... | ... | @@ -2664,6 +2664,23 @@ the SSH `known_hosts` file, see [SSH key verification failures](#ssh-key-verific |
|
|
This procedure replaces the `gnt-node add` step in the initial setup
|
|
|
of the first Ganeti node when the `gnt-chi` cluster was setup:
|
|
|
|
|
|
First, we need to partition the disks. Normally, this would have been
|
|
|
done in the `setup-storage` configuration, but we were in a rush:
|
|
|
|
|
|
mdadm --create --verbose --level=10 --metadata=1.2 --raid-devices=6 /dev/md2 /dev/sd[abcdef] &&
|
|
|
cryptsetup luksFormat --key-file=/etc/luks/crypt_dev_md2 /dev/md2 &&
|
|
|
cryptsetup luksOpen --key-file=/etc/luks/crypt_dev_md2 /dev/md2 crypt_dev_md2 &&
|
|
|
pvcreate /dev/mapper/crypt_dev_md2 &&
|
|
|
vgcreate vg_ganeti /dev/mapper/crypt_dev_md2 &&
|
|
|
echo crypt_dev_md2 UUID=$(lsblk -n -o UUID /dev/md2 | head -1) /etc/luks/crypt_dev_md2 luks,discard >> /etc/crypttab &&
|
|
|
update-initramfs -u
|
|
|
|
|
|
Reboot to test the LUKS configuration:
|
|
|
|
|
|
reboot
|
|
|
|
|
|
Initialize the ganeti cluster:
|
|
|
|
|
|
gnt-cluster init \
|
|
|
--master-netdev eth1 \
|
|
|
--nic-parameters link=br0 \
|
... | ... | @@ -2717,7 +2734,7 @@ The [network configuration](#network-configuration) (below) must also be perform |
|
|
address blocks reserved in the cluster. This is the actual initial
|
|
|
configuration performed:
|
|
|
|
|
|
gnt-network add --network 204.8.99.128/25 --gateway 204.8.99.254 --network6 2620:7:6002::/64 --gateway6 2620:7:6002:1 gnt-dal-01
|
|
|
gnt-network add --network 204.8.99.128/25 --gateway 204.8.99.254 --network6 2620:7:6002::/64 --gateway6 2620:7:6002::1 gnt-dal-01
|
|
|
gnt-network connect --nic-parameters=link=br0 gnt-dal-01 default
|
|
|
|
|
|
Note that we reserve the first `/25` (209.44.8.99.0/25) for future
|
... | ... | @@ -2725,12 +2742,9 @@ use. The above only uses the second half of the network in case we |
|
|
need the rest of the network for other operations. A new network will
|
|
|
need to be added if we run out of IPs in the second half. This also
|
|
|
|
|
|
The following IPs were reserved:
|
|
|
|
|
|
gnt-network modify --add-reserved-ips=204.8.99.254 gnt-dal-01
|
|
|
|
|
|
This is just for the gateway. The node's public addresses are in the
|
|
|
other /25 and do not need to be reserved in this allocation.
|
|
|
No IP was reserved as the gateway is already automatically reserved by
|
|
|
Ganeti. The node's public addresses are in the other /25 and also do
|
|
|
not need to be reserved in this allocation.
|
|
|
|
|
|
### Network configuration
|
|
|
|
... | ... | |