Giter Club home page Giter Club logo

Comments (6)

guits avatar guits commented on June 12, 2024

@NileshChandekar that's a bit confusing:

(pacific) root@spare:~/ceph-ansible# git branch
* (HEAD detached at origin/stable-6.0)
  main
(pacific) root@spare:~/ceph-ansible#

are you deploying Ceph pacific with main ?

in any case, I think your assumption :

VIP 192.168.20.99 should get configured on any one of the monitoring node.

is wrong, ceph-ansible won't configure the VIP for you. As far as I know, it has to be configured prior to running the playbook.

from ceph-ansible.

NileshChandekar avatar NileshChandekar commented on June 12, 2024
  • @guits I am deploying stable 6.0 which is pacific,
  • OK, so if ceph-ansible is not configured it for us then we should have this below network on all the nodes where the dashboard is running mainly on the MON nodes, before run,
# Binnd the External VIP
auto br-host:0
iface br-host:0 inet static
    address 192.168.20.99
    netmask 255.255.255.255

  • I am also thinking to instead of this I can use my existing haproxy+keepalived nodes for LB+HA.

  • Planning to extend my haproxy nodes to get use with dashboard.

/etc/haproxy/haproxy.cfg

global
    log         stdout format raw local0
    maxconn     2048
    chroot      /var/lib/haproxy
    pidfile     /var/run/haproxy.pid
    user        haproxy
    group       haproxy
    daemon

defaults
    log                     global
    mode                    http
    option                  httplog
    option                  dontlognull
    timeout connect         5000ms
    timeout client          50000ms
    timeout server          50000ms

frontend http-in
    bind *:80
    redirect scheme https code 301 if !{ ssl_fc }

frontend https-in
    bind *:443 ssl crt /etc/haproxy/certs/example.com.pem
    http-response set-header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
    default_backend servers

backend servers
    balance     roundrobin
    server server1 192.168.20.2:8443 check
    server server2 192.168.20.3:8443 check
    server server2 192.168.20.4:8443 check

/etc/keepalived/keepalived.conf

global_defs {
    
}

vrrp_script chk_haproxy {
    script "killall -0 haproxy"
    interval 2
    weight 2
}

vrrp_instance VI_1 {
    state MASTER
    interface enp1s0
    virtual_router_id 51
    priority 101
    authentication {
        auth_type PASS
        auth_pass password
    }
    virtual_ipaddress {
        192.168.20.99/24
    }
    track_script {
        chk_haproxy
    }
}

from ceph-ansible.

guits avatar guits commented on June 12, 2024

that seems correct, let me know how it goes @NileshChandekar

from ceph-ansible.

NileshChandekar avatar NileshChandekar commented on June 12, 2024

that seems correct, let me know how it goes @NileshChandekar

@guits Yup Yup, working.

Haproxy+keepalived doing the job.

Here is the working config

this is without ssl/tls , i will next test ssl/tls

global
    log         stdout format raw local0
    maxconn     2048
    chroot      /var/lib/haproxy
    pidfile     /var/run/haproxy.pid
    user        haproxy
    group       haproxy
    daemon

defaults
    mode http
    timeout client 5s
    timeout connect 5s
    timeout server 5s
    timeout http-request 5s

frontend http-in
    bind *:8090
    default_backend servers

frontend http-rgw
    bind *:8080
    default_backend rgw


backend servers
    option httpchk
    http-check expect status 200
    server server1 192.168.20.2:7443 check
    server server2 192.168.20.3:7443 check
    server server3 192.168.20.4:7443 check

backend rgw
    server server1 192.168.20.8:8080 
    server server2 192.168.20.9:8080

from ceph-ansible.

github-actions avatar github-actions commented on June 12, 2024

This issue has been automatically marked as stale because it has not had recent activity. It will be closed in a week if no further activity occurs. Thank you for your contributions.

from ceph-ansible.

github-actions avatar github-actions commented on June 12, 2024

This issue has been automatically closed due to inactivity. Please re-open if this still requires investigation.

from ceph-ansible.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.