Ansible自动化运维笔记1(安装配置)

时间:2022-01-07 21:53:53

1.Ansible的安装

pip install ansible==1.9.1

ansible1.9.1版本依赖的软件有

Python2.6以上版本
paramiko模块
PyYAML
Jinja2
httplib2

被管理端linux需要有python2.6以上的环境

2.Ansible配置运行环境

1.配置文件路径

ini格式存储数据形式
ansible配置文件的查找顺序
(1).检查环境变量ANSIBLE_CONFIG指向的路径文件(export ANSIBLE_CONFIG=/etc/ansible.cfg)
(2).~/.ansible.cfg,检查当前目录下的ansible.cfg配置文件
(3)./etc/ansible.cfg 检查etc目录的配置文件

2.配置文件配置项

1.inventory:主机清单文件
2.libray:指向存放ansible模块的目录,
3.forks: 多进程跑任务,多进程数
4.sudo_user: 默认执行命令的用户
5.remote_port: 连接节点的管理端口,默认22
6.host_key_checking:是否检查ssh主机的秘钥,值可以写作true和false;(known_hosts中有了之前不通的秘钥信息,忽略)
7.timeout: 设置ssh连接的超时时间,单位是秒,不是数据返回的超时,切记
8.log_path: ansible默认是不记录日志的,如果要输出记录到日志文件中,可以设置一个文件存储ansible日志的文件(log_path = /var/log/ansible.log),模块会调用节点的syslog来记录,口令不会出现在日志中

3.无密码,公钥访问

# 管理端生成自己的公钥
$ ssh-keygen
(一路回车)
# 把公钥分发到节点上
$ ssh-copy-id -i /root/.ssh/id_rsa.pub root@192.168.1.111
# 连接测试
$ ssh root@192.168.1.111

3.Ansible小试身手

[admin@host-10-187-196-225 ~]$ ansible --version
ansible 1.9.1
  configured module search path = None

1.联通性测试
/tmp/hosts(里面写一条数据10.187.109.116)
Ansible自动化运维笔记1(安装配置)

2.分组主机都进行联通性检测

vim /tmp/hosts

[webservers]
10.187.109.116
10.189.92.46

Ansible自动化运维笔记1(安装配置)

4.Ansible在被管理节点上执行命令

使用ansible提供的shell模块来跑
Ansible自动化运维笔记1(安装配置)

5.Ansible的帮助信息

ansible-doc工具的使用
1.ansible-doc -l列出可使用的模块

[admin@host-10-187-196-225 tmp]$ ansible-doc -l
less 436
Copyright (C) 1984-2009 Mark Nudelman

less comes with NO WARRANTY, to the extent permitted by law.
For information about the terms of redistribution,
see the file named README in the less distribution.
Homepage: http://www.greenwoodsoftware.com/less
a10_server                    Manage A10 Networks AX/SoftAX/Thunder/vThunder devices                                                                                                     
a10_service_group             Manage A10 Networks AX/SoftAX/Thunder/vThunder devices                                                                                                     
a10_virtual_server            Manage A10 Networks AX/SoftAX/Thunder/vThunder devices                                                                                                     
acl                           Sets and retrieves file ACL information.                                                                                                                   
add_host                      add a host (and alternatively a group) to the ansible-playbook in-memory inventory                                                                         
airbrake_deployment           Notify airbrake about app deployments                                                                                                                      
alternatives                  Manages alternative programs for common commands                                                                                                           
apache2_module                enables/disables a module of the Apache2 webserver                                                                                                         
apt                           Manages apt-packages                                                                                                                                       
apt_key                       Add or remove an apt key                                                                                                                                   
apt_repository                Add and remove APT repositories                                                                                                                            
apt_rpm                       apt_rpm package manager                                                                                                                                    
assemble                      Assembles a configuration file from fragments                                                                                                              
assert                        Fail with custom message                                                                                                                                   
at                            Schedule the execution of a command or script file via the at command.                                                                                     
authorized_key                Adds or removes an SSH authorized key                                                                                                                      
azure                         create or terminate a virtual machine in azure                                                                                                             
bigip_facts                   Collect facts from F5 BIG-IP devices                                                                                                                       
bigip_monitor_http            Manages F5 BIG-IP LTM http monitors                                                                                                                        
bigip_monitor_tcp             Manages F5 BIG-IP LTM tcp monitors                                                                                                                         
bigip_node                    Manages F5 BIG-IP LTM nodes                                                                                                                                
bigip_pool                    Manages F5 BIG-IP LTM pools                                                                                                                                
bigip_pool_member             Manages F5 BIG-IP LTM pool members                                                                                                                         
bigpanda                      Notify BigPanda about deployments                                                                                                                          
boundary_meter                Manage boundary meters                                                                                                                                     
bower                         Manage bower packages with bower                                                                                                                           
bzr                           Deploy software (or files) from bzr branches                                                                                                               
campfire                      Send a message to Campfire                                                                                                                                 
capabilities                  Manage Linux capabilities                                                                                                                                  
cloudformation                create a AWS CloudFormation stack                                                                                                                          
command                       Executes a command on a remote node                                                                                                                        
composer                      Dependency Manager for PHP                                                                                                                                 
copy                          Copies files to remote locations.                                                                                                                          
cpanm                         Manages Perl library dependencies.                                                                                                                         
cron                          Manage cron.d and crontab entries.                                                                                                                         
crypttab                      Encrypted Linux block devices                                                                                                                              
datadog_event                 Posts events to DataDog  service                                                                                                                           
debconf                       Configure a .deb package                                                                                                                                   
debug                         Print statements during execution                                                                                                                          
digital_ocean                 Create/delete a droplet/SSH_key in DigitalOcean                                                                                                            
digital_ocean_domain          Create/delete a DNS record in DigitalOcean                                                                                                                 
digital_ocean_sshkey          Create/delete an SSH key in DigitalOcean                                                                                                                   
django_manage                 Manages a Django application.

2.ansible-doc -s列出模块支持的动作

[admin@host-10-187-196-225 tmp]$ ansible-doc -s shell
less 436
Copyright (C) 1984-2009 Mark Nudelman

less comes with NO WARRANTY, to the extent permitted by law.
For information about the terms of redistribution,
see the file named README in the less distribution.
Homepage: http://www.greenwoodsoftware.com/less
- name: E x e c u t e   c o m m a n d s   i n   n o d e s .
  action: shell
      chdir                  # cd into this directory before running the command
      creates                # a filename, when it already exists, this step will *not* be run.
      executable             # change the shell used to execute the command. Should be an absolute path to the executable.
      free_form=             # The shell module takes a free form command to run, as a string. There's not an actual option named "free form". See the examples!
      removes                # a filename, when it does not exist, this step will *not* be run.
      warn                   # if command warnings are on in ansible.cfg, do not warn about this particular line if set to no/false.

3.ansible-doc 模块名 显示该模块的描述和使用示例

$ ansible-doc shell
> SHELL

  The [shell] module takes the command name followed by a list of
  space-delimited arguments. It is almost exactly like the [command]
  module but runs the command through a shell (`/bin/sh') on the
 remote node.

Options (= is mandatory):

- chdir
 cd into this directory before running the command [Default:
 None]

- creates
 a filename, when it already exists, this step will *not* be
 run. [Default: None]

- executable
 change the shell used to execute the command. Should be an
 absolute path to the executable. [Default: None]

= free_form
 The shell module takes a free form command to run, as a
 string. There's not an actual option named "free form".  See
        the examples! [Default: None]

- removes
        a filename, when it does not exist, this step will *not* be
        run. [Default: None]

- warn
        if command warnings are on in ansible.cfg, do not warn about
        this particular line if set to no/false. [Default: True]

Notes:  If you want to execute a command securely and predictably, it may be
        better to use the [command] module instead. Best practices
        when writing playbooks will follow the trend of using
        [command] unless [shell] is explicitly required. When running
        ad-hoc commands, use your best judgement. To sanitize any
        variables passed to the shell module, you should use "{{ var |
 quote }}" instead of just "{{ var }}" to make sure they don't
 include evil things like semicolons.

EXAMPLES:
# Execute the command in remote shell; stdout goes to the specified
# file on the remote.
- shell: somescript.sh >> somelog.txt

# Change the working directory to somedir/ before executing the command.
- shell: somescript.sh >> somelog.txt chdir=somedir/

# You can also use the 'args' form to provide the options. This command
# will change the working directory to somedir/ and will only run when
# somedir/somelog.txt doesn't exist.
- shell: somescript.sh >> somelog.txt
  args:
    chdir: somedir/
    creates: somelog.txt

4.ansible调试脚本过程中,获取执行过程详细信息,后面加上-vvv
Ansible自动化运维笔记1(安装配置)