keepalived+lvs+haproxy
关注
分享
扫一扫
y_zilong
书读百遍 其义自见
展开
-
HAProxy https实现
haproxy可以实现https的证书安全,从用户搭配haproxy为https,从haproxy到后端服务器通信,但基于性能考虑,生产中证书都是在后端服务器比如nginx上实现证书制作[root@cen7_17 ~]# mkdir /etc/haproxy/certs[root@cen7_17 ~]# cd /etc/haproxy/certs/[root@cen7_17 certs]# openssl req -x509 -newkey rsa:2048 -subj "/CN=www.yz原创 2021-06-24 16:22:11 · 605 阅读 · 0 评论 -
HAProxy对redis和mysql服务实现四层负载
haproxy的配置注意:如果使用frontend和backend,一定在frontend和backend段中都指定mode tcp[root@cen7_27 ~]# cat /etc/haproxy/conf.d/test.cfg listen web_port_80 bind 10.0.0.27:80 mode http balance roundrobin cookie WEBSRV insert nocache indirect server 10.0.0.原创 2021-06-23 22:16:07 · 373 阅读 · 0 评论 -
haproxy socat工具上线和下线后端服务器脚本
[root@cen7_27 ~]# cat haproxy_host_up_down.sh #!/bin/bash. /etc/init.d/functionscase $1 in up) echo "set weight web_port_80/$2 1" |socat stdio /var/lib/haproxy/haproxy.sock [ $? -eq 0 ] && action "$2 is up" ;;down) echo "set weigh.原创 2021-06-22 14:37:46 · 316 阅读 · 0 评论 -
编译安装HAProxy
由于centos7之前版本自带的lua版本比较低并不符合HAproxy要求的lua最低版本(5.3)的要求,因此需要安装较新版本的lua环境,然后才能编译安装HAproxy,过程如下:编译安装lua#当前系统版本[root@cen7_27 ~]# lua -vLua 5.1.4 Copyright (C) 1994-2008 Lua.org, PUC-Rio#安装基本命令及编译依赖环境[root@cen7_27 ~]# yum install gcc readline-devel[r原创 2021-06-21 21:03:49 · 827 阅读 · 0 评论 -
Keepalived实现单主模式的Nginx反向代理的高可用
在两个节点都配置nginx反向代理[root@ka1 ~]# vim /etc/nginx/nginx.confhttp { upstream websrvs { server 10.0.0.40:80 weight=1; server 10.0.0.50:80 weight=1; } server { listen 80; location / { proxy_pass http://websrvs/;}}原创 2021-06-19 21:21:53 · 263 阅读 · 0 评论 -
Keepalived实现双主的LVS-DR模式
[root@ka1 ~]# cat /etc/keepalived/keepalived.confglobal_defs { notification_email { 123456@163.com } notification_email_from 123456@qq.com smtp_server 127.0.0.1 smtp_connect_timeout 30 router_id ka1.example.com vrrp_skip_check_a.原创 2021-06-19 19:47:46 · 170 阅读 · 0 评论 -
keepalived实现单主的LVS-DR模式
准备web服务器并使用脚本绑定VIP至web服务器lo网卡#准备两台后端RS主机[root@rs1 ~]# cat lvs_dr_rs.sh #!/bin/bashvip=10.0.0.100mask='255.255.255.255'dev=lo:1rpm -q httpd $> /dev/null || yum -y install httpd &> /dev/nullservice httpd start &> /dev/null &&am原创 2021-06-19 17:51:57 · 166 阅读 · 0 评论 -
利用子配置文件实现master/master的keepalived双主架构
vrrp_instance m1 { state MASTER interface ens33 virtual_router_id 66 priority 100 advert_int 1 preempt_delay 10 authentication { auth_type PASS auth_pass 123456 } virtual_ipaddress { 10.0.0.100/24 .原创 2021-06-19 13:05:34 · 125 阅读 · 0 评论 -
Keepalived通知脚本配置
邮件配置qq邮箱配置[root@ka1 ~]# vi /etc/mail.rc 在最下面添加下面行set from=123456@qq.comset smtp=smtp.qq.comset smtp-auth-user=123456@qq.comset smtp-auth-password=tubnnnxdaqyacagd set smtp-auth=loginset ssl-verify=ignore[root@ka1 ~]# ...原创 2021-06-19 11:36:18 · 898 阅读 · 0 评论 -
实现master/slave的Keepalived单主架构
[root@ka1 ~]# yum install -y keepalived[root@ka1 ~]# systemctl enable --now keepalived.service[root@ka1 ~]# ps auxf |grep keepalivedroot 28262 0.0 0.0 12112 968 pts/0 S+ 08:15 0:00 | \_ grep --color=auto keepalived[root@.原创 2021-06-19 10:56:21 · 144 阅读 · 0 评论