LVS+KeepaLived+Nginx SSL（二）

雷锋 · 发表于 2018-12-30 12:39:24

LVS+KeepaLived+Nginx SSL

LNMP安装

#!/bin/bash
#auto install lnmp
#By L
#改编自linuxtone
#Create user for The LNMP
userdel -r www ; useradd -M -s /sbin/nologin www
userdel -r mysql ; useradd -M -s /sbin/nologin mysql
#init var
NGINX_HOME="/opt/nginx"
NGINX_VERSION="nginx-1.0.8"
PCRE_VERSION="pcre-8.10"
PHP_HOME="/opt/php"
PHP_VERSION="php-5.3.10"
LIBICONV_VERSION="libiconv-1.13.1"
LIBMCRYPT_VERSION="libmcrypt-2.5.8"
MHASH_VERSION="mhash-0.9.9.9"
MCRYPT_VERSION="mcrypt-2.6.8"
MYSQL_HOME="/opt/mysql"
MYSQL_DATA_DIR="/data/mysql/3306/data"
MYSQL_CONFIG_DIR="/etc"
MYSQL_PORT="3306"
MYSQL_VERSION="mysql-5.5.15"
CMAKE_VERSION="cmake-2.8.4"
#install the rpm bao
yum -y install dialog ntp vim-enhanced vixie-cron gcc gcc-c++ gcc-g77 flex bison autoconf automake glibc glibc-devel glib2 glib2-devel bzip2 bzip2-devel ncurses ncurses-devel libtool* zlib-devel libxml2-devel libjpeg-devel libpng-devel libtiff-devel fontconfig-devel freetype-devel libXpm-devel gettext-devel curl curl-devel pam-devel e2fsprogs-devel krb5-devel libidn libidn-devel openssl openssl-devel openldap openldap-devel net-snmp net-snmp-devel nss_ldap openldap-clients openldap-servers libtidy libtidy-devel
#wget the packet
cat >> list.txt >/etc/ld.so.conf
/sbin/ldconfig
#link the command
rm -rf /usr/bin/mysql* &> /dev/null
ln -s ${MYSQL_HOME}/bin/* /usr/bin/
#init mysql database
${MYSQL_HOME}/scripts/mysql_install_db --basedir=${MYSQL_HOME} --datadir=${MYSQL_DATA_DIR} --user=mysql
cd ../
#install nginx
tar zvxf ${PCRE_VERSION}.tar.gz
cd ${PCRE_VERSION}
./configure && make && make install
cd ../
tar zvxf ${NGINX_VERSION}.tar.gz
cd ${NGINX_VERSION}
./configure --user=www --group=www --prefix=${NGINX_HOME} --with-http_stub_status_module --with-http_ssl_module --with-http_sub_module --with-md5=/usr/lib --with-sha1=/usr/lib --with-http_gzip_static_module
make && make install
cd ../
#install php-support
tar zxvf ${LIBICONV_VERSION}.tar.gz
cd ${LIBICONV_VERSION}
./configure --prefix=/usr/local
make && make install
cd ../
tar zxvf ${LIBMCRYPT_VERSION}.tar.gz
cd ${LIBMCRYPT_VERSION}
./configure --prefix=/usr
make && make install
cd libltdl/
./configure --enable-ltdl-install
make && make install
cd ../../
tar zxvf ${MHASH_VERSION}.tar.gz
cd ${MHASH_VERSION}
./configure --prefix=/usr
make && make install
ldconfig
cd ../
ln -s /usr/local/lib/libmcrypt.la /usr/lib/libmcrypt.la
ln -s /usr/local/lib/libmcrypt.so /usr/lib/libmcrypt.so
ln -s /usr/local/lib/libmcrypt.so.4 /usr/lib/libmcrypt.so.4
ln -s /usr/local/lib/libmcrypt.so.4.4.8 /usr/lib/libmcrypt.so.4.4.8
ln -s /usr/local/lib/libmhash.a /usr/lib/libmhash.a
ln -s /usr/local/lib/libmhash.la /usr/lib/libmhash.la
ln -s /usr/local/lib/libmhash.so /usr/lib/libmhash.so
ln -s /usr/local/lib/libmhash.so.2 /usr/lib/libmhash.so.2
ln -s /usr/local/lib/libmhash.so.2.0.1 /usr/lib/libmhash.so.2.0.1
/sbin/ldconfig
tar zxvf ${MCRYPT_VERSION}.tar.gz
cd ${MCRYPT_VERSION}
./configure --prefix=/usr
make && make install
cd ../
echo "/usr/lib" >> /etc/ld.so.conf
echo "/usr/local/lib" >> /etc/ld.so.conf
/sbin/ldconfig
#install php
tar zxvf ${PHP_VERSION}.tar.gz
cd ${PHP_VERSION}
./configure --prefix=${PHP_HOME} --with-config-file-path=${PHP_HOME}/etc --with-mysql=${MYSQL_HOME} --with-mysqli=${MYSQL_HOME}/bin/mysql_config --with-pdo-mysql=${MYSQL_HOME} --with-iconv-dir=/usr/local --with-freetype-dir --with-jpeg-dir --with-png-dir --with-zlib --with-pdo-sqlite --enable-pdo --with-bz2 --with-gettext --with-snmp --with-libxml-dir --enable-xml --disable-rpath --disable-safe-mode --enable-bcmath --enable-shmop --enable-sysvsem --enable-inline-optimization --with-curl --with-curlwrappers --enable-mbregex --enable-fpm --enable-mbstring --with-mcrypt --with-gd --enable-gd-native-ttf --with-openssl --with-mhash --enable-pcntl --enable-sockets --with-ldap --with-ldap-sasl --with-xmlrpc --enable-zip --enable-soap --without-pear
make ZEND_EXTRA_LIBS='-liconv'
make install
cp php.ini-production ${PHP_HOME}/etc/php.ini
cd ../
echo ""

配置Nginx

user www www;
worker_processes 8;
error_log /data/web_logs/nginx_error.log crit;
pid /opt/nginx/nginx.pid;
#Specifies the value for maximum file descriptors that can be opened by this process.
worker_rlimit_nofile 65535;
events
{
use epoll;
worker_connections 65535;
}
http
{
include mime.types;
default_type application/octet-stream;
#charset gb2312;
server_names_hash_bucket_size 128;
client_header_buffer_size 32k;
large_client_header_buffers 4 32k;
client_max_body_size 8m;
sendfile on;
tcp_nopush on;
keepalive_timeout 60;
tcp_nodelay on;
fastcgi_connect_timeout 300;
fastcgi_send_timeout 300;
fastcgi_read_timeout 300;
fastcgi_buffer_size 64k;
fastcgi_buffers 4 64k;
fastcgi_busy_buffers_size 128k;
fastcgi_temp_file_write_size 128k;
gzip on;
gzip_min_length 1k;
gzip_buffers 4 16k;
gzip_http_version 1.0;
gzip_comp_level 2;
gzip_types text/plain application/x-javascript text/css application/xml;
gzip_vary on;
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
'$status $body_bytes_sent "$http_referer" '
'"$http_user_agent" $http_x_forwarded_for';
include /opt/nginx/conf/sites-enabled/*;
}

　　关于Nginx配置文件的解释可以去看：
　　http://liuyu.blog.运维网.com/183345/294118
　　Keepalived_timeout 的详细解释可以去看：
http://www.perfgeeks.com/?p=673
　　PHP-fpm启动脚本：

#!/bin/bash
PID='/opt/php/logs/php-fpm.pid'
FPM='/opt/php/sbin/php-fpm'
case $1 in
start)
echo "Starting php_fpm.... "
sleep 1
if [ -f $PID ];then
echo 'The PID file has been exists'
exit 1
fi
$FPM
if [ $? -eq 0 ];then
echo 'done'
else
exit 1
fi
;;
stop)
echo "Shutting down php_fpm "
sleep 1
if [ ! -r $PID ] ; then
echo "warning, no pid file found - php-fpm is not running ?"
exit 1
fi
kill -TERM `cat $PID`
;;
restart)
$0 stop
$0 start
;;
reload)
echo "Reload service php-fpm "
sleep 1
if [ ! -r $PID ] ; then
echo "warning, no pid file found - php-fpm is not running ?"
exit 1
fi
kill -USR2 `cat $PID`
echo " done"
;;
*)
echo "Usage: $0 {start|stop|restart|reload|}"
exit 1
;;
esac

账号		自动登录	找回密码
密码			立即注册

大疆运维招人啦，

C++ :try 语句块和异常处理

C++的多态

Red Hat RHCE 8 (EX294) Cert Guide

Java/C++ 区别：看完这一篇，就够用！

别再用过时库了！这 13 个顶级 C++ 库才是

c++ size_t 和 int 的区别

[经验分享] LVS+KeepaLived+Nginx SSL（二）

浏览过的版块

扫码加入运维网微信交流群