FUNC: Unified Network Controller

Source: Internet
Author: User
Tags ssl certificate certmaster

Project background:






Lab Environment:

VMware Workstation 11

Under the centos6.5 system

Func server: ip:192.168.0.15 firewall off Setenforce 0

Func-controlled end: ip:192.168.0.44 firewall off Setenforce 0

SECURECRT (SSH remote connection software)





Software Introduction:

Func is a unified network controller built by Red Hat Company on Fedora Platform, which is designed and developed to solve the problem of cluster management and monitoring, which is easy to learn, use and expand.

Software Features:

The Func features are:

1. Func can manage any number of servers or groups at any one time on the host computer.

2, Func based on CertMaster (https://fedorahosted.org/certmaster/) established master-slaves master-slave SSL Certificate control system, you can automatically distribute the certificate to all managed servers.

3. The func command line can send remote commands directly or remotely to obtain data.

4. Func developer has completed the development of most common task modules, including command execution module, file transfer module, iptables module, view hardware information module, Mount module, process module, Service module, restart system module, etc.

5. You can easily write extension modules with the Python API provided by Func for specific function extensions. And any work that the Func command line can do can be done through API programming.

6. Func communication is based on XMLRPC and SSL standard protocol.





Experimental process:

One, the main Terminal Server installation

Yum install-y func

Second, the main control side/etc/hosts file modification

[Email protected] ~]# cat/etc/hosts

127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4

:: 1 localhost localhost.localdomain localhost6 localhost6.localdomain6

192.168.0.15 Master #主控端

192.168.0.44 Minion #被控端

Third, the main control terminal/etc/certmaster/minion.conf configuration file modification

650) this.width=650; "src=" Http://s3.51cto.com/wyfs02/M02/7E/9D/wKioL1cFyS2RSFVRAABIIM4dfhI357.png "title=" 01.png "alt=" Wkiol1cfys2rsfvraabiim4dfhi357.png "/>

Four, start the certificate service at the main control side

Service CertMaster Start

Five, the main control side firewall shutdown, SELinux tolerant mode

1. Service Iptables Stop

2, Setenforce 0

Six, the Terminal server-side installation

[email protected] ~]# Yum install-y func

Vii. controlled end/etc/hosts file modification

[Email protected] ~]# vim/etc/hosts

127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4

:: 1 localhost localhost.localdomain localhost6 localhost6.localdomain6

192.168.0.15 Master

192.168.0.44 Minion

Eight, the controlled end/etc/certmaster/minion.conf configuration file modification

650) this.width=650; "src=" Http://s4.51cto.com/wyfs02/M00/7E/9D/wKioL1cFyymTJbaEAAA5NQp2W8c913.png "title=" 02.png "alt=" Wkiol1cfyymtjbaeaaa5nqp2w8c913.png "/> IX, the controlled end/etc/func/minion.conf configuration file modification

650) this.width=650; "src=" Http://s2.51cto.com/wyfs02/M02/7E/A1/wKiom1cFy1ShwNJgAABSHUWyagI223.png "title=" 03.png "alt=" Wkiom1cfy1shwnjgaabshuwyagi223.png "/>

X. Start of Func service by the controlled end

[[Email protected] ~]# service FUNCD start

starting func daemon: [OK]

Xi. The controlled end firewall is turned off and SELinux is set to tolerant mode

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M02/7E/9D/wKioL1cFzI2wvC_bAAA6UKwRjKM852.png "title=" 04.png "alt=" Wkiol1cfzi2wvc_baaa6ukwrjkm852.png "/> 12, Master to get all the certificate request host Inventory

Certmaster-ca--list

13, the main control end to the end of the certificate signature

Certmaster-ca--sign Minion

14. View the successfully signed host

[[Email protected] ~]# func ' * ' list_minions

Minion

After signing the certificate of the controlled end, we can operate the controlled terminal properly.

650) this.width=650; "src=" Http://s4.51cto.com/wyfs02/M01/7E/9D/wKioL1cFzl6QUrPHAACzFymOINg527.png "title=" 05.png "alt=" Wkiol1cfzl6qurphaaczfymoing527.png "/>

16. Copy files to the target host from the main control end

1. Execute the following command on the main control side

[[Email protected] ~]# func "Minion" Copyfile-f fuchao.txt--remotepath/home/fuchao.txt

2. View our remote copy of past files on the controlled side

[Email protected] ~]# Ls-al/home/fuchao.txt

-rw-r--r--. 1 root root 0 Apr 6 20:06/home/fuchao.txt

17. Get CPU information for remote host

650) this.width=650; "src=" Http://s4.51cto.com/wyfs02/M02/7E/9D/wKioL1cF0CnCOxZlAABq8PZxD08002.png "title=" 06.png "alt=" Wkiol1cf0cncoxzlaabq8pzxd08002.png "/> 18, view the disk partition information of the remote host

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M01/7E/A1/wKiom1cFz8axFpE4AABfuLjPVzY480.png "title=" 07.png "alt=" Wkiom1cfz8axfpe4aabfuljpvzy480.png "/> 19, view remote host system hardware information

650) this.width=650; "src=" Http://s5.51cto.com/wyfs02/M02/7E/A1/wKiom1cF0L7iEWclAABcbcsnLE0948.png "title=" 08.png "alt=" Wkiom1cf0l7iewclaabcbcsnle0948.png "/> 20, remote host system service Management

1, the main control side execution

650) this.width=650; "src=" Http://s2.51cto.com/wyfs02/M02/7E/9D/wKioL1cF0kSRhy2CAABCLAX1Eeo096.png "title=" 09.png "alt=" Wkiol1cf0ksrhy2caabclax1eeo096.png "/>2, controlled end service Status View

[[Email protected] ~]# service httpd status

HTTPD (PID 2767) is running ...


Project Summary:




This article from "A few" blog, declined reprint!

FUNC: Unified Network Controller

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.