lvs实现Linux集群

 一.通过NAT实现虚拟服务器(L VS/NAT)实验环境:
  实验环境:
  Client: CIP:10.0.0.5/24
  Director:VIP:10.0.0.1/24
  DIP:192.168.0.1/24
  Realserver1: RIP:192.168.0.222/24
  Realserver2: RIP:192.168.0.223/24
  实验拓扑图:
  
  
  IPVS配置:
  [root@node2 ~]# yum install ipvsadm -y
  [root@node2 ~]# ipvsadm -L -n
  IP Virtual Server version 1.2.1 (size=4096)
  Prot LocalAddress:Port Scheduler Flags
  -> RemoteAddress:Port Forward Weight ActiveConn InActConn
  [root@node2 ~]# echo 1 > /proc/sys/net/ipv4/ip_forward
  [root@node2 ~]# cat /proc/sys/net/ipv4/ip_forward
  1
  [root@node2 ~]# service iptables stop
  [root@node2 ~]# ipvsadm -A -t 10.0.0.1:80 -s rr
  [root@node2 ~]# ipvsadm -a -t 10.0.0.1:80 -r 192.168.0.222:80 -m
  [root@node2 ~]# ipvsadm -a -t 10.0.0.1:80 -r 192.168.0.223:80 -m
  [root@node2 ~]# ipvsadm -L -n
  IP Virtual Server version 1.2.1 (size=4096)
  Prot LocalAddress:Port Scheduler Flags
  -> RemoteAddress:Port Forward Weight ActiveConn InActConn
  TCP 10.0.0.1:80 rr
  -> 192.168.0.223:80 Masq 1 0 0
  -> 192.168.0.222:80 Masq 1 0 0
  realserver1和realserver2配置:
  [root@station7 html]# yum install httpd –y
  [root@station7 html]#service httpd restart
  注意:
  需配置网关,分别指向director内网地址
  在client测试(轮显如下realserver上的服务):
  
  
  小结:
  1. RIP和DIP在同一网段,并且都是私有地址.
  2. RIP网关需指向DIP,否则无法成功的.

  3.Director的防火墙需要关闭
                                                            
                                                            
  二.通过直接路由实现虚拟服务器(LVS/DR)
  实验环境:
  Client: CIP:192.168.0.100/24
  Director:VIP:192.168.0.210/32(条件限制我们这里用同一网段地址)
  DIP:192.168.0.1/24
  Realserver1: RIP:192.168.0.222/24 VIP:192.168.0.210/32
  Realserver2: RIP:192.168.0.223/24 VIP:192.168.0.210/32
  这里需要接触到VIP隐藏,参加《LVS中VIP隐藏的实现》篇
  实验拓扑图:
  
  IPVS配置:
  [root@node2 ~]# echo 1 > /proc/sys/net/ipv4/ip_forward
  [root@node2 ~]# cat /proc/sys/net/ipv4/ip_forward
  1
  [root@node2 ~]# route add -host 192.168.0.210 dev eth0
  [root@node2 ~]# route -n
  Kernel IP routing table
  Destination Gateway Genmask Flags Metric Ref Use Iface
  192.168.0.210 * 255.255.255.255 UH 0 0 0 eth0
  192.168.0.0 * 255.255.255.0 U 0 0 0 eth1
  169.254.0.0 * 255.255.0.0 U 0 0 0 eth1
  [root@node2 ~]# ipvsadm -C
  [root@node2 ~]# ipvsadm -A -t 192.168.0.210:80 -s wlc
  [root@node2 ~]# ipvsadm -a -t 192.168.0.210:80 -r 192.168.0.222 -w 1 -g
  [root@node2 ~]# ipvsadm -a -t 192.168.0.210:80 -r 192.168.0.223 -w 3 -g
  [root@node2 ~]# ipvsadm -L -n
  IP Virtual Server version 1.2.1 (size=4096)
  Prot LocalAddress:Port Scheduler Flags
  -> RemoteAddress:Port Forward Weight ActiveConn InActConn
  TCP 192.168.0.210:80 wlc
  -> 192.168.0.223:80 Route 3 0 0
  -> 192.168.0.222:80 Route 1 0 0
  
  realserver1和realserver2配置两者一样:
  [root@station7 html]# echo 1 > /proc/sys/net/ipv4/conf/lo/arp_ignore
  [root@station7 html]# echo 1 > /proc/sys/net/ipv4/conf/all/arp_ignore

  [root@station7 html]# echo 2 > /proc/sys/net/ipv4/conf/all/arp_announce
  [root@station7 html]# echo 2 > /proc/sys/net/ipv4/conf/lo/arp_announce
  [root@station7 html]# ifconfig lo: 192.168.0.210 broadcast 192.168.0.210 netmask 255.255.255.255 up
  [root@station7 html]# route add -host 192.168.0.210 dev lo:0
  [root@station7 html]# route -n
  Kernel IP routing table
  Destination Gateway Genmask Flags Metric Ref Use Iface
  192.168.0.210 0.0.0.0 255.255.255.255 UH 0 0 0 lo
  192.168.0.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
  169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0
  在客户端我们地址栏我们输入http://192.168.0.210会轮显realserver
  
  
  以上知识仅为集群的一些基础知识.在下篇我们一起来学习实际应用中集群的应用
  1.LVS中隐藏IP的实现
  2.iptables标记
  3.HA高可用性集群 (heartbeat)
  4.ldirectord解决主备节点“脑裂”问题
  5.drbd和 mon应用

你可能感兴趣的:(linux,职场,休闲,ipvs)