標籤:lvs+keepalived+httpd配置
NAT模式
#!/bin/bash
#開啟director伺服器上的路由轉寄功能:
echo 1 > /proc/sys/net/ipv4/ip_forward
#關閉icmp的重新導向
echo 0 > /proc/sys/net/ipv4/conf/all/send_redirects
echo 0 > /proc/sys/net/ipv4/conf/default/send_redirects
echo 0 > /proc/sys/net/ipv4/conf/eth0/send_redirects
echo 0 > /proc/sys/net/ipv4/conf/eth1/send_redirects
#director設定nat防火牆
iptables -t nat -F
iptables -t nat -X
iptables -t nat -A POSTROUTING -s 192.168.21.0/24 -j MASQUERADE
#director設定ipvsadm
IPVSADM=‘/sbin/ipvsadm‘
$IPVSADM -C
$IPVSADM -A -t 192.168.31.166:80 -s lc -p 300
$IPVSADM -a -t 192.168.31.166:80 -r 192.168.21.100:80 -m -w 1
DR配置
director上vim /usr/local/sbin/lvs_dr.sh
#!/bin/bash
echo 1 > /proc/sys/net/ipv4/ip_forward
ipv=/sbin/ipvsadm
vip=192.168.31.110
rs1=192.168.31.100
rs2=192.168.31.101
ifconfig eth0:0 $vip broadcast $vip netmask 255.255.255.255 up
route add -host $vip dev eth0:0
$ipv -C
$ipv -A -t $vip:80 -s rr
$ipv -a -t $vip:80 -r $rs1:80 -g -w 1
$ipv -a -t $vip:80 -r $rs2:80 -g -w 1
兩台rs上:vim /usr/local/sbin/lvs_dr_rs.sh
#!/bin/bash
vip=192.168.31.110
ifconfig lo:0 $vip broadcast $vip netmask 255.255.255.255 up
route add -host $vip lo:0
echo "1" >/proc/sys/net/ipv4/conf/lo/arp_ignore
echo "2" >/proc/sys/net/ipv4/conf/lo/arp_announce
echo "1" >/proc/sys/net/ipv4/conf/all/arp_ignore
echo "2" >/proc/sys/net/ipv4/conf/all/arp_announce
環境說明
作業系統Centos 6.4 X86_64
DR1-Master:172.17.0.211
DR2-Backup:172.17.0.212
VIP:172.17.0.210
RealServer1:172.17.0.213
RealServer1:172.17.0.214
1.安裝centos擴充源eple-release
[[email protected] yum.repos.d]# yum -y install epel-releaseyum -y install epel-release
2.安裝IPVS管理工具
[[email protected] yum.repos.d]# yum -y install ipvsadm
3.再DR1和DR2主機上分別安裝keepalived
[[email protected] yum.repos.d]# yum -y install keepalived
4.配置keepalived
[[email protected] ~]# vim /etc/keepalived/keepalived.conf
! Configuration File for keepalived
global_defs {
notification_email {
[email protected]
}
notification_email_from [email protected]
smtp_server 60.207.246.98
smtp_connect_timeout 30
router_id LVS_1
}
vrrp_instance VI_1 {
state MASTER
interface eth0
virtual_router_id 51
priority 100
advert_int 1
authentication {
auth_type PASS
auth_pass 1111
}
virtual_ipaddress {
172.17.0.210
}
}
virtual_server 172.17.0.210 80 {
delay_loop 6
lb_algo wrr
lb_kind DR
nat_mask 255.255.255.0
persistence_timeout 50
protocol TCP
real_server 172.17.0.213 80 {
weight1
TCP_CHECK{
connect_timeout8
nb_get_retry3
delay_before_retry3
connect_port80
}
}
real_server 172.17.0.214 80 {
weight1
TCP_CHECK{
connect_timeout8
nb_get_retry3
delay_before_retry3
connect_port80
}
}
}
5.配置web伺服器,realserver1和realserver2節點
由於採用的是DR方式調度,Real_Server會以LVS的VIP來直接回複Client,所以需要在Real_Server的lo上開啟LVS的VIP來與Client建立通訊
1)yum –y install httpd
[[email protected] ~]# yum -y install httpd
2)在RealServer1和RealServer2上的指令碼realserver.sh:
vim /etc/init.d/realserver.sh
#add for chkconfig
#chkconfig: 2345 70 30 #234都是文本介面,5就是圖形介面X,70啟動順序號,30系統關閉,指令碼
#止順序號
#description: RealServer‘s script #關於指令碼的簡短描述
#processname: realserver.sh #第一個進程名,後邊設定自動時會用到
#!/bin/bash
VIP=172.17.0.210
source /etc/rc.d/init.d/functions
case "$1" in
start)
ifconfig lo:0 $VIP netmask 255.255.255.255 broadcast $VIP
/sbin/route add -host $VIP dev lo:0
echo "1" >/proc/sys/net/ipv4/conf/lo/arp_ignore
echo "2" >/proc/sys/net/ipv4/conf/lo/arp_announce
echo "1" >/proc/sys/net/ipv4/conf/all/arp_ignore
echo "2" >/proc/sys/net/ipv4/conf/all/arp_announce
echo "RealServer Start OK"
;;
stop)
ifconfig lo:0 down
route del $VIP >/dev/null 2>&1
echo "0" >/proc/sys/net/ipv4/conf/lo/arp_ignore
echo "0" >/proc/sys/net/ipv4/conf/lo/arp_announce
echo "0" >/proc/sys/net/ipv4/conf/all/arp_ignore
echo "0" >/proc/sys/net/ipv4/conf/all/arp_announce
echo "RealServer Stoped"
;;
*)
echo "Usage: $0 {start|stop}"
exit 1
esac
exit 0
3)//為realserver.sh添加許可權
[[email protected] ~]# chmod 755 /etc/init.d/realserver.sh
[[email protected] ~]# chmod 755 /etc/init.d/realserver.sh
4)啟動keepalived和realserver.sh指令碼
[[email protected] ~]# /etc/init.d/realserver.sh start
[[email protected] ~]# /etc/init.d/realserver.sh start
[[email protected] ~]# /etc/init.d/keepalived start
[[email protected] ~]# /etc/init.d/keepalived start
5)測試
[[email protected] ~]# ipvsadm -L -n
IP Virtual Server version 1.2.1 (size=4096)
Prot LocalAddress:Port Scheduler Flags
-> RemoteAddress:Port Forward Weight ActiveConn InActConn
TCP 172.17.0.210:80 wrr persistent 50
-> 172.17.0.213:80 Route 1 0 0
-> 172.17.0.214:80 Route 3 0 0
[[email protected] ~]#
[[email protected] keepalived]# ipvsadm -L -n
IP Virtual Server version 1.2.1 (size=4096)
Prot LocalAddress:Port Scheduler Flags
-> RemoteAddress:Port Forward Weight ActiveConn InActConn
TCP 172.17.0.210:80 wrr persistent 50
-> 172.17.0.213:80 Route 1 0 0
-> 172.17.0.214:80 Route 3 0 0
[[email protected] keepalived]#
Linux LVS+Keepalived+Httpd配置
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
