Prerequisite of Installing EloqKV
The eloqctl utility is installed and operated on a control node, it manages several EloqKV server nodes. We discuss how to establish trust between control node and the server nodes,
and some system setting adjustments on the server nodes to make them run EloqKV better.
Establish Passwordless SSH and Sudo
Before proceeding, please manually configure SSH mutual trust and passwordless sudo between the control node and the server nodes:
- Log in on control machine and each server machine as the root user. Create the
eloquser account on each machine and set a login password:
useradd -m eloq && \
passwd eloq
- To configure passwordless sudo, run the following command and append the line
eloq ALL=(ALL) NOPASSWD: ALLto the end of the file on each machine:
visudo
eloq ALL=(ALL) NOPASSWD: ALL
- Please ensure that both password authentication and public key authentication are enabled on each machine. Password authentication is necessary for the control machine to copy the public key to the
authorized_keysfile of the EloqKV nodes. Public key authentication, on the other hand, is used by theeloqctltool to deploy EloqKV clusters. You can verify and configure these settings in the SSH configuration file as follows:
sudo vi /etc/ssh/sshd_config
Ensure the following line is set (uncomment if necessary):
PasswordAuthentication yes
PubkeyAuthentication yes
AuthorizedKeysFile .ssh/authorized_keys
Restart the SSH service to apply the changes:
- Rhel
- Ubuntu
sudo systemctl restart sshd
sudo systemctl restart ssh
- Log in to the control machine as the
eloquser, generate an SSH key, and configure SSH mutual trust between the control machine and itself. Note that password should be skipped when runningssk-keygen.
ssh-keygen -t rsa
cat .ssh/id_rsa.pub >> .ssh/authorized_keys
Please check permissions on .ssh directory.
chmod 700 ~/.ssh
chmod 600 ~/.ssh/authorized_keys
- Configure SSH mutual trust between the control machine and the server machines. Replace 10.0.0.1 with the IP address of your target machine, and enter the
eloquser password for the target machine when prompted. Once the command is executed, SSH mutual trust will be established. Repeat this process for each EloqKV machine.
ssh-copy-id -i ~/.ssh/id_rsa.pub 10.0.0.1
- Log in to the control machine using the
eloquser account, and then attempt to log in to the target machine's IP address using SSH. If you can log in without entering a password, SSH mutual trust has been successfully configured.
ssh 10.0.0.1
eloq@10.0.0.1:~$
System configuration for EloqKV Server Nodes
Below are some necessary configurations to be made before installing EloqKV
- Ensure your system is connected to the network and can update its package repositories using
yum updateorapt update. - Edit the system configuration file
/etc/security/limits.conf or /etc/security/limits.d/20-nproc.confusing the following commandAdd the following resource limit parameters at the end of the corresponding filesudo vi /etc/security/limits.conf* soft nofile 524288
* hard nofile 524288
* hard core unlimited
* soft core unlimited - Ensure DNS server is configured in
/etc/resolv.conf. - Ensure hostname is configured.
Edit /etc/hosts
sudo hostnamectl set-hostname my_hostnamemy_ip my_hostname - Use the following command to edit the configuration file
/etc/sysctl.confAdd the following configuration parameters at the end of the corresponding filesudo vi /etc/sysctl.confkernel.core_pattern=/var/crash/core-%e-%s-%u-%g-%p-%t - Execute the following command to load the above parameter modification.
sudo sysctl -p - In order to display all limit resource information of the current system, modify the bash configuration file
Add at the end of the corresponding file
sudo vi ~/.bashrculimit -c unlimited - Add current user and group ownership to
/var/crashfoldersudo chown -R $USER:$USER /var/crash