Index: web-module/script/yml/monitoring/server/allinone.yml =================================================================== diff -u -rc0c9260f404de2116f14bdd4edb88c1fc0cd0d16 -r57b9b484468360d3f19217130eb1c6284c0d7605 --- web-module/script/yml/monitoring/server/allinone.yml (.../allinone.yml) (revision c0c9260f404de2116f14bdd4edb88c1fc0cd0d16) +++ web-module/script/yml/monitoring/server/allinone.yml (.../allinone.yml) (revision 57b9b484468360d3f19217130eb1c6284c0d7605) @@ -2,23 +2,39 @@ services: - #https://github.com/jakubhajek/elasticsearch-docker-swarm/blob/master/stack-elastic.yml - # elasticsearch coordinating node - # /etc/security/limits.conf - # * hard memlock unlimited - # * soft memlock unlimited - # * hard nofile 65536 - # * soft nofile 65536 - # * hard nproc 65536 - # * soft nproc 65536 +#https://github.com/jakubhajek/elasticsearch-docker-swarm/blob/master/stack-elastic.yml +# elasticsearch coordinating node +# /etc/security/limits.conf +# * hard memlock unlimited +# * soft memlock unlimited +# * hard nofile 65536 +# * soft nofile 65536 +# * hard nproc 65536 +# * soft nproc 65536 - # sysctl -w vm.max_map_count=262144 - # /etc/sysctl.conf - # vm.max_map_count=262144 +# sysctl -w vm.max_map_count=262144 +# /etc/sysctl.conf +# vm.max_map_count=262144 - # /lib/systemd/system/docker.service - # LimitMEMLOCK=infinity +# /lib/systemd/system/docker.service +# LimitMEMLOCK=infinity +#apt update +#apt install apt-transport-https ca-certificates curl software-properties-common +#curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add - + +#add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu bionic stable" +#apt update + +#apt-cache policy docker-ce +#apt install docker-ce=18.06.3~ce~3-0~ubuntu +#apt-get install nfs-common + +#docker swarm join-token worker +#docker swarm join --token SWMTKN-1-1fd9zytidyai9bfelii0vt5nee6l43ibedvwjztbgncxfil2oi-0ungbwdty6jaihk5g7usk5pv9 192.168.25.46:2377 + + + # elasticsearch master node es-master-01: image: docker.elastic.co/elasticsearch/elasticsearch:${ELKVERSION:-7.9.2} @@ -52,15 +68,14 @@ target: /etc/security/limits.conf networks: &efk-network - efk - deploy: + deploy: &efk-deploy endpoint_mode: dnsrr mode: replicated replicas: 1 placement: constraints: - node.role != manager - - node.hostname == sub-slave1node - logging: + logging: &default-logging driver: "json-file" options: max-file: "5" @@ -96,19 +111,8 @@ ES_JAVA_OPTS: "-Xms2g -Xmx2g" configs: *es-limits-conf networks: *efk-network - deploy: - endpoint_mode: dnsrr - mode: replicated - replicas: 1 - placement: - constraints: - - node.role!=manager - - node.hostname == sub-slave2node - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *efk-deploy + logging: *default-logging es-master-03: image: docker.elastic.co/elasticsearch/elasticsearch:${ELKVERSION:-7.9.2} @@ -139,19 +143,8 @@ ES_JAVA_OPTS: "-Xms2g -Xmx2g" configs: *es-limits-conf networks: *efk-network - deploy: - endpoint_mode: dnsrr - mode: replicated - replicas: 1 - placement: - constraints: - - node.role!=manager - - node.hostname == sub-slave3node - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *efk-deploy + logging: *default-logging es-coordinating: image: docker.elastic.co/elasticsearch/elasticsearch:${ELKVERSION:-7.9.2} @@ -175,24 +168,18 @@ MAX_LOCKED_MEMORY: unlimited bootstrap.memory_lock: "true" xpack.monitoring.collection.enabled: "false" - configs: *es-limits-conf - networks: *efk-network depends_on: - es-master-01 - es-master-02 - es-master-03 - deploy: + configs: *es-limits-conf + networks: *efk-network + deploy: &default-deploy mode: replicated replicas: 1 placement: - constraints: - - node.role!=manager - - node.hostname == sub-slave1node - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + constraints: [node.role!=manager] + logging: *default-logging elastichq: image: elastichq/elasticsearch-hq @@ -204,16 +191,8 @@ ports: - 5050:5000 networks: *efk-network - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + logging: *default-logging kibana: image: docker.elastic.co/kibana/kibana:${ELKVERSION:-7.9.2} @@ -224,21 +203,13 @@ - /etc/timezone:/etc/timezone:ro - /etc/localtime:/etc/localtime:ro environment: - ELASTICSEARCH_URL: http://es-coordinating:9200 - ELASTICSEARCH_HOSTS: "http://es-coordinating:9200" - networks: *efk-network + - "ELASTICSEARCH_URL=http://es-coordinating:9200" + - "ELASTICSEARCH_HOSTS=http://es-coordinating:9200" depends_on: - es-coordinating - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + networks: *efk-network + deploy: *default-deploy + logging: *default-logging logstash: image: docker.elastic.co/logstash/logstash:${ELKVERSION:-7.9.2} @@ -252,90 +223,49 @@ - source: logstash_pipeline target: /usr/share/logstash/pipeline/logstash.conf environment: - LS_JAVA_OPTS: "-Xmx2g -Xms2g" - networks: *efk-network + - "LS_JAVA_OPTS=-Xmx2g -Xms2g" depends_on: - kibana - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role==manager] - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + networks: *efk-network + deploy: *default-deploy + logging: *default-logging #https://gist.github.com/dkurzaj/2a899de8cb5ae698919f0a9bbf7685f0 zookeeper1: image: wurstmeister/zookeeper:3.4.6 - volumes: - - zookeeper1-data:/data - - zookeeper1-logs:/datalog ports: - "2181:2181" - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: *efk-network environment: - ZOO_SERVER_ID=1 - ALLOW_ANONYMOUS_LOGIN=yes - ZOO_SERVERS=zookeeper1:2888:3888,zookeeper2:2888:3888,zookeeper3:2888:3888 - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *efk-network + logging: *default-logging zookeeper2: image: wurstmeister/zookeeper:3.4.6 - volumes: - - zookeeper2-data:/data - - zookeeper2-logs:/datalog ports: - "2182:2181" - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: *efk-network environment: - ZOO_SERVER_ID=2 - ALLOW_ANONYMOUS_LOGIN=yes - ZOO_SERVERS=zookeeper1:2888:3888,zookeeper2:2888:3888,zookeeper3:2888:3888 - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *efk-network + logging: *default-logging zookeeper3: image: wurstmeister/zookeeper:3.4.6 - volumes: - - zookeeper3-data:/data - - zookeeper3-logs:/datalog ports: - "2183:2181" - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: *efk-network environment: - ZOO_SERVER_ID=3 - ALLOW_ANONYMOUS_LOGIN=yes - ZOO_SERVERS=zookeeper1:2888:3888,zookeeper2:2888:3888,zookeeper3:2888:3888 - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *efk-network + logging: *default-logging kafka1: image: wurstmeister/kafka:2.12-2.3.0 @@ -353,21 +283,13 @@ KAFKA_ADVERTISED_PORT: 9092 KAFKA_ADVERTISED_LISTENERS: PLAINTEXT://kafka1:9092 KAFKA_OFFSETS_TOPIC_REPLICATION_FACTOR: 2 - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: *efk-network depends_on: - zookeeper1 - zookeeper2 - zookeeper3 - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *efk-network + logging: *default-logging kafka2: image: wurstmeister/kafka:2.12-2.3.0 @@ -385,21 +307,13 @@ KAFKA_ADVERTISED_PORT: 9092 KAFKA_ADVERTISED_LISTENERS: PLAINTEXT://kafka2:9092 KAFKA_OFFSETS_TOPIC_REPLICATION_FACTOR: 2 - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: *efk-network depends_on: - zookeeper1 - zookeeper2 - zookeeper3 - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *efk-network + logging: *default-logging kafka3: image: wurstmeister/kafka:2.12-2.3.0 @@ -417,21 +331,13 @@ KAFKA_ADVERTISED_PORT: 9092 KAFKA_ADVERTISED_LISTENERS: PLAINTEXT://kafka3:9092 KAFKA_OFFSETS_TOPIC_REPLICATION_FACTOR: 2 - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: *efk-network depends_on: - zookeeper1 - zookeeper2 - zookeeper3 - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *efk-network + logging: *default-logging # https://github.com/hleb-albau/kafka-manager-docker kafka-manager: @@ -444,63 +350,39 @@ ZK_HOSTS: zookeeper1:2181,zookeeper2:2182,zookeeper3:2183 APPLICATION_SECRET: "random-secret" KM_ARGS: -Djava.net.preferIPv4Stack=true - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: *efk-network ports: - "8282:9000" - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *efk-network + logging: *default-logging apm-server: image: docker.elastic.co/apm/apm-server:${ELKVERSION:-7.9.2} ports: - "8200:8200" - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: *efk-network depends_on: - kafka-manager configs: - source: apmserver.conf target: /usr/share/apm-server/apm-server.yml - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *efk-network + logging: *default-logging influxdb: image: influxdb:1.7.10 ports: - - 8086:8086 - - 8083:8083 - - 8089:8089/udp - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: *efk-network + - 18086:8086 + - 18083:8083 + - 18089:8089/udp configs: - source: influxdb.conf target: /etc/influxdb/influxdb.conf volumes: - influxdb-data:/var/lib/influxdb - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *efk-network + logging: *default-logging chronograf: image: chronograf:1.7.17 @@ -512,26 +394,12 @@ - influxdb environment: INFLUXDB_URL: http://influxdb:8086 - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] + deploy: *default-deploy networks: *efk-network - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + logging: *default-logging grafana: image: grafana/grafana:6.7.4 - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: *efk-network user: "$UID:$GID" ports: - 3000:3000 @@ -543,11 +411,9 @@ volumes: - grafanavar:/var/lib/grafana - grafanaetc:/etc/grafana - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *efk-network + logging: *default-logging scouter: image : scouterapm/scouter-server:2.7.0 @@ -566,43 +432,31 @@ - sc-libs:/home/scouter-server/lib - sc-conf:/home/scouter-server/conf - sc-extweb:/home/scouter-server/extweb - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: *efk-network depends_on: - influxdb ports: - 6180:6180 - 6100:6100 - 6100:6100/udp - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *efk-network + logging: *default-logging www313cokr: - image: 313devgrp/jstree-service-framework-backend-app:21.03.27 + image: 313devgrp/jstree-service-framework-backend-app:21.04.03 ports: - "31313:8080" - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: *efk-network depends_on: - scouter extra_hosts: + - "313.co.kr:192.168.25.42" - "db.313.co.kr:192.168.25.40" - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + - "nas.313.co.kr:192.168.25.42" + - "www.313.co.kr:192.168.25.42" + - "ubuntu.313.co.kr:192.168.25.46" + deploy: *default-deploy + networks: *efk-network + logging: *default-logging configs: apmserver.conf: @@ -664,105 +518,63 @@ driver_opts: type: "nfs" o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/scouter/sc-extweb" + device: ":${NFSPATH:-/nfspath}/allinone/scouter/extweb" sc-conf: driver: local driver_opts: type: "nfs" o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/scouter/sc-conf" + device: ":${NFSPATH:-/nfspath}/allinone/scouter/conf" sc-libs: driver: local driver_opts: type: "nfs" o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/scouter/sc-libs" + device: ":${NFSPATH:-/nfspath}/allinone/scouter/libs" sc-data: driver: local driver_opts: type: "nfs" o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/scouter/sc-data" + device: ":${NFSPATH:-/nfspath}/allinone/scouter/data" sc-logs: driver: local driver_opts: type: "nfs" o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/scouter/sc-logs" + device: ":${NFSPATH:-/nfspath}/allinone/scouter/logs" - zookeeper3-logs: - driver: local - driver_opts: - type: "nfs" - o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/zookeeper3/logs" - - zookeeper3-data: - driver: local - driver_opts: - type: "nfs" - o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/zookeeper3/data" - - zookeeper2-logs: - driver: local - driver_opts: - type: "nfs" - o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/zookeeper2/logs" - - zookeeper2-data: - driver: local - driver_opts: - type: "nfs" - o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/zookeeper2/data" - - zookeeper1-logs: - driver: local - driver_opts: - type: "nfs" - o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/zookeeper1/logs" - - zookeeper1-data: - driver: local - driver_opts: - type: "nfs" - o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/zookeeper1/data" - influxdb-data: driver: local driver_opts: type: "nfs" o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/influxdb/data" + device: ":${NFSPATH:-/nfspath}/allinone/influxdb" es-master-01-data: driver: local driver_opts: type: "nfs" o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/es-master-01/data" + device: ":${NFSPATH:-/nfspath}/allinone/es-master-01" es-master-02-data: driver: local driver_opts: type: "nfs" o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/es-master-02/data" + device: ":${NFSPATH:-/nfspath}/allinone/es-master-02" es-master-03-data: driver: local driver_opts: type: "nfs" o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" - device: ":${NFSPATH:-/nfspath}/allinone/es-master-03/data" + device: ":${NFSPATH:-/nfspath}/allinone/es-master-03" networks: efk: Index: web-module/script/yml/monitoring/server/allinone/influxdb.conf =================================================================== diff -u -r69f65a3cab4869c45e0cdf692df7b03645271630 -r57b9b484468360d3f19217130eb1c6284c0d7605 --- web-module/script/yml/monitoring/server/allinone/influxdb.conf (.../influxdb.conf) (revision 69f65a3cab4869c45e0cdf692df7b03645271630) +++ web-module/script/yml/monitoring/server/allinone/influxdb.conf (.../influxdb.conf) (revision 57b9b484468360d3f19217130eb1c6284c0d7605) @@ -1,3 +1,8 @@ +############################################################################################## +### create retention policy "default" on scouterCounter duration 2h replication 1 default ### +### drop retention policy "autogen" on scouterCounter ### +############################################################################################## + ### Welcome to the InfluxDB configuration file. # The values in this file override the default values used by the system if Index: web-module/script/yml/monitoring/server/auth.yml =================================================================== diff -u --- web-module/script/yml/monitoring/server/auth.yml (revision 0) +++ web-module/script/yml/monitoring/server/auth.yml (revision 57b9b484468360d3f19217130eb1c6284c0d7605) @@ -0,0 +1,272 @@ +version: '3.6' + +services: + + authApache: + image: httpd:2.4.46 + ports: + - "8094:80" + volumes: + - authApache:/var/www/html + - authApacheConf:/usr/local/apache2/conf + deploy: &default-deploy + mode: replicated + replicas: 1 + placement: + constraints: [node.role!=manager] + networks: &auth-network + - authnetwork + logging: &default-logging + driver: "json-file" + options: + max-file: "5" + max-size: "100m" + + authCrowd: + image: atlassian/crowd:4.2.3 + ports: + - "8095:8095" + environment: + - JVM_MINIMUM_MEMORY=2g + - JVM_MAXIMUM_MEMORY=2g + #- ATL_PROXY_NAME=www.313.co.kr + #- ATL_PROXY_PORT=8094 + #- ATL_TOMCAT_SCHEME=http + extra_hosts: + - "313.co.kr:192.168.25.42" + - "db.313.co.kr:192.168.25.40" + - "nas.313.co.kr:192.168.25.42" + - "www.313.co.kr:192.168.25.42" + - "ubuntu.313.co.kr:192.168.25.46" + volumes: + - authCrowdApp:/var/atlassian/application-data/crowd + - authCrowdLib:/opt/atlassian/crowd/apache-tomcat/lib + - /etc/localtime:/etc/localtime:ro + depends_on: + - authMysql + deploy: *default-deploy + networks: *auth-network + logging: *default-logging + +# create database keycloak1204db character set utf8 collate utf8_bin; +# GRANT ALL PRIVILEGES ON keycloak1204db.* TO 'authuser'@'%'; +# flush privileges; + authKeycloak: + image: jboss/keycloak:12.0.4 + environment: + - DB_VENDOR=MYSQL + - DB_ADDR=authMysql + - DB_DATABASE=keycloak1204db + - DB_USER=authuser + - DB_PASSWORD=authpassword + - KEYCLOAK_USER=admin + - KEYCLOAK_PASSWORD=qwe123 + - JDBC_PARAMS=serverTimezone=UTC&connectTimeout=30000 + ports: + - "8585:8080" + depends_on: + - authMysql + - authCrowd + volumes: + - authKeycloak:/opt/jboss/keycloak/standalone/deployments + deploy: *default-deploy + networks: *auth-network + logging: *default-logging + + authMysql: + image: mysql:5.7.32 + ports: + - "3306:3306" + environment: + - MYSQL_DATABASE=crowd423db + - MYSQL_USER=authuser + - MYSQL_PASSWORD=authpassword + - MYSQL_ROOT_PASSWORD=authrootpass + - TZ=Asia/Seoul + command: + - --lower_case_table_names=1 + - --character-set-server=utf8mb4 + - --collation-server=utf8mb4_unicode_ci + volumes: + - authMysqlData:/var/lib/mysql + - authMysqlTmp:/tmp + - authMysqlLog:/var/log/mysql + - /etc/localtime:/etc/localtime:ro + - /etc/timezone:/etc/timezone:ro + deploy: *default-deploy + networks: *auth-network + logging: *default-logging + + mysql: + image: mysql:5.7.34 + ports: + - "33306:3306" + environment: + - MYSQL_DATABASE=crowd423db + - MYSQL_USER=authuser + - MYSQL_PASSWORD=authpassword + - MYSQL_ROOT_PASSWORD=authrootpass + - TZ=Asia/Seoul + #- MYSQL_ROOT_PASSWORD_FILE=/run/secrests/mysql_password + #secrets: + # - mysql_password + # - mysql_client_auth + command: >- + --user=mysql + --port=3306 + --pid-file=/data/dbfiles/mysql.pid + --datadir=/data/dbfiles + --tmpdir=/data/dbfiles + --slow_query_log_file=/data/logs/slowlog/slow.log + --slow_query_log=on + --long_query_time=1 + --lc-messages=en_US + --event_scheduler=1 + --default_password_lifetime=0 + --log_timestamps=SYSTEM + --explicit_defaults_for_timestamp=on + --character-set-client-handshake=FALSE + --character-set-server=utf8mb4 + --collation-server=utf8mb4_unicode_ci + --skip-external-locking + --skip-name-resolve + --transaction-isolation=READ-COMMITTED + --query_cache_size=0 + --query_cache_limit=0 + --bind-address=0.0.0.0 + --max_connect_errors=9999999 + --max_connections=1024 + --table_open_cache=2048 + --max_allowed_packet=64M + --performance_schema + --local_infile=0 + --secure_file_priv='' + --log_error_verbosity=1 + --tmp_table_size=128M + --max_heap_table_size=1G + --server-id=1 + --default-storage-engine=InnoDB + --thread_cache_size=64 + --binlog_cache_size=1M + --back_log=1024 + --ft_min_word_len=4 + --read_buffer_size=2M + --read_rnd_buffer_size=16M + --sort_buffer_size=2M + --join_buffer_size=2M + --skip-external-locking + --key_buffer_size=128M + --bulk_insert_buffer_size=64M + --myisam_sort_buffer_size=128M + --myisam_max_sort_file_size=512M + --myisam_repair_threads=1 + --innodb_checksum_algorithm=NONE + --innodb_buffer_pool_size=32G + --innodb_file_per_table + --innodb_data_file_path=ibdata1:1G;ibdata2:1G;ibdata3:1G:autoextend + --innodb_data_home_dir=/data/dbfiles/ + --innodb_write_io_threads=2 + --innodb_read_io_threads=8 + --innodb_fast_shutdown + --innodb_autoinc_lock_mode=1 + --innodb_thread_concurrency=4 + --innodb_flush_log_at_trx_commit=1 + --innodb_max_dirty_pages_pct=90 + --innodb_flush_method=0_DIRECT + --innodb_doublewrite=0 + --innodb_lock_wait_timeout=120 + --innodb_open_files=1024 + --innodb_log_buffer_size=16M + --innodb_log_file_size=256M + --innodb_lof_files_in_group=3 + --innodb_log_group_home_dir=/data/logs/redolog + --binlog_cache_size=1M + --log-bin=/data/logs/binlog/mysql-log-bin + --log_bin_trust_function_creators=1 + --expire_logs_days=7 + --max_binlog_size=100M + --binlog_format=row + --binlog_row_image=minimal + --binlog_checksum=none + --sync_binlog=1 + --gtid_mode=off + --enforce_gtid_consistency=off + --binlog-ignore-db=performance_schema + --binlog-ignore-db=information_schema + --binlog-ignore-db=sys + --log_slave_updates=1 + volumes: + - defaultMysqlData:/data + - /etc/localtime:/etc/localtime:ro + - /etc/timezone:/etc/timezone:ro + deploy: *default-deploy + networks: *auth-network + logging: *default-logging + +volumes: + authApache: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/auth/apache" + + authApacheConf: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/auth/apacheConf" + + authCrowdApp: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/auth/crowdApp" + + authCrowdLib: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/auth/crowdLib" + + authKeycloak: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/auth/keycloak" + + authMysqlData: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/auth/mysqlData" + + authMysqlTmp: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/auth/mysqlTmp" + + authMysqlLog: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/auth/mysqlLog" + + defaultMysqlData: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/auth/mysql" + +networks: + authnetwork: + attachable: true Index: web-module/script/yml/monitoring/server/devtool.yml =================================================================== diff -u -r69f65a3cab4869c45e0cdf692df7b03645271630 -r57b9b484468360d3f19217130eb1c6284c0d7605 --- web-module/script/yml/monitoring/server/devtool.yml (.../devtool.yml) (revision 69f65a3cab4869c45e0cdf692df7b03645271630) +++ web-module/script/yml/monitoring/server/devtool.yml (.../devtool.yml) (revision 57b9b484468360d3f19217130eb1c6284c0d7605) @@ -1,5 +1,23 @@ version: '3.6' +#https://github.com/jakubhajek/elasticsearch-docker-swarm/blob/master/stack-elastic.yml +# elasticsearch coordinating node +# /etc/security/limits.conf +# * hard memlock unlimited +# * soft memlock unlimited +# * hard nofile 65536 +# * soft nofile 65536 +# * hard nproc 65536 +# * soft nproc 65536 + +# sysctl -w vm.max_map_count=262144 +# /etc/sysctl.conf +# vm.max_map_count=262144 + +# /lib/systemd/system/docker.service +# LimitMEMLOCK=infinity + + #apt update #apt install apt-transport-https ca-certificates curl software-properties-common #curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add - @@ -20,18 +38,20 @@ image: 313devgrp/jira:12.14 ports: - "48080:48080" - deploy: + deploy: &default-deploy mode: replicated replicas: 1 placement: constraints: [node.role!=manager] - networks: &dev-network - - dev - extra_hosts: + networks: &default-network + - dev_network + extra_hosts: &default-addhost + - "313.co.kr:192.168.25.42" - "db.313.co.kr:192.168.25.40" - "nas.313.co.kr:192.168.25.42" + - "www.313.co.kr:192.168.25.42" - "ubuntu.313.co.kr:192.168.25.46" - logging: + logging: &default-logging driver: "json-file" options: max-file: "5" @@ -41,86 +61,60 @@ image: 313devgrp/confluence:12.14 ports: - "58090:58090" - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: &dev-network - - dev - extra_hosts: - - "db.313.co.kr:192.168.25.40" - - "nas.313.co.kr:192.168.25.42" - - "ubuntu.313.co.kr:192.168.25.46" - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *default-network + extra_hosts: *default-addhost + logging: *default-logging fecru: image: 313devgrp/fecru:13.02 ports: - "8060:8060" - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: &dev-network - - dev - extra_hosts: - - "db.313.co.kr:192.168.25.40" - - "nas.313.co.kr:192.168.25.42" - - "ubuntu.313.co.kr:192.168.25.46" - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *default-network + extra_hosts: *default-addhost + logging: *default-logging sonar: image: 313devgrp/sonar:12.06 ports: - - "9000:9000" - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: &dev-network - - dev - extra_hosts: - - "db.313.co.kr:192.168.25.40" - - "nas.313.co.kr:192.168.25.42" - - "ubuntu.313.co.kr:192.168.25.46" - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + - "9090:9000" + deploy: *default-deploy + networks: *default-network + extra_hosts: *default-addhost + logging: *default-logging + jenkins: + image: jenkins:2.7.2 + environment: + JAVA_OPTS: "-Xms1g -Xmx1g -Dhudson.model.DownloadService.noSignatureCheck=true" + ports: + - "58080:8080" + - "50000:50000" + volumes: + - jenkinsHome:/var/jenkins_home + deploy: *default-deploy + networks: *default-network + extra_hosts: *default-addhost + logging: *default-logging + jrebel: image: 313devgrp/jrebel:2018.07.12 ports: - "31301:8888" - deploy: - mode: replicated - replicas: 1 - placement: - constraints: [node.role!=manager] - networks: &dev-network - - dev - extra_hosts: - - "db.313.co.kr:192.168.25.40" - - "nas.313.co.kr:192.168.25.42" - - "ubuntu.313.co.kr:192.168.25.46" - logging: - driver: "json-file" - options: - max-file: "5" - max-size: "100m" + deploy: *default-deploy + networks: *default-network + extra_hosts: *default-addhost + logging: *default-logging +volumes: + jenkinsHome: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/devtool/jenkins" + networks: - dev: + dev_network: attachable: true Index: web-module/script/yml/monitoring/server/portainer.yml =================================================================== diff -u -rc0c9260f404de2116f14bdd4edb88c1fc0cd0d16 -r57b9b484468360d3f19217130eb1c6284c0d7605 --- web-module/script/yml/monitoring/server/portainer.yml (.../portainer.yml) (revision c0c9260f404de2116f14bdd4edb88c1fc0cd0d16) +++ web-module/script/yml/monitoring/server/portainer.yml (.../portainer.yml) (revision 57b9b484468360d3f19217130eb1c6284c0d7605) @@ -25,7 +25,7 @@ command: -H tcp://tasks.agent:9001 --tlsskipverify ports: - "9009:9000" - - "8008:8000" + - "9008:8000" volumes: - portainer_data:/data networks: Index: web-module/script/yml/monitoring/server/spinnaker.yml =================================================================== diff -u --- web-module/script/yml/monitoring/server/spinnaker.yml (revision 0) +++ web-module/script/yml/monitoring/server/spinnaker.yml (revision 57b9b484468360d3f19217130eb1c6284c0d7605) @@ -0,0 +1,234 @@ +version: '3.6' + +#sudo adduser spinnaker --disabled-password +#sudo usermod -aG sudo spinnaker + +services: + + halyard: + image: us-docker.pkg.dev/spinnaker-community/docker/halyard:0.41.0 + ports: + - 8064:8064 + volumes: + - halyardVolume:/home/spinnaker/.hal + deploy: &default-deploy + mode: replicated + replicas: 1 + placement: + constraints: [node.role!=manager] + depends_on: &spinnaker-depend + - redis + - minio + networks: &spinnaker-network + - spinnakernetwork + logging: &default-logging + driver: "json-file" + options: + max-file: "5" + max-size: "100m" + + clouddriver: + image: us-docker.pkg.dev/spinnaker-community/docker/clouddriver:2.0.0-20180221152902 + ports: + - 7002:7002 + extra_hosts: &addHost + - "313.co.kr:192.168.25.42" + - "db.313.co.kr:192.168.25.40" + - "nas.313.co.kr:192.168.25.42" + - "www.313.co.kr:192.168.25.46" + - "ubuntu.313.co.kr:192.168.25.46" + volumes: &configSpinnakerVolume + - config-spinnaker-volume:/opt/spinnaker/config + deploy: *default-deploy + depends_on: *spinnaker-depend + networks: *spinnaker-network + logging: *default-logging + + deck: + image: us-docker.pkg.dev/spinnaker-community/docker/deck:2.1.0-20180221143146 + ports: + - 9000:9000 + extra_hosts: *addHost + volumes: + - config-spinnaker-volume:/opt/spinnaker/config + - deck-html-volume:/opt/deck/html + deploy: *default-deploy + depends_on: *spinnaker-depend + networks: *spinnaker-network + logging: *default-logging + + igor: + image: us-docker.pkg.dev/spinnaker-community/docker/igor:0.9.0-20180221133510 + ports: + - 8088:8088 + extra_hosts: *addHost + volumes: *configSpinnakerVolume + deploy: *default-deploy + depends_on: *spinnaker-depend + networks: *spinnaker-network + logging: *default-logging + + front50: + image: us-docker.pkg.dev/spinnaker-community/docker/front50:0.9.0-20180221133510 + ports: + - 8080:8080 + extra_hosts: *addHost + environment: + AWS_ACCESS_KEY_ID: "minio" + AWS_SECRET_KEY: "miniostorage" + volumes: *configSpinnakerVolume + deploy: *default-deploy + depends_on: *spinnaker-depend + networks: *spinnaker-network + logging: *default-logging + + echo: + image: us-docker.pkg.dev/spinnaker-community/docker/echo:0.8.0-20180221133510 + ports: + - 8089:8089 + extra_hosts: *addHost + volumes: *configSpinnakerVolume + deploy: *default-deploy + depends_on: *spinnaker-depend + networks: *spinnaker-network + logging: *default-logging + + orca: + image: us-docker.pkg.dev/spinnaker-community/docker/orca:0.10.0-20180221133510 + ports: + - 8083:8083 + extra_hosts: *addHost + volumes: *configSpinnakerVolume + deploy: *default-deploy + depends_on: *spinnaker-depend + networks: *spinnaker-network + logging: *default-logging + + rosco: + image: us-docker.pkg.dev/spinnaker-community/docker/rosco:0.5.0-20180221133510 + ports: + - 8087:8087 + extra_hosts: *addHost + volumes: *configSpinnakerVolume + deploy: *default-deploy + networks: *spinnaker-network + logging: *default-logging + + fiat: + image: us-docker.pkg.dev/spinnaker-community/docker/fiat:0.5.0-20180221133510 + ports: + - 7003:7003 + extra_hosts: *addHost + volumes: *configSpinnakerVolume + deploy: *default-deploy + depends_on: *spinnaker-depend + networks: *spinnaker-network + logging: *default-logging + + gate: + image: us-docker.pkg.dev/spinnaker-community/docker/gate:0.10.0-20180221133510 + ports: + - 8084:8084 + extra_hosts: *addHost + volumes: *configSpinnakerVolume + deploy: *default-deploy + depends_on: *spinnaker-depend + networks: *spinnaker-network + logging: *default-logging + +# monitoring-daemon: +# image: us-docker.pkg.dev/spinnaker-community/docker/monitoring-daemon:0.5.0-20180221133510 +# ports: +# - 8008:8008 +# extra_hosts: *addHost +# volumes: *configSpinnakerVolume +# deploy: *default-deploy +# depends_on: *spinnaker-depend +# networks: *spinnaker-network +# logging: *default-logging + + redis: + image: redis:4.0.13 + command: redis-server --port 6379 + ports: + - 6379:6379 + deploy: *default-deploy + networks: *spinnaker-network + logging: *default-logging + + redis-commander: + image: rediscommander/redis-commander:latest + environment: + - REDIS_HOSTS=local:redis:6379 + ports: + - "8786:8081" + deploy: *default-deploy + networks: *spinnaker-network + logging: *default-logging + + minio: + image: minio/minio:RELEASE.2019-12-30T05-45-39Z + command: server --config-dir /etc/minio --address ":62222" /data + environment: + - MINIO_ROOT_USER=minio + - MINIO_ROOT_PASSWORD=miniostorage + - MINIO_ACCESS_KEY=minio + - MINIO_SECRET_KEY=miniostorage + - MINIO_REGION=us-east-1 + volumes: + - minio-config-volume:/etc/minio + - minio-data-volume:/data + ports: + - 62222:62222 + healthcheck: + disable: true + deploy: *default-deploy + networks: *spinnaker-network + logging: *default-logging + +volumes: + halyardVolume: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/spinnaker/halyard" + + redisMasterVolume: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/spinnaker/redis" + + config-spinnaker-volume: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/spinnaker/config" + + deck-html-volume: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/spinnaker/deck-html" + + minio-config-volume: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/spinnaker/minio/config" + + minio-data-volume: + driver: local + driver_opts: + type: "nfs" + o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" + device: ":${NFSPATH:-/nfspath}/spinnaker/minio/data" + +networks: + spinnakernetwork: + attachable: true Index: web-module/script/yml/monitoring/server/test.yml =================================================================== diff -u --- web-module/script/yml/monitoring/server/test.yml (revision 0) +++ web-module/script/yml/monitoring/server/test.yml (revision 57b9b484468360d3f19217130eb1c6284c0d7605) @@ -0,0 +1,116 @@ +version: '3.6' + +services: + +# test-redis: +# image: redis:4.0.13 +# command: redis-server --port 6379 +# volumes: +# - testRedis:/data +# ports: +# - 26379:6379 +# networks: +# - test_network +# deploy: +# mode: replicated +# replicas: 1 +# placement: +# constraints: [node.role == manager] + +# test-redis-browser: +# image: obytes/redis-browser +# command: --url redis://test-redis:6379 +# ports: +# - "24567:4567" +# networks: +# - test_network +# deploy: +# mode: replicated +# replicas: 1 +# placement: +# constraints: [node.role == manager] + +# test-redis-commander: +# image: rediscommander/redis-commander:latest +# restart: always +# environment: +# - REDIS_HOSTS=local:test-redis:6379 +# ports: +# - "28081:8081" +# networks: +# - test_network +# deploy: +# mode: replicated +# replicas: 1 +# placement: +# constraints: [node.role == manager] + +# jenkins: + #image: jenkins/jenkins:2.289.2-lts +# image: jenkins:2.7.2 +# environment: +# JAVA_OPTS: "-Xms1g -Xmx1g -Dhudson.model.DownloadService.noSignatureCheck=true" +# ports: +# - "58080:8080" +# - "50000:50000" +# volumes: +# - jenkinsHome:/var/jenkins_home +# deploy: &default-deploy +# mode: replicated +# replicas: 1 +# placement: +# constraints: [node.role==manager] +# networks: &default-network +# - test_network +# extra_hosts: &default-addhost +# - "db.313.co.kr:192.168.25.40" +# - "nas.313.co.kr:192.168.25.42" +# - "ubuntu.313.co.kr:192.168.25.46" +# logging: &default-logging +# driver: "json-file" +# options: +# max-file: "5" +# max-size: "100m" + + proxyGateway: + image: 313devgrp/jstree-service-framework-proxy-app:21.08.30 + ports: + - "28282:28282" + deploy: &default-deploy + mode: replicated + replicas: 1 + placement: + constraints: [node.role==manager] + networks: &default-network + - test_network + extra_hosts: &default-addhost + - "313.co.kr:192.168.25.42" + - "db.313.co.kr:192.168.25.40" + - "nas.313.co.kr:192.168.25.42" + - "www.313.co.kr:192.168.25.42" + - "ubuntu.313.co.kr:192.168.25.46" + logging: &default-logging + driver: "json-file" + options: + max-file: "5" + max-size: "100m" + + +#volumes: +# jenkinsHome: +# driver: local +# driver_opts: +# type: "nfs" +# o: "addr=${NFSSERVER:-1.2.3.4},nolock,soft,rw,sync" +# device: ":${NFSPATH:-/nfspath}/devtool/jenkins" +# testRedis: +# driver: local +# driver_opts: +# type: "nfs" +# o: "addr=192.168.25.42,nolock,soft,rw,sync" +# device: ":${NFSPATH:-/nfspath}/test/redis" + + +networks: + test_network: + driver: overlay