Skip to content

Commit

Permalink
新增虚拟网络搭建资料
Browse files Browse the repository at this point in the history
  • Loading branch information
@firemakergk
firemakergk committed May 25, 2023
1 parent 0c57f2f commit b3138d3
Show file tree
Hide file tree
Showing 19 changed files with 386 additions and 14 deletions.
3 changes: 3 additions & 0 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -353,6 +353,9 @@ Windows虚拟机:
- [显卡直通](./details/pve虚拟机设置及独显直通.md)
- [USB直通](./details/pve下直通usb.md)

进阶优化:
- [在pve中搭建一个静态ip的虚拟网络](./details/在pve中搭建一个静态ip的虚拟网络.md)

## 服务初始化配置
在服务跑起来之后,他们大多数应用都需要一个初始化配置的过程,大部分配置比较简单,可以凭借页面的提示直接完成,同时也可以去参考各个应用的官方文档页面。在此我列出一些与Aquar环境相关的几个注意事项:

Expand Down
Binary file added _resources/05bd204a2dd0454c8d3790c935486444.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/0c748919c38fe3c5446b7e3cb8d034dd.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/10839948b8ac8fa617e466f4cb7382d7.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/18e1b608195e42eb791f54898cd8d1c5.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/1a527c735e865653cfe1bdc35c94b9a.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/3260f682bc4fee09cb8cfdc661202716.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/3c06dc7e877c591de13938a4552a0535.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/4425aa27a62309df0ccb74a34e76ebb9.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/4619e3460cb689358e231be3f8ff430d.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/5b18756987565a8d80bcb1a71351fc57.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/6b0e21840799c7e37f09b468a7800cc7.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/721f39b22ac13c67c67b76f1936110a5.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/a0a46d59b5394b388b60f6ec7f1371b5.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/be4913ff84d608c57a1811cdee535804.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added _resources/dc12c07f2b1c8090d25d1f2e648720dd.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
97 changes: 97 additions & 0 deletions details/在pve中搭建一个静态ip的虚拟网络.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,97 @@
## 概念及原理
在最初的版本中aquar系统依靠开机时扫描局域网中其他节点的服务然后修改配置文件的方式来应对DHCP下的网络地址漂移,这在大部分情况下可以解决问题,但如果本地网络过于庞大,或者本地网络中有多个提供文件共享服务的节点,那么这种做法可能会出现问题,这种做法本身也不够优雅。所以后来探索出这种基于虚拟网络的服务互联方式。这个方案的原理是,在几个虚拟机节点间搭建一个独立与局域网的虚拟网络,虚拟网络中节点的ip地址是静态的,这样无论外部局域网如何变化,我们永远可以通过虚拟网络中的IP地址访问到那个节点,稳定而优雅。

以我自己的系统为例,按下文设置后pve宿主机的内部ip地址是192.168.172.1,TrueNAS的内部IP地址是:192.168.172.2,两个ubuntu:192.168.172.3/4,Windows:192.168.172.5。这样一来如果你要在ubuntu上面挂载TrueNAS的NFS服务,那直接配置192.168.172.2这个地址就可以了,类似的如果你要在Windows云电脑上访问Ubuntu中的Docker服务,直接访问192.168.172.3就可以。

要强调的是目前这个虚拟网络只存在于aquar系统这个虚拟化体系之内,你不能用自己的设备直连这个网络,这同时是对aquar内部的一种隔离。
## 配置步骤
1.在pve节点的network设置中新建一个网桥,命名为vmbr1,赋予vmbr1一个掩码为24位的ip地址192.168.172.2/24,其他都为空,设置完以后重启pve,让这个网桥启动

![18e1b608195e42eb791f54898cd8d1c5.png](../_resources/18e1b608195e42eb791f54898cd8d1c5.png)

2.在windows虚拟机中配置一个新的网络设备,Bridge选择新建的vmbr1,然后关闭虚拟机再启动

![1a527c735e865653cfe1bdc35c94b9a.png](../_resources/1a527c735e865653cfe1bdc35c94b9a.png)

在windows中点击右下角的网络链接,选择网络和Internet设置

![4425aa27a62309df0ccb74a34e76ebb9.png](../_resources/4425aa27a62309df0ccb74a34e76ebb9.png)

点击更改适配器选项

![3c06dc7e877c591de13938a4552a0535.png](../_resources/3c06dc7e877c591de13938a4552a0535.png)

会看到一个以太网2,右键属性

![4619e3460cb689358e231be3f8ff430d.png](../_resources/4619e3460cb689358e231be3f8ff430d.png)

设置IPv4属性

![5b18756987565a8d80bcb1a71351fc57.png](../_resources/5b18756987565a8d80bcb1a71351fc57.png)

选择“使用下面的IP地址”,然后将ip地址设置为192.168.172.5,子网掩码为255.255.255.0,默认网关空着不填,然后确定

![6b0e21840799c7e37f09b468a7800cc7.png](../_resources/6b0e21840799c7e37f09b468a7800cc7.png)

然后在cmd命令行中ping 192.168.172.1,如果可以ping通,则代表静态虚拟网络配置成功了。

3.为truenas配置虚拟网络。

在truenas的硬件设置页中配置一个新的网络设,Bridge选择新建的vmbr1,然后关闭虚拟机再启动

![dc12c07f2b1c8090d25d1f2e648720dd.png](../_resources/dc12c07f2b1c8090d25d1f2e648720dd.png)

在network->interfaces设置页面中找到刚添加的新网卡,一般为em1,点击edit按钮进入编辑页面,关闭dhcp,并给它配置一个静态ip为192.168.172.2,其他配置不用变,点击apply保存设置

![be4913ff84d608c57a1811cdee535804.png](../_resources/be4913ff84d608c57a1811cdee535804.png)

在network->static routes页面中,点击右上的ADD按钮,添加一个静态路由规则,destination填写192.167.172.0/24,Gateway填写0.0.0.0。保存后将truenas系统关机,然后在开机。

![3260f682bc4fee09cb8cfdc661202716.png](../_resources/3260f682bc4fee09cb8cfdc661202716.png)

这里TrueNAS有可能会出一个bug,就是设置完第二个网卡以后,第一个网卡的DHCP选项会取消掉,这时如果重启,会发现TrueNAS服务只出现在了虚拟网络中,如果出现了这种情况,那么进入network->interfaces,然后进入em0的设置,看看DHCP选项是否勾选,如果没有勾选,则勾选上,保存后再关机并开机。设置完以后开机控制台如果出现了类似这样的多个网址,就说明两张网卡都已经生效了。

![721f39b22ac13c67c67b76f1936110a5.png](../_resources/721f39b22ac13c67c67b76f1936110a5.png)

4.为ubuntu配置虚拟网络

首先为ubuntu虚拟机添加一个新的网络设备,bridge选vmbr1,然后关闭虚拟机再启动。

![dc12c07f2b1c8090d25d1f2e648720dd.png](../_resources/dc12c07f2b1c8090d25d1f2e648720dd.png)

进入命令行,`sudo -i`切换为管理员身份

使用ip addr show 查看网卡会看到一个没有ip地址的网卡设备,图上的是ens19。

![10839948b8ac8fa617e466f4cb7382d7.png](../_resources/10839948b8ac8fa617e466f4cb7382d7.png)

~~执行下面两句命令,首先将ens19的ip设置为静态的192.168.172.3/24,然后给它添加一条路由规则,即所有192.168.172.0/24网段的报文都走ens19这个网络接口。~~

```
netplan set ens19 addresses 192.168.172.3/24
netplan set route ens19 to 192.168.172.0/24 via 0.0.0.0 metric 100
```

使用`vim /etc/netplan/00-installer-config.yaml`编辑netplan的配置文件,配置为如下文的形式

```
network:
version: 2
ethernets:
ens18:
dhcp4: true
ens19:
dhcp4: false
addresses:
- 192.168.172.3/24
routes:
- to: 192.168.172.0/24
via: 0.0.0.0
metric: 100
nameservers:
addresses: [8.8.8.8,114.114.114.114]
```

执行完以后执行`netplan apply`重载网络配置,这时候因为机器主网卡是dhcp的,有可能ip会飘走,这时你的ssh命令行可能会卡住。这时候退出命令行工具,直接使用pve的console登录系统,使用`p addr show`命令查看网络设备的ip地址,如果前面的配置正确,那么就可以看到两张网卡都获得了自己的ip地址。

![0c748919c38fe3c5446b7e3cb8d034dd.png](../_resources/0c748919c38fe3c5446b7e3cb8d034dd.png)
44 changes: 30 additions & 14 deletions files/setup_aquar.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -112,25 +112,40 @@ services:
depends_on:
- "mariadb"
restart: unless-stopped
# jellyfin:
# image: ghcr.io/linuxserver/jellyfin
# container_name: jellyfin
# environment:
# - PUID=1000
# - PGID=1000
# - TZ="Asia/Shanghai"
# # - UMASK_SET=<022> #optional
# volumes:
# - /opt/aquar/storages/apps/jellyfin/config:/config
# - /opt/aquar/storages/apps/jellyfin/data/tvshows:/data/tvshows
# - /opt/aquar/storages/aquarpool/movies:/data/movies
# # - /opt/vc/lib:/opt/vc/lib #optional
# ports:
# - 8096:8096
# - 8920:8920 #optional
# - 7359:7359/udp #optional
# - 1900:1900/udp #optional
# restart: unless-stopped
jellyfin:
image: ghcr.io/linuxserver/jellyfin
image: nyanmisaka/jellyfin
container_name: jellyfin
network_mode: host
environment:
- PUID=1000
- PGID=1000
- TZ="Asia/Shanghai"
# - UMASK_SET=<022> #optional
- TZ=Asia/Shanghai
# - JELLYFIN_PublishedServerUrl="http://192.168.0.118:8096" #optional
volumes:
- /opt/aquar/storages/apps/jellyfin/config:/config
- /opt/aquar/storages/apps/jellyfin/data/tvshows:/data/tvshows
- /opt/aquar/storages/aquarpool/movies:/data/movies
# - /opt/vc/lib:/opt/vc/lib #optional
ports:
- 8096:8096
- 8920:8920 #optional
- 7359:7359/udp #optional
- 1900:1900/udp #optional
- /opt/aquar/storages/apps/jellyfin/cache:/cache
- /opt/aquar/storages/aquarpool/movies:/media
restart: unless-stopped
privileged: true
devices:
- /dev/dri:/dev/dri
syncthing:
image: ghcr.io/linuxserver/syncthing
container_name: syncthing
Expand Down Expand Up @@ -293,7 +308,7 @@ GRANT ALL PRIVILEGES ON *.* TO 'root'@'%';
EOF
cat > /etc/docker/daemon.json <<EOF
{
"registry-mirrors": ["https://docker.mirrors.ustc.edu.cn"]
"registry-mirrors": ["https://hub-mirror.c.163.com","https://docker.mirrors.ustc.edu.cn"]
}
EOF

Expand All @@ -320,4 +335,5 @@ systemctl enable aquar
echo '********启动docker-compose********'
cd /opt/aquar/src/docker-compose/
docker-compose up -d
mkdir -p /opt/aquar/storages/apps/filerun/html/system/data/temp
# systemctl start aquar
Loading

0 comments on commit b3138d3

Please sign in to comment.