First, set the size of the CPU and system memory installed
1, a memory, CPU and hard disk size
1, set memory and CPU size, create a new virtual machine, set up a 100G hard drive, can be enough.
2, start the installation, the installation process will change the name of the network card eth0
1, the kernel parameter passing net.ifnames = 0 biosdevname = 0 in order to change the name of the NIC eth0 ethX;
When using the installation interface keyboard arrow keys to move the first row i.e. Install Centos Linux 7 and then press the tab key, i.e.,
passing parameters interface.
2, the choice of language, Simplified Chinese and English choose to avoid some Chinese fonts garbled in the English interface, and create partitions.
3, selecting a minimum of installation
Wait for the installation to complete! ! !
Second, the configuration of daily default option centos7
1, start the configuration centos7日常默认选项
1, in order to minimize the installation
yum install vim iotop bc gcc gcc-c++ glibc glibc-devel pcre pcre-devel openssl \ openssl-devel zip unzip zlib-devel net-tools lrzsz tree ntpdate telnet lsof tcpdump \ wget libevent libevent-devel bc systemd-devel bash-completion traceroute bridge-utils -y
2, turn off the firewall, and set the boot does not start
[root@openstack network-scripts]# systemctl stop firewalld [root@openstack network-scripts]# systemctl disable firewalld
3, close the NetworkManager network, to avoid affecting the network is, or is not successful startup issues such as network cards
[root@openstack network-scripts]# systemctl stop NetworkManager [root@openstack network-scripts]# systemctl disable NetworkManager
4、关闭selinux配置文件
[root@openstack network-scripts]# cat /etc/sysconfig/selinux # This file controls the state of SELinux on the system. # SELINUX= can take one of these three values: # enforcing - SELinux security policy is enforced. # permissive - SELinux prints warnings instead of enforcing. # disabled - No SELinux policy is loaded. SELINUX=disabled # SELINUXTYPE= can take one of three values: # targeted - Targeted processes are protected, # minimum - Modification of targeted policy. Only selected processes are protected. # mls - Multi Level Security protection. SELINUXTYPE=targeted
5、配置内核参数优化
[root@openstack network-scripts]# cat /etc/sysctl.conf # Controls source route verification net.ipv4.conf.default.rp_filter = 1 net.ipv4.ip_nonlocal_bind = 1 net.ipv4.ip_forward = 1 # Do not accept source routing net.ipv4.conf.default.accept_source_route = 0 # Controls the System Request debugging functionality of the kernel kernel.sysrq = 0 # Controls whether core dumps will append the PID to the core filename. # Useful for debugging multi-threaded applications. kernel.core_uses_pid = 1 # Controls the use of TCP syncookies net.ipv4.tcp_syncookies = 1 # Disable netfilter on bridges. net.bridge.bridge-nf-call-ip6tables = 0 net.bridge.bridge-nf-call-iptables = 0 net.bridge.bridge-nf-call-arptables = 0 # Controls the default maxmimum size of a mesage queue kernel.msgmnb = 65536 # # Controls the maximum size of a message, in bytes kernel.msgmax = 65536 # Controls the maximum shared segment size, in bytes kernel.shmmax = 68719476736 # # Controls the maximum number of shared memory segments, in pages kernel.shmall = 4294967296 # TCP kernel paramater net.ipv4.tcp_mem = 786432 1048576 1572864 net.ipv4.tcp_rmem = 4096 87380 4194304 net.ipv4.tcp_wmem = 4096 16384 4194304 net.ipv4.tcp_window_scaling = 1 net.ipv4.tcp_sack = 1 # socket buffer net.core.wmem_default = 8388608 net.core.rmem_default = 8388608 net.core.rmem_max = 16777216 net.core.wmem_max = 16777216 net.core.netdev_max_backlog = 262144 net.core.somaxconn = 20480 net.core.optmem_max = 81920 # TCP conn net.ipv4.tcp_max_syn_backlog = 262144 net.ipv4.tcp_syn_retries = 3 net.ipv4.tcp_retries1 = 3 net.ipv4.tcp_retries2 = 15 # tcp conn reuse net.ipv4.tcp_tw_reuse = 1 net.ipv4.tcp_tw_recycle = 1 net.ipv4.tcp_fin_timeout = 1 net.ipv4.tcp_max_tw_buckets = 20000 net.ipv4.tcp_max_orphans = 3276800 net.ipv4.tcp_timestamps = 1 #? net.ipv4.tcp_synack_retries = 1 net.ipv4.tcp_syncookies = 1 # keepalive conn net.ipv4.tcp_keepalive_time = 300 net.ipv4.tcp_keepalive_intvl = 30 net.ipv4.tcp_keepalive_probes = 3 net.ipv4.ip_local_port_range = 10001 65000 # swap vm.overcommit_memory = 0 vm.swappiness = 10 #net.ipv4.conf.eth1.rp_filter = 0 #net.ipv4.conf.lo.arp_ignore = 1 #net.ipv4.conf.lo.arp_announce = 2 #net.ipv4.conf.all.arp_ignore = 1 #net.ipv4.conf.all.arp_announce = 2
6、配置文件大小限制
[root@openstack network-scripts]# cat /etc/security/limits.conf #上面省略,以下是重要部分 * soft core unlimited * hard core unlimited * soft nproc 1000000 * hard nproc 1000000 * soft nofile 1000000 * hard nofile 1000000 * soft memlock 32000 * hard memlock 32000 * soft msgqueue 8192000 * hard msgqueue 8192000
7、poweroff关机,保存快照,系统安装完成,设置也完成,此时centos7整个基本配置完成,就可以放到生产中使用了。