JumpServer
官方网站
项目地址
快速开始
前置准备:
docker
docker-compose
1、创建工作目录
mkdir /opt/jumpserver && cd /opt/jumpserver2. 配置 docker-compose.yml 和环境变量
version: '2.4'
services:
mysql:
image: mariadb:10
container_name: jms_mysql
restart: always
tty: true
environment:
MYSQL_USER: $DB_USER
MYSQL_PASSWORD: $DB_PASSWORD
MYSQL_DATABASE: $DB_NAME
MYSQL_ROOT_PASSWORD: jumpserver@123
volumes:
- /data/jumpserver/mysql-data:/var/lib/mysql
networks:
- net
redis:
image: redis:6
container_name: jms_redis
restart: always
tty: true
command:
- sh
- -c
- redis-server --appendonly yes --requirepass "$REDIS_PASSWORD"
volumes:
- /data/jumpserver/redis-data:/var/lib/redis/
networks:
- net
core:
image: jumpserver/jms_core:${Version}
container_name: jms_core
restart: always
tty: true
command: start web
environment:
SECRET_KEY: $SECRET_KEY
BOOTSTRAP_TOKEN: $BOOTSTRAP_TOKEN
DEBUG: $DEBUG
LOG_LEVEL: $LOG_LEVEL
DB_HOST: $DB_HOST
DB_PORT: $DB_PORT
DB_USER: $DB_USER
DB_PASSWORD: $DB_PASSWORD
DB_NAME: $DB_NAME
REDIS_HOST: $REDIS_HOST
REDIS_PORT: $REDIS_PORT
REDIS_PASSWORD: $REDIS_PASSWORD
healthcheck:
test: "curl -f http://localhost:8080/api/health/"
interval: 10s
timeout: 5s
retries: 3
start_period: 60s
volumes:
- /data/jumpserver/core-data:/opt/jumpserver/data
networks:
- net
celery:
image: jumpserver/jms_core:${Version}
container_name: jms_celery
restart: always
tty: true
command: start task
environment:
SECRET_KEY: $SECRET_KEY
BOOTSTRAP_TOKEN: $BOOTSTRAP_TOKEN
DEBUG: $DEBUG
LOG_LEVEL: $LOG_LEVEL
DB_HOST: $DB_HOST
DB_PORT: $DB_PORT
DB_USER: $DB_USER
DB_PASSWORD: $DB_PASSWORD
DB_NAME: $DB_NAME
REDIS_HOST: $REDIS_HOST
REDIS_PORT: $REDIS_PORT
REDIS_PASSWORD: $REDIS_PASSWORD
depends_on:
core:
condition: service_healthy
healthcheck:
test: "/opt/py3/bin/python /opt/jumpserver/apps/manage.py check_celery"
interval: 10s
timeout: 10s
retries: 3
start_period: 30s
volumes:
- /data/jumpserver/core-data:/opt/jumpserver/data
networks:
- net
koko:
image: jumpserver/jms_koko:${Version}
container_name: jms_koko
restart: always
privileged: true
tty: true
environment:
CORE_HOST: http://core:8080
BOOTSTRAP_TOKEN: $BOOTSTRAP_TOKEN
LOG_LEVEL: $LOG_LEVEL
depends_on:
core:
condition: service_healthy
healthcheck:
test: "nc -z localhost 2222 && nc -z localhost 5000"
interval: 10s
timeout: 5s
retries: 3
start_period: 10s
volumes:
- /data/jumpserver/koko-data:/opt/koko/data
ports:
- 2222:2222
networks:
- net
lion:
image: jumpserver/jms_lion:${Version}
container_name: jms_lion
restart: always
tty: true
environment:
CORE_HOST: http://core:8080
BOOTSTRAP_TOKEN: $BOOTSTRAP_TOKEN
LOG_LEVEL: $LOG_LEVEL
depends_on:
core:
condition: service_healthy
healthcheck:
test: "/etc/init.d/guacd status && curl -f http://localhost:8081/lion/health/"
interval: 10s
timeout: 5s
retries: 3
start_period: 10s
volumes:
- /data/jumpserver/lion-data:/opt/lion/data
networks:
- net
nginx:
image: jumpserver/jms_nginx:${Version}
container_name: jms_nginx
restart: always
tty: true
depends_on:
core:
condition: service_healthy
healthcheck:
test: "curl -f http://localhost"
interval: 10s
timeout: 5s
retries: 3
start_period: 10s
volumes:
- /data/jumpserver/core-data:/opt/jumpserver/data
ports:
- 80:80
networks:
- net
networks:
net:
driver: bridge
ipam:
driver: default
config:
- subnet: $DOCKER_SUBNET
2、启动 jumpserver
docker-compose up -d使用
浏览器访问 http://<ip>:80
SSH命令行访问 ssh -p 2222 <ip>
默认登录账密 admin/admin
最后更新于