Linux安裝Gitlab,附iSCSI分區掛載說明
因為Gitlab數據要存放在共享存儲,所以本次配置的重頭戲倒變成了掛載ISCSI了。
OS:CentOS 7.2
IP:172.16.1.191/192.168.2.191
iSCSI分Target(服務端)[磁盤櫃]及Initiator(客戶端)[windows,linux],本次安裝的是客戶端。
1、安裝iSCSI-Initiator工具包:
[[email protected] /]# yum -y install iscsi-initiator-utils
2、配置本機iSCSI名稱:
[[email protected] /]# vim /etc/iscsi/initiatorname.iscsi
修改Initiator名稱如下:
InitiatorName=iqn.1994-05.com.redhat:gitlab.17track.net
3、掃描Target設備的共享卷:
[[email protected] /]# iscsiadm -m discovery -t sendtargets -p 192.168.2.1
192.168.2.1:3260,5 iqn.1995-03.com.dothill:01.array.00c0ff261fd6 192.168.2.2:3260,6 iqn.1995-03.com.dothill:01.array.00c0ff261fd6 192.168.3.1:3260,7 iqn.1995-03.com.dothill:01.array.00c0ff261fd6 192.168.3.2:3260,8 iqn.1995-03.com.dothill:01.array.00c0ff261fd6
4、刪除192.168.3.x網段的連接(用2.x網段連接就夠用了)
[[email protected] /]# rm -rf /var/lib/iscsi/nodes/iqn.1995-03.com.dothill\:01.array.00c0ff261fd6/192.168.3.1\,3260\,7/ [[email protected] /]# rm -rf /var/lib/iscsi/nodes/iqn.1995-03.com.dothill\:01.array.00c0ff261fd6/192.168.3.2\,3260\,8/
5、掛載Target設備的共享卷:
[[email protected]
6、查看掛載存儲信息:
[[email protected] /]# fdisk -l
Disk /dev/sdb: 32.0 GB, 31998345216 bytes, 62496768 sectors Units = sectors of 1 * 512 = 512 bytes Sector size (logical/physical): 512 bytes / 4096 bytes I/O size (minimum/optimal): 4096 bytes / 1048576 bytes Disk /dev/sda: 32.0 GB, 31998345216 bytes, 62496768 sectors Units = sectors of 1 * 512 = 512 bytes Sector size (logical/physical): 512 bytes / 4096 bytes I/O size (minimum/optimal): 4096 bytes / 1048576 bytes
7、安裝多路徑冗余程序:
[[email protected] /]# yum -y install device-mapper-multipath
8、配置多路徑冗余(MultiPath)
[[email protected] /]# vim /etc/multipath.conf
寫入如下內容:
defaults { udev_dir /dev polling_interval 10 path_selector "round-robin 0" path_grouping_policy multibus prio alua path_checker readsector0 failback immediate no_path_retry fail user_friendly_names yes }
9、重啟多路徑冗余服務:
[[email protected] /]# systemctl restart multipathd.service
10、查看多路徑虛擬硬盤:
[[email protected] /]# fdisk -l
Disk /dev/mapper/mpatha: 32.0 GB, 31998345216 bytes, 62496768 sectors Units = sectors of 1 * 512 = 512 bytes Sector size (logical/physical): 512 bytes / 4096 bytes I/O size (minimum/optimal): 4096 bytes / 1048576 bytes
11、格式化硬盤:
[[email protected] /]# mkfs.ext4 /dev/mapper/mpatha
12、掛載硬盤:
[[email protected] /]# mkdir /data [[email protected] /]# mount /dev/mapper/mpatha /data
13、添加硬盤自動掛載到啟動項:
[[email protected] /]# vim /etc/fstab
在文檔末尾添加如下條目(註意設備類型不是Default,而是_netdev)
/dev/mapper/mpatha /data ext4 _netdev 0 0
--------------------------------------------------------------------------配置Gitlab開始-----------------------------------------------------------------------------
14、添加清華gitlab源
[[email protected] /]# vim /etc/yum.repos.d/gitlab-ce.repo
在文檔中添加如下條目:
[gitlab-ce] name=Gitlab CE Repository baseurl=https://mirrors.tuna.tsinghua.edu.cn/gitlab-ce/yum/el$releasever/ gpgcheck=0 enabled=1
[[email protected] /]# yum makecache
15、安裝Gitlab社區版:
[[email protected] /]# yum install gitlab-ce
16、初始化Gitlab服務:
[[email protected] /]# gitlab-ctl reconfigure
# 到這裏為止就可以通過ip地址來訪問Gitlab服務了。接下來配置https服務。
17、創建證書目錄,並放入證書:
[[email protected] /]# mkdir /etc/gitlab/ssl [[email protected] /]# ll /etc/gitlab/ssl total 16 -rw-r--r-- 1 root root 4023 Jul 28 14:33 17track.crt -rw-r--r-- 1 root root 1957 Jul 28 14:33 17track.key -rw-r--r-- 1 root root 3083 Jul 28 14:33 17track.pfx -rw-r--r-- 1 root root 769 Jul 28 14:33 dhparam.pem
18、修改Gitlab配置文件:
[[email protected] /]# vim /etc/gitlab/gitlab.rb
修改如下項目:
external_url ‘https://git.17track.net:8099/‘ gitlab_rails[‘gitlab_email_enabled‘] = true gitlab_rails[‘gitlab_email_from‘] = [email protected] gitlab_rails[‘gitlab_email_display_name‘] = ‘admin‘ gitlab_rails[‘gitlab_email_reply_to‘] = [email protected] gitlab_rails[‘gitlab_email_subject_suffix‘] = ‘‘ git_data_dirs({ "default" => { "path" => "/data/gitlab-repository", ‘gitaly_address‘ => ‘unix:/var/opt/gitlab/gitaly/gitaly.socket‘ } }) gitlab_rails[‘smtp_enable‘] = true gitlab_rails[‘smtp_address‘] = "smtp.exmail.qq.com" gitlab_rails[‘smtp_port‘] = 465 gitlab_rails[‘smtp_user_name‘] = "[email protected]" gitlab_rails[‘smtp_password‘] = "17Track_neT" gitlab_rails[‘smtp_authentication‘] = "login" gitlab_rails[‘smtp_enable_starttls_auto‘] = true gitlab_rails[‘smtp_tls‘] = true gitlab_rails[‘gitlab_email_from‘] = [email protected] nginx[‘enable‘] = true nginx[‘client_max_body_size‘] = ‘8m‘ nginx[‘redirect_http_to_https‘] = true nginx[‘redirect_http_to_https‘] = true nginx[‘ssl_certificate‘] = "/etc/gitlab/ssl/17track.crt" nginx[‘ssl_certificate_key‘] = "/etc/gitlab/ssl/17track.key" nginx[‘ssl_ciphers‘] = "ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256" nginx[‘ssl_protocols‘] = "TLSv1 TLSv1.1 TLSv1.2" nginx[‘ssl_session_cache‘] = "builtin:1000 shared:SSL:10m" nginx[‘hsts_max_age‘] = 31536000 nginx[‘hsts_include_subdomains‘] = true logrotate[‘enable‘] = true pages_external_url "https://site.17track.net:8098/" gitlab_pages[‘enable‘] = true gitlab_pages[‘use_http2‘] = true pages_nginx[‘enable‘] = false gitlab_rails[‘pages_path‘] = "/data/gitlab-pages"
19、修改ningx配置文件:
[[email protected] /]# vim /opt/gitlab/embedded/conf/nginx.conf
刪除server項目相關項目,添加如下內容:
# HTTPS server # server { listen 443 ssl; server_name git.17track.net; ssl_certificate /etc/gitlab/trusted-certs/dhparam.pem; ssl_certificate_key /etc/gitlab/trusted-certs/17track.key; ssl on; ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers HIGH:!aNULL:!MD5; ssl_prefer_server_ciphers on; location / { root html; index index.html index.htm; } } server { listen*:80; server_name git.17track.net; rewrite^(.*)$https://$host$1permanent; }
20、重啟Gitlab服務:
[[email protected] /]# gitlab-ctl restart
21、訪問Gitlab服務;
https://172.16.1.191:8099/
root/*******
[THE END]
Linux安裝Gitlab,附iSCSI分區掛載說明