http://www.bitbi.biz/centos-6-2-keepalivedhaproxy-%E5%AE%89%E8%A3%85%E6%B5%8B%E8%AF%95-2912/
Haproxy 不用多说了,她可以做4/7层代理,本文是利用Haproxy的7层代理与Keepalived实现一个负载均衡器
OS:centos6.2(64bit)
MASTER:192.168.1.67
BACKUP:192.168.1.68
VIP:192.168.1.100
Service Port:8080
|
vi /etc/rsyslog.conf
#加入以下四行
$ModLoad imudp.so
$UDPServerRun 514
$UDPServerAddress 127.0.0.1
local2.* /var/log/haproxy.log
|
sed
-i
's:SELINUX=enforcing:SELINUX=disabled:g'
/etc/selinux/config
|
iptables -A INPUT -d 224.0.0.18 -j ACCEPT
|
#先安装epel包
yum
install
haproxy
#上面安装好了这步就可跳过,haproxy编译安装,
#mkdir -p /home/install/keepalived1
#cd /home/install/keepalive1
#wget http://haproxy.1wt.eu/download/1.4/src/haproxy-1.4.18.tar.gz
#tar -zxvf haproxy-1.4.18.tar.gz
#cd haproxy-1.4.18
#make install
#mkdir -p /usr/local/haproxy/etc
#mkdir -p /usr/local/haproxy/sbin
#cp examples/haproxy.cfg /usr/local/haproxy/etc
#ln -s /usr/local/sbin/haproxy /usr/local/haproxy/sbin/haproxy
#查看haproxy配置
cat
/etc/haproxy/haproxy
.cfg
#全局配置
global
log 127.0.0.1 local2
chroot
/var/lib/haproxy
pidfile
/var/run/haproxy
.pid
maxconn 4000
user haproxy
group haproxy
daemon
# turn on stats unix socket
#stats socket /var/lib/haproxy/stats
########默认配置############
defaults
#默认的模式mode { tcp|http|health },tcp是4层,http是7层,health只会返回OK
mode http
log global
#option http-server-close
#option forwardfor except 127.0.0.0/8
option httplog
#两次连接失败就认为是服务器不可用,也可以通过后面设置
retries 3
option dontlognull
#当serverId对应的服务器挂掉后,强制定向到其他健康的服务器
option redispatch
#当服务器负载很高的时候,自动结束掉当前队列处理比较久的链接
option abortonclose
#默认的最大连接数
maxconn 2000
timeout http-keep-alive 10s
timeout queue 1m
#连接超时
timeout connect 5000ms
#客户端超时
timeout client 30000ms
#服务器超时
timeout server 30000ms
#心跳检测超时
timeout check 5s
########test1配置#################
listen test1 192.168.1.100:8080
mode http
option httplog
balance roundrobin
server s1 192.168.1.59:8080 maxconn 2000 check inter 10s fall 1 rise 2
server s2 192.168.1.60:8080 maxconn 2000 check inter 10s fall 1 rise 2
########统计页面配置########
listen admin_stats
stats
enable
#监听端口
bind 192.168.1.67:8000
#http的7层模式
mode http
#采用http日志格式
option httplog
log global
maxconn 10
#统计页面自动刷新时间
stats refresh 30s
#统计页面url
stats uri
/stats
#统计页面密码框上提示文本
stats realm DW-
test
-Haproxy
#统计页面用户名和密码设置,还是要修改一下的
stats auth admin:admin
stats admin
if
TRUE
#隐藏统计页面上HAProxy的版本信息
stats hide-version
#haproxy配置结束
#
#
#
#运行haproxy
/etc/init
.d
/haproxy
start
#测试一下
|
mkdir
-p
/home/install/keepalived1
cd
/home/install/keepalived1
wget http:
//www
.keepalived.org
/software/keepalived-1
.2.2.
tar
.gz
tar
zxvf keepalived-1.2.2.
tar
.gz
cd
keepalived-1.2.2
.
/configure
make
&&
make
install
cp
/usr/local/etc/rc
.d
/init
.d
/keepalived
/etc/rc
.d
/init
.d/
cp
/usr/local/etc/sysconfig/keepalived
/etc/sysconfig/
mkdir
/etc/keepalived
cp
/usr/local/etc/keepalived/keepalived
.conf
/etc/keepalived/
cp
/usr/local/sbin/keepalived
/usr/sbin/
#keepalived配置
cat
/etc/keepalived/keepalived
.conf
global_defs {
notification_email {
}
notification_email_from [email protected]
smtp_connect_timeout 3
smtp_server 127.0.0.1
router_id HA_DEVEL_1
}
vrrp_script chk_haproxy {
#监测haproxy
script
"killall -0 haproxy"
#2s检查一次
interval 2
weight 2
}
vrrp_instance VI_1 {
interface eth0
#从为BACKUP
state MASTER
#从为100
priority 101
#路由ID,可通过#tcpdump vrrp查看。
virtual_router_id 50
#主从切换时间,单位为秒。
garp_master_delay 1
authentication {
auth_type PASS
#主从要一样,记得改一下哦
auth_pass XXXXXXXXXX
}
virtual_ipaddress {
192.168.1.100
#VIP
}
#将Linux中你想监控的网络接口卡监控起来,当其中的一块出现故障是keepalived都将视为路由器出现故障
track_interface {
eth0
eth1
}
track_script {
chk_haproxy
}
#状态通知
# notify_master "/etc/keepalived/Mailnotify.py master"
# notify_backup "/etc/keepalived/Mailnotify.py backup"
# notify_fault "/etc/keepalived/Mailnotify.py fault"
}
#keepalived配置结束
#
#
#启动相关服务
/etc/init
.d
/haproxy
start
/etc/init
.d
/keepalived
start
#查看有没有节点记录
tcpdump vrrp
|
访问http://192.168.1.67:8000/stats
注:关于keepalive里的状态通知,这里借用一下天斯 的python脚本
Mailnotify.py
#!/usr/local/bin/python
#coding: utf-8
from
email.MIMEMultipart
import
MIMEMultipart
from
email.MIMEText
import
MIMEText
from
email.MIMEImage
import
MIMEImage
from
email.header
import
Header
import
sys
import
smtplib
#---------------------------------------------------------------
# Name: Mailnotify.py
# Purpose: Mail notify to SA
# Author: Liutiansi
# Email: [email protected]
# Created: 2011/03/09
# Copyright: (c) 2011
#--------------------------------------------------------------
smtp_server
=
'smtp.domain.com'
smtp_pass
=
'123456'
if
sys.argv[
1
]!
=
"master"
and
sys.argv[
1
]!
=
"backup"
and
sys.argv[
1
]!
=
"fault"
:
sys.exit()
else
:
notify_type
=
sys.argv[
1
]
mail_title
=
'[紧急]负载均衡器邮件通知'
mail_body_plain
=
notify_type
+
'被激活,请做好应急处理。'
mail_body_html
=
''
+
notify_type
+
'被激活,请做好应急处理。'
msgRoot
=
MIMEMultipart(
'related'
)
msgRoot[
'Subject'
]
=
Header(mail_title,
'utf-8'
)
msgRoot[
'From'
]
=
strFrom
msgRoot[
'To'
]
=
strTo
msgAlternative
=
MIMEMultipart(
'alternative'
)
msgRoot.attach(msgAlternative)
msgText
=
MIMEText(mail_body_plain,
'plain'
,
'utf-8'
)
msgAlternative.attach(msgText)
msgText
=
MIMEText(mail_body_html,
'html'
,
'utf-8'
)
msgAlternative.attach(msgText)
smtp
=
smtplib.SMTP()
smtp.connect(smtp_server)
smtp.login(smtp_user,smtp_pass)
smtp.sendmail(strFrom, strTo, msgRoot.as_string())
smtp.quit()
|
然后放在/etc/keepalived 目录下(记得修改脚本里的邮箱地址),chmod +x /etc/keepalived/Mailnotify.py
把keepalived.conf的 “#状态通知” 以下的注释去掉,重启keepalived服务就可以了,嘿嘿