ΠΠ°ΠΊ ΡΡΡΠ°Π½ΠΎΠ²ΠΈΡΡ Portainer Π²Π½ΡΡΡΠΈ ΠΊΠ»Π°ΡΡΠ΅ΡΠ° Docker Swarm.
ΠΡΡ ΠΎΠ΄Π½Π°Ρ ΠΈΠ½ΡΠΎΡΠΌΠ°ΡΠΈΡ
ΠΠ΅ΡΡΠΈΡ Docker
$ docker version
Client: Version: 19.03.8 API version: 1.40 Go version: go1.13.8 Git commit: afacb8b7f0 Built: Tue Jun 23 22:26:12 2020 OS/Arch: linux/amd64 Experimental: false Server: Engine: Version: 19.03.8 API version: 1.40 (minimum version 1.12) Go version: go1.13.8 Git commit: afacb8b7f0 Built: Thu Jun 18 08:26:54 2020 OS/Arch: linux/amd64 Experimental: false containerd: Version: 1.3.3-0ubuntu2 GitCommit: runc: Version: spec: 1.0.1-dev GitCommit: docker-init: Version: 0.18.0 GitCommit:
ΠΠ΅ΡΠ°Π»ΠΈ ΠΊΠ»Π°ΡΡΠ΅ΡΠ°
$ docker node ls
ID HOSTNAME STATUS AVAILABILITY MANAGER STATUS ENGINE VERSION wholwgyqszoxv644ryv5xxuyf swarm-cerberus Ready Active 19.03.8 medtf6p57iirdou5evwt6rmwr * swarm-hydra Ready Active Leader 19.03.8 td230ieplzm6z1uhszbrom8vr swarm-kraken Ready Active 19.03.8
ΠΠΎΠ½ΡΠΈΠ³ΡΡΠ°ΡΠΈΡ ΡΡΠ΅ΠΊΠ° Portainer
ΠΠΏΡΠ΅Π΄Π΅Π»ΠΈΡΠ΅ ΠΏΠ΅ΡΠ΅ΠΌΠ΅Π½Π½ΡΠ΅ ΡΡΠ΅Π΄Ρ Ρ ΠΏΠΎΠΌΠΎΡΡΡ ΡΠ°ΠΉΠ»Π° ΠΊΠΎΠ½ΡΠΈΠ³ΡΡΠ°ΡΠΈΠΈ portainer-stack.env.
$ cat portainer-stack.env
AGENT_TOKEN=$(openssl rand -base64 16)
ΠΠΏΡΠ΅Π΄Π΅Π»ΠΈΡΠ΅ ΡΡΠ΅ΠΊ Ρ ΠΏΠΎΠΌΠΎΡΡΡ YAML-ΡΠ°ΠΉΠ»Π° portainer-stack.yml.
$ cat portainer-stack.yml
version: '3.4'
services:
agent:
image: portainer/agent
env_file: portainer-stack.env
volumes:
- /var/run/docker.sock:/var/run/docker.sock
- /var/lib/docker/volumes:/var/lib/docker/volumes
networks:
- portainer_agent
deploy:
mode: global
placement:
constraints:
- "node.platform.os == linux"
manager:
image: portainer/portainer
command: -H tcp://tasks.agent:9001 --tlsskipverify
env_file: portainer-stack.env
volumes:
- /var/run/docker.sock:/var/run/docker.sock
- portainer_data:/data
ports:
- target: 9000 # for user interface
published: 9000
protocol: tcp
mode: host
# - target: 8000 # for EDGE agent
# published: 8000
# protocol: tcp
# mode: host
networks:
- portainer_agent
deploy:
placement:
constraints:
- "node.platform.os == linux"
- "node.role == manager"
- "node.hostname == swarm-hydra"
volumes:
portainer_data:
networks:
portainer_agent:
driver: overlay
attachable: true
ΠΠ·ΠΌΠ΅Π½ΠΈΡΠ΅ ΠΈΠΌΡ Π½ΠΎΠ΄Ρ ΠΌΠ΅Π½Π΅Π΄ΠΆΠ΅ΡΠ° swarm-hydra Π² ΡΠΎΠΎΡΠ²Π΅ΡΡΡΠ²ΠΈΠΈ Ρ Π²Π°ΡΠ΅ΠΉ ΠΊΠΎΠ½ΡΠΈΠ³ΡΡΠ°ΡΠΈΠ΅ΠΉ.
Π Π°Π·Π²Π΅ΡΠ½ΠΈΡΠ΅ ΡΡΠ΅ΠΊ Portainer
$ docker stack deploy --compose-file=portainer-stack.yml container_management
Creating network container_management_portainer_agent Creating service container_management_agent Creating service container_management_manager
Π‘ΠΏΠΈΡΠΎΠΊ ΡΡΠ΅ΠΊΠΎΠ²
$ docker stack ls
NAME SERVICES ORCHESTRATOR container_management 2 Swarm
ΠΠΎΠΊΠ°ΠΆΠ΅ΠΌ ΡΠ΅ΡΠ²ΠΈΡΡ ΡΡΠ΅ΠΊΠ°.
$ docker stack ps container_management
ID NAME IMAGE NODE DESIRED STATE CURRENT STATE ERROR PORTS wn2tihvxlhj5 container_management_agent.wholwgyqszoxv644ryv5xxuyf portainer/agent:latest swarm-cerberus Running Running 3 minutes ago 963x6kpq39ma container_management_agent.td230ieplzm6z1uhszbrom8vr portainer/agent:latest swarm-kraken Running Running 3 minutes ago icg69pmacnn1 container_management_agent.medtf6p57iirdou5evwt6rmwr portainer/agent:latest swarm-hydra Running Running 3 minutes ago slnadoef7jn0 container_management_manager.1 portainer/portainer:latest swarm-hydra Running Running 3 minutes ago *:9000->9000/tcp
Π£Π΄Π°Π»ΠΈΠΌ ΡΡΠ΅ΠΊ.
$ docker stack rm container_management
Removing service container_management_agent Removing service container_management_manager Removing network container_management_portainer_agent
Π£Π΄Π°Π»ΠΈΡΡ ΡΠΎΠΌ, ΠΈΡΠΏΠΎΠ»ΡΠ·ΡΠ΅ΠΌΡΠΉ ΡΡΠΈΠΌ ΡΡΠ΅ΠΊΠΎΠΌ.
$ docker volume rm container_management_portainer_data
container_management_portainer_data
ΠΠ±ΡΠ°ΡΠ½ΡΠΉ ΠΏΡΠΎΠΊΡΠΈ
ΠΠ°Π·ΠΎΠ²Π°Ρ ΠΊΠΎΠ½ΡΠΈΠ³ΡΡΠ°ΡΠΈΡ HAProxy.
[...] frontend web-frontend bind 1.2.3.4:443 ssl crt /etc/haproxy/ssl/cloudflare.pem mode http acl is-swarm-manager hdr(host) -i portainer.example.org default_backend no-match [...] backend backend-local-portainer server swarm-manager 172.16.0.10:9000 check [...] backend no-match http-request deny deny_status 400
Π‘ΠΊΡΠΈΠ½ΡΠΎΡΡ
