deleted file mode 100755

@@ -1,193 +0,0 @@

-#!/usr/bin/env bash

-

-# **exercise.sh** - using the cloud can be fun

-

-# we will use the ``nova`` cli tool provided by the ``python-novaclient``

-# package

-#

-

-

-# This script exits on an error so that errors don't compound and you see

-# only the first error that occured.

-set -o errexit

-

-# Print the commands being run so that we can see the command that triggers

-# an error.  It is also useful for following allowing as the install occurs.

-set -o xtrace

-

-

-# Settings

-# ========

-

-# Use openrc + stackrc + localrc for settings

-source ./openrc

-

-# Get a token for clients that don't support service catalog

-# ==========================================================

-

-# manually create a token by querying keystone (sending JSON data).  Keystone

-# returns a token and catalog of endpoints.  We use python to parse the token

-# and save it.

-

-TOKEN=`curl -s -d  "{\"auth\":{\"passwordCredentials\": {\"username\": \"$NOVA_USERNAME\", \"password\": \"$NOVA_API_KEY\"}}}" -H "Content-type: application/json" http://$HOST_IP:5000/v2.0/tokens | python -c "import sys; import json; tok = json.loads(sys.stdin.read()); print tok['access']['token']['id'];"`

-

-# Launching a server

-# ==================

-

-# List servers for tenant:

-nova list

-

-# Images

-# ------

-

-# Nova has a **deprecated** way of listing images.

-nova image-list

-

-# But we recommend using glance directly

-glance -A $TOKEN index

-

-# Let's grab the id of the first AMI image to launch

-IMAGE=`glance -A $TOKEN index | egrep ami | cut -d" " -f1`

-

-# Security Groups

-# ---------------

-SECGROUP=test_secgroup

-

-# List of secgroups:

-nova secgroup-list

-

-# Create a secgroup

-nova secgroup-create $SECGROUP "test_secgroup description"

-

-# determine flavor

-# ----------------

-

-# List of flavors:

-nova flavor-list

-

-# and grab the first flavor in the list to launch

-FLAVOR=`nova flavor-list | head -n 4 | tail -n 1 | cut -d"|" -f2`

-

-NAME="myserver"

-

-nova boot --flavor $FLAVOR --image $IMAGE $NAME --security_groups=$SECGROUP

-

-# Testing

-# =======

-

-# First check if it spins up (becomes active and responds to ping on

-# internal ip).  If you run this script from a nova node, you should

-# bypass security groups and have direct access to the server.

-

-# Waiting for boot

-# ----------------

-

-# Max time to wait while vm goes from build to active state

-ACTIVE_TIMEOUT=${ACTIVE_TIMEOUT:-10}

-

-# Max time till the vm is bootable

-BOOT_TIMEOUT=${BOOT_TIMEOUT:-15}

-

-# Max time to wait for proper association and dis-association.

-ASSOCIATE_TIMEOUT=${ASSOCIATE_TIMEOUT:-10}

-

-# check that the status is active within ACTIVE_TIMEOUT seconds

-if ! timeout $ACTIVE_TIMEOUT sh -c "while ! nova show $NAME | grep status | grep -q ACTIVE; do sleep 1; done"; then

-    echo "server didn't become active!"

-    exit 1

-fi

-

-# get the IP of the server

-IP=`nova show $NAME | grep "private network" | cut -d"|" -f3`

-

-# for single node deployments, we can ping private ips

-MULTI_HOST=${MULTI_HOST:-0}

-if [ "$MULTI_HOST" = "0" ]; then

-    # sometimes the first ping fails (10 seconds isn't enough time for the VM's

-    # network to respond?), so let's ping for a default of 15 seconds with a

-    # timeout of a second for each ping.

-    if ! timeout $BOOT_TIMEOUT sh -c "while ! ping -c1 -w1 $IP; do sleep 1; done"; then

-        echo "Couldn't ping server"

-        exit 1

-    fi

-else

-    # On a multi-host system, without vm net access, do a sleep to wait for the boot

-    sleep $BOOT_TIMEOUT

-fi

-

-# Security Groups & Floating IPs

-# ------------------------------

-

-# allow icmp traffic (ping)

-nova secgroup-add-rule $SECGROUP icmp -1 -1 0.0.0.0/0

-

-# List rules for a secgroup

-nova secgroup-list-rules $SECGROUP

-

-# allocate a floating ip

-nova floating-ip-create

-

-# store  floating address

-FLOATING_IP=`nova floating-ip-list | grep None | head -1 | cut -d '|' -f2 | sed 's/ //g'`

-

-# add floating ip to our server

-nova add-floating-ip $NAME $FLOATING_IP

-

-# test we can ping our floating ip within ASSOCIATE_TIMEOUT seconds

-if ! timeout $ASSOCIATE_TIMEOUT sh -c "while ! ping -c1 -w1 $FLOATING_IP; do sleep 1; done"; then

-    echo "Couldn't ping server with floating ip"

-    exit 1

-fi

-

-# pause the VM and verify we can't ping it anymore

-nova pause $NAME

-

-sleep 2

-

-if ( ping -c1 -w1 $IP); then

-    echo "Pause failure - ping shouldn't work"

-    exit 1

-fi

-

-if ( ping -c1 -w1 $FLOATING_IP); then

-    echo "Pause failure - ping floating ips shouldn't work"

-    exit 1

-fi

-

-# unpause the VM and verify we can ping it again

-nova unpause $NAME

-

-sleep 2

-

-ping -c1 -w1 $IP

-

-# dis-allow icmp traffic (ping)

-nova secgroup-delete-rule $SECGROUP icmp -1 -1 0.0.0.0/0

-

-# FIXME (anthony): make xs support security groups

-if [ "$VIRT_DRIVER" != "xenserver"]; then

-    # test we can aren't able to ping our floating ip within ASSOCIATE_TIMEOUT seconds

-    if ! timeout $ASSOCIATE_TIMEOUT sh -c "while ping -c1 -w1 $FLOATING_IP; do sleep 1; done"; then

-        print "Security group failure - ping should not be allowed!"

-        echo "Couldn't ping server with floating ip"

-        exit 1

-    fi

-fi

-

-# de-allocate the floating ip

-nova floating-ip-delete $FLOATING_IP

-

-# shutdown the server

-nova delete $NAME

-

-# Delete a secgroup

-nova secgroup-delete $SECGROUP

-

-# FIXME: validate shutdown within 5 seconds

-# (nova show $NAME returns 1 or status != ACTIVE)?

-

-# Testing Euca2ools

-# ==================

-

-# make sure that we can describe instances

-euca-describe-instances

new file mode 100755

@@ -0,0 +1,37 @@

+#!/usr/bin/env bash

+

+# **exercise.sh** - using the cloud can be fun

+

+# we will use the ``nova`` cli tool provided by the ``python-novaclient``

+# package

+#

+

+

+# This script exits on an error so that errors don't compound and you see

+# only the first error that occured.

+set -o errexit

+

+# Print the commands being run so that we can see the command that triggers

+# an error.  It is also useful for following allowing as the install occurs.

+set -o xtrace

+

+

+# Settings

+# ========

+

+# Use openrc + stackrc + localrc for settings

+source ./openrc

+

+# Max time till the vm is bootable

+BOOT_TIMEOUT=${BOOT_TIMEOUT:-15}

+

+IMAGE=`euca-describe-images | grep machine | cut -f2`

+

+INSTANCE=`euca-run-instance $IMAGE | grep INSTANCE | cut -f2`

+

+if ! timeout $BOOT_TIMEOUT sh -c "while euca-describe-instances $INSTANCE | grep -q running; do sleep 1; done"; then

+    echo "server didn't become active within $BOOT_TIMEOUT seconds"

+    exit 1

+fi

+

+euca-terminate-instances $INSTANCE

new file mode 100755

@@ -0,0 +1,188 @@

+#!/usr/bin/env bash

+

+# **exercise.sh** - using the cloud can be fun

+

+# we will use the ``nova`` cli tool provided by the ``python-novaclient``

+# package

+#

+

+

+# This script exits on an error so that errors don't compound and you see

+# only the first error that occured.

+set -o errexit

+

+# Print the commands being run so that we can see the command that triggers

+# an error.  It is also useful for following allowing as the install occurs.

+set -o xtrace

+

+

+# Settings

+# ========

+

+# Use openrc + stackrc + localrc for settings

+source ./openrc

+

+# Get a token for clients that don't support service catalog

+# ==========================================================

+

+# manually create a token by querying keystone (sending JSON data).  Keystone

+# returns a token and catalog of endpoints.  We use python to parse the token

+# and save it.

+

+TOKEN=`curl -s -d  "{\"auth\":{\"passwordCredentials\": {\"username\": \"$NOVA_USERNAME\", \"password\": \"$NOVA_API_KEY\"}}}" -H "Content-type: application/json" http://$HOST_IP:5000/v2.0/tokens | python -c "import sys; import json; tok = json.loads(sys.stdin.read()); print tok['access']['token']['id'];"`

+

+# Launching a server

+# ==================

+

+# List servers for tenant:

+nova list

+

+# Images

+# ------

+

+# Nova has a **deprecated** way of listing images.

+nova image-list

+

+# But we recommend using glance directly

+glance -A $TOKEN index

+

+# Let's grab the id of the first AMI image to launch

+IMAGE=`glance -A $TOKEN index | egrep ami | cut -d" " -f1`

+

+# Security Groups

+# ---------------

+SECGROUP=test_secgroup

+

+# List of secgroups:

+nova secgroup-list

+

+# Create a secgroup

+nova secgroup-create $SECGROUP "test_secgroup description"

+

+# determine flavor

+# ----------------

+

+# List of flavors:

+nova flavor-list

+

+# and grab the first flavor in the list to launch

+FLAVOR=`nova flavor-list | head -n 4 | tail -n 1 | cut -d"|" -f2`

+

+NAME="myserver"

+

+nova boot --flavor $FLAVOR --image $IMAGE $NAME --security_groups=$SECGROUP

+

+# Testing

+# =======

+

+# First check if it spins up (becomes active and responds to ping on

+# internal ip).  If you run this script from a nova node, you should

+# bypass security groups and have direct access to the server.

+

+# Waiting for boot

+# ----------------

+

+# Max time to wait while vm goes from build to active state

+ACTIVE_TIMEOUT=${ACTIVE_TIMEOUT:-10}

+

+# Max time till the vm is bootable

+BOOT_TIMEOUT=${BOOT_TIMEOUT:-15}

+

+# Max time to wait for proper association and dis-association.

+ASSOCIATE_TIMEOUT=${ASSOCIATE_TIMEOUT:-10}

+

+# check that the status is active within ACTIVE_TIMEOUT seconds

+if ! timeout $ACTIVE_TIMEOUT sh -c "while ! nova show $NAME | grep status | grep -q ACTIVE; do sleep 1; done"; then

+    echo "server didn't become active!"

+    exit 1

+fi

+

+# get the IP of the server

+IP=`nova show $NAME | grep "private network" | cut -d"|" -f3`

+

+# for single node deployments, we can ping private ips

+MULTI_HOST=${MULTI_HOST:-0}

+if [ "$MULTI_HOST" = "0" ]; then

+    # sometimes the first ping fails (10 seconds isn't enough time for the VM's

+    # network to respond?), so let's ping for a default of 15 seconds with a

+    # timeout of a second for each ping.

+    if ! timeout $BOOT_TIMEOUT sh -c "while ! ping -c1 -w1 $IP; do sleep 1; done"; then

+        echo "Couldn't ping server"

+        exit 1

+    fi

+else

+    # On a multi-host system, without vm net access, do a sleep to wait for the boot

+    sleep $BOOT_TIMEOUT

+fi

+

+# Security Groups & Floating IPs

+# ------------------------------

+

+# allow icmp traffic (ping)

+nova secgroup-add-rule $SECGROUP icmp -1 -1 0.0.0.0/0

+

+# List rules for a secgroup

+nova secgroup-list-rules $SECGROUP

+

+# allocate a floating ip

+nova floating-ip-create

+

+# store  floating address

+FLOATING_IP=`nova floating-ip-list | grep None | head -1 | cut -d '|' -f2 | sed 's/ //g'`

+

+# add floating ip to our server

+nova add-floating-ip $NAME $FLOATING_IP

+

+# test we can ping our floating ip within ASSOCIATE_TIMEOUT seconds

+if ! timeout $ASSOCIATE_TIMEOUT sh -c "while ! ping -c1 -w1 $FLOATING_IP; do sleep 1; done"; then

+    echo "Couldn't ping server with floating ip"

+    exit 1

+fi

+

+# pause the VM and verify we can't ping it anymore

+nova pause $NAME

+

+sleep 2

+

+if ( ping -c1 -w1 $IP); then

+    echo "Pause failure - ping shouldn't work"

+    exit 1

+fi

+

+if ( ping -c1 -w1 $FLOATING_IP); then

+    echo "Pause failure - ping floating ips shouldn't work"

+    exit 1

+fi

+

+# unpause the VM and verify we can ping it again

+nova unpause $NAME

+

+sleep 2

+

+ping -c1 -w1 $IP

+

+# dis-allow icmp traffic (ping)

+nova secgroup-delete-rule $SECGROUP icmp -1 -1 0.0.0.0/0

+

+# FIXME (anthony): make xs support security groups

+if [ "$VIRT_DRIVER" != "xenserver"]; then

+    # test we can aren't able to ping our floating ip within ASSOCIATE_TIMEOUT seconds

+    if ! timeout $ASSOCIATE_TIMEOUT sh -c "while ping -c1 -w1 $FLOATING_IP; do sleep 1; done"; then

+        print "Security group failure - ping should not be allowed!"

+        echo "Couldn't ping server with floating ip"

+        exit 1

+    fi

+fi

+

+# de-allocate the floating ip

+nova floating-ip-delete $FLOATING_IP

+

+# shutdown the server

+nova delete $NAME

+

+# Delete a secgroup

+nova secgroup-delete $SECGROUP

+

+# FIXME: validate shutdown within 5 seconds

+# (nova show $NAME returns 1 or status != ACTIVE)?

+