Comments (6)
@NileshChandekar that's a bit confusing:
(pacific) root@spare:~/ceph-ansible# git branch
* (HEAD detached at origin/stable-6.0)
main
(pacific) root@spare:~/ceph-ansible#
are you deploying Ceph pacific with main
?
in any case, I think your assumption :
VIP 192.168.20.99 should get configured on any one of the monitoring node.
is wrong, ceph-ansible won't configure the VIP for you. As far as I know, it has to be configured prior to running the playbook.
from ceph-ansible.
- @guits I am deploying stable 6.0 which is pacific,
- OK, so if ceph-ansible is not configured it for us then we should have this below network on all the nodes where the dashboard is running mainly on the MON nodes, before run,
# Binnd the External VIP
auto br-host:0
iface br-host:0 inet static
address 192.168.20.99
netmask 255.255.255.255
-
I am also thinking to instead of this I can use my existing haproxy+keepalived nodes for LB+HA.
-
Planning to extend my haproxy nodes to get use with dashboard.
/etc/haproxy/haproxy.cfg
global
log stdout format raw local0
maxconn 2048
chroot /var/lib/haproxy
pidfile /var/run/haproxy.pid
user haproxy
group haproxy
daemon
defaults
log global
mode http
option httplog
option dontlognull
timeout connect 5000ms
timeout client 50000ms
timeout server 50000ms
frontend http-in
bind *:80
redirect scheme https code 301 if !{ ssl_fc }
frontend https-in
bind *:443 ssl crt /etc/haproxy/certs/example.com.pem
http-response set-header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
default_backend servers
backend servers
balance roundrobin
server server1 192.168.20.2:8443 check
server server2 192.168.20.3:8443 check
server server2 192.168.20.4:8443 check
/etc/keepalived/keepalived.conf
global_defs {
}
vrrp_script chk_haproxy {
script "killall -0 haproxy"
interval 2
weight 2
}
vrrp_instance VI_1 {
state MASTER
interface enp1s0
virtual_router_id 51
priority 101
authentication {
auth_type PASS
auth_pass password
}
virtual_ipaddress {
192.168.20.99/24
}
track_script {
chk_haproxy
}
}
from ceph-ansible.
that seems correct, let me know how it goes @NileshChandekar
from ceph-ansible.
that seems correct, let me know how it goes @NileshChandekar
@guits Yup Yup, working.
Haproxy+keepalived doing the job.
Here is the working config
this is without ssl/tls , i will next test ssl/tls
global
log stdout format raw local0
maxconn 2048
chroot /var/lib/haproxy
pidfile /var/run/haproxy.pid
user haproxy
group haproxy
daemon
defaults
mode http
timeout client 5s
timeout connect 5s
timeout server 5s
timeout http-request 5s
frontend http-in
bind *:8090
default_backend servers
frontend http-rgw
bind *:8080
default_backend rgw
backend servers
option httpchk
http-check expect status 200
server server1 192.168.20.2:7443 check
server server2 192.168.20.3:7443 check
server server3 192.168.20.4:7443 check
backend rgw
server server1 192.168.20.8:8080
server server2 192.168.20.9:8080
from ceph-ansible.
This issue has been automatically marked as stale because it has not had recent activity. It will be closed in a week if no further activity occurs. Thank you for your contributions.
from ceph-ansible.
This issue has been automatically closed due to inactivity. Please re-open if this still requires investigation.
from ceph-ansible.
Related Issues (20)
- Calculated value for `osd target memory` too high for deployments with multiple OSDs per device HOT 2
- Task set_fact num_osds is failing for OSDs with separate db block HOT 2
- Cannot satisfy RHEL 8 dependencies for ansible-core. HOT 2
- Error in ceph-ansible Cluster after OS Upgrade from Bionic to Focal HOT 1
- RGW config examples for OpenStack Keystone use incorrect role name
- Stable-7.0 installing collection ansible-config_template error
- Does anyone configure CEPH Quincy with RGW using the https protocol? Please share the configuration. HOT 1
- Is it possible to have unequal return values for begin() and end() when the unordered_map container is empty?
- Dashboard meters broken HOT 2
- Add Support to install this collection using ansible-galaxy HOT 3
- Issues with Ceph Ansible `stable-8.0` on Ubuntu 22.04/24.04 and Impact on OpenStack Ansible (OSA) Integration HOT 13
- Can't update from quincy to reef from stable-8.0 HOT 1
- monitor keys fail to generate except on first monitor HOT 4
- Ceph-mon fails to bind on rocky 9 HOT 6
- support for reef release HOT 2
- add-mon.yml hangs HOT 6
- TASK [ceph-mon : check if monitor initial keyring already exists] ***************************************************************************************************************************************************** Wednesday 17 April 2024 04:15:11 +0000 (0:00:00.060) 0:10:47.222 ******* fatal: [tungna_ceph1 -> tungna_ceph3]: FAILED! => changed=false censored: 'the output has been hidden due to the fact that ''no_log: true'' was specified for this result' HOT 2
- Trying a PoC with dd not working. stderr: blkid: error: /dev/ro1: Invalid argument HOT 4
- Mirroring feature issues unknown state of image on receiver HOT 5
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ceph-ansible.