keepalived--部署过程

一.简介

Keepalived使用的vrrp协议方式，虚拟路由冗余协议 (Virtual Router Redundancy Protocol)；

Heartbeat或Corosync是基于主机或网络服务的高可用方式；
Keepalived的目的是模拟路由器的高可用，Heartbeat的目的是实现Service的高可用。
Keepalived经常使用的前端高可用的组合有，LVS+Keepalived、Nginx+Keepalived、HAproxy+Keepalived。
Heartbeat常见的组合有Heartbeat v3(Corosync)+Pacemaker+NFS+Httpd 实现Web服务器的高可用、Heartbeat v3(Corosync)+Pacemaker+NFS+MySQL 实现MySQL服务器的高可用。

keepalived能够认为是VRRP协议在Linux上的实现，主要有三个模块，分别是core、check和vrrp。
core模块为keepalived的核心，负责主进程的启动、维护以及全局配置文件的加载和解析。
check负责健康检查，包括常见的各类检查方式。
vrrp模块是来实现VRRP协议的。

二.环境

       ip                     负载－反向代理        高可用                             vip

192.168.15.106                nginx                 Keepalived             192.168.15.102

192.168.15.105                nginx                 Keepalived             192.168.15.102

三.keepalived安装

1.下载
wget http://www.keepalived.org/software/keepalived-1.3.2.tar.gz
２.安装
tar xf keepalived-1.3.2.tar.gz
cd keepalived-1.3.2
./configure
make && make install
cp /usr/local/src/keepalived-1.3.2/keepalived/etc/init.d/keepalived /etc/init.d/
cp /usr/local/etc/sysconfig/keepalived /etc/sysconfig/
mkdir /etc/keepalived
cp /usr/local/etc/keepalived/keepalived.conf /etc/keepalived/
cp /usr/local/sbin/keepalived /usr/sbin/

四.配置

1,master

cp /etc/keepalived/keepalived.conf /etc/keepalived/keepalived.conf.bak
vim /etc/keepalived/keepalived.conf

! Configuration File for keepalived
#邮件接受
global_defs {
   notification_email {
     acassen@firewall.loc
     failover@firewall.loc
     sysadmin@firewall.loc
   }
   notification_email_from Alexandre.Cassen@firewall.loc
   smtp_server 127.0.0.1
   smtp_connect_timeout 30
   router_id LVS_DEVEL
   vrrp_skip_check_adv_addr
   vrrp_strict
   vrrp_garp_interval 0
   vrrp_gna_interval 0
}
＃监控脚本，监控nginx每两秒运行一次
vrrp_script chk_http_port {      
    script "/opt/chk_nginx.sh"  
    interval 2                  
    weight -5                    
    fall 2                    
    rise 1                    
}

vrrp_instance VI_1 {
    state MASTER
    interface eth0  　　＃网卡
    mcast_src_ip 192.168.15.105
    virtual_router_id 51
    priority 100　　＃权重
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass 1111　　　　＃密码master和slave必须一致
    }
    virtual_ipaddress {
        192.168.15.102　　　　#vip
    }
track_script {   
   chk_http_port    
}
}

2.slave　

cp /etc/keepalived/keepalived.conf /etc/keepalived/keepalived.conf.bak
vim /etc/keepalived/keepalived.conf

! Configuration File for keepalived

global_defs {
notification_email {                
ops@wangshibo.cn                     
tech@wangshibo.cn
}
  
notification_email_from ops@wangshibo.cn  
smtp_server 127.0.0.1                    
smtp_connect_timeout 30                 
router_id slave-node                    
}
  
vrrp_script chk_http_port {         
    script "/opt/chk_nginx.sh"   
    interval 2                      
    weight -5                       
    fall 2                   
    rise 1                  
}
  
vrrp_instance VI_1 {            
    state BACKUP           
    interface eth0            
    mcast_src_ip 192.168.15.106  
    virtual_router_id 51        
    priority 99            #从要小于主   
    advert_int 1               
    authentication {            
        auth_type PASS         
        auth_pass 1111          
    }
    virtual_ipaddress {        
        192.168.15.102
    }
track_script {                     
   chk_http_port                 
}
}

3.开启防火墙

vim /etc/sysconfig/iptables

-A INPUT -d 224.0.0.0/8 -i eth0 -j ACCEPT

/etc/init.d/iptables restart

五.nginx的监控脚本

vim /opt/chk_nginx.sh

#!/bin/bash
counter=$(ps -C nginx --no-heading|wc -l)
if [ "${counter}" = "0" ]; then
    /usr/local/nginx/sbin/nginx
    sleep 2
    counter=$(ps -C nginx --no-heading|wc -l)
    if [ "${counter}" = "0" ]; then
        /etc/init.d/keepalived stop
    fi
fi