从终端访问 Multicloud Object Gateway
使用此信息可从终端访问 Multicloud Object Gateway。
开始之前
- 正在运行的 Fusion Data Foundation Platform。
- 下载 MCG 命令行界面以简化管理。
subscription-manager repos --enable=rh-odf-4-for-rhel-8-x86_64-rpmsyum install mcg注: 指定相应的体系结构以使用预订管理器来启用存储库。- 对于 IBM Power ,请使用以下命令:
subscription-manager repos --enable=rh-odf-4-for-rhel-8-ppc64le-rpms - 对于 IBM Z 基础架构,请使用以下命令:
subscription-manager repos --enable=rh-odf-4-for-rhel-8-s390x-rpms
- 对于 IBM Power ,请使用以下命令:
- 或者,您可以从位于 Download Red Hat OpenShift Data Foundation 页面的 RPM 安装 MCG 软件包。注: 根据体系结构选择正确的产品变体。
过程
运行 describe 命令以查看有关 Multicloud Object Gateway (MCG) 端点的信息,包括其访问密钥 (AWS_ACCESS_KEY_ID 值) 和私钥访问密钥 (AWS_SECRET_ACCESS_KEY 值)。
oc describe noobaa -n openshift-storage示例输出,其中 (1) 是访问密钥 (AWS_ACCESS_KEY_ID 值) , (2) 是私钥访问密钥 (AWS_SECRET_ACCESS_KEY 值) , (3) 是 MCG 端点
Name: noobaa
Namespace: openshift-storage
Labels: <none>
Annotations: <none>
API Version: noobaa.io/v1alpha1
Kind: NooBaa
Metadata:
Creation Timestamp: 2019-07-29T16:22:06Z
Generation: 1
Resource Version: 6718822
Self Link: /apis/noobaa.io/v1alpha1/namespaces/openshift-storage/noobaas/noobaa
UID: 019cfb4a-b21d-11e9-9a02-06c8de012f9e
Spec:
Status:
Accounts:
Admin:
Secret Ref:
Name: noobaa-admin
Namespace: openshift-storage
Actual Image: noobaa/noobaa-core:4.0
Observed Generation: 1
Phase: Ready
Readme:
Welcome to NooBaa!
-----------------
Welcome to NooBaa!
-----------------
NooBaa Core Version:
NooBaa Operator Version:
Lets get started:
1. Connect to Management console:
Read your mgmt console login information (email & password) from secret: "noobaa-admin".
kubectl get secret noobaa-admin -n openshift-storage -o json | jq '.data|map_values(@base64d)'
Open the management console service - take External IP/DNS or Node Port or use port forwarding:
kubectl port-forward -n openshift-storage service/noobaa-mgmt 11443:443 &
open https://localhost:11443
2. Test S3 client:
kubectl port-forward -n openshift-storage service/s3 10443:443 &how
(1)
NOOBAA_ACCESS_KEY=$(kubectl get secret noobaa-admin -n openshift-storage -o json | jq -r '.data.AWS_ACCESS_KEY_ID|@base64d')
(2)
NOOBAA_SECRET_KEY=$(kubectl get secret noobaa-admin -n openshift-storage -o json | jq -r '.data.AWS_SECRET_ACCESS_KEY|@base64d')
alias s3='AWS_ACCESS_KEY_ID=$NOOBAA_ACCESS_KEY AWS_SECRET_ACCESS_KEY=$NOOBAA_SECRET_KEY aws --endpoint https://localhost:10443 --no-verify-ssl s3'
s3 ls
Services:
Service Mgmt:
External DNS:
https://noobaa-mgmt-openshift-storage.apps.mycluster-cluster.qe.rh-ocs.com
https://a3406079515be11eaa3b70683061451e-1194613580.us-east-2.elb.amazonaws.com:443
Internal DNS:
https://noobaa-mgmt.openshift-storage.svc:443
Internal IP:
https://172.30.235.12:443
Node Ports:
https://10.0.142.103:31385
Pod Ports:
https://10.131.0.19:8443
serviceS3:
External DNS: (3)
https://s3-openshift-storage.apps.mycluster-cluster.qe.rh-ocs.com
https://a340f4e1315be11eaa3b70683061451e-943168195.us-east-2.elb.amazonaws.com:443
Internal DNS:
https://s3.openshift-storage.svc:443
Internal IP:
https://172.30.86.41:443
Node Ports:
https://10.0.142.103:31011
Pod Ports:
https://10.131.0.19:6443注: oc describe noobaa 命令的输出列出了可用的内部和外部 DNS 名称。 使用内部 DNS 时,流量是免费的。 外部 DNS 使用负载均衡来处理流量,因此每小时具有成本。