云计算:Linux 部署 OVS 集群(服务端)实现VXLAN
目次一、实验
1.情况
2.Linux 部署 OVS 集群(服务端)
3.Linux 部署VXLAN
一、实验
1.情况
(1) 主机
表1 宿主机
主机架构软件IP备注ovs_controller控制端192.168.204.63 1个NAT网卡
(204网段)
ovs_server01服务端 OpenvSwitch
v2.5.1
192.168.204.61 1个NAT网卡
(204网段),
1个仅主机网卡
(88网段)
ovs_server02服务端 OpenvSwitch
v2.5.1
192.168.204.62 1个NAT网卡
(204网段),
1个仅主机网卡
(88网段)
表2 目的云主机
云主机IP备注 cloudserver01
172.16.1.1 宿主机ovs_server01
cloudserver02172.16.1.2 宿主机ovs_server02
(2) 查看IP
ovs_controller
https://img-blog.csdnimg.cn/direct/3355834bd07d4ffeb8e0c15ea8933de4.png
ovs_server01
https://img-blog.csdnimg.cn/direct/9685abd74e8940198de0a5f73604d4d0.png
ovs_server02
https://img-blog.csdnimg.cn/direct/6ee169befae14ca6845a339bafc80dd6.png
(3)修改hostname
# vim /etc/hostname
https://img-blog.csdnimg.cn/direct/78e0ea74cc6a437aa74d05fcebf2e7ca.png
ovs_controller
https://img-blog.csdnimg.cn/direct/bd741c9551fe4233a4cd6b72e751710f.png
ovs_server01
https://img-blog.csdnimg.cn/direct/f88f14c76d294eb6b5e3c796114d59dd.png
ovs_server02
https://img-blog.csdnimg.cn/direct/9933ce1110e540a59f13ac47c0c7f0ab.png
(4) 修改hosts
# vim /etc/hosts
https://img-blog.csdnimg.cn/direct/44ac32f9ede54d2eb796d862b3d0d45d.png
修改前:
https://img-blog.csdnimg.cn/direct/86686fbde87a4f239e2b029994a09b99.png
修改后:
ovs_controller
https://img-blog.csdnimg.cn/direct/6a9edc3a046b43a291d600fbf47ff0ba.pngovs_server01https://img-blog.csdnimg.cn/direct/f35cfe2aaf434f12b2760215c1b24d82.pngovs_server02https://img-blog.csdnimg.cn/direct/ca9d3fc6316448a3816a016cecff4e6a.png
2.Linux 部署 OVS 集群(服务端)
(1)查阅
1)官网
https://www.openvswitch.org/download/
2)GitHub
https://github.com/openvswitch/ovs (2) 安装OVS依赖软件
yuminstall -y openssl-devel kernel-devel
yumgroupinstall -y "Development Tools" ovs_server01
https://img-blog.csdnimg.cn/direct/3b854573c5c445e0bdcba14f54825270.png
https://img-blog.csdnimg.cn/direct/2b9e79cdd7f44bf0a575e07cf5a4f68b.png
ovs_server02
https://img-blog.csdnimg.cn/direct/a67dc9265ce343418bbecf85b0a19437.pnghttps://img-blog.csdnimg.cn/direct/51241867b2dc4d06a90584a9809da748.png
(2)添加用户
adduser ovswitch
su - ovswitch
ovs_server01
https://img-blog.csdnimg.cn/direct/8f4c028ee81a47a68186e811a8ec3a63.png
ovs_server02
https://img-blog.csdnimg.cn/direct/c04ce9323eee4ea5b8139bd73c3b8ac7.png
(3)下载并解压
选择一个稳固版
https://img-blog.csdnimg.cn/direct/6ff4dccdb8be45f7ae92a50548a6aa92.png
wget https://www.openvswitch.org/releases/openvswitch-2.5.1.tar.gz
tar xfz openvswitch-2.5.1.tar.gz
ovs_server01
https://img-blog.csdnimg.cn/direct/ab8919cce5e14e299e6e6c41664f743d.png
https://img-blog.csdnimg.cn/direct/43913544fc79434d914c699bf013941f.png
ovs_server02
https://img-blog.csdnimg.cn/direct/af23a668ee8e4169acb70802374728ff.png
https://img-blog.csdnimg.cn/direct/eaec31eb0128472c9df3f0f275f134f1.png
(4) 源码包⽅式⽣成RPM包
mkdir -p ~/rpmbuild/SOURCES
sed 's/openvswitch-kmod, //g' openvswitch-2.5.1/rhel/openvswitch.spec > openvswitch-2.5.1/rhel/openvswitch_no_kmod.spec
cp openvswitch-2.5.1.tar.gz rpmbuild/SOURCES
rpmbuild -bb --without=check ~/openvswitch-2.5.1/rhel/openvswitch_no_kmod.spec ovs_server01
https://img-blog.csdnimg.cn/direct/4657d7c9f1114bb0a3f99e82c7891229.png
ovs_server02
https://img-blog.csdnimg.cn/direct/1b94dc563210406d86ea6970285656af.png
(5)查看并退出用户
ls /home/ovswitch/rpmbuild/RPMS/x86_64/
exit ovs_server01
https://img-blog.csdnimg.cn/direct/c847f5f43fcd44bc9d7ea9b3d2aba822.png
https://img-blog.csdnimg.cn/direct/904875bac64b4dac9eea29bcf05c76be.png
ovs_server02
https://img-blog.csdnimg.cn/direct/c8de808ede794260bd8de6edc612e1f0.png
https://img-blog.csdnimg.cn/direct/706b461214e04ad390af54851c9b19ac.png
(6)RPM包安装
yum localinstall -y /home/ovswitch/rpmbuild/RPMS/x86_64/openvswitch-2.5.1-1.x86_64.rpm ovs_server01
https://img-blog.csdnimg.cn/direct/aac9c76176e6484685f310712d4bc667.png
ovs_server02
https://img-blog.csdnimg.cn/direct/e4a192ccc413463c998c1763ee2c6591.png
(7)设置开机自启
1)查看
systemctl status openvswitch.service
2)启动
systemctl startopenvswitch.service
3)开机自启
systemctl enable openvswitch.service
4)再次查看
systemctl status openvswitch.service
ovs_server01
https://img-blog.csdnimg.cn/direct/e78bd0992ecf49c0add404774af58e0b.png
ovs_server02
https://img-blog.csdnimg.cn/direct/845d635cbbc049eea971541bb15fc275.png
(7)安装virt-manager与virsh(libvrit-client)
yum install-yvirt-managerlibvirt-client
ovs_server01
https://img-blog.csdnimg.cn/direct/ff95e05550e040139abe4f5bd603d0c0.png
ovs_server02
https://img-blog.csdnimg.cn/direct/9867d839ea064961b6a6053566fd1498.png
(8)关闭防⽕墙
systemctlstop firewalld.service
systemctldisablefirewalld.service ovs_server01
https://img-blog.csdnimg.cn/direct/295fa52eb79c4b87b15d724598a5411b.pngovs_server02
https://img-blog.csdnimg.cn/direct/a9339106fa4d4c009945e41546918389.png
(9)查看
ovs-vsctl show ovs_server01
https://img-blog.csdnimg.cn/direct/5f7c19aed5f64324a2bea93264627a48.png
ovs_server02
https://img-blog.csdnimg.cn/direct/80029c0a14de476891462a663b5c3dfe.png
3.Linux 部署VXLAN
(1)添加OVS
ovs_server01
ovs-vsctladd-br ovs01 https://img-blog.csdnimg.cn/direct/54ab53e3cd114a25bb350e51bbb3535e.png
ovs_server02
ovs-vsctladd-br ovs02 https://img-blog.csdnimg.cn/direct/19d7db81c2bf42cb88bd812791bb481b.png
(2)添加OVS internal
ovs_server01
ovs-vsctladd-port ovs01if01 -- set interface if01 type=internal https://img-blog.csdnimg.cn/direct/5709164388d64c598c111322c52fec9d.png
ovs_server02
ovs-vsctladd-port ovs02if02 -- set interface if02 type=internal
https://img-blog.csdnimg.cn/direct/a55bd7f1dd8b4ae49cc5af39c9e24894.png
(3)查看
ovs-vsctl show ovs_server01
https://img-blog.csdnimg.cn/direct/94b781c0c8844efea86d171b86ff1753.png
ovs_server02
https://img-blog.csdnimg.cn/direct/a99c5a3363f548c1b97d87e6f3bc5e90.png
(4)ovs_server01创建云主机
virt-manager https://img-blog.csdnimg.cn/direct/fe8a1b18cef34c4f914c77b5643b9288.png
新建虚拟机
https://img-blog.csdnimg.cn/direct/7a147d601ad1478db073c69f47b7cb59.png
前进
https://img-blog.csdnimg.cn/direct/e52ce3750a7e4b47aaeca853d6730776.png
使用镜像
https://img-blog.csdnimg.cn/direct/4beba6b51b3d40af93027b946510eed2.png
https://img-blog.csdnimg.cn/direct/1f6dab69c7f6452a90e2338b2c205c61.png
修改内存
https://img-blog.csdnimg.cn/direct/cf92414f9f244c83aa29802e5bfc3370.png
https://img-blog.csdnimg.cn/direct/bbdcfeab42314826b6de6c9385567ad7.png
选择网络if01
https://img-blog.csdnimg.cn/direct/1ca8af67d898406a94f1ff081a209145.png
强制关机
https://img-blog.csdnimg.cn/direct/46f9c103425542618d5b32622338e510.png
挂载镜像
https://img-blog.csdnimg.cn/direct/d132ae55c0734304a129ee4306b61bc1.png
https://img-blog.csdnimg.cn/direct/8e60e9334dd44208a233040bf1f33713.png
修改启动项为光驱
https://img-blog.csdnimg.cn/direct/f3af811ea05c4dcca22808af0d92d3f2.png
开机选择第3个命令行
https://img-blog.csdnimg.cn/direct/34f73c2d5d9a44f0a9a74eb34eb1c75b.png
https://img-blog.csdnimg.cn/direct/5baa29c918334b4daee837926cb46886.png
(5)ovs_server02创建云主机
virt-manager
https://img-blog.csdnimg.cn/direct/00ef15c20e144053b79dd720099c5c6a.png
新建虚拟机
https://img-blog.csdnimg.cn/direct/7a147d601ad1478db073c69f47b7cb59.png
前进
https://img-blog.csdnimg.cn/direct/e52ce3750a7e4b47aaeca853d6730776.png
使用镜像
https://img-blog.csdnimg.cn/direct/4beba6b51b3d40af93027b946510eed2.png
https://img-blog.csdnimg.cn/direct/1f6dab69c7f6452a90e2338b2c205c61.png
修改内存
https://img-blog.csdnimg.cn/direct/cf92414f9f244c83aa29802e5bfc3370.png
https://img-blog.csdnimg.cn/direct/bbdcfeab42314826b6de6c9385567ad7.png
选择网络if01
https://img-blog.csdnimg.cn/direct/b2c17c31e61d422a9f33960fe7c29e6b.png
强制关机
https://img-blog.csdnimg.cn/direct/46f9c103425542618d5b32622338e510.png
挂载镜像
https://img-blog.csdnimg.cn/direct/c4c38e34a6d14da9a6727f76d3d2a945.png
https://img-blog.csdnimg.cn/direct/a674ce9946484c20bbf4c02c98bcdb6d.png
修改启动项为光驱
https://img-blog.csdnimg.cn/direct/74e171f0ec254194880623c006f84605.png
开机选择第3个命令行
https://img-blog.csdnimg.cn/direct/ed8bce3a69f3482b89e954fbe378fe3a.png
https://img-blog.csdnimg.cn/direct/722dbbacb33e4b1a8fd201937c0273e3.png
(7)查看云主机网卡并修改
cloudserver01
sudo ifconfig
sudo ifconfig eth0 172.16.1.1 netmask 255.255.255.0 https://img-blog.csdnimg.cn/direct/6e5df13796a04bfeb0696ba61c765d2b.png
cloudserver02
sudo ifconfig
sudo ifconfig eth0 172.16.1.2 netmask 255.255.255.0 https://img-blog.csdnimg.cn/direct/04ca67e629964bcf9e6ea9f395f911f1.png
(8) 测试网络
云主机1 ping 云主机2 ,目前不通
https://img-blog.csdnimg.cn/direct/08c7eb7a98c745e385e3d88c65810e13.png
(9)部署VXLAN端⼝
ovs_server01
ovs-vsctl add-portovs01 vxlan0 -- set interface vxlan0type=vxlan options:remote_ip=192.168.204.62 options:key=10001
https://img-blog.csdnimg.cn/direct/9b25a9eddbaf4bd7ae27f72644e0c7ce.png
ovs_server02
ovs-vsctl add-portovs02 vxlan0 -- set interface vxlan0type=vxlan options:remote_ip=192.168.204.61 options:key=10001 https://img-blog.csdnimg.cn/direct/329545f5ca7242999300b0c4bf3064df.png
(10)查看
ovs-vsctl show ovs_server01
https://img-blog.csdnimg.cn/direct/7936bf2c01fb43258bcb46664c34b127.png
ovs_server02
https://img-blog.csdnimg.cn/direct/b1b4de0a27344c4d9faf10a394aed0c7.png
(11) 测试网络
云主机1 ping 云主机2 ,目前已通
https://img-blog.csdnimg.cn/direct/b0afbd98abcc4a97b01d347268831364.png
(12)流量抓包(tcpdump)
ovs_server01
https://img-blog.csdnimg.cn/direct/79b39ee9364848d6bb71d2280869aa90.png
云主机1 ping 云主机2
https://img-blog.csdnimg.cn/direct/c7c8b96871b14b3789e709582520c9a6.png
观察抓取的流量(源端口一直在变化,目的端口都为4789)
https://img-blog.csdnimg.cn/direct/b1d7c0f137a34d118edfe12b2edc6605.png
(13) 流量抓包(Wireshark)
云主机1 ping 云主机2
https://img-blog.csdnimg.cn/direct/c7c8b96871b14b3789e709582520c9a6.png
观察抓取的流量
https://img-blog.csdnimg.cn/direct/9dbcf142a3324c3fbe0757e0fe8ec9e2.png
(14)流量分析(Wireshark)
原始数据:
https://img-blog.csdnimg.cn/direct/2aa1e46885754b2186a011defd1b02c4.png
VXLAN隧道封装了VNI (实现多租户隔离)
https://img-blog.csdnimg.cn/direct/c35b635466294b53a9b3e6100351cfc1.png
原始数据(二层包)封装在UDP,原端口随机,目的端口为4789
https://img-blog.csdnimg.cn/direct/9483d224ede34d0bbe0ddf493c32e20c.png
新IP头:
https://img-blog.csdnimg.cn/direct/f0415d25a9264aed91b55cc325b300e7.png
免责声明:如果侵犯了您的权益,请联系站长,我们会及时删除侵权内容,谢谢合作!更多信息从访问主页:qidao123.com:ToB企服之家,中国第一个企服评测及商务社交产业平台。
页:
[1]