LVS+Keepalived群集

时间:2025/7/9 22:20:32来源：https://blog.csdn.net/weixin_67764171/article/details/140213478 浏览次数:0次

Keepalived工具介绍

专为LVS和HA设计的一款健康检查工具
- 支持故障自动切换（Failover）
- 支持节点健康状态检查（Health Checking）

Keepalived实现原理刨析

Keepalived采用VRRP热备份协议实现Linux服务器的多机热备功能

#主服务器keepalived的安装
[root@localhost ~]# systemctl stop NetworkManager #网络托管 网络管理
[root@localhost ~]# setenforce 0
[root@localhost ~]# systemctl stop firewalld[root@localhost ~]# yum -y install keepalived ipvsadm
[root@localhost ~]# systemctl enable keepalived#主服务器keepalived的配置
[root@localhost ~]# cd /etc/keepalived/
[root@localhost keepalived]# cp keepalived.conf keepalived.conf.bak[root@localhost keepalived]# vi keepalived.conf
global_defs { :w#全局参数notification_email {acassen@firewall.locfailover@firewall.locsysadmin@firewall.loc}notification_email_from Alexandre.Cassen@firewall.loc#vrrp_strict #严格模式 禁用单播模式smtp_server 192.168.200.1smtp_connect_timeout 30router_id LVS_01 #路由器名称
}vrrp_instance VI_1 { #示例参数state MASTERinterface ens33virtual_router_id 51 #虚拟路由id在群集中需一致priority 100   #优先级  0~255advert_int 1   #通告发送间隔 authentication {     auth_type PASS #验证类型auth_pass 1111 #验证密码}virtual_ipaddress {192.168.10.172}
}virtual_server 192.168.10.172 80 { #群集ipdelay_loop 6 #健康检查间隔lb_algo wrr #负载均衡算法lb_kind DR #负载均衡类型nat_mask 255.255.255.0 #非不许
!    persistence_timeout 50protocol TCP #虚拟服务器协议real_server 192.168.10.103 80 { #真实服务器weight 1 #权重TCP_CHECK { #健康检查connect_port 80connect_timeout 3  nb_get_retry 3  #超时次数delay_before_retry 3 #重连时间}}
real_server 192.168.10.104 80 {weight 1TCP_CHECK {connect_port 80connect_timeout 3nb_get_retry 3delay_before_retry 3}}}
#主服务器内核参数的配置
[root@localhost ~]# vi /etc/sysctl.conf
#添加
net.ipv4.conf.all.send_redirects = 0
net.ipv4.conf.default.send_redirects = 0
net.ipv4.conf.ens33.send_redirects = 0
[root@localhost ~]# sysctl -p#开启主服务器的keepalived服务
[root@localhost keepalived]# systemctl start keepalived
[root@localhost keepalived]# ip add show dev ens33
2: ens33: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000link/ether 00:0c:29:ae:7f:64 brd ff:ff:ff:ff:ff:ffinet 192.168.10.101/24 brd 172.16.16.255 scope global ens33valid_lft forever preferred_lft foreverinet 192.168.10.172/32 scope global ens33valid_lft forever preferred_lft forever#配置从调度器
#从调度器keepalived安装
[root@localhost ~]# systemctl stop NetworkManager
[root@localhost ~]# setenforce 0
[root@localhost ~]# systemctl stop firewalld[root@localhost ~]# yum -y install keepalived ipvsadm
[root@localhost ~]# systemctl enable keepalived#从调度器keepalived的配置
[root@localhost ~]# cd /etc/keepalived/
[root@localhost keepalived]# cp keepalived.conf keepalived.conf.bak[root@localhost keepalived]# vi keepalived.conf
global_defs {notification_email {acassen@firewall.locfailover@firewall.locsysadmin@firewall.loc}notification_email_from Alexandre.Cassen@firewall.loc#vrrp_strictsmtp_server 192.168.200.1smtp_connect_timeout 30router_id LVS_02
}vrrp_instance VI_1 {state BACKUP #备份interface ens33virtual_router_id 51priority 99advert_int 1authentication {auth_type PASSauth_pass 1111}virtual_ipaddress {192.168.10.172}
}virtual_server 192.168.10.172 80 {delay_loop 6lb_algo rrlb_kind DRnat_mask 255.255.255.0
!    persistence_timeout 50protocol TCPreal_server 192.168.10.101 80 {weight 1TCP_CHECK {connect_port 80connect_timeout 3nb_get_retry 3delay_before_retry 3}}real_server 192.168.10.102 80 {weight 1TCP_CHECK {connect_port 80connect_timeout 3nb_get_retry 3delay_before_retry 3}}}
#从服务器内核参数的配置
[root@localhost ~]# vi /etc/sysctl.conf
在末尾添加：
net.ipv4.conf.all.send_redirects = 0
net.ipv4.conf.default.send_redirects = 0
net.ipv4.conf.ens33.send_redirects = 0
[root@localhost ~]# sysctl -p
#开启从服务器的keepalived服务
[root@localhost keepalived]# systemctl start keepalived
#web网络的配置
[root@localhost ~]# systemctl stop firewalld
[root@localhost ~]# cd /etc/sysconfig/network-scripts/
[root@localhost network-scripts]# cp ifcfg-lo ifcfg-lo:0
[root@localhost network-scripts]# vi ifcfg-lo:0
DEVICE=lo:0
IPADDR=192.168.10.172
NETMASK=255.255.255.255
ONBOOT=yes
[root@localhost network-scripts]# systemctl restrt network
[root@localhost network-scripts]# vi /etc/rc.local
/sbin/route add -host 192.168.10.172 dev lo:0
[root@localhost network-scripts]# route add -host 192.168.10.172 dev lo:0
#httpd服务的安装
[root@localhost ~]# yum -y install httpd
[root@localhost ~]# vi /var/www/html/index.html
test web01
#内核参数的设置
[root@localhost ~]# vi /etc/sysctl.conf
net.ipv4.conf.all.arp_ignore = 1
net.ipv4.conf.all.arp_announce = 2
net.ipv4.conf.default.arp_ignore = 1
net.ipv4.conf.default.arp_announce = 2
net.ipv4.conf.lo.arp_ignore = 1
net.ipv4.conf.lo.arp_announce = 2
#开启httpd服务
[root@localhost ~]# systemctl start httpd

关键字：LVS+Keepalived群集

本网仅为发布的内容提供存储空间，不对发表、转载的内容提供任何形式的保证。凡本网注明“来源：XXX网络”的作品，均转载自其它媒体，著作权归作者所有，商业转载请联系作者获得授权，非商业转载请注明出处。

我们尊重并感谢每一位作者，均已注明文章来源和作者。如因作品内容、版权或其它问题，请及时与我们联系，联系邮箱：809451989@qq.com，投稿邮箱：809451989@qq.com

责任编辑：