標籤:oca conda 系統內容 3.4 server san switch 允許 管理員
一、安裝環境:#mkdir -p /home/mongodb/data/
#mkdir –p /home/mongodb/logs
節點1配置:
#資料檔案存放目錄
dbpath = /opt/mongodb/data/
#記錄檔存放目錄
logpath = /opt/mongodb/logs/mongodb.logs
#連接埠
#bind_ip = 172.16.88.195 預設監聽本地,注釋監聽所有
port = 27027
#以精靈的方式啟用,即在後台運行
fork = true
pidfilepath = /opt/mongodb/27027.pid
#是否禁止http介面,即28017 連接埠開啟的服務。預設false,支援
#nohttpinterface = true
logappend = true
oplogSize = 200
#directoryperdb = true
replSet = test
httpinterface = true
rest = true
replIndexPrefetch = _id_only
節點2配置:
#資料檔案存放目錄
dbpath = /home/mongodb/data/
#記錄檔存放目錄
logpath = /home/mongodb/logs/mongodb.logs
#連接埠
port = 27027
#bind_ip= 172.16.88.196 預設監聽本地,注釋監聽所有
#以精靈的方式啟用,即在後台運行
fork = true
pidfilepath = /home/mongodb/27027.pid
#是否禁止http介面,即28017 連接埠開啟的服務。預設false,支援
#nohttpinterface = true
logappend = true
oplogSize = 200
#directoryperdb = true
replSet = test
httpinterface = true
節點3配置:
#資料檔案存放目錄
dbpath = /home/mongodb/data/
#記錄檔存放目錄
logpath = /home/mongodb/logs/mongodb.logs
#連接埠
#bind_ip = 172.16.88.190 預設監聽本地,注釋監聽所有
port = 27027
#以精靈的方式啟用,即在後台運行
fork = true
#是否禁止http介面,即28017 連接埠開啟的服務。預設false,支援
#nohttpinterface = true
httpinterface = true
pidfilepath = /home/mongodb/27027.pid
logappend = true
oplogSize = 200
#directoryperdb = true
replSet = test
rest = true
replIndexPrefetch = _id_only
在各個節點啟動mongodb:/usr/localmongodb/bin/mongod -f /etc/mongodb.conf
登入:/usr/localmongodb/bin/mongo 172.16.88.190: 27027/admin
config = {
"_id":"test",
members:[
{"_id":0,host:"172.16.88.196:27027"},
{"_id":1,host:"172.16.88.190:27027"},
{"_id":2,host:"172.16.88.195:27027"}]
}
rs.initiate(config); ####初始化叢集
--查看複製整合員
config.members
主節點建立庫表:
test:PRIMARY> db.stu.insert({"name":"zhangsan","age":23})
副節點同步:
test:SECONDARY> rs.slaveOk()
test:SECONDARY> use test
switched to db test
test:SECONDARY> show collections
stu
停止一台mongodb ,查看選舉情況
rs.status()
因為從節點預設是不允許讀寫的,解決這個問題,有兩種方式
- 在從節點上執行rs.slaveOk()
- 或者在主節點上執行db.getMongo().setSlaveOk()
三、使用者建立
1.建立管理使用者admin:
db.createUser({
user:"admin",
pwd:"123456",
roles:
[
{
role:"userAdminAnyDatabase",
db:"admin"
},
{
role:"readWriteAnyDatabase",
db:"admin"
},
{
role:"dbAdminAnyDatabase",
db:"admin"
},
{
role:"root",
db:"admin"
}
]})
2.建立devops使用者(讀寫權限):
db.createUser(
{
user: "devops",
pwd: "2wsx#EDC",
roles: [ { role: "readWriteAnyDatabase", db: "admin" } ]
}
);
三、auth 認證:
1.建立認證檔案
openssl rand -base64 64 > /home/mongodb/keyfile.data
將/home/mongodb/keyfile.data 複製到另外兩節點的該目錄下:
scp /home/mongodb/keyfile.data [email protected]$ip: /home/mongodb/
修改其許可權為: chmod 600 /home/mongodb/keyfile.data
2.修改配置
在各個節點的設定檔中加入:
keyFile = /home/mongodb/keyfile.data
auth = true
重啟 mongodb
/usr/localmongodb/bin/mongod -f /etc/mongodb.conf
3.登入授權
登入mongodb
/usr/localmongodb/bin/mongo 172.16.88.190: 27027/admin
授權:db.auth(“admin”,”123456”)
db.auth(“devops”,”2wsx#EDC”)
退出quit();
使用admin使用者登入:
/usr/localmongodb/bin/mongo 172.16.88.190: 27027/admin -u admin –p 123456
使用devops使用者登入:
/usr/localmongodb/bin/mongo 172.16.88.190: 27027/admin -u devops –p 2wsx#EDC
複製集認證完成
注意:在從節點操作時需要先執行: rs.slaveOk()
4.配置hosts:
vi /etc/hosts
172.16.88.195 mongo.slave0.56xyl.com
172.16.88.196 mongo.slave1.56xyl.com
172.16.88.190 mongo.slave2.56xyl.com
mongodb複製集部署文檔
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
