lvs学习手札3-HA-liuhanzhao-ChinaUnix博客

蚊子的世界wenzizone.blog.chinaunix.net

首页　| 　博文目录　| 　关于我

liuhanzhao

博客访问： 320136
博文数量： 50
博客积分： 3052
博客等级：中校
技术积分： 710
用户组：普通用户
注册时间： 2007-12-03 12:13

文章分类

全部博文（50）

存储相关（4）
工具（1）
视频相关（2）
web相关（5）
windows相关（1）
非技术类文章（4）
数据库相关（1）
freebsd（1）
linux系统相关（20）
squid相关（11）
未分配的博文（0）

文章存档

2009年（10）

2008年（40）

我的朋友

liang339

相关博文

lvs学习手札3-HA

分类： LINUX

2008-05-10 15:53:23

上次总结了我使用ldirectord实现对后端服务器进行健康检查及lvs的功能，今天有时间，看了一下ha的实现，通过使用heartbeat软件解决LB单点的问题，由于家里电脑配置的关系，我只使用了两个虚拟机linux01，linux02，这两台既做RS又做LB
结构如下

linux01（vip：153.128)-------------------linux02(vip:153.128)
（192.168.153.129） (192.168.153.130)
(master) (slave)

两台机器均是独立网卡
操作系统我使用的是centos4.4

yum -y install ipvsadm
heartbeat的安装参考我上篇文章，这里不在写出

安装完heartbeat后
cp heartbeatsrc/doc/authkeys heartbeatsrc/doc/ha.cf heartbeatsrc/doc/haresources /etc/ha.d/

vi /etc/ha.d/ha.cf，将如下参数前的注释去掉，并根据自己的实际要求进行调整

debugfile /var/log/ha-debug logfile /var/log/ha-log logfacility local0 keepalive 2 deadtime 30 warntime 10 initdead 120 udpport 694 bcast eth0 # Linux auto_failback on node linux01 #通过uanme -n得到 node linux02 ping_group group1 192.168.153.129 192.168.153.130 respawn hacluster /usr/lib/heartbeat/ipfail

vi /etc/ha.d/haresources文件，加入

linux01 closetunl 192.168.153.128 ldirectord::ldirectord.cf starttunl

vi /etc/ha.d/authkeys，将如下两行的注释去掉

# crc adds no security, except from packet corruption. # Use only on physically secure networks. # auth 1 1 crc #2 sha1 #3 md5

chomd 600 /etc/ha.d/authkeys

mkdir -p /etc/ha.d/conf
vi /etc/ha.d/conf/ldirectord.cf

# Global Directives checktimeout=30 checkinterval=10 #fallback=127.0.0.1:80 autoreload=yes logfile="/var/log/ldirectord.log" logfile="local0" #emailalert="admin@x.y.z" #emailalertfreq=3600 #emailalertstatus=all quiescent=yes # Sample for an http virtual service virtual=192.168.153.128:80 real=192.168.153.129:80 ipip real=192.168.153.130:80 ipip service=http request="index.html" scheduler=rr #persistent=600 #netmask=255.255.255.255 protocol=tcp checktype=negotiate checkport=80 request="index.html"

到此，一台机器就配置完毕，在另外一台上使用相同的配置
并在/etc/ha.d/resource.d下建立closetunl脚本，内容如下

#!/bin/sh

VIP=192.168.153.128 case "$1" in start) # close tunl0 interface echo $"Close tunl0 interface" /sbin/route del -host $VIP dev tunl0 /sbin/ifconfig tunl0 down echo "0">/proc/sys/net/ipv4/conf/all/arp_announce echo "0">/proc/sys/net/ipv4/conf/all/arp_ignore echo "0">/proc/sys/net/ipv4/conf/tunl0/arp_announce echo "0">/proc/sys/net/ipv4/conf/tunl0/arp_ignore ;; stop) # start tunl0 interface echo $"Start tunl0 interface" /sbin/ifconfig tunl0 $VIP/32 broadcast $VIP up /sbin/route add -host $VIP dev tunl0 echo "2">/proc/sys/net/ipv4/conf/all/arp_announce echo "1">/proc/sys/net/ipv4/conf/all/arp_ignore echo "2">/proc/sys/net/ipv4/conf/tunl0/arp_announce echo "1">/proc/sys/net/ipv4/conf/tunl0/arp_ignore ;; *) echo $"Usage: $0 (start|stop)" exit 1 ;; esac

/etc/ha.d/resource.d下建立starttunl脚本，

#!/bin/sh VIP=192.168.153.128 case "$1" in stop) # close tunl0 interface echo $"Close tunl0 interface" /sbin/route del -host $VIP dev tunl0 /sbin/ifconfig tunl0 down echo "0">/proc/sys/net/ipv4/conf/all/arp_announce echo "0">/proc/sys/net/ipv4/conf/all/arp_ignore echo "0">/proc/sys/net/ipv4/conf/tunl0/arp_announce echo "0">/proc/sys/net/ipv4/conf/tunl0/arp_ignore ;; start) # start tunl0 interface echo $"Start tunl0 interface" /sbin/ifconfig tunl0 $VIP/32 broadcast $VIP up /sbin/route add -host $VIP dev tunl0 echo "2">/proc/sys/net/ipv4/conf/all/arp_announce echo "1">/proc/sys/net/ipv4/conf/all/arp_ignore echo "2">/proc/sys/net/ipv4/conf/tunl0/arp_announce echo "1">/proc/sys/net/ipv4/conf/tunl0/arp_ignore ;; *) echo $"Usage: $0 (start|stop)" exit 1 ;; esac

以上两个文件在另外一台机器的相同文件夹下copy一份
至此，两台机器的配置工作就完成了，下面进行测试
首先在两台机器上执行/etc/ha.d/resource.d/starttunl start命令
然后使用/etc/init.d/heartbeat start来启动ha
使用ifconfig查看一下执行结果
linux01的

eth0 Link encap:Ethernet HWaddr 00:0C:29:D8:12:CA inet addr:192.168.153.129 Bcast:192.168.153.255 Mask:255.255.255.0 inet6 addr: fe80::20c:29ff:fed8:12ca/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:2894 errors:0 dropped:0 overruns:0 frame:0 TX packets:3394 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:333960 (326.1 KiB) TX bytes:488387 (476.9 KiB) Interrupt:185 Base address:0x1400 eth0:0 Link encap:Ethernet HWaddr 00:0C:29:D8:12:CA inet addr:192.168.153.128 Bcast:192.168.153.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 Interrupt:185 Base address:0x1400 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope:Host UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:1031 errors:0 dropped:0 overruns:0 frame:0 TX packets:1031 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:105022 (102.5 KiB) TX bytes:105022 (102.5 KiB) tunl0 Link encap:IPIP Tunnel HWaddr inet addr:192.168.153.128 Mask:0.0.0.0 UP RUNNING NOARP MTU:1480 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

linux02的

eth0 Link encap:Ethernet HWaddr 00:0C:29:D7:3C:D2 inet addr:192.168.153.130 Bcast:192.168.153.255 Mask:255.255.255.0 inet6 addr: fe80::20c:29ff:fed7:3cd2/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:1614 errors:0 dropped:0 overruns:0 frame:0 TX packets:1563 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:190618 (186.1 KiB) TX bytes:232555 (227.1 KiB) Interrupt:185 Base address:0x1400 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope:Host UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:288 errors:0 dropped:0 overruns:0 frame:0 TX packets:288 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:30359 (29.6 KiB) TX bytes:30359 (29.6 KiB) tunl0 Link encap:IPIP Tunnel HWaddr inet addr:192.168.153.128 Mask:0.0.0.0 UP RUNNING NOARP MTU:1480 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

由此可以发现在linux02中并没有eth0：0的接口
测试方法：
在linux01上执行/etc/init.d/heartbeat stop命令
在使用ifconfig命令查看接口
linux01

eth0 Link encap:Ethernet HWaddr 00:0C:29:D8:12:CA inet addr:192.168.153.129 Bcast:192.168.153.255 Mask:255.255.255.0 inet6 addr: fe80::20c:29ff:fed8:12ca/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:3329 errors:0 dropped:0 overruns:0 frame:0 TX packets:3836 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:394140 (384.9 KiB) TX bytes:552075 (539.1 KiB) Interrupt:185 Base address:0x1400 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope:Host UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:1359 errors:0 dropped:0 overruns:0 frame:0 TX packets:1359 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:138060 (134.8 KiB) TX bytes:138060 (134.8 KiB) tunl0 Link encap:IPIP Tunnel HWaddr inet addr:192.168.153.128 Mask:0.0.0.0 UP RUNNING NOARP MTU:1480 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

发现linux01上没有了eth0：0的接口了，在用ipvsadm看下

IP Virtual Server version 1.2.0 (size=4096) Prot LocalAddress:Port Scheduler Flags -> RemoteAddress:Port Forward Weight ActiveConn InActConn

没有了table
现在用ifconfig看下linux02上的接口

eth0 Link encap:Ethernet HWaddr 00:0C:29:D7:3C:D2 inet addr:192.168.153.130 Bcast:192.168.153.255 Mask:255.255.255.0 inet6 addr: fe80::20c:29ff:fed7:3cd2/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:2760 errors:0 dropped:0 overruns:0 frame:0 TX packets:2697 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:346756 (338.6 KiB) TX bytes:406694 (397.1 KiB) Interrupt:185 Base address:0x1400 eth0:0 Link encap:Ethernet HWaddr 00:0C:29:D7:3C:D2 inet addr:192.168.153.128 Bcast:192.168.153.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 Interrupt:185 Base address:0x1400 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope:Host UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:876 errors:0 dropped:0 overruns:0 frame:0 TX packets:876 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:92925 (90.7 KiB) TX bytes:92925 (90.7 KiB) tunl0 Link encap:IPIP Tunnel HWaddr inet addr:192.168.153.128 Mask:0.0.0.0 UP RUNNING NOARP MTU:1480 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

eth0：0的接口出现了，说明linux02接管了linux01的服务，在看下ipvsadm的情况

[root@linux02 resource.d]# ipvsadm IP Virtual Server version 1.2.0 (size=4096) Prot LocalAddress:Port Scheduler Flags -> RemoteAddress:Port Forward Weight ActiveConn InActConn TCP 192.168.153.128:http rr -> 192.168.153.129:http Tunnel 1 0 0 -> 192.168.153.130:http Local 1 0 0

linux02同样接管了lvs的服务

具体ldirectord的测试我就不做了，结论应该和我上篇文章是相同的

参考文章：

阅读(1363) | 评论(0) | 转发(0) |

上一篇：cacti运行故障解决

下一篇：squid日志中关键字的含义

给主人留下些什么吧！~~

感谢所有关心和支持过ChinaUnix的朋友们

16024965号-6