centos8 发布尝鲜,先改个ks 安装
# Kickstart file automatically generated by anaconda.
#version=RHEL8
#use text install
text
# Use NFS installation media
nfs --server=192.168.1.253 --dir=/ct80_64
# System language
lang en_US.UTF-8
# Keyboard layouts
keyboard --vckeymap=us --xlayouts='us'
#add root password
rootpw --iscrypted xxxxxxxxxxx
# System authorization information
authconfig --enableshadow --enablemd5
# SELinux configuration
selinux --disabled
firstboot --disable
# Do not configure the X Window System
skipx
# firewall configuration
firewall --disabled
# System services
services --enabled="chronyd"
# System timezone
timezone Asia/Shanghai
#修改这样可以定义网卡名称为ethx
# System bootloader configuration
bootloader --location=mbr --append="net.ifnames=0 biosdevname=0 rhgb quiet"
# Partition clearing information
clearpart --all --initlabel
# create 1MB biosboot type partition, centos7 and centos8 .
part biosboot --fstype=biosboot --size=1
# Disk partitioning information
part /boot --fstype=xfs --size=300
part pv.122 --fstype="lvmpv" --grow
volgroup VolGroup00 --pesize=16384 pv.122
logvol / --fstype="xfs" --size=10000 --name=LogVol00 --vgname=VolGroup00
%packages
@Base
@Core
@development
@network-tools
gettext-devel
sysstat
zlib-devel
psmisc
%end
%post --erroronfail --log=/root/ks-post.log
echo "nameserver 114.114.114.114">/etc/resolv.conf
echo "nameserver 202.106.46.151">>/etc/resolv.conf
echo "search localdomain">>/etc/resolv.conf
#安装docker repo #####
#######docker repo ##########
sudo tee /etc/yum.repos.d/docker-ce.repo <<-'EOF'
[docker-ce-stable]
name=Docker CE Stable - $basearch
baseurl=https://download.docker.com/linux/centos/7/$basearch/stable
enabled=1
gpgcheck=1
gpgkey=https://download.docker.com/linux/centos/gpg
EOF
date >> /root/install.log
echo "network configing " >> /data/install.log
cat >/etc/sysconfig/network-scripts/ifcfg-eth0 <<END
NAME="eth0"
DEVICE="eth0"
ONBOOT=yes
NETBOOT=yes
IPV6INIT=no
BOOTPROTO=none
TYPE=Ethernet
IPADDR=192.168.1.99
PREFIX=24
GATEWAY=192.168.1.1
DNS1=114.114.114.114
DNS2=202.106.46.151
DEFROUTE=yes
IPV4_FAILURE_FATAL=no
END
#DNS
nmcli con mod eth0 ipv4.dns "114.114.114.114 202.106.46.151"
nmcli con up eth0
echo "dns=none">>/etc/NetworkManager/NetworkManager.conf
cat >> /etc/sysctl.conf <<END
fs.file-max = 655360
net.ipv4.tcp_mem = 94500000 915000000 927000000
net.core.rmem_max = 16777216
net.core.wmem_max = 16777216
net.core.netdev_max_backlog = 262144
net.core.somaxconn = 262144
net.ipv4.tcp_max_orphans = 3276800
net.ipv4.tcp_max_syn_backlog = 262144
net.core.wmem_default = 8388608
net.core.rmem_default = 8388608
net.ipv4.ip_local_port_range = 20000 65000
net.ipv4.tcp_max_syn_backlog = 262144
net.ipv4.tcp_max_tw_buckets = 6000
net.ipv4.tcp_fin_timeout = 10
net.ipv4.tcp_keepalive_time = 1200
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.tcp_synack_retries = 1
net.ipv4.tcp_syn_retries = 1
net.ipv4.tcp_orphan_retries = 4
net.nf_conntrack_max=655350
END
echo "ulimit -SHn 655350" >> /etc/rc.local
echo "ulimit -n 655350" >> /etc/rc.local
echo "ulimit -s 102400" >> /etc/rc.local
echo "ulimit -n 655350" >> /etc/profile
echo "root soft nproc unlimited
* soft nproc 655350
* hard nproc 655350
* soft nofile 655350
* hard nofile 655350
" >/etc/security/limits.d/20-nproc.conf
# Do not update kerner
sed -i '/\[main\]'/a\exclude=kernel\* /etc/yum.conf
#这里可以添加用户key
#禁用密码认证
sed -i 's/PasswordAuthentication yes/PasswordAuthentication no/' /etc/ssh/sshd_config
# Reboot after installation
reboot