{"id":778,"date":"2019-07-22T15:59:29","date_gmt":"2019-07-22T21:59:29","guid":{"rendered":"https:\/\/ugit.siua.ac.cr\/?p=778"},"modified":"2019-09-25T14:09:55","modified_gmt":"2019-09-25T20:09:55","slug":"proxmox-5-3-agregar-nodo-a-cluster","status":"publish","type":"post","link":"https:\/\/sada.services\/?p=778","title":{"rendered":"PROXMOX 5.3: Agregar Nodo a Cluster"},"content":{"rendered":"\n<ul class=\"wp-block-list\"><li>Despu\u00e9s de haber:<ul><li>Instalado el nodo<\/li><li>Eliminado el mensaje de suscripci\u00f3n<\/li><li>Actualizar el sistema<\/li><li>Crear el usuario \u00abugit\u00bb<\/li><li>Configurar POSTFIX-GMAIL<\/li><li>Activar colores&nbsp;<\/li><li>Configurar la redes OVS<\/li><li>Configurar Fail2Ban para proxmox<\/li><li>Agregar la seguridad UGIT<\/li><\/ul><\/li><\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Si desea agregar su llaves personal<\/h3>\n\n\n\n<ul class=\"wp-block-list\"><li>Desde una terminal en su computadora personal (NO EL SERVIDOR) <\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>eval \"$(ssh-agent -s)\"<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>La a\u00f1adimos<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>ssh-add ~\/.ssh\/id_ed25519<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Agregamos al servidor<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>ssh -i ~\/.ssh\/id_ed25519 john@198.222.111.33<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\">Agregar nodo al cluster<\/h2>\n\n\n\n<ul class=\"wp-block-list\"><li>Vamos a ingresar x ssh al nodo cliente, es decir al que deseamos agregar al cluster<\/li><li>Y como dentro de la UGIT se realiz\u00f3 red (VLAN) espec\u00edfica para el COROSYNC ejecutamos el siguiente comando donde el formato es:<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>pvecm add &lt;IP addr of a cluster member> -ring0_addr &lt;new nodes ring addr><\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>pvecm add 10.20.252.14 --ring0_addr 10.20.252.25<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Nos pide la contrase\u00f1a del usuario \u00abroot\u00bb en el master<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>Please enter superuser (root) password for '10.20.252.14':\nPassword for root@10.20.252.14: *************<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Y nos establece la conexi\u00f3n<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>Establishing API connection with host '10.20.252.14'\nThe authenticity of host '10.20.252.14' can't be established.\nX509 SHA256 key fingerprint is 68:1A:F1:24:25:97:64:1E:33:E8:E7:9D:A0:F1:BA:ED:EB:B7:CF:BA:28:2C:47:74:3D:B2:E2:D9:B0:37:77:E0.\nAre you sure you want to continue connecting (yes\/no)? yes<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Inicia la sincronizaci\u00f3n si todo sale bien<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>Login succeeded.\nRequest addition of this node\nJoin request OK, finishing setup locally\nstopping pve-cluster service\nbackup old database to '\/var\/lib\/pve-cluster\/backup\/config-1548698688.sql.gz'\nwaiting for quorum...OK\n(re)generate node files\ngenerate new node certificate\nmerge authorized SSH keys and known hosts\ngenerated new node certificate, restart pveproxy and pvedaemon services\nsuccessfully added node 'metis' to cluster.<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">Error de certificado<\/h3>\n\n\n\n<ul class=\"wp-block-list\"><li>Ahora si cuando tramos de ingresar en el nodo desde la interfaz&nbsp;web  del master en RESUMEN y nos da error de certificado x letsencript:<\/li><\/ul>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large\"><img fetchpriority=\"high\" decoding=\"async\" width=\"541\" height=\"286\" src=\"\/wp-content\/uploads\/2019\/07\/1-3.png\" alt=\"\" class=\"wp-image-779\" srcset=\"https:\/\/sada.services\/wp-content\/uploads\/2019\/07\/1-3.png 541w, https:\/\/sada.services\/wp-content\/uploads\/2019\/07\/1-3-300x159.png 300w\" sizes=\"(max-width: 541px) 100vw, 541px\" \/><\/figure><\/div>\n\n\n\n<ul class=\"wp-block-list\"><li>Ingresamos por ssh al master<\/li><li>y copiamos los certificados al nodo<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>cp \/etc\/letsencrypt\/live\/poseidon.siua.ac.cr\/fullchain.pem \/etc\/pve\/nodes\/metis\/pveproxy-ssl.pem\ncp \/etc\/letsencrypt\/live\/poseidon.siua.ac.cr\/privkey.pem \/etc\/pve\/nodes\/metis\/pveproxy-ssl.key<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Reiniciamos los servicios<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>service pveproxy restart\nservice pvedaemon restart<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Actualizamos el archivo que se encarga de la renovaci\u00f3n de letsencript<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>nano \/root\/ssh-renew.sh<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Agregamos las l\u00edneas anteriores<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>cp \/etc\/letsencrypt\/live\/poseidon.siua.ac.cr\/fullchain.pem \/etc\/pve\/nodes\/metis\/pveproxy-ssl.pem\ncp \/etc\/letsencrypt\/live\/poseidon.siua.ac.cr\/privkey.pem \/etc\/pve\/nodes\/metis\/pveproxy-ssl.key<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Reiniciamos el servidor<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>init 6<\/code><\/pre>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Gu\u00eda para agregar nodo al cluster<\/p>\n","protected":false},"author":2,"featured_media":2001,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[75,12],"class_list":["post-778","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-proxmox","tag-cluster","tag-proxmox"],"blocksy_meta":{"styles_descriptor":{"styles":{"desktop":"","tablet":"","mobile":""},"google_fonts":[],"version":6}},"_links":{"self":[{"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/posts\/778","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/sada.services\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=778"}],"version-history":[{"count":2,"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/posts\/778\/revisions"}],"predecessor-version":[{"id":2071,"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/posts\/778\/revisions\/2071"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sada.services\/index.php?rest_route=\/wp\/v2\/media\/2001"}],"wp:attachment":[{"href":"https:\/\/sada.services\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=778"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sada.services\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=778"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sada.services\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=778"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}