2020 Ondrej Sika <[email protected]>
https://github.com/ondrejsika/ha-docker-cluster-with-swarm-and-ceph
- 3 nodes
- 2 hdd (one for system, one for ceph)
- Debian 10
- Docker
- Ceph (Nautilus)
- Ceph Deploy
On all 3 nodes install Docker
curl -fsSL https://ins.oxs.cz/docker.sh | sudo sh
Ceph does'n have official repositories for Debian 10 Buster yet (29-01-2020), we use Croit mirror. See their blog post https://croit.io/2019/07/07/2019-07-07-debian-mirror
# Add repositories
curl https://mirror.croit.io/keys/release.gpg > /etc/apt/trusted.gpg.d/croit-mirror.gpg
echo 'deb [signed-by=/etc/apt/trusted.gpg.d/croit-mirror.gpg] https://mirror.croit.io/debian-nautilus/ buster main' > /etc/apt/sources.list.d/croit-ceph.list
printf 'Package: *\nPin: origin mirror.croit.io\nPin-Priority: 990\n' > /etc/apt/preferences.d/pin-mirror-croit-io
apt update
# Check Apt Pin
apt-cache policy ceph
# Install CEPH
apt install -y ceph
# Install NTP
apt install -y ntpsec
Install ceph-deploy on first node
# Ensure Python 3
apt install -y python3 python3-pip
# Install Ceph Deploy
pip3 install ceph-deploy
Set fqdn hostname node{1,2,3}.sikademo.com to every node (in /etc/hostname).
Add those lines to /etc/hosts in every node
192.168.0.11 node1 node1.sikademo.com
192.168.0.12 node2 node2.sikademo.com
192.168.0.13 node3 node3.sikademo.com
See more: https://docs.ceph.com/docs/master/start/quick-ceph-deploy
Create directory ceph-deploy and checkout there.
mkdir ~/ceph-deploy
cd ~/ceph-deploy
ceph-deploy new node1 node2 node3
Add Ceph network to ceph.conf
echo public network = 192.168.0.0/24 >> ceph.conf
If you follow tutorial on Ceph, skip ceph-deploy install - we have ceph already installed and ceph-deploy install does't work on Debian 10 yet (29-01-2020).
Setup monitors
ceph-deploy mon create-initial
Setup admin nodes (you can manage ceph on those nodes)
ceph-deploy admin node1 node2 node3
Create OSDs
ceph-deploy osd create --data /dev/sdb node1
ceph-deploy osd create --data /dev/sdb node2
ceph-deploy osd create --data /dev/sdb node3
Check Ceph health
ceph health
Check Ceph status
ceph -s
See more: https://docs.ceph.com/docs/master/start/quick-cephfs/
Create metadata servers on each node
ceph-deploy mds create node1 node2 node3
Create Filesystem
ceph osd pool create cephfs_data 32
ceph osd pool create cephfs_meta 32
ceph fs new cephfs cephfs_meta cephfs_data
Mount CephFS
mount -t ceph :/ /cephfs -o name=admin
Init Swarm on first node
docker swarm init
Generate join token for manager
docker swarm join-token manager
Call docker swarm join ... with master token on other nodes.
Clone traefik-le repo
cd ~
git clone https://github.com/ondrejsika/traefik-le.git
cd traefik-le
If you have SSL termination before this cluster, you can use http only configuration of Traefik.
Run Traefik HTTP only
docker stack deploy -c docker-compose-swarm-http.yml traefik
If you don't have proxy or dont want to terminate ssl on proxy, you can setup Traefik with SSL and automatic genetation of SSL certificates using Let's Encrypt.
Run Traefik with Let's Encrypt
docker stack deploy -c docker-compose-swarm.yml traefik
Now, you can deploy demo site (from traefik-le examples). You have pointed DNS *.swarm.sikademo.com to this cluster.
# Go Hello World Example
HOST=hello.swarm.sikademo.com docker stack deploy -c demo-sites/hello-world/docker-compose.yml hello
# Nginx Example
HOST=nginx.swarm.sikademo.com docker stack deploy -c demo-sites/nginx/docker-compose.yml nginx
Check out http://hello.swarm.sikademo.com and http://nginx.swarm.sikademo.com.