aboutsummaryrefslogtreecommitdiff
path: root/configs
diff options
context:
space:
mode:
authorPasha <pasha@member.fsf.org>2022-08-16 21:48:31 +0000
committerPasha <pasha@member.fsf.org>2022-08-16 21:48:31 +0000
commit2195fa1ed94786e1f5a760b860e1ee8976e1ffe4 (patch)
tree3bcaa704511278c0d5d938b86a629a37d2409292 /configs
downloaddebian_openstack_installer-2195fa1ed94786e1f5a760b860e1ee8976e1ffe4.tar.gz
debian_openstack_installer-2195fa1ed94786e1f5a760b860e1ee8976e1ffe4.tar.bz2
initial commit
Diffstat (limited to 'configs')
-rw-r--r--configs/99-openstack.cnf8
-rw-r--r--configs/admin-openrc8
-rw-r--r--configs/database.sql29
-rw-r--r--configs/demo-openrc8
-rw-r--r--configs/dhcp_agent.ini4
-rw-r--r--configs/etcd10
-rw-r--r--configs/glance-api.conf37
-rw-r--r--configs/keystone.conf9
-rw-r--r--configs/linuxbridge_agent.ini12
-rw-r--r--configs/metadata_agent.ini8
-rw-r--r--configs/ml2_conf.ini14
-rw-r--r--configs/neutron.conf48
-rw-r--r--configs/nova.conf71
-rw-r--r--configs/nova2.conf70
-rw-r--r--configs/placement.conf17
15 files changed, 353 insertions, 0 deletions
diff --git a/configs/99-openstack.cnf b/configs/99-openstack.cnf
new file mode 100644
index 0000000..6aedbcb
--- /dev/null
+++ b/configs/99-openstack.cnf
@@ -0,0 +1,8 @@
+[mysqld]
+bind-address = REPLACE_WITH_OPENSTACK_HOST_IP
+
+default-storage-engine = innodb
+innodb_file_per_table = on
+max_connections = 4096
+collation-server = utf8_general_ci
+character-set-server = utf8
diff --git a/configs/admin-openrc b/configs/admin-openrc
new file mode 100644
index 0000000..edd9a2f
--- /dev/null
+++ b/configs/admin-openrc
@@ -0,0 +1,8 @@
+export OS_PROJECT_DOMAIN_NAME=default
+export OS_USER_DOMAIN_NAME=default
+export OS_PROJECT_NAME=admin
+export OS_USERNAME=admin
+export OS_PASSWORD=ADMIN_PASS
+export OS_AUTH_URL=http://REPLACE_WITH_HOST:5000/v3
+export OS_IDENTITY_API_VERSION=3
+export OS_IMAGE_API_VERSION=2
diff --git a/configs/database.sql b/configs/database.sql
new file mode 100644
index 0000000..faed5fd
--- /dev/null
+++ b/configs/database.sql
@@ -0,0 +1,29 @@
+CREATE DATABASE keystone;
+GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'localhost' IDENTIFIED BY 'keystone';
+GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'%' IDENTIFIED BY 'keystone';
+
+CREATE DATABASE glance;
+GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'localhost' IDENTIFIED BY 'glance';
+GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'%' IDENTIFIED BY 'glance';
+
+CREATE DATABASE placement;
+GRANT ALL PRIVILEGES ON placement.* TO 'placement'@'localhost' IDENTIFIED BY 'placement';
+GRANT ALL PRIVILEGES ON placement.* TO 'placement'@'%' IDENTIFIED BY 'placement';
+
+CREATE DATABASE nova_api;
+GRANT ALL PRIVILEGES ON nova_api.* TO 'nova'@'localhost' IDENTIFIED BY 'nova';
+GRANT ALL PRIVILEGES ON nova_api.* TO 'nova'@'%' IDENTIFIED BY 'nova';
+
+CREATE DATABASE nova;
+GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'localhost' IDENTIFIED BY 'nova';
+GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'%' IDENTIFIED BY 'nova';
+
+CREATE DATABASE nova_cell0;
+GRANT ALL PRIVILEGES ON nova_cell0.* TO 'nova'@'localhost' IDENTIFIED BY 'nova';
+GRANT ALL PRIVILEGES ON nova_cell0.* TO 'nova'@'%' IDENTIFIED BY 'nova';
+
+CREATE DATABASE neutron;
+GRANT ALL PRIVILEGES ON neutron.* TO 'neutron'@'localhost' IDENTIFIED BY 'neutron';
+GRANT ALL PRIVILEGES ON neutron.* TO 'neutron'@'%' IDENTIFIED BY 'neutron';
+
+FLUSH PRIVILEGES;
diff --git a/configs/demo-openrc b/configs/demo-openrc
new file mode 100644
index 0000000..62f5b61
--- /dev/null
+++ b/configs/demo-openrc
@@ -0,0 +1,8 @@
+export OS_PROJECT_DOMAIN_NAME=default
+export OS_USER_DOMAIN_NAME=default
+export OS_PROJECT_NAME=myproject
+export OS_USERNAME=myuser
+export OS_PASSWORD=DEMO_PASS
+export OS_AUTH_URL=http://REPLACE_WITH_HOST:5000/v3
+export OS_IDENTITY_API_VERSION=3
+export OS_IMAGE_API_VERSION=2
diff --git a/configs/dhcp_agent.ini b/configs/dhcp_agent.ini
new file mode 100644
index 0000000..bfc2439
--- /dev/null
+++ b/configs/dhcp_agent.ini
@@ -0,0 +1,4 @@
+[DEFAULT]
+interface_driver = linuxbridge
+dhcp_driver = neutron.agent.linux.dhcp.Dnsmasq
+enable_isolated_metadata = true
diff --git a/configs/etcd b/configs/etcd
new file mode 100644
index 0000000..ea463ee
--- /dev/null
+++ b/configs/etcd
@@ -0,0 +1,10 @@
+
+ETCD_NAME="REPLACE_WITH_HOST"
+ETCD_DATA_DIR="/var/lib/etcd"
+ETCD_INITIAL_CLUSTER_STATE="new"
+ETCD_INITIAL_CLUSTER_TOKEN="etcd-cluster-01"
+ETCD_INITIAL_CLUSTER="controller=http://REPLACE_WITH_OPENSTACK_HOST_IP:2380"
+ETCD_INITIAL_ADVERTISE_PEER_URLS="http://REPLACE_WITH_OPENSTACK_HOST_IP:2380"
+ETCD_ADVERTISE_CLIENT_URLS="http://REPLACE_WITH_OPENSTACK_HOST_IP:2379"
+ETCD_LISTEN_PEER_URLS="http://0.0.0.0:2380"
+ETCD_LISTEN_CLIENT_URLS="http://REPLACE_WITH_OPENSTACK_HOST_IP:2379"
diff --git a/configs/glance-api.conf b/configs/glance-api.conf
new file mode 100644
index 0000000..5df3b61
--- /dev/null
+++ b/configs/glance-api.conf
@@ -0,0 +1,37 @@
+[DEFAULT]
+use_keystone_quotas = True
+transport_url = rabbit://openstack:RABBIT_PASS@REPLACE_WITH_HOST
+
+rootwrap_config = /etc/glance/rootwrap.conf
+
+[database]
+connection = mysql+pymysql://glance:glance@REPLACE_WITH_HOST/glance
+
+[keystone_authtoken]
+www_authenticate_uri = http://REPLACE_WITH_HOST:5000
+auth_url = http://REPLACE_WITH_HOST:5000
+memcached_servers = REPLACE_WITH_HOST:11211
+auth_type = password
+project_domain_name = default
+user_domain_name = default
+project_name = service
+username = glance
+password = glance
+
+[paste_deploy]
+flavor = keystone
+
+[glance_store]
+stores = file,http
+default_store = file
+filesystem_store_datadir = /var/lib/glance/images/
+
+[oslo_limit]
+auth_url = http://REPLACE_WITH_HOST:5000
+auth_type = password
+user_domain_id = default
+username = MY_SERVICE
+system_scope = all
+password = MY_SERVICE
+endpoint_id = ENDPOINT_ID
+region_name = RegionOne
diff --git a/configs/keystone.conf b/configs/keystone.conf
new file mode 100644
index 0000000..7150b0a
--- /dev/null
+++ b/configs/keystone.conf
@@ -0,0 +1,9 @@
+[DEFAULT]
+
+memcache_servers = REPLACE_WITH_HOST:11211
+
+[database]
+connection = mysql+pymysql://keystone:keystone@REPLACE_WITH_HOST/keystone
+
+[token]
+provider = fernet
diff --git a/configs/linuxbridge_agent.ini b/configs/linuxbridge_agent.ini
new file mode 100644
index 0000000..e3e685a
--- /dev/null
+++ b/configs/linuxbridge_agent.ini
@@ -0,0 +1,12 @@
+[DEFAULT]
+#debug = true
+
+[linux_bridge]
+physical_interface_mappings = provider:PROVIDER_INTERFACE
+
+[vxlan]
+enable_vxlan = false
+
+[securitygroup]
+enable_security_group = true
+firewall_driver = neutron.agent.linux.iptables_firewall.IptablesFirewallDriver
diff --git a/configs/metadata_agent.ini b/configs/metadata_agent.ini
new file mode 100644
index 0000000..0ab00e8
--- /dev/null
+++ b/configs/metadata_agent.ini
@@ -0,0 +1,8 @@
+[DEFAULT]
+metadata_backlog = 4096
+
+# Maximum seconds to wait for a response from an RPC call. (integer value)
+rpc_response_max_timeout = 600
+
+nova_metadata_host = REPLACE_WITH_HOST
+metadata_proxy_shared_secret = METADATA_SECRET
diff --git a/configs/ml2_conf.ini b/configs/ml2_conf.ini
new file mode 100644
index 0000000..e7955b6
--- /dev/null
+++ b/configs/ml2_conf.ini
@@ -0,0 +1,14 @@
+[DEFAULT]
+#debug = true
+
+[ml2]
+type_drivers = flat,vlan
+tenant_network_types =
+mechanism_drivers = linuxbridge
+extension_drivers = port_security
+
+[ml2_type_flat]
+flat_networks = provider
+
+[securitygroup]
+enable_ipset = true
diff --git a/configs/neutron.conf b/configs/neutron.conf
new file mode 100644
index 0000000..d2e72ea
--- /dev/null
+++ b/configs/neutron.conf
@@ -0,0 +1,48 @@
+[DEFAULT]
+core_plugin = ml2
+service_plugins = router
+auth_strategy = keystone
+state_path = /var/lib/neutron
+dhcp_agent_notification = True
+allow_overlapping_ips = True
+notify_nova_on_port_status_changes = True
+notify_nova_on_port_data_changes = True
+
+[agent]
+root_helper = sudo neutron-rootwrap /etc/neutron/rootwrap.conf
+#base_mac = fa:16:3e:00:00:00
+rpc_response_max_timeout = 600
+rpc_response_timeout = 600
+transport_url = rabbit://openstack:RABBIT_PASS@controller
+
+[database]
+connection = mysql+pymysql://neutron:neutron@REPLACE_WITH_HOST/neutron
+
+[keystone_authtoken]
+www_authenticate_uri = http://REPLACE_WITH_HOST:5000
+auth_url = http://REPLACE_WITH_HOST:5000
+memcached_servers = REPLACE_WITH_HOST:11211
+auth_type = password
+project_domain_name = default
+user_domain_name = default
+project_name = service
+username = neutron
+password = neutron
+
+[nova]
+auth_url = http://REPLACE_WITH_HOST:5000
+auth_type = password
+project_domain_name = default
+user_domain_name = default
+region_name = RegionOne
+project_name = service
+username = nova
+password = nova
+
+[oslo_concurrency]
+lock_path = /var/lib/neutron/tmp
+
+[oslo_messaging_amqp]
+default_reply_timeout = 300
+default_send_timeout = 600
+default_notify_timeout = 300
diff --git a/configs/nova.conf b/configs/nova.conf
new file mode 100644
index 0000000..4f898e8
--- /dev/null
+++ b/configs/nova.conf
@@ -0,0 +1,71 @@
+[DEFAULT]
+state_path=/var/lib/nova
+instances_path=/var/lib/nova/instances
+enabled_apis = osapi_compute,metadata
+rootwrap_config = /etc/nova/rootwrap.conf
+
+use_neutron = True
+vif_plugging_is_fatal = True
+vif_plugging_timeout = 300
+
+transport_url = rabbit://openstack:RABBIT_PASS@REPLACE_WITH_HOST
+
+my_ip = REPLACE_WITH_OPENSTACK_HOST_IP
+
+[api_database]
+connection = mysql+pymysql://nova:nova@REPLACE_WITH_HOST/nova_api
+
+[database]
+connection = mysql+pymysql://nova:nova@REPLACE_WITH_HOST/nova
+
+[api]
+auth_strategy = keystone
+
+[keystone_authtoken]
+www_authenticate_uri = http://REPLACE_WITH_HOST:5000
+auth_url = http://REPLACE_WITH_HOST:5000
+memcached_servers = REPLACE_WITH_HOST:11211
+auth_type = password
+project_domain_name = default
+user_domain_name = default
+project_name = service
+username = nova
+password = nova
+
+[vnc]
+enabled = true
+server_listen = $my_ip
+server_proxyclient_address = $my_ip
+novncproxy_base_url = http://REPLACE_WITH_HOST:6080/vnc_auto.html
+
+[glance]
+api_servers = http://REPLACE_WITH_HOST:9292
+
+[oslo_concurrency]
+lock_path = /var/lib/nova/tmp
+
+[placement]
+region_name = RegionOne
+project_domain_name = default
+project_name = service
+auth_type = password
+user_domain_name = default
+auth_url = http://REPLACE_WITH_HOST:5000
+username = placement
+password = placement
+
+[wsgi]
+api_paste_config = /etc/nova/api-paste.ini
+
+# uncomment after installing and configure neutron
+#[neutron]
+#auth_url = http://REPLACE_WITH_HOST:5000
+#auth_type = password
+#project_domain_name = default
+#user_domain_name = default
+#region_name = RegionOne
+#project_name = service
+#username = neutron
+#password = neutron
+#service_metadata_proxy = true
+#metadata_proxy_shared_secret = METADATA_SECRET
diff --git a/configs/nova2.conf b/configs/nova2.conf
new file mode 100644
index 0000000..4ce355c
--- /dev/null
+++ b/configs/nova2.conf
@@ -0,0 +1,70 @@
+[DEFAULT]
+state_path=/var/lib/nova
+instances_path=/var/lib/nova/instances
+enabled_apis = osapi_compute,metadata
+rootwrap_config = /etc/nova/rootwrap.conf
+
+use_neutron = True
+vif_plugging_is_fatal = True
+vif_plugging_timeout = 300
+
+transport_url = rabbit://openstack:RABBIT_PASS@REPLACE_WITH_HOST
+
+my_ip = REPLACE_WITH_OPENSTACK_HOST_IP
+
+[api_database]
+connection = mysql+pymysql://nova:nova@REPLACE_WITH_HOST/nova_api
+
+[database]
+connection = mysql+pymysql://nova:nova@REPLACE_WITH_HOST/nova
+
+[api]
+auth_strategy = keystone
+
+[keystone_authtoken]
+www_authenticate_uri = http://REPLACE_WITH_HOST:5000
+auth_url = http://REPLACE_WITH_HOST:5000
+memcached_servers = REPLACE_WITH_HOST:11211
+auth_type = password
+project_domain_name = default
+user_domain_name = default
+project_name = service
+username = nova
+password = nova
+
+[vnc]
+enabled = true
+server_listen = $my_ip
+server_proxyclient_address = $my_ip
+novncproxy_base_url = http://REPLACE_WITH_HOST:6080/vnc_auto.html
+
+[glance]
+api_servers = http://REPLACE_WITH_HOST:9292
+
+[oslo_concurrency]
+lock_path = /var/lib/nova/tmp
+
+[placement]
+region_name = RegionOne
+project_domain_name = default
+project_name = service
+auth_type = password
+user_domain_name = default
+auth_url = http://REPLACE_WITH_HOST:5000
+username = placement
+password = placement
+
+[wsgi]
+api_paste_config = /etc/nova/api-paste.ini
+
+[neutron]
+auth_url = http://REPLACE_WITH_HOST:5000
+auth_type = password
+project_domain_name = default
+user_domain_name = default
+region_name = RegionOne
+project_name = service
+username = neutron
+password = neutron
+service_metadata_proxy = true
+metadata_proxy_shared_secret = METADATA_SECRET
diff --git a/configs/placement.conf b/configs/placement.conf
new file mode 100644
index 0000000..a5261bd
--- /dev/null
+++ b/configs/placement.conf
@@ -0,0 +1,17 @@
+[DEFAULT]
+
+[placement_database]
+connection = mysql+pymysql://placement:placement@REPLACE_WITH_HOST/placement
+
+[api]
+auth_strategy = keystone
+
+[keystone_authtoken]
+auth_url = http://REPLACE_WITH_HOST:5000/
+memcached_servers = REPLACE_WITH_HOST:11211
+auth_type = password
+project_domain_name = default
+user_domain_name = default
+project_name = service
+username = placement
+password = placement