SaltStack配置管理之系统初始化
# cd /srv/salt/base/# ls
apache.slsdns.slsfilestop.sls
# mkdir init
# mv apache.sls dns.sls files/ /tmp/
# ll
总用量 8
drwxr-xr-x 2 root root 4096 11月 17 14:05 init
-rw-r--r-- 1 root root 23 11月 17 13:15 top.sls
# cp /tmp/dns.sls init/
# cd init/
# mkdir files
# cp /etc/resolv.conf files/
# cat /srv/salt/base/init/files/resolv.conf
#hehe
nameserver 10.0.0.2
# cat /srv/salt/base/init/dns.sls
/etc/resolv.conf:
file.managed:
- source: salt://init/files/resolv.conf
- user: root
- group: root
- mode: 644
场景1 记录历史命令:
# export PROMPT_COMMAND='{ msg=$(history 1 | { read x y; echo $y; });logger "":$(who am i):[`pwd`]"$msg";}'
# tailf /var/log/messages
Nov 17 14:25:24 linux-node1 root: :root pts/0 2015-11-17 10:44 (10.0.0.1):free -m
场景2 系统初始化
# cat dns.sls =========================>dns的sls文件
/etc/resolv.conf:
file.managed:
- source: salt://init/files/resolv.conf
- user: root
- group: root
- mode: 644
# cat history.sls =========================>历史记录的sls文件
/etc/profile:
file.append:
- text:
- export HISTTIMEFORMAT="%F %T `whoami`"
# cat audit.sls =========================>审计的sls文件
/etc/bashrc:
file.append:
- text:
- export PROMPT_COMMAND='{ msg=$(history 1 | { read x y; echo $y; });logger "":$(who am i):[`pwd`]"$msg";}'
修改内核参数:
# cat sysctl.sls
vm.swappiness:
sysctl.present:
- value: 0
net.ipv4.ip_local_port_range: ====================================>端口范围
sysctl.present:
- value: 10000 65000
fs.file-max: ====================================>可以打开的最大文件数
sysctl.present:
- value: 100000
# cat env_init.sls ====================================>将所有需要优化的参数include到env_init.sls文件里面
include:
- init.dns
- init.history
- init.audit
- init.sysctl
# cat /srv/salt/base/top.sls ====================================> top file文件
base:
'*':
- init.env_init
# salt '*' state.highstate test=True =====================>test=True 此处用test=True参数,测试系统究竟修改了哪些参数,如果没有错误再执行
# salt '*' state.highstate
页:
[1]