Lvs+Keepalived构建双机高可用
应用IP地址网关Vip公网地址
Virtual IP10.0.1.100119.188.13x.x(网通nat)218.98.3x.20x(电信nat)
Lvs(master)10.0.1.101 eth010.0.1.254
Lv(slave)10.0.1.102 eth010.0.1.254
Real-server10.0.1.103 eth010.0.1.25410.0.1.100lo:0
Real-server10.0.1.104 eth010.0.1.25410.0.1.100lo:0
Virtual IP10.0.1.200119.188.13x.4(网通nat)218.98.3x.201(电信nat)
Real-server10.0.1.105 eth010.0.1.25410.0.1.200lo:0
Real-server10.0.1.106 eth010.0.1.25410.0.1.200lo:0
1、安装LVSrpm -ivh ipvsadm-1.24-13.el5.x86_642、ipvsadm检查安装3、lsmod |grep ip_vs检查是否加装ip_vs模块4、realserver真实节点服务器配置(103、104配置相同)vi/etc/init.d/lvsrsdr#!/bin/bash#description : start realserver DRVIP=10.0.1.100. /etc/rc.d/init.d/functionscase "$1" instart)echo "start LVS of RealServer DR"/sbin/ifconfig lo:0 $VIP broadcast $VIPnetmask 255.255.255.255 up/sbin/route add -host $VIP dev lo:0echo "1">/proc/sys/net/ipv4/conf/lo/arp_ignoreecho "2">/proc/sys/net/ipv4/conf/lo/arp_announceecho "1">/proc/sys/net/ipv4/conf/all/arp_ignoreecho "2">/proc/sys/net/ipv4/conf/all/arp_announce;;Stop)/sbin/ifconfig lo:0 downecho "close LVS of RealServer DR"echo "0">/proc/sys/net/ipv4/conf/lo/arp_ignoreecho "0">/proc/sys/net/ipv4/conf/lo/arp_announceecho "0">/proc/sys/net/ipv4/conf/all/arp_ignoreecho "0">/proc/sys/net/ipv4/conf/all/arp_announce;;*)echo "Usage:$0 {start|stop}"exit 1esac脚本可执行模式chmod +x /etc/init.d/lvsrsdr启动脚本(以服务方式启动)service lvsrsdr start5、realserver真实节点服务器配置(105、106配置相同不同于103、104vip地址不同)vi/etc/init.d/lvsrsdr#!/bin/bash#description : start realserver DRVIP=10.0.1.200. /etc/rc.d/init.d/functionscase "$1" instart)echo "start LVS of RealServer DR"/sbin/ifconfig lo:0 $VIP broadcast $VIPnetmask 255.255.255.255 up/sbin/route add -host $VIP dev lo:0echo "1">/proc/sys/net/ipv4/conf/lo/arp_ignoreecho "2">/proc/sys/net/ipv4/conf/lo/arp_announceecho "1">/proc/sys/net/ipv4/conf/all/arp_ignoreecho "2">/proc/sys/net/ipv4/conf/all/arp_announce;;Stop)/sbin/ifconfig lo:0 downecho "close LVS of RealServer DR"echo "0">/proc/sys/net/ipv4/conf/lo/arp_ignoreecho "0">/proc/sys/net/ipv4/conf/lo/arp_announceecho "0">/proc/sys/net/ipv4/conf/all/arp_ignoreecho "0">/proc/sys/net/ipv4/conf/all/arp_announce;;*)echo "Usage:$0 {start|stop}"exit 1esacLVS高可用配置
1、下载安装(Master和Backup都必须安装Keepalive)wget http://www.keepalived.org/software/keepalived-1.2.7.tar.gz
tar zxvf keepalived-1.2.7.tar.gz
cd keepalived-1.2.7
./configure
make
make install2、将Keepalived以服务启动(Master和Backup同时配置)cp /usr/local/etc/rc.d/init.d/keepalived/etc/rc.d/init.d/cp /usr/local/etc/sysconfig/keepalived/etc/sysconfig/mkdir /etc/keepalivedcp /usr/local/etc/keepalived/keepalived.conf/etc/keepalived/cp /usr/local/sbin/keepalived /usr/sbin/chkconfig --add keepalivedservice keepalived start|stop 3、配置MASTERcp /etc/keepalived/keepalived.conf/etc/keepalived/keepalived.conf.bak
vi /etc/keepalived/keepalived.conf! Configuration File for keepalived
global_defs {notification_email {acassen@firewall.locfailover@firewall.locsysadmin@firewall.loc}notification_email_from Alexandre.Cassen@firewall.locsmtp_server192.168.200.1smtp_connect_timeout 30router_idLVS_DEVEL}
vrrp_instance VI_1 {state MASTERinterfaceeth0virtual_router_id 51priority 100advert_int 1authentication {auth_type PASSauth_pass 1111}virtual_ipaddress {10.0.1.10010.0.1.200}}
virtual_server 10.0.1.100 80 {delay_loop 6lb_algo wlclb_kind DRnat_mask255.255.255.0persistence_timeout 50protocol TCP
real_server10.0.1.103 80 {weight 1TCP_CHECK {
connect_timeout 3nb_get_retry 3delay_before_retry 3}}
real_server10.0.1.104 80 {weight 1TCP_CHECK {
connect_timeout 3nb_get_retry 3delay_before_retry 3}}
}virtual_server 10.0.1.200 80 {delay_loop 6lb_algo wlclb_kind DRnat_mask255.255.255.0persistence_timeout 50protocol TCP
real_server10.0.1.105 80 {weight 1TCP_CHECK {
connect_timeout 3nb_get_retry 3delay_before_retry 3}}
real_server10.0.1.106 80 {weight 1TCP_CHECK {
connect_timeout 3nb_get_retry 3delay_before_retry 3}}
}
3、配置BACKUP vrrp_instance VI_1 {
state BACKUP
interfaceeth0 virtual_router_id 51
priority 99
漏洞与补丁齐飞,蓝屏共死机一色! 我身在江湖,江湖里却没有我得传说。 精典之极就是精斑!!! 这是什么东东啊 我真想亲口管你爷爷叫声:爹! 睡眠是一门艺术——谁也无法阻挡我追求艺术的脚步!
页:
[1]