Linux集群架构(1)集群介绍、keepalived介绍、用keepalived配置高可用集群
集群介绍http://s1.运维网.com/images/20180426/1524733788540298.png
这些实现高可用和负载均衡的都是软件,是为我们在服务器上的服务所作用的。
keepalived介绍
http://s1.运维网.com/images/20180425/1524657257979682.png
用keepalived配置高可用集群
在nginx上实现高可用:
http://s1.运维网.com/images/20180426/1524739888789780.png
准备工作:
准备两台机器133和134,133作为master(主),134作为backup(备用)
两台机器都执行yum install -y keepalived
两台机器都安装nginx,其中133上已经编译安装过nginx,134上需要yum安装nginx: yum install -y nginx
!!(133机器的nginx是使用二进制的源码包安装的,而134机器的nginx是用yum 安装的
,因此总会有区别的,例如在启动服务的时候和使用二进制源码包安装的nginx服务在启动时,可以
使用 /etc/init.d nginx start启动服务(前提是该服务的服务启动文件放在这里),也可以用
systemctl start nginx启动服务。而使用yum安装的nginx只能用:systemctl start nginx启动服务)
一、配置master
1.修改主上master的keepalived配置文件:
下载后的keepalived配置文件在/etc/keepalived/
http://s1.运维网.com/images/20180426/1524740822405004.png
(编辑133上keepalived配置文件,内容从https://coding.net/u/aminglinux/p/aminglinux-book/git/blob/master/D21Z/master_keepalived.conf获取)
(1)先清除keepalived配置文件内容:
>/etc/keepalived/keepalived.conf
(2)vim /etc/keepalived/keepalived.conf,添加内容:
global_defs {
notification_email {
cansheng@740183413@qq.com
}
notification_email_from root@740183413@qq.com
smtp_server 127.0.0.1
smtp_connect_timeout 30
router_id LVS_DEVEL
}
vrrp_script chk_nginx {
script "/usr/local/sbin/check_ng.sh"
interval 3
}
vrrp_instance VI_1 {
state MASTER
interface ens33
virtual_router_id 51
priority 100
advert_int 1
authentication {
auth_type PASS
auth_pass cansheng123456
}
virtual_ipaddress {
192.168.136.100
}
track_script {
chk_nginx
}
}
http://s1.运维网.com/images/20180426/1524742810512262.png
VIP:虚拟ip,这个IP是由keepalived给服务器配置上的,服务器靠这个VIP
对外提供服务,当master机器宕机,VIP被分配上backup上,这样就能保证服务运作。
2.编写监控脚本(检测服务nginx)
(内容从https://coding.net/u/aminglinux/p/aminglinux-book/git/blob/master/D21Z/master_check_ng.sh获取)
脚本的路径,在配置文件中指定了:
http://s1.运维网.com/images/20180426/1524743355321611.png
#!/bin/bash
#时间变量,用于记录日志
d=`date --date today +%Y%m%d_%H:%M:%S`
#计算nginx进程数量
n=`ps -C nginx --no-heading|wc -l`
#如果进程为0,则启动nginx,并且再次检测nginx进程数量,
#如果还为0,说明nginx无法启动,此时需要关闭keepalived
if [ $n -eq "0" ]; then
/etc/init.d/nginx start
n2=`ps -C nginx --no-heading|wc -l`
if [ $n2 -eq "0"]; then
echo "$d nginx down,keepalived will stop" >> /var/log/check_ng.log
systemctl stop keepalived
fi
fi
http://s1.运维网.com/images/20180426/1524743588510227.png
当主master的nginx服务不能启动则要关闭keepalived,不然则会主从出现脑裂
修改脚本的权限:
chmod 755 /usr/local/sbin/check_ng.sh
3.启动keepalived:
systemctl start keepalived
http://s1.运维网.com/images/20180426/1524750482225764.png
4.测试一下该脚本:
先关闭 nginx ,判断是否会自动启动。
/etc/init.d/nginx stop
http://s1.运维网.com/images/20180426/1524751205611793.png
可以看出,关闭了nginx 。脚本会执行,自动执行开启nginx服务
5.检查VIP是否加载了在网卡ip:
ip addr(只能用这个命令查看,ifconfig不能看到。)
http://s1.运维网.com/images/20180426/1524751408795893.png
二、配置从backup
配置前先检查两台机器的防火墙和selinux。要关闭
http://s1.运维网.com/images/20180426/1524751710168530.png
1.编辑keepalived配置文件
先清空自带内容:> /etc/keepalived/keepalived.conf
vim /etc/keepalived/keepalived.conf
(编辑配置文件,内容从https://coding.net/u/aminglinux/p/aminglinux-book/git/blob/master/D21Z/backup_keepalived.conf获取)
内容:
global_defs {
notification_email {
cansheng@740183413@qq.com
}
notification_email_from root@740183413@qq.com
smtp_server 127.0.0.1
smtp_connect_timeout 30
router_id LVS_DEVEL
}
vrrp_script chk_nginx {
script "/usr/local/sbin/check_ng.sh"
interval 3
}
vrrp_instance VI_1 {
state BACKUP
interface ens33
virtual_router_id 51
priority 90
advert_int 1
authentication {
auth_type PASS
auth_pass cansheng123
}
virtual_ipaddress {
192.168.136.100
}
track_script {
chk_nginx
}
}
http://s1.运维网.com/images/20180426/1524752262169570.png
2.编写监控监本:
vim /usr/local/sbin/check_ng.sh
内容从https://coding.net/u/aminglinux/p/aminglinux-book/git/blob/master/D21Z/backup_check_ng.sh获取
内容:
#时间变量,用于记录日志
d=`date --date today +%Y%m%d_%H:%M:%S`
#计算nginx进程数量
n=`ps -C nginx --no-heading|wc -l`
#如果进程为0,则启动nginx,并且再次检测nginx进程数量,
#如果还为0,说明nginx无法启动,此时需要关闭keepalived
if [ $n -eq "0" ]; then
systemctl start nginx
n2=`ps -C nginx --no-heading|wc -l`
if [ $n2 -eq "0"]; then
echo "$d nginx down,keepalived will stop" >> /var/log/check_ng.log
systemctl stop keepalived
fi
fi
编写完脚本修改其权限:
chmod 755 /usr/local/sbin/check_ng.sh
3.开启 keepalived服务:
systemctl start keepalived
http://s1.运维网.com/images/20180426/1524752894631012.png
现在主和从都有nginx
浏览器查看:
主:192.168.136.133
http://s1.运维网.com/images/20180426/1524753206453908.png
从:192.168.136.134
(因为nginx是使用yum安装的,所以默认页的路径/usr/share/nginx/html/index.html)
http://s1.运维网.com/images/20180426/1524753413102010.png
测试:
判断标准:查看VIP 访问的是那个机器的默认页
192.168.136.100
http://s1.运维网.com/images/20180426/1524753696432728.png
说明这时VIP在master上
测试高可用
http://s1.运维网.com/images/20180426/1524753874763958.png
测试1:关闭master上的nginx服务
关闭后nginx服务能自动启动,只要keepalived服务启动则加载监控脚本。
测试2:在master上增加iptabls规则 :
iptables -I OUTPUT -p vrrp -j DROP
http://s1.运维网.com/images/20180426/1524754182362513.png
http://s1.运维网.com/images/20180426/1524754434382154.png
此时数据已经发生脑裂
(测试后清空 iptables -F)
测试3:关闭master上的keepalived服务:
VIP 释放,从backup得到VIP.浏览器上访问VIP则访问到
backup的机器的默认页。
一般搭建高可用都是使用两台机器,如果是多台机器则在配置文件中,只要修改权重不同就行了。
MySQL做高可用,要保持数据一致才行。
master和backup的keepalived的配置文件中的网卡名字是同一个,这个没有影响吗?backup主机上要是没有那个网卡,keepalived是怎么处理的。
可自配,例如master上叫eth0,backup上叫eth1,在配置文件中指定即可。
页:
[1]