Tencent Blue Whale Intelligence Cloud (blue Whale for short) is a set of PaaS development framework developed and used by Tencent Interactive Entertainment Group (IEG for short) to build an integrated system of enterprise R&D and operation. APaaS (DevOps pipelining, operation environment hosting, front and back framework) and iPaaS (continuous integration, CMDB, operation platform, container management, computing platform, AI and other atomic platforms) are provided to help enterprise technicians quickly build basic operation PaaS.
Disabling the Firewall
[root@localhost ~]# sed -i 's/^SELINUX=enforcing/SELINUX=disabled/g' /etc/selinux/config
[root@localhost ~]# setenforce 0
[root@localhost ~]# systemctl stop firewalld
[root@localhost ~]# systemctl disable firewalld
Removed symlink /etc/systemd/system/multi-user.target.wants/firewalld.service.
Removed symlink /etc/systemd/system/dbus-org.fedoraproject.FirewallD1.service.
Copy the codeDisabling Network Management
[root@localhost ~]# systemctl status NetworkManager ● NetworkManager. Service - NetworkManager Loaded: loaded (/usr/lib/systemd/system/NetworkManager.service; enabled; vendor preset: enabled) Active: active (running) since Thu 2021-07-29 15:49:45 CST; 1h 10min ago Docs: man:NetworkManager(8) Main PID: 1086 (NetworkManager) CGroup: / system. Slice/NetworkManager service ├ ─ 1086 / usr/sbin/NetworkManager - no - daemon └ ─ 1197 / sbin/dhclient - d - q - sf /usr/libexec/nm-dhcp-helper -pf /var/run/dhclient-ens33.pid -lf /var/lib/NetworkManager/dhclient-54043ffa-9f33-49a0-b4d5-4b191... Jul 29 15:49:58 Localhost. Localdomain NetworkManager[1086]: <info> [1627544998.6410] Device (ENS33): State change: secondaries -> activated (reason 'none', sys... Managed ') Jul 29 15:49:58 localhost. Localdomain NetworkManager[1086]: <info> [1627544998.6420] NetworkManager state is now CONNECTED_LOCAL Jul 29 15:49:58 localhost.localdomain NetworkManager[1086]: The < info > [1627544998.6445] manager: NetworkManager state is now CONNECTED_SITE Jul 29 15:49:58 localhost.localdomain NetworkManager[1086]: The < info > [1627544998.6447] policy: set 'ens33' (ens33) as default for IPv4 routing and DNS Jul 29 15:49:58 localhost.localdomain dhclient[1197]: Bound to 192.168.1.74 -- renewal in 39901 seconds. Jul 29 15:49:58 Localhost. Localdomain NetworkManager[1086]: < INFO > [1627544998.6550] Device (ENS33): Activation: successful, device activated. Jul 29 15:49:58 localhost.localdomain NetworkManager[1086]: The < info > [1627544998.6559] manager: NetworkManager state is now CONNECTED_GLOBAL Jul 29 15:49:58 localhost.localdomain NetworkManager[1086]: <info> [1627544998.6567] Manager: startup Complete Jul 29 16:53:57 NetworkManager[1086]: The < info > [1627548837.1248] hostname: hostname changed from "localhost.localdomain" to "tencen-3" Jul 29 16:53:57 tencen-3 NetworkManager[1086]: <info> [1627548837.1252] policy: set-hostname: set hostname to 'tencen-3' (from system configuration) Hint: Some lines were ellipsized, use -l to show in full. [root@localhost ~]# systemctl stop NetworkManager [root@localhost ~]# systemctl disable NetworkManager Removed symlink /etc/systemd/system/multi-user.target.wants/NetworkManager.service. Removed symlink /etc/systemd/system/dbus-org.freedesktop.nm-dispatcher.service. Removed symlink /etc/systemd/system/network-online.target.wants/NetworkManager-wait-online.service.Copy the codeSet the maximum number of connections
[root@localhost ~]# ulimit -n
1024
[root@localhost ~]# cp /etc/security/limits.conf /etc/security/limits.conf.bak
[root@localhost ~]# cat << EOF >> /etc/security/limits.conf
> root soft nofile 102400
> root hard nofile 102400
> EOF
[root@localhost ~]#
Copy the codeObtaining required Software Packages
[root@localhost ~]# mkdir /data [root@localhost ~]# mv bkce_basic_suite-6.0.3. TGZ /data [root@localhost ~]# CD /data [root@localhost data]# ls bkce_basic_suite-6.0.3. TGZ [root@localhost data]# [root@localhost data]# [root@localhost data]#Copy the code
Decompression package
[root@localhost data]# tar xf bkce_basic_suite-6.0.3. TGZ [root@localhost data]#Copy the codeDecompress each product software package
[root@localhost data]# cd /data/src/; for f in *gz; do tar xf $f; doneCopy the codeDecompress the certificate package
The site bk.tencent.com/download\_s… Is registered using a Mac address
[root@localhost src]# install -d -m 755 /data/src/cert
[root@localhost src]# tar xf /data/ssl_certificates.tar.gz -C /data/src/cert/
[root@localhost src]# chmod 644 /data/src/cert/*
Copy the codeCopy the RPM package folder to /opt/
[root@localhost src]# cp -a /data/src/yum /opt
[root@localhost src]#
Copy the codeBuild and configure install.config
[root @ localhost SRC] # cat < < EOF > / data/install/install. Config > 192.168.1.75 Iam, SSM, usermgr, gse, license, redis, consul, mysql > 192.168.1.50 nginx, consul, directing, rabbitmq, appo > 192.168.1.74 paas,cmdb,job,zk(config),appt,consul,nodeman(nodeman) > > EOFCopy the codePerform from close
[root@localhost src]# cd /data/install
[root@localhost install]# yum install rsync -y
[root@localhost install]# bash /data/install/configure_ssh_without_pass
Copy the codeInitialize and check the environment
[root@localhost install]# ./bk_install common
[root@localhost install]# ./health_check/check_bk_controller.sh
Copy the codeDeploy the PaaS platform
[root @ localhost install] #. / bk_install paas if the above steps without an error, you can now access paas platform through http://paas.bktencent.com:80, Login user name: admin Login password: fKJbtZ54KDA_Copy the code
Deploy app_mgr
[root@localhost install]# ./bk_install app_mgr
Copy the code
Deploy the permission center and user management
[root@localhost install]# ./bk_install saas-o bk_iam
[root@localhost install]# ./bk_install saas-o bk_user_manage
Copy the code
The deployment of CMDB
[root@localhost install]# ./bk_install cmdb
Copy the codeThe deployment of the JOB
[root@localhost install]# ./bk_install job
Copy the codeDeploy bknodeman
[root@localhost install]# ./bk_install bknodeman
Copy the codeStandard operation and maintenance
[root@localhost install]# ./bk_install saas-o bk_sops
Copy the code
# Process Management
[root@localhost install]# ./bk_install saas-o bk_itsm
Copy the code
Load blue whale related maintenance commands
[root@localhost install]# source ~/.bashrc
Copy the code
Initialize the Blue Whale service topology
[root@localhost install]# ./bkcli initdata topo
Copy the codeCheck the status of related services
[root@localhost install]# cd /data/install/
[root@localhost install]# echo bkssm bkiam usermgr paas cmdb gse job consul | xargs -n 1 ./bkcli check
Copy the code
Windows configuration
Open a file with a text editor (such as Notepad++) :
C:\Windows\System32\drivers\etc\hosts
Copy the codeCopy the following content to the preceding file, change the following IP addresses to IP addresses accessible by the local browser, and save the file.
Bktencent.com job.bktencent.com jobapi.bktencent.com 10.0.0.3 nodeman.bktencent.comCopy the codeNote: 10.0.0.2 is the machine where the nginx module resides, and 10.0.0.3 is the machine where the Nodeman module resides. The IP address must be an IP address accessible by the local browser.
This article uses the article synchronization assistant to synchronize