(六)saltstack项目实战_系统初始化
一、系统初始化1. 编写resolv.conf(dns) 文件
# cat /etc/salt/states/init/dns.sls
/etc/resolv.conf:
file.managed:
- source: salt://init/files/resolv.conf
- user: root
- group: root
- mode: 644
2. 给历史命令(history)添加时间
# cat /etc/salt/states/init/history.sls
/etc/profile:
file.append:
- text:
- export HISTTIMEFORMAT="%F %T `whoami`"
3. 编写命令审计功能
# cat audit.sls
/etc/bashrc
file.append:
- text:
- export PROMPT_COMMAND='{ msg=$(history 1 | { read x y; echo $y; });logger "":$(who am i):[`pwd`]"$msg"; }'
4.更改内核参数
# cat sysctl.sls
vm.swappiness:
sysctl.present:
- value: 0
net.ipv4.ip_local_port_range:
sysctl.present:
- value: 10000 65000
fs.file-max:
sysctl.present:
- value: 100000
5.集中管理上面4个配置文件
# cat env_init.sls
include:
- init.dns
- init.history
- init.audit
- init.sysctl
6.编写top.sls文件
# cd ..
# cat top.sls
base:
'*':
- init.env_init
7.执行salt
# salt '*' state.highstate test=True #模拟运行(生成环境运行方法)
8.查看minion端是否执行成功
# salt '*' state.highstate
# salt '*' cmd.run 'cat /etc/resolv.conf'
node2.bier.com:
; generated by /sbin/dhclient-script
search localdomain
nameserver 114.114.114.114
node3.bier.com:
; generated by /sbin/dhclient-script
search localdomain
nameserver 114.114.114.114
页:
[1]