LVS DR SOP

1.1虚拟机地址信息
LVS-DR模式
DR1:172.31.0.29
DR2:172.31.0.28
RS1:172.31.0.25
RS2:172.31.0.26
lvs-client:172.31.0.35

1.2防火墙规则
添加vrrp协议端口号(112)

2、安装LVS+Keepalived软件
2.1、在DR1上安装ipvsadm和keepalived
yum install -y ipvsadm && yum install -y keepalived
2.2、在DR2上安装ipvsadm和keepalived
yum install -y ipvsadm && yum install -y keepalived

3、修改DR1系统配置文件
3.1、在DR1备份原来Keepalived自带的配置文件
mv /etc/keepalived/keepalived.conf /etc/keepalived/keepalived.conf.bak
3.2、自己写入如下配置文件内容
vim /etc/keepalived/keepalived.conf
vrrp_instance VI_1 {
#nopreempt
state BACKUP
virtual_router_id 201
priority 200
interface eth0
advert_int 1
authentication {
auth_type PASS
auth_pass 1111
}
garp_master_delay 10
preempt_delay 300
#debug

virtual_ipaddress {
172.31.0.201 dev eth0
}
}

virtual_server 172.31.0.201 12345 {
delay_loop 6
lb_algo wrr
lb_kind DR
persistence_timeout 300
protocol TCP

real_server 172.31.0.25 12345 {
weight 1
TCP_CHECK {
connect_timeout 10
#nb_get_retry 3
delay_before_retry 3
connect_port 12345
}
}

real_server 172.31.0.26 12345 {
weight 1
TCP_CHECK {
connect_timeout 10
#nb_get_retry 3
delay_before_retry 3
connect_port 12345
}
}
}

virtual_server 172.31.0.201 12350 {
delay_loop 6
lb_algo wrr
lb_kind DR
persistence_timeout 300
protocol TCP

real_server 172.31.0.25 12350 {
weight 1
TCP_CHECK {
connect_timeout 10
#nb_get_retry 3
delay_before_retry 3
connect_port 12350
}
}

real_server 172.31.0.26 12350 {
weight 1
TCP_CHECK {
connect_timeout 10
#nb_get_retry 3
delay_before_retry 3
connect_port 12350
}
}
}3.2.1启动keepalived并且配置开机自启
Systemctl start keepalived && systemctl enable keepalived
3.3、添加系统优化参数
3.3.1、备份sysctl.conf配置文件
cp /etc/sysctl.conf /etc/sysctl.conf.bak
3.3.2、添加如下参数
vim /etc/sysctl.conf
net.ipv4.ip_local_port_range=1024 65000
net.ipv4.tcp_mem=94500000 915000000 927000000
net.core.netdev_max_backlog=262144
net.ipv4.conf.all.arp_filter=1
#net.ipv4.conf.default.arp_filter=1
net.ipv4.conf.all.rp_filter=0
net.ipv4.conf.default.rp_filter=0
net.ipv4.tcp_max_orphans=262144
net.ipv4.tcp_max_syn_backlog=262144
net.ipv4.tcp_synack_retries=1
net.ipv4.tcp_syncookies=1
net.ipv4.tcp_tw_reuse=1
net.ipv4.tcp_tw_recycle=1
net.ipv4.tcp_max_tw_buckets=100000
net.ipv4.tcp_timestamps=0
net.ipv4.tcp_fin_timeout=30
net.ipv4.tcp_keepalive_time=600
net.ipv4.tcp_keepalive_probes=3
net.ipv4.tcp_keepalive_intvl=15
vm.swappiness=20
vm.vfs_cache_pressure=200
kernel.shmmax=2147483648
kernel.shmall=134217728
kernel.shmmni=4096
kernel.perf_event_max_sample_rate=100000
net.ipv4.ip_forward=1
#net.netfilter.nf_conntrack_max=41237300
#net.netfilter.nf_conntrack_tcp_timeout_established=180
3.3.2、添加/etc/security/limits.d/99-limits.conf参数
vim /etc/security/limits.d/99-limits.conf
root soft nofile 65535
root hard nofile 65535
* soft nofile 65535
* hard nofile 65535
root soft nproc 65535
root hard nproc 65535
* soft nproc 65535
* hard nproc 65535
root soft core 1048576
root hard core 1048576
* soft core 1048576
* hard core 1048576
3.4查看LVS主机ipvsadm策略
[root@lvs01 ~]# ipvsadm -ln
IP Virtual Server version 1.2.1 (size=4096)
Prot LocalAddress:Port Scheduler Flags
-> RemoteAddress:Port Forward Weight ActiveConn InActConn
TCP 172.31.0.201:12345 wrr persistent 300
-> 172.31.0.25:12345 Route 1 69 295
-> 172.31.0.26:12345 Route 1 50 180
TCP 172.31.0.201:12350 wrr persistent 300
-> 172.31.0.25:12350 Route 1 0 0
-> 172.31.0.26:12350 Route 1 3 0

4、在DR2上执行同DR1相同步骤操作
4.1、在DR2备份原来Keepalived自带的配置文件
mv /etc/keepalived/keepalived.conf /etc/keepalived/keepalived.conf.bak
4.2、自己写入如下配置文件内容
vim /etc/keepalived/keepalived.conf
vrrp_instance VI_1 {
#nopreempt
state BACKUP
virtual_router_id 201
priority 190
interface eth0
advert_int 1
authentication {
auth_type PASS
auth_pass 1111
}
garp_master_delay 10
preempt_delay 300
#debug

virtual_ipaddress {
172.31.0.201 dev eth0
}
}

virtual_server 172.31.0.201 12345 {
delay_loop 6
lb_algo wrr
lb_kind DR
persistence_timeout 300
protocol TCP

real_server 172.31.0.25 12345 {
weight 1
TCP_CHECK {
connect_timeout 10
#nb_get_retry 3
delay_before_retry 3
connect_port 12345
}
}

real_server 172.31.0.26 12345 {
weight 1
TCP_CHECK {
connect_timeout 10
#nb_get_retry 3
delay_before_retry 3
connect_port 12345
}
}
}

virtual_server 172.31.0.201 12350 {
delay_loop 6
lb_algo wrr
lb_kind DR
persistence_timeout 300
protocol TCP

real_server 172.31.0.25 12350 {
weight 1
TCP_CHECK {
connect_timeout 10
#nb_get_retry 3
delay_before_retry 3
connect_port 12350
}
}

real_server 172.31.0.26 12350 {
weight 1
TCP_CHECK {
connect_timeout 10
#nb_get_retry 3
delay_before_retry 3
connect_port 12350
}
}
}4.2.1启动keepalived并且配置开机自启
Systemctl start keepalived && systemctl enable keepalived
4.3、添加系统优化参数
4.3.1、备份sysctl.conf配置文件
cp /etc/sysctl.conf /etc/sysctl.conf.bak
4.3.2、添加如下参数
vim /etc/sysctl.conf
net.ipv4.ip_local_port_range=1024 65000
net.ipv4.tcp_mem=94500000 915000000 927000000
net.core.netdev_max_backlog=262144
net.ipv4.conf.all.arp_filter=1
#net.ipv4.conf.default.arp_filter=1
net.ipv4.conf.all.rp_filter=0
net.ipv4.conf.default.rp_filter=0
net.ipv4.tcp_max_orphans=262144
net.ipv4.tcp_max_syn_backlog=262144
net.ipv4.tcp_synack_retries=1
net.ipv4.tcp_syncookies=1
net.ipv4.tcp_tw_reuse=1
net.ipv4.tcp_tw_recycle=1
net.ipv4.tcp_max_tw_buckets=100000
net.ipv4.tcp_timestamps=0
net.ipv4.tcp_fin_timeout=30
net.ipv4.tcp_keepalive_time=600
net.ipv4.tcp_keepalive_probes=3
net.ipv4.tcp_keepalive_intvl=15
vm.swappiness=20
vm.vfs_cache_pressure=200
kernel.shmmax=2147483648
kernel.shmall=134217728
kernel.shmmni=4096
kernel.perf_event_max_sample_rate=100000
net.ipv4.ip_forward=1
#net.netfilter.nf_conntrack_max=41237300
#net.netfilter.nf_conntrack_tcp_timeout_established=180
4.3.2、添加/etc/security/limits.d/99-limits.conf参数
vim /etc/security/limits.d/99-limits.conf
root soft nofile 65535
root hard nofile 65535
* soft nofile 65535
* hard nofile 65535
root soft nproc 65535
root hard nproc 65535
* soft nproc 65535
* hard nproc 65535
root soft core 1048576
root hard core 1048576
* soft core 1048576
* hard core 1048576
4.4查看ipvsadm策略
[root@sh-gtja-lvs02 ~]# ipvsadm -ln
IP Virtual Server version 1.2.1 (size=4096)
Prot LocalAddress:Port Scheduler Flags
-> RemoteAddress:Port Forward Weight ActiveConn InActConn
TCP 172.31.0.201:12345 wrr persistent 300
-> 172.31.0.25:12345 Route 1 0 0
-> 172.31.0.26:12345 Route 1 0 0
TCP 172.31.0.201:12350 wrr persistent 300
-> 172.31.0.25:12350 Route 1 0 0
-> 172.31.0.26:12350 Route 1 0 0

5、在后端RS上执行如下脚本
5.1在RS1上编写LVS-DR脚本内筒如下
[root@RS1 ~]# cat lvs-dr.sh
# vim /usr/local/sbin/lvs_dr_rs.sh
#! /bin/bash
vip=172.31.0.201
ifconfig lo:0 $vip broadcast $vip netmask 255.255.255.255 up
route add -host $vip eth0:0
echo "1" >/proc/sys/net/ipv4/conf/lo/arp_ignore
echo "2" >/proc/sys/net/ipv4/conf/lo/arp_announce
echo "1" >/proc/sys/net/ipv4/conf/all/arp_ignore
echo "2" >/proc/sys/net/ipv4/conf/all/arp_announce
5.2.1设置脚本开机自启
vim /etc/rc.d/rc.local
bash /root/lvs_dr_rs.sh
chmod +x /etc/rc.d/rc.local
5.2在RS2上编写LVS-DR脚本内筒如下
[root@RS2 ~]# cat lvs-dr.sh
# vim /usr/local/sbin/lvs_dr_rs.sh
#! /bin/bash

LVS-DR模式 SOP的更多相关文章

  1. LVS DR模式 负载均衡服务搭建

    LVS 负载均衡 最近在研究服务器负载均衡,阅读了网上的一些资料,发现主要的软件负载均衡方案有nginx(针对HTTP服务的负载均衡),LVS(针对IP层,MAC层的负载均衡).LVS模式工作在网络层 ...

  2. 一个公网地址部署LVS/DR模式

    http://blog.chinaunix.net/uid-7411781-id-3436142.html 一个公网地址部署LVS/DR模式   网上看了很多关于LVS的文章,在选取2种模式LVS/D ...

  3. LVS DR模式搭建、keepalived+lvs

    1.LVS DR模式搭建 条件: 即三台机器,在同一内网. 编辑脚本文件:/usr/local/sbin/lvs_dr.sh #! /bin/bashecho 1 > /proc/sys/net ...

  4. LVS DR模式搭建 keepalived lvs

    LVS DR模式搭建• 三台机器 • 分发器,也叫调度器(简写为dir)172.16.161.130 • rs1 172.16.161.131 • rs2 172.16.161.132 • vip 1 ...

  5. lvs之 lvs+nginx+tomcat_1、tomcat_2+redis(lvs dr 模式)

    前提:已经安装好 lvs+nginx+tomcat_1.tomcat_2+redis环境 ,可参考 (略有改动,比如tomcat_1.tomcat_2安装在两台机器上,而不是单机多实例 ,自行稍稍变动 ...

  6. CentOS下LVS DR模式负载均衡配置详解

    一安装LVS准备: 1.准备4台Centos 6.2 x86_64 注:本实验关闭 SELinux和IPtables防火墙. 管理IP地址 角色 备注 192.168.1.101 LVS主调度器(Ma ...

  7. Keepalived+LVS DR模式高可用架构实践

    Keepalived最初是为LVS设计,专门监控各服务器节点的状态(LVS不带健康检查功能,所以使用keepalived进行健康检查),后来加入了VRRP(虚拟路由热备协议(Virtual Route ...

  8. Linux centosVMware Linux集群架构LVS DR模式搭建、keepalived + LVS

    一.LVS DR模式搭建 三台机器 分发器,也叫调度器(简写为dir) davery :1.101 rs1 davery01:1.106 rs2 davery02:11.107 vip 133.200 ...

  9. LVS DR模式实验

    LVS DR模式实验 三台虚拟机,两个台节点机(Apache),一台DR实验调度机 一:关闭相关安全机制 systemctl stop firewalld iptables -F setenforce ...

  10. lvs dr 模式请求过程

    一. lvs dr 模式请求过程 1.整个请求过程如下: client在发起请求之前,会发一个arp广播的包,在网络中找"谁是vip",由于所有的服务器,lvs和rs都有vip,为 ...

随机推荐

  1. Vue 插槽

    插槽的概念: 插槽的关键字slot,默认情况下,组件中的模板会覆盖组件中的原始内容(即自定义标签对内部的内容会不显示),解决办法就是使用插槽. 组件的原始内容: 即在vue实例范围之内,因此可以调用实 ...

  2. python常见问题汇总

    1.python使用selenium中的时间等待 a.强制等待 time.sleep() b.隐式等待: 如果某些元素不是立即可用的,隐式等待是告诉WebDriver去等待一定的时间后去查找元素. 默 ...

  3. MFC中创建自定义消息

    消息映射.循环机制是Windows程序运行的基本方式.VC++ MFC 中有许多现成的消息句柄,可当我们需要完成其它的任务,需要自定义消息,就遇到了一些困难.在MFC ClassWizard中不允许添 ...

  4. java 方法的重载

    方法的重载:一个类中允许出现一个以上的同名方法,必须保证同名方法的参数列表不同    好处:方便阅读,优化程序设计    重载规则:重载方法名相同,但每个重载方法都必须有一个独一无二的参数类型列表,方 ...

  5. pyCharm中BeautifulSoup应用

    BeautifulSoup 是第三方库的工具,它包含在一个名为bs4的文件包中,需要额外安装,安装方式 非常简单,进入python的安装目录,再进入scripts子目录,找到pip程序, pip in ...

  6. mongo-2ds索引对超过半球范围的适用性测试

    以下测试均基于mongo v4.0 win10 一.GeoJSON GeoJSON是一种基于json的经纬度描述数据格式.在这里主要服务于2dsphere索引查询. 基本格式  <type:&q ...

  7. 喝汤 beautifulsoup 批量爬取图片

    未成功 from urllib.request import urlopen import re import random base_url = "http://www.meizitu.c ...

  8. 【Linux】【Kernel】一个简单的内核模块例子

    1.本地主机的参数 zhangjun@zhangjun-virtual-machine:~$ uname -a Linux zhangjun-virtual-machine 4.4.0-31-gene ...

  9. fdisk语法

    Linux下的fdisk功能是极其强大的,用它可以划分出最复杂的分区,下面简要介绍一下它的用法: 对于IDE硬盘,每块盘有一个设备名:对应于主板的四个IDE接口,设备名依次为:/dev/hda,/de ...

  10. LGOJ P2921 [USACO08DEC]在农场万圣节Trick or Treat on the Farm

    今天我来给大家带来一片蒟蒻题解 ~~真香 LGOJ P2921  [USACO08DEC]在农场万圣节Trick or Treat on the Farm 题目描述 每年,在威斯康星州,奶牛们都会穿上 ...