18.1 集群介绍

根据功能划分为两大类:高可用和负载均衡
高可用集群通常为两台服务器,一台工作,另外一台作为冗余,当提供服务的机器宕机,冗余将接替继续提供服务
实现高可用的开源软件有:heartbeat、keepalived
负载均衡集群,需要有一台服务器作为分发器,它负责把用户的请求分发给后端的服务器处理,在这个集群里,除了分发器外,就是给用户提供服务的服务器了,这些服务器数量至少为2
实现负载均衡的开源软件有LVS、keepalived、haproxy、nginx,商业的有F5、Netscaler

18.2 keepalived介绍

在这里我们使用keepalived来实现高可用集群,因为heartbeat在centos6上有一些问题,影响实验效果
keepalived通过VRRP(Virtual Router Redundancy Protocl)来实现高可用。
在这个协议里会将多台功能相同的路由器组成一个小组,这个小组里会有1个master角色和N(N>=1)个backup角色。
master会通过组播的形式向各个backup发送VRRP协议的数据包,当backup收不到master发来的VRRP数据包时,就会认为master宕机了。此时就需要根据各个backup的优先级来决定谁成为新的mater。
Keepalived要有三个模块,分别是core、check和vrrp。其中core模块为keepalived的核心,负责主进程的启动、维护以及全局配置文件的加载和解析,check模块负责健康检查,vrrp模块是来实现VRRP协议的。

18.3-4-5 用keepalived配置高可用集群

用keepalived配置高可用

准备两台机器130和132,130作为master,132作为backup
两台机器都执行yum install -y keepalived
两台机器都安装nginx,其中130上已经编译安装过nginx,132上需要yum安装nginx: yum install -y nginx
设定vip为100编辑130上keepalived配置文件master_keepalived.conf130编辑监控脚本,内容从https://coding.net/u/aminglinux/p/aminglinux-book/git/blob/master/D21Z/master_check_ng.sh获取
给脚本755权限
systemctl start  keepalived 130启动服务132上编辑配置文件,内容从https://coding.net/u/aminglinux/p/aminglinux-book/git/blob/master/D21Z/backup_keepalived.conf获取132上编辑监控脚本,内容从https://coding.net/u/aminglinux/p/aminglinux-book/git/blob/master/D21Z/backup_check_ng.sh获取
给脚本755权限
132上也启动服务 systemctl start keepalived

测试高可用

先确定好两台机器上nginx差异,比如可以通过curl -I 来查看nginx版本
测试1:关闭master上的nginx服务
测试2:在master上增加iptabls规则
iptables -I OUTPUT -p vrrp -j DROP
测试3:关闭master上的keepalived服务
测试4:启动master上的keepalived服务

操作过程

[root@linux-01 ~]# yum install -y keepalived
[root@linux-02 ~]# yum install -y keepalived

01号机已源码安装过nginx
[root@linux-02 ~]# yum install -y nginx

主机器配置

[root@linux-01 ~]# ls /etc/keepalived/keepalived.conf
/etc/keepalived/keepalived.conf
[root@linux-01 ~]# cat /etc/keepalived/keepalived.conf

[root@linux-01 ~]# > /etc/keepalived/keepalived.conf
[root@linux-01 ~]# vim /etc/keepalived/keepalived.conf
global_defs {
notification_email {br/>aming@aminglinux.com
}
notification_email_from root@aminglinux.com
smtp_server 127.0.0.1
smtp_connect_timeout 30
router_id LVS_DEVEL
}
vrrp_script chk_nginx {
script "/usr/local/sbin/check_ng.sh"
interval 3
}
vrrp_instance VI_1 {
state MASTER
interface ens33
virtual_router_id 51
priority 100
advert_int 1
authentication {
auth_type PASS
auth_pass aminglinux>com
}
virtual_ipaddress {
192.168.106.100
}
track_script {
chk_nginx
}
}

[root@linux-01 ~]# vim /usr/local/sbin/checkng.sh
#!/bin/bash
#时间变量,用于记录日志
d=`date --date today +%Y%m%d%H:%M:%S<br/>#计算nginx进程数量<br/>n=ps -C nginx --no-heading|wc -l<br/>#如果进程为0,则启动nginx,并且再次检测nginx进程数量,<br/>#如果还为0,说明nginx无法启动,此时需要关闭keepalived<br/>if [ $n -eq "0" ]; then<br/>/etc/init.d/nginx start<br/>n2=ps -C nginx --no-heading|wc -l`
if [ $n2 -eq "0" ]; then
echo "$d nginx down,keepalived will stop" >> /var/log/check_ng.log
systemctl stop keepalived
fi
fi

[root@linux-01 ~]# chmod 755 /usr/local/sbin/check_ng.sh
[root@linux-01 ~]# systemctl start keepalived

[root@linux-01 ~]# ps aux|grep keepalived
root 10818 0.0 0.0 120740 1400 ? Ss 02:18 0:00 /usr/sbin/keepalived -D
root 10819 0.0 0.1 127476 3264 ? S 02:18 0:00 /usr/sbin/keepalived -D
root 10820 0.0 0.1 131780 3120 ? S 02:18 0:00 /usr/sbin/keepalived -D
root 10884 0.0 0.0 112676 984 pts/0 R+ 02:18 0:00 grep --color=auto keepalived

[root@linux-01 ~]# ps aux|grep nginx
root 1003 0.0 0.0 45988 1308 ? Ss 01:15 0:00 nginx: master process /usr/local/nginx/sbin/nginx -c /usr/local/nginx/conf/nginx.conf
nobody 1007 0.0 0.2 48476 3948 ? S 01:15 0:00 nginx: worker process
nobody 1009 0.0 0.2 48476 3948 ? S 01:15 0:00 nginx: worker process
root 10904 0.0 0.0 112676 984 pts/0 R+ 02:18 0:00 grep --color=auto nginx

[root@linux-01 ~]# /etc/init.d/nginx stop
Stopping nginx (via systemctl): [ 确定 ]

[root@linux-01 ~]# ps aux|grep nginx
root 11878 0.0 0.0 112676 984 pts/0 R+ 02:24 0:00 grep --color=auto nginx
[root@linux-01 ~]# ps aux|grep nginx
root 11880 0.0 0.0 112676 984 pts/0 R+ 02:24 0:00 grep --color=auto nginx
[root@linux-01 ~]# ps aux|grep nginx
root 11893 0.0 0.0 112676 984 pts/0 R+ 02:24 0:00 grep --color=auto nginx
[root@linux-01 ~]# ps aux|grep nginx
root 12674 0.0 0.0 112676 980 pts/0 R+ 02:28 0:00 grep --color=auto nginx
[root@linux-01 ~]# date
2018年 04月 15日 星期日 02:28:29 CST

[root@linux-01 ~]# ip add
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN qlen 1
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: ens33: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
link/ether 00:0c:29:40:24:3d brd ff:ff:ff:ff:ff:ff
inet 192.168.106.160/24 brd 192.168.106.255 scope global ens33
valid_lft forever preferred_lft forever
inet 192.168.106.100/32 scope global ens33

[root@linux-01 ~]# systemctl stop firewalld
[root@linux-01 ~]# iptables -nvL
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination

Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination

[root@linux-01 ~]# getenforce
Enforcing
[root@linux-01 ~]# setenforce 0
[root@linux-01 ~]# getenforce
Permissive

从机器配置

[root@linux-02 ~]# systemctl stop firewalld.service
[root@linux-02 ~]# iptables -nvL
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination

Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination

[root@linux-02 ~]# getenforce
Enforcing
[root@linux-02 ~]# setenforce 0
[root@linux-02 ~]# getenforce
Permissive

[root@linux-02 ~]# vim /etc/keepalived/keepalived.conf
global_defs {
notification_email {br/>aming@aminglinux.com
}
notification_email_from root@aminglinux.com
smtp_server 127.0.0.1
smtp_connect_timeout 30
router_id LVS_DEVEL
}
vrrp_script chk_nginx {
script "/usr/local/sbin/check_ng.sh"
interval 3
}
vrrp_instance VI_1 {
state BACKUP
interface ens33
virtual_router_id 51
priority 90
advert_int 1
authentication {
auth_type PASS
auth_pass aminglinux>com
}
virtual_ipaddress {
192.168.106.100
}
track_script {
chk_nginx
}
}

[root@linux-02 ~]# vim /usr/local/sbin/checkng.sh
#时间变量,用于记录日志
d=`date --date today +%Y%m%d%H:%M:%S<br/>#计算nginx进程数量<br/>n=ps -C nginx --no-heading|wc -l<br/>#如果进程为0,则启动nginx,并且再次检测nginx进程数量,<br/>#如果还为0,说明nginx无法启动,此时需要关闭keepalived<br/>if [ $n -eq "0" ]; then<br/>systemctl start nginx<br/>n2=ps -C nginx --no-heading|wc -l`
if [ $n2 -eq "0" ]; then
echo "$d nginx down,keepalived will stop" >> /var/log/check_ng.log
systemctl stop keepalived
fi
fi

[root@linux-02 ~]# chmod 755 /usr/local/sbin/check_ng.sh

[root@linux-02 ~]# systemctl start keepalived.service

[root@linux-02 ~]# ps aux|grep keepalived
root 1681 0.0 0.0 120740 1408 ? Ss 20:19 0:00 /usr/sbin/keepalived -D
root 1682 0.0 0.1 127476 3272 ? S 20:19 0:00 /usr/sbin/keepalived -D
root 1683 0.0 0.1 131780 3128 ? S 20:19 0:00 /usr/sbin/keepalived -D
root 1753 0.0 0.0 112676 988 pts/0 R+ 20:19 0:00 grep --color=auto keepalived

[root@linux-02 ~]# ps aux|grep nginx
root 1706 0.0 0.1 122908 2108 ? Ss 20:19 0:00 nginx: master process /usr/sbin/nginx
nginx 1707 0.0 0.1 123292 3136 ? S 20:19 0:00 nginx: worker process
root 1813 0.0 0.0 112676 984 pts/0 R+ 20:19 0:00 grep --color=auto nginx

浏览器打开 192.168.106.160 显示 This is default site.

[root@linux-01 ~]# cat /usr/local/nginx/conf/vhost/
aaa.com.conf load.conf proxy.conf ssl.conf test.com.conf

[root@linux-01 ~]# cat /usr/local/nginx/conf/vhost/aaa.com.conf
server
{
listen 80 default_server;
server_name aaa.com;
index index.html index.htm index.php;
root /data/wwwroot/default;
location ~ .php$
{
include fastcgi_params;
fastcgi_pass unix:/tmp/aming.sock;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME /data/wwwroot/default$fastcgi_script_name;
}
}

[root@linux-01 ~]# cat /data/wwwroot/default/index.html
This is default site.

[root@linux-02 ~]# echo "backup backup" > /usr/share/nginx/html/index.html
[root@linux-02 ~]# cat /usr/share/nginx/html/index.html
backup backup

浏览器打开 192.168.106.165 显示 backup backup

浏览器打开 http://192.168.106.100/ 显示 This is default site.

测试主从切换

[root@linux-01 ~]# systemctl stop keepalived.service

[root@linux-02 ~]# tail /var/log/messages
Apr 14 20:48:16 linux-02 Keepalived_vrrp[1683]: Sending gratuitous ARP on ens33 for 192.168.106.100
Apr 14 20:48:16 linux-02 Keepalived_vrrp[1683]: Sending gratuitous ARP on ens33 for 192.168.106.100
Apr 14 20:48:16 linux-02 Keepalived_vrrp[1683]: Sending gratuitous ARP on ens33 for 192.168.106.100
Apr 14 20:48:16 linux-02 Keepalived_vrrp[1683]: Sending gratuitous ARP on ens33 for 192.168.106.100
Apr 14 20:48:21 linux-02 Keepalived_vrrp[1683]: Sending gratuitous ARP on ens33 for 192.168.106.100
Apr 14 20:48:21 linux-02 Keepalived_vrrp[1683]: VRRP_Instance(VI_1) Sending/queueing gratuitous ARPs on ens33 for 192.168.106.100
Apr 14 20:48:21 linux-02 Keepalived_vrrp[1683]: Sending gratuitous ARP on ens33 for 192.168.106.100
Apr 14 20:48:21 linux-02 Keepalived_vrrp[1683]: Sending gratuitous ARP on ens33 for 192.168.106.100
Apr 14 20:48:21 linux-02 Keepalived_vrrp[1683]: Sending gratuitous ARP on ens33 for 192.168.106.100
Apr 14 20:48:21 linux-02 Keepalived_vrrp[1683]: Sending gratuitous ARP on ens33 for 192.168.106.100

浏览器打开 http://192.168.106.100/ 显示 backup backup

[root@linux-01 ~]# systemctl start keepalived.service

[root@linux-01 ~]# tail /var/log/messages
Apr 15 03:13:30 linux-01 Keepalived_vrrp[18517]: Sending gratuitous ARP on ens33 for 192.168.106.100
Apr 15 03:13:30 linux-01 Keepalived_vrrp[18517]: Sending gratuitous ARP on ens33 for 192.168.106.100
Apr 15 03:13:30 linux-01 Keepalived_vrrp[18517]: Sending gratuitous ARP on ens33 for 192.168.106.100
Apr 15 03:13:30 linux-01 Keepalived_vrrp[18517]: Sending gratuitous ARP on ens33 for 192.168.106.100
Apr 15 03:13:35 linux-01 Keepalived_vrrp[18517]: Sending gratuitous ARP on ens33 for 192.168.106.100
Apr 15 03:13:35 linux-01 Keepalived_vrrp[18517]: VRRP_Instance(VI_1) Sending/queueing gratuitous ARPs on ens33 for 192.168.106.100

浏览器打开 http://192.168.106.100/ 显示 This is default site.

转载于:https://blog.51cto.com/9298822/2118844

2018-05-21 Linux学习相关推荐

  1. 顺无盘linux win10包,(2018.05.21)云更新2016正式版x86_2016.10.15.4976无盘xp-win7x32-x64-win10x64公包...

    官方2016.12.6更新版本修正各BUG (服务端支持x86 32位系统) Win10,ltsb企业版 2017.3.3更改三层地址,改善不配问题. 重新修改补丁,使其更稳定解决个别提示客户端配套问 ...

  2. Microsoft Artificial Intelligence Conference(2018.05.21)

    时间:2018.05.21 地点:北京嘉丽大酒店 转载于:https://www.cnblogs.com/xuefeng1982/p/10335943.html

  3. [2019.05.09]Linux 学习笔记(3)

    最近的心得: CLI真好用,GUI就是渣渣 1. Bash 里面的命令是可以起别名的,起一个别名的方法是 alias [Alias]=[command] command可以是任意长的别名,比如 ali ...

  4. Linux学习笔记---命令篇

    Linux学习笔记-命令篇 本笔记是根据尚硅谷的Linux视频,经过自己的总结得出来的笔记,分为两个大章节,一-四章讲的是Linux的文件目录结构.vim编辑器.网络配置和系统管理.进程和服务.第二个 ...

  5. Linux 学习--一篇就学懂Linux(万字长文)

    Linux 学习笔记 Linux 学习笔记 一. 常用命令 LINUX常用操作命令和命令行编辑快捷键 终端快捷键: Ctrl + a/Home 切换到命令行开始 Ctrl + e/End 切换到命令行 ...

  6. Linux学习之CentOS(三十四)--配置域主DNS服务器

    在上一篇随笔里 Linux学习之CentOS(三十三)--DNS基础及域名系统架构,讲解了DNS的一些基础知识以及域名系统架构,在本篇随笔里将详细地讲解主DNS服务器的配置... 一.DNS服务器的类 ...

  7. Linux学习笔记-文件权限与路径

    Linux学习笔记-文件与目录 目前从电子信息科学与技术转到了计算机专业,因此想趁着大四比较闲的时候补一些计算机的知识.我想说:你好,生活[斜眼笑]!愿生活温柔以待!哈哈,这是我写的第一篇博客,谨以此 ...

  8. Linux学习笔记3

    Linux学习笔记3 Linux学习笔记3 安装setup工具 CentOS 7 下的网络配置工具 查询安装版本 显示有多少终端登录 使用putty和ssh远程登录服务器 Putty出现Disconn ...

  9. Linux学习-96-win和vmware的linux系统之间文件传递

    19.5 win和vmware的linux系统之间文件传递 Linux虚拟机与Window主机之间进行文件传输:需要在虚拟机安装VMware Tools才能实现Linux虚拟机和Windows主机之间 ...

  10. Linux学习-17-rpm查询软件包命令(-q、-qa、-i、-p、-l、-f、-R)

    7.4 Linux rpm查询软件包命令(-q.-qa.-i.-p.-l.-f.-R) rpm 命令还可用来对 RPM 软件包做查询操作,具体包括: 查询软件包是否已安装: 查询系统中所有已安装的软件 ...

最新文章

  1. Android热补丁技术—dexposed原理简析(手机淘宝采用方案)
  2. 深度 | 人工智能的游戏征途:超级玛丽简直小菜一碟,星际争霸、LOL才是大boss...
  3. WP7-网络-读取网页源码
  4. 30道四则运算题目---课堂作业--软件工程c++
  5. NTU 课程笔记:self-supervised learning
  6. VMware虚拟机Ubuntu系统与物理机Windows 7系统共享文件夹
  7. Codeup-问题 C: 畅通工程
  8. oracle学习数据,Oracle从入门到精通的学习笔记
  9. js 一些的数组的方法
  10. JavaWeb——Servlet开发3
  11. Word Count Example of Hadoop V1.0 – Mapper的实现
  12. 数据库 备份 压缩
  13. 知识星球限时优惠活动,速进!
  14. 沈阳自贸区促先进制造业发展 企业可获奖千万元
  15. 卡方检验c语言算法,R语言 | 卡方检验(Chi-squaretest)
  16. 利用 confluence 打造属于自己的知识库
  17. 推荐系统系列:新浪搜索团队FiBiNET理论和代码实现
  18. python支付系统_cardutil-用于处理支付卡系统的Python包-Anthony Delosa
  19. Ajax----跨域请求
  20. linux课程班兰州,兰州云计算培训,兰州计算机培训班,兰州计算机培训哪家比较好...

热门文章

  1. 插件合并css,Yii安装EClientScript插件扩展实现css,js文件代码压缩合并加载功能
  2. php砸金蛋程序,简单的几句PHP生成美团3周年砸金蛋抽奖代码
  3. em gmm matlab,EM方法解高斯混合模型(GMM)Matlab实现
  4. WPS怎么统计相同名称的数据_批量操作同一格式的多表格汇总统计
  5. c++ vector、stack、queue、map用法总结
  6. Starting MySQL ERROR! Couldn't find MySQL server (/usr/local/mysql/bin/mysqld_safe)
  7. 算法:管窥算法-零子数组
  8. java-乐观锁与悲观锁
  9. 基于RDP瘦客户机协议的简要说明
  10. UIImageView只显示一半