3.4. 隔离本地和远程执行配置

此配置会将跃点节点和远程执行节点添加到弹性配置中。可以从跃点节点访问远程执行节点。

如果要在远程位置设置执行节点,或者需要在 DMZ 网络中运行自动化,则可以使用此设置。

[automationcontroller]
aap_c_1.example.com
aap_c_2.example.com

[automationcontroller:vars]
node_type=control
peers=instance_group_local

[execution_nodes]
aap_e_1.example.com
aap_e_2.example.com
aap_h_1.example.com
aap_e_3.example.com

[instance_group_local]
aap_e_1.example.com
aap_e_2.example.com

[hop]
aap_h_1.example.com

[hop:vars]
peers=automationcontroller

[instance_group_remote]
aap_e_3.example.com

[instance_group_remote:vars]
peers=hop

下图显示了此网格网络的拓扑。

The topology map of the configuration consists of an automation controller group, a local execution group, a hop node group, and a remote execution node group.The automation controller group consists of two control nodes: aap_c_1 and aap_c_2.The local execution nodes are aap_e_1 and aap_e_2.Every control node is peered to every local execution node.The hop node group contains one hop node, aap_h_1.It is peered to the controller group.The remote execution node group contains one execution node, aap_e_3.It is peered to the hop node group.

[automationcontroller:vars] 小节为 control plane 中所有节点设置节点类型,并定义控制节点与本地执行节点对等的方式:

  • control plane 中的所有节点都会自动相互连接。
  • control plane 中的所有节点都与所有本地执行节点相对等。

如果一组节点的名称以 instance_group_ 开头,安装程序将它重新创建为实例组,并将它添加到 Ansible Automation Platform 用户界面中。