr-1.7.0.tar.gz
dest: /root/
copy: yes
- name: copy package apr-util
unarchive:
src: /opt/project/packages/apr-util-1.6.1.tar.gz
dest: /root/
copy: yes
- name: copy package httpd
unarchive:
src: /opt/project/packages/httpd-2.4.48.tar.gz
dest: /root/
copy: yes
- name: create group apache # 创建apache使用的用户和组
group:
name: apache
system: yes
state: present
- name: create user apache
user:
name: apache
system: yes
state: present
- name: install apr
shell: " {{ apr_install }}" #运行变量
- name: intall apr-util
shell: " {{ apr_util_intall }}"
- name: install httpd
shell: " {{ httpd_install }} "
- name: start httpd service #开启服务
shell: " /usr/local/httpd/bin/apachectl start "
执行playbook文件
[root@master project]# ansible-playbook playbook/httpd_size.yml
关闭防火墙和selinux
[root@master project]# ansible all -m shell -a "systemctl stop firewalld"
node2 | CHANGED | rc=0 >>
[root@master project]# ansible all -m shell -a "systemctl disable firewalld"
node2 | CHANGED | rc=0 >>
Removed /etc/systemd/system/multi-user.target.wants/firewalld.service.
Removed /etc/systemd/system/dbus-org.fedoraproject.FirewallD1.service.
[root@master project]# ansible all -m shell -a "setenforce 0"
node2 | CHANGED | rc=0 >>
用IP访问,查看httpd安装情况
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
