Pulogalamu ya ProHoster > Blog > Ulamuliro > Kukhazikitsa ndi kugwiritsa ntchito Rudder

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Maulosi

“Ubwenzi” wathu unayamba zaka ziwiri zapitazo. Ndinafika kumalo atsopano ogwirira ntchito, komwe woyang'anira wam'mbuyomu adandisiyira pulogalamuyo ngati cholowa. Sindinapeze chilichonse pa intaneti kupatula zolemba zovomerezeka. Ngakhale pano, ngati mugwiritsa ntchito "chiwongolero" cha google, mu 99% yamilandu idzabwera ndi: ma helms ndi ma quadcopter. Ndinakwanitsa kupeza njira yofikira kwa iye. Popeza gulu la pulogalamuyo ndi losafunika, ndinaganiza zogawana zomwe ndakumana nazo komanso zopeza. Ndikuganiza kuti izi zingakhale zothandiza kwa wina.

Ndiye Rudder

Rudder ndi chida chotsegulira gwero lowunikira ndikuwongolera masinthidwe omwe amathandizira kusinthika kwadongosolo. Zimagwira ntchito pa mfundo yoyika wothandizira kwa aliyense wogwiritsa ntchito mapeto. Kupyolera mu mawonekedwe osavuta, titha kuyang'anira kuchuluka kwa zomangamanga zathu zomwe zikugwirizana ndi ndondomeko zonse zomwe zatchulidwa.

Gwiritsani ntchito

Pansipa ndikulemba zomwe ndimagwiritsa ntchito Rudder.

  • Kuwongolera mafayilo ndi ma configs: ./ssh/authorized_keys ; / etc/makamu ; iptables; (ndiyeno pomwe malingaliro anu amatsogolera)

  • Kuwongolera mapaketi omwe adayikidwa: zabbix.agent kapena pulogalamu ina iliyonse

Kuyika kwa seva

Posachedwapa ndidasintha kuchokera ku 5 mpaka 6.1, zonse zidayenda bwino. Pansipa pali malamulo a Deban/Ubuntu koma palinso chithandizo: RHEL/CentOS и Sles.

Ndibisa kuyika kwa owononga kuti ndisakusokonezeni.

zoyambilira

Zodalira

Chiwongolero-seva imafuna Java RE osachepera mtundu 8, ikhoza kukhazikitsidwa kuchokera kumalo osungira:

Kuyang'ana kuti muwone ngati idayikidwa

java -version

ngati chomaliza

-bash: java: command not found

ndiye kukhazikitsa

apt install default-jre

Seva

Kuitanitsa kiyi

wget --quiet -O- "https://repository.rudder.io/apt/rudder_apt_key.pub" | sudo apt-key add -

Apa pali kusindikiza komwe

pub  4096R/474A19E8 2011-12-15 Rudder Project (release key) <[email protected]>
      Key fingerprint = 7C16 9817 7904 212D D58C  B4D1 9322 C330 474A 19E8

Popeza tilibe zolembetsa zolipira, timawonjezera chosungira chotsatira

echo "deb http://repository.rudder.io/apt/6.1/ $(lsb_release -cs) main" > /etc/apt/sources.list.d/rudder.list

Sinthani mndandanda wazosungira ndikuyika seva

apt update
apt install rudder-server-root

Pangani wosuta admin

rudder server create-user -u admin -p "Ваш Пароль"

M'tsogolomu tikhoza kuyang'anira ogwiritsa ntchito pogwiritsa ntchito config

Ndi zimenezo, seva yakonzeka.

Kukonza Seva

Tsopano muyenera kuwonjezera ma adilesi a IP a othandizira kapena subnet yonse kwa wowongolera, timayang'ana kwambiri zachitetezo.

Zokonda -> Zambiri

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Pagawo la "Onjezani netiweki", lowetsani adilesi ndi chigoba mumtundu wa xxx/xx. Kuti mulole kulowa kuchokera ku ma adilesi onse a netiweki yamkati (Pokhapokha ngati iyi ndi netiweki yoyeserera ndipo muli kuseri kwa NAT) lowetsani: 0.0.0.0/0

Chofunika - mutatha kuwonjezera adilesi ya ip, musaiwale kudina Sungani zosintha, apo ayi palibe chomwe chidzapulumutsidwa.

Doko

Tsegulani madoko otsatirawa pa seva

  • 443-tcp

  • Mtengo wa 5309

  • 514 ndi

Takonza zoyambira za seva.

Kuyika kwa Agent

zoyambilira

Kuwonjezera kiyi

wget --quiet -O- "https://repository.rudder.io/apt/rudder_apt_key.pub" | sudo apt-key add -

Zala zazikulu

pub  4096R/474A19E8 2011-12-15 Rudder Project (release key) <[email protected]>
      Key fingerprint = 7C16 9817 7904 212D D58C  B4D1 9322 C330 474A 19E8

Kuwonjezera posungira

echo "deb http://repository.rudder.io/apt/6.1/ $(lsb_release -cs) main" > /etc/apt/sources.list.d/rudder.list

Kuyika wothandizira

apt update
apt install rudder-agent

Kupanga kwa agent

Timawonetsa kwa wothandizirayo adilesi ya IP ya seva yamalamulo

rudder agent policy-server <rudder server ip or hostname> #Без скобок. Можно также использовать доменное имя

Poyendetsa lamulo lotsatirali tidzatumiza pempho loti tiwonjezere wothandizira watsopano ku seva, mumphindi zingapo zidzawonekera pamndandanda wa othandizira atsopano, ndikufotokozera momwe mungawonjezere mu gawo lotsatira.

rudder agent inventory

Tikhozanso kukakamiza wothandizira kuti ayambe ndipo adzatumiza pempho nthawi yomweyo

rudder agent run

Wothandizira wathu wakhazikitsidwa, tiyeni tipitirire.

Kuwonjezera othandizira

Lowani muakaunti

https://127.0.0.1/rudder/index.html

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Wothandizira wanu adzawonekera mu gawo la "Landirani ma node atsopano", fufuzani bokosi ndikudina Landirani

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Ziyenera kutenga nthawi pang'ono mpaka dongosolo liyang'ane seva kuti ikutsatira

Kupanga magulu a seva

Tiyeni tipange gulu (zikadali zosangalatsa), osadziwa chifukwa chake opanga adapanga gulu loyipa, koma monga ndikumvetsetsa, palibe njira ina. Pitani ku Node management -> Gulu lamagulu ndikudina Pangani, sankhani gulu lokhazikika ndi dzina.

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Timasefa seva yomwe tikufuna ndi mawonekedwe apadera, mwachitsanzo, ndi adilesi ya ip, ndikusunga

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Gulu lakhazikitsidwa.

Kukhazikitsa malamulo

Pitani ku Configuration Policy → Malamulo ndikupanga lamulo latsopano

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Onjezani gulu lomwe lakonzedwa kale (izi zitha kuchitika mtsogolo)

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Ndipo timapanga chitsogozo chatsopano

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Tiyeni tipange malangizo owonjezera makiyi agulu ku .ssh/authorized_keys. Ndimagwiritsa ntchito izi pamene wogwira ntchito watsopano akuchoka, kapena kubwezeretsanso, mwachitsanzo, ngati wina wadula makiyi anga mwangozi.

Pitani ku Configuration policy → Directive kumanzere tikuwona "Directive library" Pezani "Kufikira kutali → makiyi ovomerezeka a SSH", kumanja dinani Pangani Directive

Timalowetsa zambiri za wogwiritsa ntchito ndikuwonjezera kiyi yake. Kenako, sankhani ndondomeko ya ntchito

  • Padziko Lonse - Ndondomeko yofikira

  • Limbikitsani - Gwiritsani ntchito ma seva osankhidwa

  • Audit - Adzachita kafukufuku ndikuwuza makasitomala omwe ali ndi kiyi

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Onetsetsani kuti mwawonetsa lamulo lathu

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Ndiye sungani ndipo mwachita.

Chongani

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Kiyi yawonjezedwa bwino

Mabulu

Wothandizira amapereka zambiri za seva. Mndandanda wamapaketi omwe adayikidwa, ma interfaces, madoko otseguka ndi zina zambiri, zomwe mutha kuziwona pazithunzi pansipa

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Mutha kukhazikitsanso ndikuwongolera mapulogalamu osati pa Linux komanso pa Windows, sindinayang'ane zomaliza, panalibe chifukwa.

Kuchokera kwa wolemba

Mutha kukhala mukufunsa, bwanji kuyambitsanso gudumu ngati zowoneka bwino komanso chidole zidapangidwa kale?

Ndikuyankha: Ansible ali ndi zophophonya, mwachitsanzo, sitikuwona momwe kasinthidwe kameneka kaliri pano, kapena momwe mungadziwire mukamayambitsa gawo kapena playbook ndikuwonongeka kwa zolakwika, ndikuyamba kukwera pa seva ndikuwona zomwe. phukusi lasinthidwa kumene. Ndipo sindinagwire ntchito ndi chidole..

Kodi pali zovuta zilizonse kwa Rudder? Zambiri .. Kuyambira pomwe othandizira amagwa ndipo muyenera kuwayikanso kapena kugwiritsa ntchito lamulo lokhazikitsanso chiwongolero. (koma mwa njira, sindinawone izi mu mtundu 6), zomwe zimapangitsa kukhazikitsidwa kovutirapo komanso mawonekedwe osamveka.

Kodi pali ubwino uliwonse? Ndipo palinso zabwino zambiri: Mosiyana ndi Ansible odziwika bwino, tili ndi mawonekedwe a intaneti momwe mumatha kuwona kutsata komwe tagwiritsa ntchito. Mwachitsanzo, kodi madoko atuluka padziko lapansi, momwe zoyatsira moto zilili, ndi zida zachitetezo zomwe zidayikidwa kapena zida zina.

Pulogalamuyi ndi yabwino kwa dipatimenti yachitetezo chazidziwitso, popeza mkhalidwe wa zomangamanga udzakhala patsogolo panu nthawi zonse, ndipo ngati malamulo aliwonse akuwunikira mofiyira, ndiye chifukwa chochezera seva. Monga ndanenera, ndakhala ndikugwiritsa ntchito Rudder kwa zaka 2 tsopano, ndipo ngati mumasuta pang'ono, moyo umakhala bwino. Chinthu chovuta kwambiri muzitsulo zazikuluzikulu ndikuti simukumbukira momwe seva iliri, kaya June anaphonya kukhazikitsa othandizira chitetezo kapena ngati adakonza ma iptables molondola, koma chowongolera chidzakuthandizani kudziwa zochitika zonse. Kudziwa kumatanthauza zida! )

PS Zinakhala zambiri kuposa momwe ndinakonzera, sindidzafotokozera momwe mungayikitsire mapepala, ngati mwadzidzidzi pali zopempha, ndikulemba gawo lachiwiri.

PSS Nkhaniyi ndi yofuna kudziwa zambiri, ndidaganiza zogawana chifukwa pali zambiri zochepa pa intaneti. Mwina izi zingakhale zosangalatsa kwa wina. Khalani ndi tsiku labwino, okondedwa)

Pa Ufulu Wotsatsa

Ma seva a Epic Ndi VPS pa Linux kapena Windows yokhala ndi mapurosesa amphamvu amtundu wa AMD EPYC komanso ma drive a Intel NVMe othamanga kwambiri. Fulumirani kuyitanitsa!

Kukhazikitsa ndi kugwiritsa ntchito Rudder

Source: www.habr.com

Kuwonjezera ndemanga