Preparation⚓︎
1 Overall Deployment Instructions⚓︎
Environment Instruction
- For high availability of components other than JumpServer itself, please refer to the corresponding official documentation for deployment.
- After deploying according to this method, you only need to scale JumpServer nodes as needed and then add the nodes to HAProxy.
- If you already have an HLB (Hardware Load Balancer) or SLB (Software Load Balancer), you can skip deploying HAProxy. However, when using a third-party LB (Load Balancer), pay attention to session and websocket issues.
- If you already have cloud storage (S3/Ceph/Swift/OSS/Azure), you can skip deploying MinIO. The same applies to MySQL and Redis.
- In a production environment, it's advisable to use alternatives like Ceph instead of NFS or deploy high availability NFS to prevent single points of failure.
1.1 Database Requirements⚓︎
| Name | Version | Default char set | Default char coding | TLS/SSL |
|---|---|---|---|---|
| MySQL | >= 5.7 | utf8 | utf8_general_ci | |
| MariaDB | >= 10.6 | utf8mb3 | utf8mb3_general_ci |
| Name | Version | Sentinel | Cluster | TLS/SSL |
|---|---|---|---|---|
| Redis | >= 6.0 |
1.2 Server Requirement⚓︎
| Service name | IP Address | port | The components/services involved include: | Minimize hardware configuration | Standard hardware configuration |
|---|---|---|---|---|---|
| NFS | 192.168.100.11 | - | Core | 2Core/8GB RAM/100G HDD | 4Core/16GB RAM/1T SSD |
| MySQL | 192.168.100.11 | 3306 | Core | 2Core/8GB RAM/90G HDD | 4Core/16GB RAM/1T SSD |
| Redis | 192.168.100.11 | 6379 | Core, Koko, Lion | 2Core/8GB RAM/90G HDD | 4Core/16GB RAM/1T SSD |
| HAProxy | 192.168.100.100 | 80,443,2222,33060,33061 | All | 2Core/4GB RAM/60G HDD | 4Core/8GB RAM/60G SSD |
| JumpServer 01 | 192.168.100.21 | 80,2222,33060,33061 | HAProxy | 2Core/8GB RAM/60G HDD | 4Core/8GB RAM/90G SSD |
| JumpServer 02 | 192.168.100.22 | 80,2222,33060,33061 | HAProxy | 2Core/8GB RAM/60G HDD | 4Core/8GB RAM/90G SSD |
| JumpServer 03 | 192.168.100.23 | 80,2222,33060,33061 | HAProxy | 2Core/8GB RAM/60G HDD | 4Core/8GB RAM/90G SSD |
| JumpServer 04 | 192.168.100.24 | 80,2222,33060,33061 | HAProxy | 2Core/8GB RAM/60G HDD | 4Core/8GB RAM/90G SSD |
| MinIO | 192.168.100.41 | 9000,9001 | Core, KoKo, Lion | 2Core/4GB RAM/100G HDD | 4Core/8GB RAM/1T SSD |
| Elasticsearch | 192.168.100.51 | 9200,9300 | Core, KoKo | 2Core/4GB RAM/100G HDD | 4Core/8GB RAM/1T SSD |
1.3 Components' health check⚓︎
| Service name | Healthe check | Instance |
|---|---|---|
| Core | http://core:8080/api/health/ | https://demo.jumpserver.org/api/health/ |
| KoKo | http://koko:5000/koko/health/ | https://demo.jumpserver.org/koko/health/ |
| Lion | http://lion:8081/lion/health/ | https://demo.jumpserver.org/lion/health/ |
2 Deployment Procedure⚓︎
-
Deploy NFS
-
Deploy MySQL
-
Deploy Redis
-
Deploy JumpServer node 01
-
Deploy JumpServer node 02
-
Deoloy JumpServer node 03
-
Deploy JumpServer node 04
-
Deploy HAProxy
-
Deploy MinIO
-
Deploy Elasticsearch