This script will monitor another NAT instance and take over its routes if communication with the other instance fails

[root@ip-10 bin]# cat nat_monitor.sh

#!/bin/sh

# This script will monitor another NAT instance and take over its routes

# if communication with the other instance fails

# NAT instance variables

# Other instance's ID to check and route to grab if other node goes down

NAT_ID=i-0273ed20b000000

NAT_RT_ID=rtb-000000a

# My route to grab when I come back up

My_RT_ID=rtb-000000b

# Specify the EC2 region that this will be running in (e.g. https://ec2.us-east-1.amazonaws.com)

EC2_URL=https://ec2.cn-north-1.amazonaws.com.cn

# Health Check variables

Num_Pings=3

Ping_Timeout=1

Wait_Between_Pings=2

Wait_for_Instance_Stop=60

Wait_for_Instance_Start=300

# Run aws-apitools-common.sh to set up default environment variables and to

# leverage AWS security credentials provided by EC2 roles

. /etc/profile.d/aws-apitools-common.sh

# Determine the NAT instance private IP so we can ping the other NAT instance, take over

# its route, and reboot it.  Requires EC2 DescribeInstances, ReplaceRoute, and Start/RebootInstances

# permissions.  The following example EC2 Roles policy will authorize these commands:

# {

#  "Statement": [

#    {

#      "Action": [

#        "ec2:DescribeInstances",

#        "ec2:CreateRoute",

#        "ec2:ReplaceRoute",

#        "ec2:StartInstances",

#        "ec2:StopInstances"

#      ],

#      "Effect": "Allow",

#      "Resource": "*"

#    }

#  ]

# }

# Get this instance's ID

Instance_ID=`/usr/bin/curl --silent http://169.254.169.254/latest/meta-data/instance-id`

# Get the other NAT instance's IP

NAT_IP=`/opt/aws/bin/ec2-describe-instances $NAT_ID -U $EC2_URL | grep PRIVATEIPADDRESS -m 1 | awk '{print $2;}'`

echo `date` "-- Starting NAT monitor"

echo `date` "-- Adding this instance to $My_RT_ID default route on start"

/opt/aws/bin/ec2-replace-route $My_RT_ID -r 0.0.0.0/0 -i $Instance_ID -U $EC2_URL

# If replace-route failed, then the route might not exist and may need to be created instead

if [ "$?" != "0" ]; then

   /opt/aws/bin/ec2-create-route $My_RT_ID -r 0.0.0.0/0 -i $Instance_ID -U $EC2_URL

fi

while [ . ]; do

  # Check health of other NAT instance

  pingresult=`ping -c $Num_Pings -W $Ping_Timeout $NAT_IP | grep time= | wc -l`

  # Check to see if any of the health checks succeeded, if not

  if [ "$pingresult" == "0" ]; then

    # Set HEALTHY variables to unhealthy (0)

    ROUTE_HEALTHY=0

    NAT_HEALTHY=0

    STOPPING_NAT=0

    while [ "$NAT_HEALTHY" == "0" ]; do

      # NAT instance is unhealthy, loop while we try to fix it

      if [ "$ROUTE_HEALTHY" == "0" ]; then

    	echo `date` "-- Other NAT heartbeat failed, taking over $NAT_RT_ID default route"

    	/opt/aws/bin/ec2-replace-route $NAT_RT_ID -r 0.0.0.0/0 -i $Instance_ID -U $EC2_URL

	ROUTE_HEALTHY=1

      fi

      # Check NAT state to see if we should stop it or start it again

      NAT_STATE=`/opt/aws/bin/ec2-describe-instances $NAT_ID -U $EC2_URL | grep INSTANCE | awk '{print $5;}'`

      if [ "$NAT_STATE" == "stopped" ]; then

    	echo `date` "-- Other NAT instance stopped, starting it back up"

        /opt/aws/bin/ec2-start-instances $NAT_ID -U $EC2_URL

	NAT_HEALTHY=1

        sleep $Wait_for_Instance_Start

      else

	if [ "$STOPPING_NAT" == "0" ]; then

    	  echo `date` "-- Other NAT instance $NAT_STATE, attempting to stop for reboot"

	  /opt/aws/bin/ec2-stop-instances $NAT_ID -U $EC2_URL

	  STOPPING_NAT=1

	fi

        sleep $Wait_for_Instance_Stop

      fi

    done

  else

    sleep $Wait_Between_Pings

  fi

done

add script to crontab, will run auto after booting

[root@ip-10 bin]# crontab -l

@reboot /root/bin/nat_monitor.sh >> /tmp/nat_monitor.log

AWS nat monitor and route switch script的更多相关文章

  1. AWS国际版的Route 53和CloudFront

    注册AWS国际版账号后,却发现Route 53和CloudFront功能是无法使用的.于是提交了一个Service Request,得到的答复是这两个功能需要验证后才能激活. 在控制台中点击进入Rou ...

  2. [转载]抓包,端口镜像,monitor session命令(转)

    原文地址:抓包,端口镜像,monitor session命令(转)作者:浮云皓月 一.SPAN简介 SPAN技术主要是用来监控交换机上的数据流,大体分为两种类型,本地SPAN和远程SPAN. --Lo ...

  3. 静态NAT、动态NAT

    静态NAT.动态NAT 实验拓扑: 实验目的:熟悉网络地址转换协议 掌握静态NAT 和动态NAT的配置 分析静态NAT 和动态NAT的区别 使用show命令来检查NAT的运行情况 实验要求:按拓扑图来 ...

  4. P4Lang Repository: Switch

    Github Switch Introduction Structure: +-----+ +-----+ +-----+ +-----+ |App a| |App j| |App n| |App z ...

  5. monitor.sh java脚本学习

    #! /bin/bash# unset any variable which system may be using# clear the screen while getopts ivh named ...

  6. react-router中,<switch>

    有<Switch>标签,则其中的<Route>在路径相同的情况下,只匹配第一个,这个可以避免重复匹配: 无<Switch>标签,则其中的<Route>在 ...

  7. juniper常用命令(二)

    Juniper防火墙基本命令 常用查看命令 Get int查看接口配置信息 Get int ethx/x查看指定接口配置信息 Get mip查看映射ip关系 Get route查看路由表 Get po ...

  8. juniper常用命令

    Juniper防火墙基本命令 get interface ethernet0/0  查看 端口 常用查看命令 Get int 查看接口配置信息 Get int ethx/x 查看指定接口配置信息  G ...

  9. 七天接手react项目 系列 —— react 路由

    其他章节请看: 七天接手react项目 系列 react 路由 本篇首先讲解路由原理,接着以一个基础路由示例为起点讲述路由最基础的知识,然后讲解嵌套路由.路由传参,最后讲解路由组件和一般组件的区别,以 ...

随机推荐

  1. Android开发——View绘制过程源码解析(二)

    0. 前言   View的绘制流程从ViewRoot的performTraversals开始,经过measure,layout,draw三个流程,之后就可以在屏幕上看到View了.上一篇已经介绍了Vi ...

  2. js面向对象过程

    var a = new  b(); 等价于 var a={}; a=b.prototype; b.call(a);

  3. JMeter上传图片

    JMeter怎样上传图片? 请注意图片的路径要与.jmx脚本的目录保持一致, 或者放在JMeter的bin目录下. 协议:http 服务器名称或IP:www.abcdef.com 方法:POST 路径 ...

  4. asm和file system之间数据文件的转换

    How to move a datafile from a file system to ASMMoving a datafile from the file system can be achive ...

  5. day02 智能合约

    上午 1>部署智能合约网络 语法 require 2>利用第三方的节点 同步到以太坊 3>智能合约部署的步骤: 1.查看区块 2.发布合约 deploy后台经历的事情:就是部署合约的 ...

  6. MongoDB的复制一:复制的原理

    1.复制的角色 复制有三种角色: primay:主库,执行所有的写操作,并把日志写入oplog里. secondary:复制主库的所有操作.读取主库的oplog,并执行日志里的内容.默认情况下,客户端 ...

  7. ByteArrayInputStream/ByteArrayOutputStream 学习

    ByteArrayInputStream: byte[] buff = new byte[1024]; ByteArrayInputStream bAIM = new ByteArrayInputSt ...

  8. C#中System.DBNull的问题

    今天写一个C#的数据库Demo,第一个功能,用户登录,数据库中用户表(Staff)最后一个字段ZP(呵呵,PowerDesigner中文直接翻译的)照片字段为空, 我的登录逻辑是通过用户名以及密码查询 ...

  9. poj1789 Truck History最小生成树

    Truck History Time Limit: 2000MS   Memory Limit: 65536K Total Submissions: 20768   Accepted: 8045 De ...

  10. I/O流任务

    一.完成以下链接[https://www.cnblogs.com/zhrb/p/6834084.html]中的任务3.4.5. 3. 字符编码 主要讲解中文乱码问题,FileReader.InputS ...