LVS+Keepalived高可用群集
LVS+Keepalived高可用群集
概述:
keepalived起初是专门针对LVS设计的一款强大的辅助工具,主要用来提供故障切换和健康检查功能------判断LVS负载调度器、节点服务器的可用性,及时隔离斌替换为新的服务器,当故障主机恢复后将重新加入群集。
Keeplived采用VRRP(虚拟路由冗余协议)热备份协议,以软件的方式实现Linux服务器中的多级热备功能。
目录
第一部分 环境准备
第二部分 使用Keepalived搭建双机热备
第三部分 配置Web节点服务器
第四部分 测试LVS+Keepalived高可用群集
第一部分 环境准备
一:调度器两台(双机热备)
系统:Linux—CentOS 7.4
IP地址:192.168.40.21(主)
IP地址:192.168.40.22(备)
二:Web服务器两台
系统:Linux—CentOS 7.4
IP地址:192.168.40.15(SERVER AA)
IP地址:192.168.40.20(SERVER BB)
三:客户端电脑一台:以真机为例,测试用
IP地址:192.168.40.12
第二部分 使用Keepalived搭建双机热血
第一步:配置主调度器
[[email protected] ~]# modprobe ip_vs //加载ip_vs模块
[[email protected] ~]# rpm -ivh /mnt/Packages/ipvsadm-1.27-7.el7.x86_64.rpm //安装管理软件ipvsadm
[[email protected] ~]# yum -y install gcc gcc-c++ make popt-devel kernel-devel openssl-devel
//安装编译工具与插件
[[email protected] ~]# tar xzvf keepalived-1.4.2.tar.gz //解压keepalived安装包
[[email protected] ~]# cd keepalived-1.4.2/
[[email protected] keepalived-1.4.2]# ./configure --prefix=/ //配置
[[email protected] keepalived-1.4.2]# make && make install //编译与安装
[[email protected] keepalived-1.4.2]# cp keepalived/etc/init.d/keepalived /etc/init.d/
//加入系统管理服务
[[email protected] keepalived-1.4.2]# systemctl enable keepalived //设置开机自启动
[[email protected] keepalived-1.4.2]# vi /etc/keepalived/keepalived.conf //编辑配置文件
! Configuration File for keepalived
global_defs {
router_id LVS_01 //本服务器的名称
}
vrrp_instance VI_1 { //定义VRRP热备实例
state MASTER //热备状态,MASTER表示主服务器,BACKUP表示从服务器
interface ens33 //承载VIP地址的物理接口
virtual_router_id 51 //虚拟路由器的ID号,每个热备组保持一致
priority 110 //优先级,数值越大优先级越高
advert_int 1 //通告间隔秒数(心跳频率)
authentication { //热备认证信息,每个热备组保持一致
auth_type PASS //认证类型
auth_pass 1111 //密码字符串
}
virtual_ipaddress { //指定漂移地址(VIP),可以有多个
192.168.40.100
}
}
virtual_server 192.168.40.100 80 { //虚拟服务器地址(VIP)、端口
delay_loop 6 //健康检查的间隔时间(秒)
lb_algo rr //轮询(rr)调度算法
lb_kind DR //直接路由(DR)群集工作模式
persistence_timeout 20 //连接保持时间(秒)
protocol TCP //应用服务器采用的是TCP协议
real_server 192.168.40.15 80 { //第一个Web服务器节点的地址、端口
weight 1 //节点的权重
TCP_CHECK { //健康检查方式
connect_port 80 //检查的目标端口
connect_timeout 3 //连接超时(秒)
nb_get_retry 3 //重试次数
delay_before_retry 3 //重试间隔
}
}
real_server 192.168.40.20 80 { //第二个Web服务器节点的地址、端口
weight 1
TCP_CHECK {
connect_port 80
connect_timeout 3
nb_get_retry 3
delay_before_retry 3
}
}
}
保存退出
[[email protected] keepalived-1.4.2]# service keepalived start
[[email protected] keepalived-1.4.2]# ip addr show dev ens33 //验证绑定了的虚拟地址
[[email protected] keepalived-1.4.2]# ipvsadm -C //清空规则
[[email protected] keepalived-1.4.2]# ipvsadm -A -t 192.168.40.100:80 -s rr //手动加入
[[email protected] keepalived-1.4.2]# ipvsadm -a -t 192.168.40.100:80 -r 192.168.40.15:80 -g
[[email protected] keepalived-1.4.2]# ipvsadm -a -t 192.168.40.100:80 -r 192.168.40.20:80 -g
[[email protected] keepalived-1.4.2]# ipvsadm -Ln //查看LVS虚拟服务器
[[email protected] keepalived-1.4.2]# tail -f /var/log/messages
第二步:配置从调度器
[[email protected] ~]# modprobe ip_vs //加载ip_vs模块
[[email protected] ~]# rpm -ivh /mnt/Packages/ipvsadm-1.27-7.el7.x86_64.rpm //安装管理软件ipvsadm
[[email protected] ~]# yum -y install gcc gcc-c++ make popt-devel kernel-devel openssl-devel
[[email protected] ~]# tar xzvf keepalived-1.4.2.tar.gz
[[email protected] ~]cd keepalived-1.4.2/
[[email protected] keepalived-1.4.2]# ./configure --prefix=/
[[email protected] keepalived-1.4.2]# make && make install
[[email protected] keepalived-1.4.2]# cp keepalived/etc/init.d/keepalived /etc/init.d/
[[email protected] keepalived-1.4.2]# systemctl enable keepalived
[[email protected] keepalived-1.4.2]# vi /etc/keepalived/keepalived.conf
! Configuration File for keepalived
global_defs {
router_id LVS_02
}
vrrp_instance VI_1 {
state BACKUP
interface ens33
virtual_router_id 51
priority 105
advert_int 1
authentication {
auth_type PASS
auth_pass 6666
}
virtual_ipaddress {
192.168.40.100
}
}
virtual_server 192.168.40.100 80 {
delay_loop 6
lb_algo rr
lb_kind DR
persistence_timeout 20
protocol TCP
real_server 192.168.40.15 80 {
weight 1
TCP_CHECK {
connect_port 80
connect_timeout 3
nb_get_retry 3
delay_before_retry 3
}
}
real_server 192.168.40.20 80 {
weight 1
TCP_CHECK {
connect_port 80
connect_timeout 3
nb_get_retry 3
delay_before_retry 3
}
}
}
保存退出
[[email protected] keepalived-1.4.2]# service keepalived start
[[email protected] keepalived-1.4.2]# ipvsadm -C //清空规则
[[email protected] keepalived-1.4.2]# ipvsadm -A -t 192.168.40.100:80 -s rr //手动加入
[[email protected] keepalived-1.4.2]# ipvsadm -a -t 192.168.40.100:80 -r 192.168.40.15:80 -g
[[email protected] keepalived-1.4.2]# ipvsadm -a -t 192.168.40.100:80 -r 192.168.40.20:80 -g
[[email protected] keepalived-1.4.2]# ipvsadm –Ln
第三步:验证结果
- 主调度器keepalived服务开启状态,验证从调度器状态
[[email protected] ~]# ip addr show dev ens33
[[email protected] ~]# tail -f /var/log/messages
//备机状态
- 模拟主调度器故障,将主调度器keepalived服务关闭,验证从调度器状态
[[email protected] keepalived-1.4.2]# systemctl stop keepalived
//备机自己切换到主机状态
//双机热备搭建完成
第三部分 配置Web节点服务器
第一步:配置SERVER AA服务器(192.168.40.15)
- 配置http服务
//安装http服务
[[email protected] ~]# yum install -y httpd
//编辑主配置文件
[[email protected] ~]# vi /etc/httpd/conf/httpd.conf
ServerName aa //将“#”号去掉,修改主机名
保存退出
//配置默认显示网页
[[email protected] ~]# cd /var/www/html/
[[email protected] html]# echo "<h1>SERVER AA</h1>" > index.html
[[email protected] html]# service httpd start //重启http服务
真机验证http服务
访问http://192.168.40.15
- 配置DR模式
[[email protected] ~]# vi web.sh
#!/bin/bash
#haha
ifconfig lo:0 192.168.40.100 broadcast 192.168.40.100 netmask 255.255.255.255 up
route add -host 192.168.40.100 dev lo:0
echo "1" >/proc/sys/net/ipv4/conf/lo/arp_ignore
echo "2" >/proc/sys/net/ipv4/conf/lo/arp_announce
echo "1" >/proc/sys/net/ipv4/conf/all/arp_ignore
echo "2" >/proc/sys/net/ipv4/conf/all/arp_announce
sysctl -p &>/dev/null
保存退出
[[email protected] ~]# sh web.sh //执行脚本
[[email protected] ~]# ifconfig //查看虚拟接口
第二步:配置SERVER BB服务器(192.168.40.20)
- 配置http服务
//安装http服务
[[email protected] ~]# yum install -y httpd
//编辑主配置文件
[[email protected] ~]# vi /etc/httpd/conf/httpd.conf
ServerName bb //将“#”号去掉,修改主机名
保存退出
//配置默认显示网页
[[email protected] ~]# cd /var/www/html/
[[email protected] html]# echo "<h1>SERVER BB</h1>" > index.html
[[email protected] html]# service httpd start //重启http服务
//win7验证http服务
访问http://192.168.40.20
----------配置DR模式---------
[[email protected] ~]# vi web.sh
#!/bin/bash
#hehe
ifconfig lo:0 192.168.40.100 broadcast 192.168.40.100 netmask 255.255.255.255 up
route add -host 192.168.40.100 dev lo:0
echo "1" >/proc/sys/net/ipv4/conf/lo/arp_ignore
echo "2" >/proc/sys/net/ipv4/conf/lo/arp_announce
echo "1" >/proc/sys/net/ipv4/conf/all/arp_ignore
echo "2" >/proc/sys/net/ipv4/conf/all/arp_announce
sysctl -p &>/dev/null
保存退出
[[email protected] ~]# sh web.sh //执行脚本
[[email protected] ~]# ifconfig //查看虚拟接口
第四部分 测试LVS+Keepalived高可用群集
在客户端的浏览器中,能够通过LVS+Keepalived群集的漂移地址(192.168.40.100)正常访问web页面内容,则验证群集构建成功。
- 验证两台Web服务器轮询工作
真机访问http://192.168.40.100
//由于设置了连接保持时间为20秒,一分钟后再重新访问该地址
//自动轮询交给另一台Web服务器
- 模拟主调度器故障,验证结果
[[email protected] keepalived-1.4.2]# systemctl stop keepalived
//主调度器keepalived停止工作
//从调度器自动切换,继续工作
真机继续访问http://192.168.40.100
等20s 继续访问,查看结果
//双击热备已经起作用
- 模拟Web服务器aa故障
[[email protected] ~]# service httpd stop //将aa服务器停止工作
[[email protected] keepalived-1.4.2]# tail -f /var/log/messages
//处于将康状态 40.15的服务器已经被移除
访问http://192.168.40.100
等20s 继续访问http://192.168.40.100,查看结果
//无法访问,验证成功
[[email protected] ~]# service httpd start //恢复启动bb服务器
//查看调度器日志:
//已成功将bb服务器加入到服务器池
//LVS+Keepalived已成功搭建并测试完成
转载于:https://blog.51cto.com/13871378/2323076