keepalived+lvs負載均衡兩個httpd

wangshuai ? ? Linux干貨

準備4臺主機172.16.71.2 172.16.71.3 172.16.71.4 172.16.71.5

前兩個做后端httpd服務器。后兩個做keepalived

首先配置好后端主機172.16.71.2 和172.16.71.3

# 172.16.71.2
yum install httpd
cd /var/www/html
vim index.html
server1 71.2
# 172.16.71.3
yum install httpd
cd /var/www/html
vim index.html
server2 71.3

由于lvs采用的是DR模式,所以要寫腳本修改內核參數并添加路由信息,以下是keepalived雙主需要的腳本,兩臺主機上都需要運行一次:

#!/bin/bash
#
vip=172.16.71.80
vip2=172.16.71.90
mask='255.255.255.255'
interface='lo:0'
interface2='lo:1'

case $1 in
start)
        echo 1 > /proc/sys/net/ipv4/conf/all/arp_ignore
        echo 1 > /proc/sys/net/ipv4/conf/lo/arp_ignore
        echo 2 > /proc/sys/net/ipv4/conf/all/arp_announce
        echo 2 > /proc/sys/net/ipv4/conf/lo/arp_announce
        ifconfig $interface  $vip netmask $mask broadcast $vip up
        ifconfig $interface2  $vip2 netmask $mask broadcast $vip2 up
        route add -host $vip dev $interface
        route add -host $vip2 dev $interface2
        ;;
stop)
        ifconfig $interface down
        ifconfig $interface2 down
        echo 0 > /proc/sys/net/ipv4/conf/all/arp_ignore
        echo 0 > /proc/sys/net/ipv4/conf/lo/arp_ignore
        echo 0 > /proc/sys/net/ipv4/conf/all/arp_announce
        echo 0 > /proc/sys/net/ipv4/conf/lo/arp_announce
        ;;
*)
        echo "Usage $(basename $0) start|stop"
        exit 1
        ;;
esac

執行完成后啟動httpdsystemctl start httpd

然后配置前端的keepalived,這里采用的是雙主模式。

配置文件如下:

# 172.16.71.4

! Configuration File for keepalived

global_defs {
   notification_email {
    root@localhost
   }   

   notification_email_from kaadmin@localhost 
   smtp_server 127.0.0.1
   smtp_connect_timeout 30
   router_id node1
   vrrp_mcast_group4 224.0.71.1
}

vrrp_instance VI_1 {
    state MASTER
    interface eno16777736
    virtual_router_id 71
    priority 100 
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass bashrc
    }   
    virtual_ipaddress {
        172.16.71.80/16 dev eno16777736 label eno16777736:0
    }   
    track_interface {
        eno16777736
    }   
    notify_master "/etc/keepalived/notify.sh master"
    notify_backup "/etc/keepalived/notify.sh backup"
    notify_fault "/etc/keepalived/notify.sh fault"
}
vrrp_instance VI_2 {
    state BACKUP
    interface eno16777736
    virtual_router_id 45
    priority 98
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass shell
    }
    virtual_ipaddress {
        172.16.71.90/16 dev eno16777736 label eno16777736:1
    }
    track_interface {
        eno16777736
    }
    notify_master "/etc/keepalived/notify.sh master"
    notify_backup "/etc/keepalived/notify.sh backup"
    notify_fault "/etc/keepalived/notify.sh fault"
}

virtual_server fwmark 3 {
    delay_loop 2
    lb_algo rr
    lb_kind DR
    nat_mask 255.255.0.0
    protocol TCP

    sorry_server 127.0.0.1 80

    real_server 172.16.71.2 80 {
        weight 1
        HTTP_GET {
            url {
              path /
              status_code 200
            }
            connect_timeout 2
            nb_get_retry 3
            delay_before_retry 2
        }
    }

    real_server 172.16.71.3 80 {
        weight 1
        HTTP_GET {
            url {
              path /
              status_code 200
            }
            connect_timeout 2
            nb_get_retry 3
            delay_before_retry 2
        }
    }
}
# 172.16.71.5

! Configuration File for keepalived

global_defs {
   notification_email {
    root@localhost
   }   

   notification_email_from kaadmin@localhost 
   smtp_server 127.0.0.1
   smtp_connect_timeout 30
   router_id node2
   vrrp_mcast_group4 224.0.71.1
}

vrrp_instance VI_1 {
    state BACKUP
    interface eno16777736
    virtual_router_id 71
    priority 98
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass bashrc
    }   
    virtual_ipaddress {
        172.16.71.80/16 dev eno16777736 label eno16777736:0
    }   
    track_interface {
        eno16777736
    }   
        notify_master "/etc/keepalived/notify.sh master"
        notify_backup "/etc/keepalived/notify.sh backup"
        notify_fault "/etc/keepalived/notify.sh fault"


}
vrrp_instance VI_2 {
    state MASTER
    interface eno16777736
    virtual_router_id 45
    priority 100
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass shell
    }
    virtual_ipaddress {
        172.16.71.90/16 dev eno16777736 label eno16777736:1
    }
    track_interface {
        eno16777736
    }
        notify_master "/etc/keepalived/notify.sh master"
        notify_backup "/etc/keepalived/notify.sh backup"
        notify_fault "/etc/keepalived/notify.sh fault"
}


virtual_server fwmark 3 {
    delay_loop 2
    lb_algo rr
    lb_kind DR
    nat_mask 255.255.0.0
    protocol TCP

    sorry_server 127.0.0.1 80

    real_server 172.16.71.2 80 {
        weight 1
        HTTP_GET {
            url {
              path /
              status_code 200
                }
            connect_timeout 2
            nb_get_retry 3
            delay_before_retry 2
        }
    }

    real_server 172.16.71.3 80  {
        weight 1
        HTTP_GET {
            url {
              path /
              status_code 200
            }
            connect_timeout 2
            nb_get_retry 3
            delay_before_retry 2
        }
    }
}

# 告警腳本

#!/bin/bash
#
contact='root@localhost'
notify() {
    mailsubject="$(hostname) to be $1, vip floating"
    mailbody="$(date +'%F %T'): vrrp transition, $(hostname) changed to be $1"
    echo "$mailbody" | mail -s "$mailsubject" $contact
}
case $1 in
master)
    notify master
    ;;
backup)
    notify backup
    ;;
fault)
    notify fault
    ;;
*)
    echo "Usage: $(basename $0) {master|backup|fault}"
    exit 1
    ;;
esac            

在兩個主機上添加iptables

iptables -t mangle -A PREROUTING -d 172.16.71.80 -p tcp --dport 80 -j MARK --set-mark 3
iptables -t mangle -A PREROUTING -d 172.16.71.90 -p tcp --dport 80 -j MARK --set-mark 3

在兩臺主機上安裝httpd并添加sorry page,啟動httpd和keepalived

# 172.16.71.4
yum install httpd
cd /var/www/html
vim index.html
sorry page 1
systemctl start httpd keepalived
# 172.16.71.5
yum install httpd
cd /var/www/html
vim index.html
sorry page 2
systemctl start httpd keepalived

測試

訪問172.16.71.80或者172.16.71.90時,會顯示server1 71.2 或server2 71.3頁面。

斷掉后端兩個httpd服務器,再次訪問會顯示sorry page 1或者sorry page 2。

斷掉不同的keepalived會顯示不同的sorry page

下面是keepalived單主模式的配置:

# /etc/keepalived/keepalived.conf

# 172.16.71.4

! Configuration File for keepalived

global_defs {
   notification_email {
    root@localhost
   }   

   notification_email_from kaadmin@localhost 
   smtp_server 127.0.0.1
   smtp_connect_timeout 30
   router_id node1
   vrrp_mcast_group4 224.0.71.1
}

vrrp_instance VI_1 {
    state MASTER
    interface eno16777736
    virtual_router_id 71
    priority 100 
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass bashrc
    }   
    virtual_ipaddress {
        172.16.71.80/16 dev eno16777736 label eno16777736:0
    }   
    track_interface {
        eno16777736
    }   
    notify_master "/etc/keepalived/notify.sh master"
    notify_backup "/etc/keepalived/notify.sh backup"
    notify_fault "/etc/keepalived/notify.sh fault"
}
vrrp_instance VI_2 { # 這段可以注釋掉,不用。
    state BACKUP
    interface eno16777736
    virtual_router_id 45
    priority 98
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass shell
    }
    virtual_ipaddress {
        172.16.71.90/16 dev eno16777736 label eno16777736:1
    }
    track_interface {
        eno16777736
    }
    notify_master "/etc/keepalived/notify.sh master"
    notify_backup "/etc/keepalived/notify.sh backup"
    notify_fault "/etc/keepalived/notify.sh fault"
}

virtual_server 172.16.71.80 80 {
    delay_loop 2
    lb_algo rr
    lb_kind DR
    nat_mask 255.255.0.0
    protocol TCP

    sorry_server 127.0.0.1 80

    real_server 172.16.71.2 80 {
        weight 1
        HTTP_GET {
            url {
              path /
              status_code 200
            }
            connect_timeout 2
            nb_get_retry 3
            delay_before_retry 2
        }
    }

    real_server 172.16.71.3 80 {
        weight 1
        HTTP_GET {
            url {
              path /
              status_code 200
            }
            connect_timeout 2
            nb_get_retry 3
            delay_before_retry 2
        }
    }
}

# /etc/keepalived/keepalived.conf

# 172.16.71.5

! Configuration File for keepalived

global_defs {
   notification_email {
    root@localhost
   }   

   notification_email_from kaadmin@localhost 
   smtp_server 127.0.0.1
   smtp_connect_timeout 30
   router_id node2
   vrrp_mcast_group4 224.0.71.1
}

vrrp_instance VI_1 {
    state BACKUP
    interface eno16777736
    virtual_router_id 71
    priority 98
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass bashrc
    }   
    virtual_ipaddress {
        172.16.71.80/16 dev eno16777736 label eno16777736:0
    }   
    track_interface {
        eno16777736
    }   
        notify_master "/etc/keepalived/notify.sh master"
        notify_backup "/etc/keepalived/notify.sh backup"
        notify_fault "/etc/keepalived/notify.sh fault"


}
vrrp_instance VI_2 { # 這段可以注釋掉,不用。
    state MASTER
    interface eno16777736
    virtual_router_id 45
    priority 100
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass shell
    }
    virtual_ipaddress {
        172.16.71.90/16 dev eno16777736 label eno16777736:1
    }
    track_interface {
        eno16777736
    }
        notify_master "/etc/keepalived/notify.sh master"
        notify_backup "/etc/keepalived/notify.sh backup"
        notify_fault "/etc/keepalived/notify.sh fault"
}


virtual_server 172.16.71.80 80 {
    delay_loop 2
    lb_algo rr
    lb_kind DR
    nat_mask 255.255.0.0
    protocol TCP

    sorry_server 127.0.0.1 80

    real_server 172.16.71.2 80 {
        weight 1
        HTTP_GET {
            url {
              path /
              status_code 200
                }
            connect_timeout 2
            nb_get_retry 3
            delay_before_retry 2
        }
    }

    real_server 172.16.71.3 80  {
        weight 1
        HTTP_GET {
            url {
              path /
              status_code 200
            }
            connect_timeout 2
            nb_get_retry 3
            delay_before_retry 2
        }
    }
}

單主模式不需要手動添加iptables。


原創文章,作者:wangshuai,如若轉載,請注明出處:http://www.www58058.com/68329

(0)
wangshuaiwangshuai
上一篇 2017-02-13
下一篇 2017-02-13

相關推薦

  • Linux基礎知識之用戶和組管理

    系統環境:    該博文以CentOS6.8_x86_64和CentOS7.2_x86_64系統為基礎,Xshell5遠程登錄CentOS6.8和CentOS7.2系統,分別以root身份和sjsir用戶身份登錄系統。 學習的重要問題: 一、為什么要學習用戶和組?    首先Linux區別于其他的系統的最重要的特性就是…

    Linux干貨 2016-08-02

  • N25期—第五周作業

    1、 顯示當前系統上root、fedora或user1用戶的默認shell; grep -E "^(root|fedora|user1):" /etc/passwd | cut -d: -f7 2、找出/etc/rc.d/init.d/functions文件中某單詞后面…

    Linux干貨 2017-01-02

  • Linus:利用二級指針刪除單向鏈表

    感謝網友full_of_bull投遞此文(注:此文最初發表在這個這里,我對原文后半段修改了許多,并加入了插圖) Linus大嬸在slashdot上回答一些編程愛好者的提問,其中一個人問他什么樣的代碼是他所喜好的,大嬸表述了自己一些觀點之后,舉了一個指針的例子,解釋了什么才是core low-level coding。 下面是Linus的教學原文及翻譯—— “…

    Linux干貨 2016-07-10

  • LVM邏輯卷管理練習

         小編今天要講的內容是如何創建邏輯卷,然后擴展它、縮減它。LVM 的重點就在于可以彈性的調整文件系統的容量!所以,下面練習開始。 1、創建一個至少有兩個PV組成的大小為20G的名為testvg的 VG;要求PE大小為16MB, 而后在卷組中創建大小為5G的邏 輯卷testlv;掛載至/users目錄。 ①準備兩個10G的…

    2017-08-26

  • PXE自動部署CentOS6

    1、安裝需要的軟件    (1)dhcp     (2)http    (3)tftp-server    (4)system-config-kickstart    (5)syslinux [root@centos6 ~]# y…

    Linux干貨 2016-06-26

  • linux中硬鏈接與軟鏈接的區別

    硬連接和軟鏈接的區別: 1、          首先,兩者的作用對象不同: 硬鏈接,只能應用于文件,而不能應用于目錄,而且不能跨文件系統(即分區)。 軟(符號)鏈接,可以應用于文件,而且可以應用于目錄和可跨文件系統(分區)。 2、   &n…

    Linux干貨 2016-10-20
欧美性久久久久