Fit CloudFoundry to install on Google GCP free trial

Deploying

1. Singup on Google GCP

2. Installing Cloud SDK and git on your PC and install requirements

https://cloud.google.com/sdk/downloads

sudo apt-get install mc htop net-tools build-essential ruby wget git apt-transport-https -y

3. Enable GCP API services and create Storage access key

4. Login to GCP

gcloud auth login

5. Creating IAM service account

gcloud iam service-accounts create cf-user --display-name "CF"

6. Creating service keys

Set your PROJECT_ID

gcloud iam service-accounts keys create --iam-account='cf-user@PROJECT_ID.iam.gserviceaccount.com' \
cf-user.key.json

7. Adding editor role

Set your PROJECT_ID

gcloud projects add-iam-policy-binding PROJECT_ID \
--member='serviceAccount:cf-user@PROJECT_ID.iam.gserviceaccount.com' \
--role='roles/editor'
gcloud projects add-iam-policy-binding PROJECT_ID \
--member='serviceAccount:cf-user@PROJECT_ID.iam.gserviceaccount.com' \
--role='roles/datastore.owner'
gcloud projects add-iam-policy-binding PROJECT_ID \
--member='serviceAccount:cf-user@PROJECT_ID.iam.gserviceaccount.com' \
--role='roles/cloudsql.admin'

8. Turning on SQL Cloud API

https://console.developers.google.com/apis/api/sqladmin.googleapis.com/overview?project=590574243243

9. Downloading Terraform v0.9.1 or later. Unzip the file and move it to somewhere in your PATH:

tar xvf ~/Downloads/terraform*
sudo mv ~/Downloads/terraform /usr/local/bin/terraform

10. Exporting GCP credetials and PROJECT_ID

export TF_CREDS=~/cf-user.key.json
export GOOGLE_CREDENTIALS=$(cat ${TF_CREDS})
export GOOGLE_PROJECT=$(gcloud config get-value project)

11. Cloning cf-gcp-free

git clone https://github.com/vyrodovalexey/cf-gcp-free.git

12. Preparing network environment

Change values project, domains, domain, user_sql, user_sql_password

cd cf-gcp-free
terraform init
terraform plan -var project=PROJECT_ID -var domains='["*.sys.example.com","*.ws.example.com.info","*.example.com.info"]' \
-var domain=example.com -var user_sql=USER -var user_sql_password=PASSWORD
terraform plan -var project=PROJECT_ID -var domains='["*.sys.example.com","*.ws.example.com.info","*.example.com.info"]' \
-var domain=example.com -var user_sql=USER -var user_sql_password=PASSWORD

cd ..

13. Setup DNS

Check IP of LB (LoadBalancer) in GCP console and setup your DNS zone (https://docs.cloudfoundry.org/deploying/common/dns_prereqs.html).
https://console.cloud.google.com/net-services/loadbalancing/loadBalancers/list

bosh-cf-router-lb-url-map
LB_IP *.sys.example.com
LB_IP *.example.com

bosh-cf-ws
LB_IP *.ws.example.com

bosh-cf-tcp-router
LB_IP *.tcp.example.com

bosh-cf-ssh-proxy
LB_IB *.ssh.example.com

14. Deploying BOSH
14.1. Installing utility

wget https://s3.amazonaws.com/bosh-cli-artifacts/bosh-cli-2.0.45-linux-amd64
chmod +x bosh-cli-2.0.45-linux-amd64
sudo mv bosh-cli-2.0.45-linux-amd64 /usr/local/bin/bosh

14.2. Cloning bosh repo

git clone https://github.com/cloudfoundry/bosh-deployment

14.3. Deploying Director

Change PROJECT_ID

bosh create-env bosh-deployment/bosh.yml \
--state=state.json \
--vars-store=creds.yml \
-o bosh-deployment/jumpbox-user.yml \
-o bosh-deployment/gcp/cpi.yml \
-v director_name=bosh-director \
-v internal_cidr=10.0.0.0/24 \
-v internal_gw=10.0.0.1 \
-v internal_ip=10.0.0.6 \
--var-file gcp_credentials_json=~/cf-user.key.json \
-v project_id=PROJECT_ID \
-v zone=us-central1-a \
-v tags=[bosh-director] \
-v network=default \
-v subnetwork=cfnet \
-o bosh-deployment/gcp/gcs-blobstore.yml \
-v bucket_name=bosh_gcp_PROJECT_ID \
--var-file director_gcs_credentials_json=~/cf-user.key.json \
--var-file agent_gcs_credentials_json=~/cf-user.key.json \
-o bosh-deployment/uaa.yml \
-o bosh-deployment/credhub.yml \
-o cf-gcp-free/bosh-director-ephemeral-ip-ops.yml

14.4. Configuring BOSH env gcp
Change IP_BOSH_DIRECTOR to actual IP

bosh -e BOSH_IP alias-env gcp --ca-cert <(bosh int creds.yml --path /director_ssl/ca)
bosh int creds.yml --path /director_ssl/ca > bosh.crt
export BOSH_CA_CERT=bosh.crt
export BOSH_ENVIRONMENT=https://IP_BOSH_DIRECTOR:25555

14.5. Obtain generated admin password

bosh int creds.yml --path /admin_password

14.6. Login

bosh -e gcp login
Email (): admin
Password ():

14.7. Uploading latest stemcell

http://bosh.cloudfoundry.org/stemcells/
Example:

wget  https://s3.amazonaws.com/bosh-core-stemcells/google/bosh-stemcell-3468.15-google-kvm-ubuntu-trusty-go_agent.tgz
bosh -e gcp upload-stemcell bosh-stemcell-3468.15-google-kvm-ubuntu-trusty-go_agent.tgz

Check

bosh -e gcp stemcells

14.8. Updating cloud-config

bosh -e gcp update-cloud-config cf-gcp-free/cloud-config.yml

15. Deploying Cloudfoundry
15.1. Cloning repo

git clone https://github.com/cloudfoundry/cf-deployment.git

15.2. Preparing vars files

Set actual values into files below (cf-gcp-free direcory)

vars-use-external-dbs.yml
vars-use-gcs-blobstore.yml

User and password for DB take from section 12.
Take IP for DB from GCP console.
Access key was created in section 3.
Take bucket names from GCP console.

15.3. Deploying

bosh -e gcp -d cf deploy cf-deployment/cf-deployment.yml --vars-file cf-gcp-free/vars-use-external-dbs.yml \
--vars-file cf-gcp-free/vars-use-gcs-blobstore.yml --vars-store env-repository/deployment-vars.yml \
-o cf-gcp-free/cf-gcp-free.yml \
-o cf-deployment/operations/use-external-dbs.yml \
-o cf-deployment/operations/use-gcs-blobstore.yml \
-v system_domain=example.com

15.4. Installing cf utility

echo "deb http://packages.cloudfoundry.org/debian stable main" | sudo tee /etc/apt/sources.list.d/cloudfoundry-cli.list
wget -q -O - https://packages.cloudfoundry.org/debian/cli.cloudfoundry.org.key | sudo apt-key add -
sudo apt-get update
sudo apt-get install cf-cli

15.5. Login
Getting CF admin password

cat env-repository/deployment-vars.yml | grep cf_admin_password

login

cf login -a api.example.com --skip-ssl-validation
API endpoint: api.pcf.myitnotes.info
Email> admin
Password>
Authenticating...
OK
Targeted org system
API endpoint:   https://api.pcf.myitnotes.info (API version: 2.100.0)
User:           admin
Org:            system
Space:          No space targeted, use 'cf target -s SPACE'

15.6. Creating org and space

cf create-org TEST
cf target -o "TEST"
cf create-space DEV
cf target -o "TEST" -s "DEV"

15.7. Cloning test repo

git clone https://github.com/krujos/cf-hello-world-sample-apps.git

15.8. Starting test app

cd cf-hello-world-sample-apps/php
cf push phpexample

If you will see following:

Starting app phpexample in org TEST / space DEV as admin...
FAILED
Error restarting application: Server error, status code: 502, error code: 0, message:

That's ok. Just wait a littile and try to open in browser.
http://phpexample.example.com

15.9. Starting docker
To enable Docker support, run:

cf enable-feature-flag diego_docker

To start docker example, run:

cf push my-app --docker-image mrbarker/python-flask-hello

If you will see following:

Starting app my-app in org TEST / space DEV as admin...
FAILED
Error restarting application: Server error, status code: 502, error code: 0, message:

That's ok. Just wait a little and try to open in browser.
http://my-app.example.com

Enjoy!

en/jobs/cf-gcp-free.txt · Last modified: 2018/01/09 11:59 by admin
Recent changes RSS feed Debian Powered by PHP Valid XHTML 1.0 Valid CSS Driven by DokuWiki