Nomad 서버 설정
약 3 분
Nomad 서버 설정
팁
최대한 설정값을 넣어보고, 번역기도 돌려보고 물어도 보고 넣은 server설정 파일입니다.
네트워크는 프라이빗(온프레이머스) 환경입니다.
#nomad server 설정
server {
enabled = true
bootstrap_expect = 3
license_path="/opt/nomad/license/nomad.license"
server_join {
retry_join = ["172.30.1.17","172.30.1.18","172.30.1.19"]
}
raft_protocol = 3
event_buffer_size = 100
non_voting_server = false
heartbeat_grace = "10s"
}
#tls 설정
tls {
http = true
rpc = true
ca_file = "/opt/ssl/nomad/nomad-agent-ca.pem"
cert_file = "/opt/ssl/nomad/global-server-nomad-0.pem"
key_file = "/opt/ssl/nomad/global-server-nomad-0-key.pem"
#UI오픈할 서버만 변경
verify_server_hostname = false
verify_https_client = false
#일반서버는 아래와 같이 설정
verify_server_hostname = true
verify_https_client = true
}
Nomad 서버 최소 설정 (20220807기준)
data_dir = "/opt/consul"
client_addr = "0.0.0.0"
datacenter = "my-dc"
#ui
ui_config {
enabled = true
}
# server
server = true
# Bind addr
bind_addr = "0.0.0.0" # Listen on all IPv4
# Advertise addr - if you want to point clients to a different address than bind or LB.
advertise_addr = "node ip"
# Enterprise License
license_path = "/opt/nomad/nomad.lic"
# bootstrap_expect
bootstrap_expect=1
# encrypt
encrypt = "7w+zkhqa+YD4GSKXjRWETBIT8hs53Sr/w95oiVxq5Qc="
# retry_join
retry_join = ["server ip"]
key_file = "/opt/consul/my-dc-server-consul-0-key.pem"
cert_file = "/opt/consul/my-dc-server-consul-0.pem"
ca_file = "/opt/consul/consul-agent-ca.pem"
auto_encrypt {
allow_tls = true
}
verify_incoming = false
verify_incoming_rpc = false
verify_outgoing = false
verify_server_hostname = false
ports {
http = 8500
dns = 8600
server = 8300
}