cobbler安装配置(二)

安装环境：
操作系统:CentOS 6.5 x86_64
测试机器ip:192.168.0.1

关闭防火墙、selinux：
service iptables stop && chkconfig iptables off
setenforce 0

一、导入yum源,安装软件

rpm -ivh http://dl.fedoraproject.org/pub/epel/6/x86_64/epel-release-6-8.noarch.rpm
[root@cobbler]# yum install cobbler httpd rsync tftp-server xinetd dhcp mkisofs python-ctypes mod_python createrepo python-cheetah python-simplejson yum-utils libyaml python-netaddr PyYAML -y

二、配置cobbler

1.修改cobbler 的配置文件
vim /etc/cobbler/settings
修改如下地方：
  next_server: 192.168.0.1
   server: 192.168.0.1
   manage_dhcp: 1

manage_dhcp:1 cobbler管理dhcpd服务，通过cobbler rsync会将模板配置同步到dhcpd.conf。

2.生成密码串
[root@cobbler ~]# openssl passwd -1 -salt 'Noway11' 'Noway11'
$1$Noway11$NiYLjIVH3z8jGOOLmz2Il0

openssl passwd -1 -salt '任间字符' '密码'
(任意字符可以随便写，这个密码就是安装完系统root的密码，需要替换配置文件里的字符串)

vim /etc/cobbler/settings
   default_password_crypted: "$1$Noway11$NiYLjIVH3z8jGOOLmz2Il0"

3.启用tfptd和rsync
vim /etc/xinetd.d/tftp
vim /etc/xinetd.d/rsync
将disable的值修改成no
启动xinetd服务
/etc/init.d/xinetd restart

4.修改dhcp的配置文件
[root@cobbler cobbler]# cat /etc/cobbler/dhcp.template
   subnet 192.168.0.0 netmask 255.255.255.0 {
        option routers             192.168.0.1;
        option domain-name-servers 202.106.0.20;
        option subnet-mask         255.255.255.0;
        range dynamic-bootp       192.168.0.100 192.168.0.200;
        default-lease-time         21600;
        max-lease-time             43200;
        next-server                $next_server;
  
注释：
option routers：路由地址
option domain-name-servers：DNS服务器地址
option subnet-mask：子网掩码
range：DHCP地址范围
range dynamic-bootp:为pxe client分配地址范围

5.检查/同步配置
[root@cobbler ~]# cobbler check
[root@cobbler ~]# cobbler sync

注意：每次修改配置文件后用cobbler sync同步数据，过程中会重启dhcpd服务并重启cobbler。

6.cobbler check常见错误
The following are potential configuration items that you may want to fix:
1 : The 'server' field in /etc/cobbler/settings must be set to something other than localhost, or kickstarting features will not work. This should be a resolvable hostname or IP for the boot server as reachable by all machines that will use it.
2 : For PXE to be functional, the 'next_server' field in /etc/cobbler/settings must be set to something other than 127.0.0.1, and should match the IP of the boot server on the PXE network.
3 : change 'disable' to 'no' in /etc/xinetd.d/tftp
4 : some network boot-loaders are missing from /var/lib/cobbler/loaders, you may run 'cobbler get-loaders' to download them, or, if you only want to handle x86/x86_64 netbooting, you may ensure that you have installed a *recent* version of the syslinux package installed and can ignore this message entirely. Files in this directory, should you want to support all architectures, should include pxelinux.0, menu.c32, elilo.efi, and yaboot. The 'cobbler get-loaders' command is the easiest way to resolve these requirements.
5 : enable and start rsyncd.service with systemctl
6 : debmirror package is not installed, it will be required to manage debian deployments and repositories
7 : The default password used by the sample templates for newly installed machines (default_password_crypted in /etc/cobbler/settings) is still set to 'cobbler' and should be changed, try: "openssl passwd -1 -salt 'random-phrase-here' 'your-password-here'" to generate new one
8 : fencing tools were not found, and are required to use the (optional) power management features. install cman or fence-agents to use them
Restart cobblerd and then run 'cobbler sync' to apply changes.

问题1、2、7可以通过修改cobbler、dhcp.template、xinetd配置解决；
问题4：cobbler get-loaders
解决问题5：
Centos 6 -- 这个问题可以忽略，在Centos 6下未解决
Centos 7 -- systemctl enable rsyncd.service
问题6：为deban包，不需要处理
问题8：待补充（真机电源管理）

三、导入镜像源

1.挂载本地镜像文件
[root@cobbler]# mount -t iso9660 -o loop CentOS-6.9-x86_64-bin-DVD1.iso /mnt
2.导入镜像源
[root@cobbler]# cobbler import --path=/mnt/ --name=centos6.9-x86_64 --arch=x86_64          
    task started: 2017-12-28_094624_import
    task started (id=Media import, time=Thu Dec 28 09:46:24 2017)
    Found a candidate signature: breed=redhat, version=rhel6
    Found a matching signature: breed=redhat, version=rhel6
    Adding distros from path /var/www/cobbler/ks_mirror/centos6.9-x86_64:
    creating new distro: centos6.9-x86_64
    trying symlink: /var/www/cobbler/ks_mirror/centos6.9-x86_64 -> /var/www/cobbler/links/centos6.9-x86_64
    creating new profile: centos6.9-x86_64
    associating repos
    checking for rsync repo(s)
    checking for rhn repo(s)
    checking for yum repo(s)
    starting descent into /var/www/cobbler/ks_mirror/centos6.9-x86_64 for centos6.9-x86_64
    processing repo at : /var/www/cobbler/ks_mirror/centos6.9-x86_64
    need to process repo/comps: /var/www/cobbler/ks_mirror/centos6.9-x86_64
    looking for /var/www/cobbler/ks_mirror/centos6.9-x86_64/repodata/*comps*.xml
    Keeping repodata as-is :/var/www/cobbler/ks_mirror/centos6.9-x86_64/repodata
    *** TASK COMPLETE ***

这个时间比较长，需要等待。

四、修改ks文件

ks的默认生效文件是/var/lib/cobbler/kickstarts/sample.ks,而不是default.ks(/etc/cobbler/settings中有配置说明)。

可以通过命令修改kickstart配置文件：
[root@cobbler]# cobbler profile edit --name=CentOS-6.9-x86_64 --kickstart=/var/lib/cobbler/kickstarts/xxx.ks

[root@cobbler]# vim /var/lib/cobbler/kickstarts/sample.ks
   auth --useshadow --enablemd5
   bootloader --location=mbr
   zerombr
   clearpart --all --initlabel
   #graphical
   text
   firewall --disabled
   firstboot --disable
   keyboard us
   lang en_US
   logging --level=info
   url --url=http://192.168.0.1/cobbler/ks_mirror/CentOS-6.5-x86_64/
   network --bootproto=dhcp --device=eth0 --onboot=on --noipv6
   rootpw --iscrypted $1$Pw9b.hdj$VyKT.yOk/e2k4pbDslKKc.
   selinux --disabled
   timezone --isUtc Asia/Shanghai
   install
   clearpart --all --initlabel
   part /boot --fstype ext3 --size=100
   part / --fstype ext3 --size=2000
   part swap --fstype swap --size=1000
   part /opt --fstype ext3 --grow --size=1
  
   %packages
   @development-libs
   @base
   @development-tools
   @legacy-software-development
   @legacy-software-support
   @editors

五、cobbler命令

1.查看distro配置
cobbler distro report

2.查看profile配置
cobbler profile report
ks文件放到/var/lib/cobbler/kickstarts/目录下，cbbler通过读取该文件，执行相关安装步骤

3. 查看system配置
cobbler system report

根据MAC地址零交互安装：

创建一个新的自定义安装
cobbler system add --name=odb01.prod.ding  --mac=00:0c:29:34:58:f1 --profile=Centos-6.9-x86_64 --ip-address=192.168.0.20 --subnet=255.255.255.0 --gateway=192.168.0.1 --interface=eth1 --static=1 --hostname=odb01.prod.ding --name-servers="202.106.0.20"

修改自定义安装（name不可修改）
cobbler system edit --name=odb01.prod.ding  --mac=00:0c:29:34:58:f1 --profile=Centos-6.9-x86_64 --ip-address=192.168.0.20 --subnet=255.255.255.0 --gateway=192.168.0.1 --interface=eth1 --static=1 --hostname=odb01.prod.ding --name-servers="202.106.0.20"

4.修改展示页面内容：
[root@cobbler]# cat /etc/cobbler/pxe/pxedefault.template
DEFAULT menu
PROMPT 0
MENU TITLE Cobbler | 系统自动化部署
TIMEOUT 200
TOTALTIMEOUT 6000
ONTIMEOUT $pxe_timeout_profile
LABEL local
         MENU LABEL (local)
         MENU DEFAULT
         LOCALBOOT -1
$pxe_menu_items
MENU end

5.自动重装系统（注意：客户机配置）
问题：虽然可以重装系统，但是不能设置IP、DNS、主机名

解决：重装时候，生成专门为这台机器使用的一次性系统profile，网卡ip配置可以通过远程管理卡实现，应用配置可以通过自动化管理工具实现。

客户机安装koan：
yum install koan -y

获取Cobbler服务器上的可用系统列表：
[root@test ~]# koan --server=192.168.0.1 --list=profiles
- looking for Cobbler at http://192.168.0.1:80/cobbler_api
  Centos-6.9-x86_64

选择要重装的系统，执行安装命令(重做系统执行)：
koan --replace-self --server=192.168.0.1 --profile=Centos-6.9-x886_64

六、Cobbler WEB配置
https://192.168.0.1/cobbler_web