基本拓扑: 两台高可用节点: node1:192.168.191.112 node2:192.168.191.113 NFS服务器:192.168.191.111 web服务的流动IP:192.168.191.199
一、准备工作: 1).node1---node2 基于主机名通信 1.编辑/etc/hosts文件添加如下内容 192.168.191.112 node1.liaobin.com node1 192.168.191.113 node2.liaobin.com node2 2.编辑/etc/system/network文件分别修改主机名为node1.liaobin.com和node2.liaobin.com 3.重启
2). 时间同步,用ntpd服务器(为了图个方便我试用了data命令将两个节点时间改为一样) # date -s 11:11:11 3).node1---node2 基于ssh免密码登陆 node1: # ssh-keygen -t rsa # ssh-copy-id -i ~/.ssh/id_rsa.pub root@node2
node2: # ssh-keygen -t rsa # ssh-copy-id -i ~/.ssh/id_rsa.pub root@node1 3).安装 corosync pacemaker(yum源指向CD1即可) # yum install -y corosync pacemaker
二、配置corosync(node1上进行) 1).复制配置模板为配置文件 # cd /etc/corosync # cp corosync.conf.example corosync.conf 2).编辑/etc/corosync/corosync.conf(只列出需要改变的配置,以及添加的配置)
————————————修改————————————————
secauth: on #开启加密功能(若开启,则需要使用corosync-keygen命令生成密钥) bindnetaddr: 192.168.191.0 #设置网络地址,切记是网络地址 mcastaddr: 239.25.11.12 #设置多播地址用于传输心跳信息 to_logfile: yes #使用本机文件记录日志 logfile: /var/log/cluster/corosync.log #指明日志文件位置 to_syslog: no #关闭rsyslog日志
————————————添加————————————————
#pacemaker以corosync的插件方式运行,跟随corosync启动而启动 service { ver: 0 name: pacemaker # use_mgmtd: yes #以守护进程方式运行,貌似没用,可有可无此项 }
#可有可无的配置,以root用户运行 aisexec { user: root group: root } 3).运行corosync-keygen命令生成密钥文件authkey(直接运行即可) #corosync-keygen 4).复制corosync配置见和authkey给另一个节点node2 # cd /etc/corosync/ # scp corosync.conf authkey node2:/etc/corosync
三、测试corosync能否成功启动(两个节点node1,node2都要做测试) 1).查看corosync引擎是否正常启动: [iyunv@node1 ~]# service corosync start; ssh node2 'service corosync start' [iyunv@node1 ~]# grep -e "Corosync Cluster Engine" -e "configuration file" /var/log/cluster/corosync.log Mar 26 21:30:29 corosync [MAIN ] Corosync Cluster Engine ('1.4.7'): started and ready to provide service. Mar 26 21:30:29 corosync [MAIN ] Successfully read main configuration file '/etc/corosync/corosync.conf'. Mar 26 21:31:06 corosync [MAIN ] Corosync Cluster Engine exiting with status 0 at main.c:2055.
2).查看初始化成员节点通知是否正常发出: [iyunv@node1 ~]# grep TOTEM /var/log/cluster/corosync.log Mar 26 21:30:29 corosync [TOTEM ] Initializing transport (UDP/IP Multicast). Mar 26 21:30:29 corosync [TOTEM ] Initializing transmit/receive security: libtomcrypt SOBER128/SHA1HMAC (mode 0). Mar 26 21:30:29 corosync [TOTEM ] The network interface [192.168.191.112] is now up.
3).检查启动过程中是否有错误产生。下面的错误信息表示packmaker不久之后将不再作为corosync的插件运行,因此,建议使用cman作为集群基础架构服务;此处可安全忽略。 [iyunv@node1 ~]# grep ERROR: /var/log/cluster/corosync.log | grep -v unpack_resources Mar 26 15:41:56 corosync [pcmk ] ERROR: process_ais_conf: You have configured a cluster using the Pacemaker plugin for Corosync. The plugin is not supported in this environment and will be removed very soon. Mar 26 15:41:56 corosync [pcmk ] ERROR: process_ais_conf: Please see Chapter 8 of 'Clusters from Scratch' (http://www.clusterlabs.org/doc) for details on using Pacemaker with CMAN
4).查看pacemaker是否正常启动: [iyunv@node1 ~]# grep pcmk_startup /var/log/cluster/corosync.log Mar 26 15:41:56 corosync [pcmk ] info: pcmk_startup: CRM: Initialized Mar 26 15:41:56 corosync [pcmk ] Logging: Initialized pcmk_startup Mar 26 15:41:56 corosync [pcmk ] info: pcmk_startup: Maximum core file size is: 18446744073709551615 Mar 26 15:41:56 corosync [pcmk ] info: pcmk_startup: Service: 9 Mar 26 15:41:56 corosync [pcmk ] info: pcmk_startup: Local hostname: node1.liaobin.com
四、安装crmsh(两个节点都安装,方便查看状态) 注意:crmsh依赖于pssh,因此需要一并下载。 程序版本:pssh-2.3.1-2.el6.x86_64.rpm,crmsh-2.1-1.6.x86_64.rpm 1).安装: #yum -y --nogpgcheck localinstall crmsh*.rpm pssh*.rpm 2).查看节点状态: [iyunv@node1 ~]# crm status Last updated: Thu Mar 26 21:45:07 2015 Last change: Thu Mar 26 17:21:29 2015 Stack: classic openais (with plugin) Current DC: node2.liaobin.com - partition with quorum 说明DC为node2 Version: 1.1.11-97629de 2 Nodes configured, 2 expected votes 3 Resources configured
Online: [ node1.liaobin.com node2.liaobin.com ] 说明node1 node2都已经上线
五、配置nfs服务以及node1,node2的httpd服务 1).nfs服务配置: # mkdir /shared # echo "/shared 192.168.191.*(rw)" >> /etc/exports # service nfs restart 2).node1配置: # echo " nfs">/var/www/html/index.html # chkconfig httpd off # service httpd stop 3).node2配置: # echo "nfs">/var/www/html/index.html # chkconfig httpd off # service httpd stop 六、配置集群(node1上操作) 1).关闭stonith设备,此默认配置目前尚不可用 验证:(若出现下列错误消息,则需要关闭stonith设备) # crm_verify -L -V error: unpack_resources: Resource start-up disabled since no STONITH resources have been defined error: unpack_resources: Either configure some or disable STONITH with the stonith-enabled option error: unpack_resources: NOTE: Clusters with shared data need STONITH to ensure data integrity Errors found during check: config not valid -V may provide more details 关闭: # crm configure property stonith-enabled=false #no-quorum-policy=ignore # 当只有两个节点时需要设置。两节点以上时不要进行设置。 2).查看当前配置信息: # crm configure show 3).开始添加资源 [iyunv@node1 ~]# crm 进入配置模式 crm(live)# configure 配置IP地址检测间隔时间为10s超时时长为20s crm(live)configure# primitive webip ocf:heartbeat:IPaddr params ip=192.168.191.199 op monitor interval=10s timeout=20s 每次做好配置之后,应当用verify检测下有无错误 crm(live)configure# verify 配置挂载nfs,且启动时超时时长为60s,停止时超时时长为60s crm(live)configure# primitive nfsserver ocf:heartbeat:Filesystem params device=192.168.191.111:/shared directory=/var/www/html fstype=nfs op monitor interval=20s timeout=40s op start timeout=60s op stop timeout=60s crm(live)configure# verify 配置httpd服务,检测间隔时长10s,超时时长20s crm(live)configure# primitive webserver lsb:httpd op monitor interval=10s timeout=20s crm(live)configure# verify 新建一个组webservice包含 webip nfsserver webserver资源,注意顺序 crm(live)configure# group webservice webip nfsserver webserver 将资源组webservice对node1的倾向性设置为100,作为webservice组资源启动时候默认启动的节点 crm(live)configure# location web_on_node1 webservice rule 100: uname eq node1.liaobin.com 设置粘性为50,目的是让node1下线后,资源转移到node2上以后,node1上线后不争抢资源。 如果node1性能比node2好很多,那么则可以不设置此项,让node1拿回资源。 crm(live)configure# property default-resource-stickiness=50 查看定义的资源 crm(live)configure# show 使用cd..返回上一级菜单 crm(live)configure# cd .. 使用status查看状态,可以看到此时资源运行在node1节点上 crm(live)# status Last updated: Thu Mar 26 22:34:05 2015 Last change: Thu Mar 26 22:22:51 2015 Stack: classic openais (with plugin) Current DC: node2.liaobin.com - partition with quorum Version: 1.1.11-97629de 2 Nodes configured, 2 expected votes 3 Resources configured
Online: [ node1.liaobin.com node2.liaobin.com ]
Resource Group: webservice webip (ocf::heartbeat:IPaddr): Started node1.liaobin.com nfsserver (ocf::heartbeat:Filesystem): Started node1.liaobin.com webserver (lsb:httpd): Started node1.liaobin.com 浏览器测试访问:
使用node进入node菜单 crm(live)# node 使用standby命令让node1进入standby模式 crm(live)node# standby 切换主机到node2: [iyunv@node2 ~]# crm crm(live)node# cd .. crm(live)# status Last updated: Thu Mar 26 22:37:14 2015 Last change: Thu Mar 26 22:35:46 2015 Stack: classic openais (with plugin) Current DC: node2.liaobin.com - partition with quorum Version: 1.1.11-97629de 2 Nodes configured, 2 expected votes 3 Resources configured
Node node1.liaobin.com: standby Online: [ node2.liaobin.com ]
Resource Group: webservice webip (ocf::heartbeat:IPaddr): Started node2.liaobin.com nfsserver (ocf::heartbeat:Filesystem): Started node2.liaobin.com webserver (lsb:httpd): Started node2.liaobin.com 可以看到此时资源已经切换到node2上了 浏览器测试: 浏览器访问成功,说明高可用集群已经在正常工作了。 切换到主机node1: 使用命令online让node1上线 crm(live)node# online crm(live)node# cd .. crm(live)# status Last updated: Thu Mar 26 22:39:06 2015 Last change: Thu Mar 26 22:38:58 2015 Stack: classic openais (with plugin) Current DC: node2.liaobin.com - partition with quorum Version: 1.1.11-97629de 2 Nodes configured, 2 expected votes 3 Resources configured
Online: [ node1.liaobin.com node2.liaobin.com ]
Resource Group: webservice webip (ocf::heartbeat:IPaddr): Started node2.liaobin.com nfsserver (ocf::heartbeat:Filesystem): Started node2.liaobin.com webserver (lsb:httpd): Started node2.liaobin.com 可以看到此时资源依然在node2上,并没有切换到倾向性高的node1。
| 
QQ群⑧:
窥视卡
雷达卡
发表于 2016-1-7 09:53:31
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
千斤顶
显身卡