创建roles文件夹,并在文件夹下创建服务文件夹
[root@node1 opt]# mkdir roles [root@node1 opt]# cd roles/ [root@node1 roles]# mkdir {nginx,uwsgi,redis,mariadb} [root@node1 roles]# ll total 0 drwxr-xr-x 2 root root 6 Apr 10 23:00 mariadb drwxr-xr-x 2 root root 6 Apr 10 23:00 nginx drwxr-xr-x 2 root root 6 Apr 10 23:00 redis drwxr-xr-x 2 root root 6 Apr 10 23:00 uwsgi
进入服务目录,创建文件夹
[root@localhost roles]# cd nginx/ [root@localhost nginx]# mkdir tasks #必须要有tasks目录,任务目录
在tasks中创建yml文件,安装nginx
[root@node1 tasks]# cat install.yml - name: installnginx yum: name=nginx
创建copyfile.yml,用来复制文件
[root@node1 tasks]# cat copyfile.yml - name: copyfile template: dest=/etc/nginx/nginx.conf src=nginx.conf
创建启动文件
[root@node1 tasks]# cat start.yml - name: start service: name=nginx state=started
将三个目录关联起来,创建main.yml文件
[root@node1 tasks]# cat main.yml - import_tasks: install.yml #导入文件,注意顺序 - import_tasks: copyfile.yml - import_tasks: start.yml
在服务目录中创建templates,要与tasks目录同级
[root@node1 nginx]# mkdir templates [root@node1 nginx]# ll total 0 drwxr-xr-x 2 root root 74 Apr 10 23:15 tasks drwxr-xr-x 2 root root 6 Apr 10 23:18 templates
将nginx.conf文件copy到templates目录下
[root@node1 nginx]# cd templates/
[root@node1 templates]# cp /etc/nginx/nginx.conf .
更改配置文件
[root@node1 templates]# cat nginx.conf # For more information on configuration, see: # * Official English Documentation: http://nginx.org/en/docs/ # * Official Russian Documentation: http://nginx.org/ru/docs/ user nginx; #启动用户 worker_processes {{ansible_processor_vcpus}}; #默认工作进程,一般设置为CPU的个数或CPU个数的两倍 error_log /var/log/nginx/error.log; pid /run/nginx.pid; # Load dynamic modules. See /usr/share/nginx/README.dynamic. include /usr/share/nginx/modules/*.conf; events { worker_connections 102400; #每一个进程可以提供多少个线程 } http { log_format main '$remote_addr - $remote_user [$time_local] "$request" ' '$status $body_bytes_sent "$http_referer" ' '"$http_user_agent" "$http_x_forwarded_for"'; access_log /var/log/nginx/access.log main; sendfile on; tcp_nopush on; tcp_nodelay on; keepalive_timeout 65; types_hash_max_size 2048; include /etc/nginx/mime.types; default_type application/octet-stream; # Load modular configuration files from the /etc/nginx/conf.d directory. # See http://nginx.org/en/docs/ngx_core_module.html#include # for more information. include /etc/nginx/conf.d/*.conf; server { listen {{port}} default_server; listen [::]:80 default_server; server_name _; root /usr/share/nginx/html; # Load configuration files for the default server block. include /etc/nginx/default.d/*.conf; location / { } error_page 404 /404.html; location = /40x.html { } error_page 500 502 503 504 /50x.html; location = /50x.html { } } # Settings for a TLS enabled server. # # server { # listen 443 ssl http2 default_server; # listen [::]:443 ssl http2 default_server; # server_name _; # root /usr/share/nginx/html; # # ssl_certificate "/etc/pki/nginx/server.crt"; # ssl_certificate_key "/etc/pki/nginx/private/server.key"; # ssl_session_cache shared:SSL:1m; # ssl_session_timeout 10m; # ssl_ciphers HIGH:!aNULL:!MD5; # ssl_prefer_server_ciphers on; # # # Load configuration files for the default server block. # include /etc/nginx/default.d/*.conf; # # location / { # } # # error_page 404 /404.html; # location = /40x.html { # } # # error_page 500 502 503 504 /50x.html; # location = /50x.html { # } # } }
查看CPU的个数
[root@node1 opt]# ansible localhost -m setup -a "filter=*vcpus*" localhost | SUCCESS => { "ansible_facts": { "ansible_processor_vcpus": 1 #cpu的个数 }, "changed": false }
在与roles同级的目录下创建启动文件
[root@node1 data]# cat nginx.yml - hosts: web remote_user: root roles: - nginx
检查语法并执行
[root@node1 data]# ansible-playbook --syntax-check nginx.yml [root@node1 data]# ansible-playbook nginx.yml
创建handlers,设置触发任务
[root@node1 nginx]# ll total 0 drwxr-xr-x 2 root root 21 Apr 10 23:55 handlers drwxr-xr-x 2 root root 74 Apr 10 23:15 tasks drwxr-xr-x 2 root root 23 Apr 10 23:37 templates [root@node1 nginx]# mkdir handlers [root@node1 nginx]# cd handlers/ [root@node1 handlers]# vim main.yml [root@node1 handlers]# cat main.yml - name : restart service: name=nginx state=restarted
更改nginx的copyfile.yml文件
[root@node1 handlers]# cd ../ [root@node1 nginx]# cd tasks/ [root@node1 tasks]# cat copyfile.yml - name: copyfile template: dest=/etc/nginx/nginx.conf src=nginx.conf tags: copy notify: restart
执行nginx.yml文件
[root@node1 templates]# ansible-playbook -t copy nginx.yml
创建变量目录vars
[root@node1 nginx]# mkdir vars [root@node1 nginx]# cd vars/ [root@node1 vars]# vim main.yml [root@node1 vars]# cat main.yml {port: 90} #定义了一个端口为90的变量
在模板文件中使用
[root@node1 nginx]# vim templates/nginx.conf
server { listen {{port}} default_server; listen [::]:80 default_server; server_name _; root /usr/share/nginx/html;
执行
[root@node1 data]# ansible-playbook -t copy nginx.yml
查看端口
[root@node1 opt]# netstat -tunlp
创建静态配置文件files
[root@node1 nginx]# mkdir files
将静态文件copy到files目录下
[root@node1 files]# cp /etc/fstab .
配置静态文件
[root@node1 tasks]# cat main.yml - import_tasks: install.yml - import_tasks: copyfile.yml - import_tasks: start.yml - name: fstab copy: dest=/tmp/test.txt src=fstab
tags: fstab
如果机器的版本不一致,既有centos7也有centos6
copy并更改nginx.conf文件
[root@localhost templates]# cat centos6.conf # For more information on configuration, see: # * Official English Documentation: http://nginx.org/en/docs/ # * Official Russian Documentation: http://nginx.org/ru/docs/ user nginx; #启动用户 worker_processes {{ansible_processor_vcpus}}; #默认工作进程,一般设置为CPU的个数或CPU个数的两倍 error_log /var/log/nginx/error.log; pid /var/run/nginx.pid; #centos6 中nginx.pid默认目录 # Load dynamic modules. See /usr/share/nginx/README.dynamic. include /usr/share/nginx/modules/*.conf; events { worker_connections 102400; #每一个进程可以提供多少个线程 } http { log_format main '$remote_addr - $remote_user [$time_local] "$request" ' '$status $body_bytes_sent "$http_referer" ' '"$http_user_agent" "$http_x_forwarded_for"'; access_log /var/log/nginx/access.log main; sendfile on; tcp_nopush on; tcp_nodelay on; keepalive_timeout 65; types_hash_max_size 2048; include /etc/nginx/mime.types; default_type application/octet-stream; # Load modular configuration files from the /etc/nginx/conf.d directory. # See http://nginx.org/en/docs/ngx_core_module.html#include # for more information. include /etc/nginx/conf.d/*.conf; server { listen 80; #centos6更改,只写端口 server_name localhosts; #centos6更改server_name root /usr/share/nginx/html; # Load configuration files for the default server block. include /etc/nginx/default.d/*.conf; location / { } error_page 404 /404.html; location = /40x.html { } error_page 500 502 503 504 /50x.html; location = /50x.html { } } # Settings for a TLS enabled server. # # server { # listen 443 ssl http2 default_server; # listen [::]:443 ssl http2 default_server; # server_name _; # root /usr/share/nginx/html; # # ssl_certificate "/etc/pki/nginx/server.crt"; # ssl_certificate_key "/etc/pki/nginx/private/server.key"; # ssl_session_cache shared:SSL:1m; # ssl_session_timeout 10m; # ssl_ciphers HIGH:!aNULL:!MD5; # ssl_prefer_server_ciphers on; # # # Load configuration files for the default server block. # include /etc/nginx/default.d/*.conf; # # location / { # } # # error_page 404 /404.html; # location = /40x.html { # } # # error_page 500 502 503 504 /50x.html; # location = /50x.html { # } # } }
[root@node1 templates]# ll total 8 -rw-r--r-- 1 root root 2646 Apr 11 00:30 centos6.conf -rw-r--r-- 1 root root 2619 Apr 11 00:20 nginx.conf
更改copyfile.yml
[root@localhost tasks]# cat copyfile.yml - name: copyfile template: dest=/etc/nginx/nginx.conf src=nginx.conf tags: copy notify: restart when: ansible_distribution_major_version=="7" - name: centos6 template: dest=/etc/nginx/nginx.conf src=centos6.conf tags: centos6 notify: restart when: ansible_distribution_major_version=="6"
执行nginx.yml文件
[root@node1 templates]# ansible-playbook -t copy,contos6 nginx.yml
查看版本号
[root@node1 opt]# ansible localhost -m setup -a "filter=*ansible_distribution_major_version*" localhost | SUCCESS => { "ansible_facts": { "ansible_distribution_major_version": "7" #版本号 }, "changed": false }
目录结构
nginx/
├── files 存放静态的文件
│ └── fstab
├── handlers 存放需要触发的任务,里面必须main.yml文件
│ └── main.yml
├── tasks 存放的执行的任务 ,里面必须main.yml文件
│ ├── copyfile.yml
│ ├── install.yml
│ ├── main.yml
│ └── start.yml
├── templates 存放的模板文件
│ ├── centos6.conf
│ └── nginx.conf
└── vars 存放的是参数,里面必须main.yml文件
└── main.yml
入口文件
[root@node1 data]# cat nginx.yml - hosts: web remote_user: root roles: - nginx
查找顺序
-
-
找tasks目录下面的main.yml文件,如果import_tasks 就导入
-
如果遇到了templates,去找templates文件夹下面的对应文件
-
如果遇到了notify,去找handlers里面的main.yml文件
-
如果遇到了copy,去找files里面的对应文件
-