VIP: 192.168.1.98
LVS主:192.168.1.216 (redhat5-2.6.18-194.el5-x86_64)
LVS备:192.168.1.217 (redhat5-2.6.18-194.el5-x86_64)
real_server1:192.168.1.220 (suse11)
real_server2:192.168.1.226 (redhat5)
一、LVS主、备上都安装ipvsadm + keepalived
安装ipvsadm-1.24
1, wget http://www.linuxvirtualserver.org/software/kernel-2.6/ipvsadm-1.24.tar.gz
2,创建一个连接文件:ln -sv /usr/src/kernels/2.6.18-194.el5-x86_64/ /usr/src/linux
3,解压:tar zxvf ipvsadm-1.24.tar.gz
4,安装:cd ipvsadm-1.24; make;make install
5,执行ipvsadm,检验ipvsadm 是否被正确安装
安装keepalived-1.1.20 (当前最新是1.2.2,发现安装不上,就选了1.1.*的最新一个版本)
1,wget http://www.keepalived.org/software/keepalived-1.1.20.tar.gz
2,解压:tar zxvf keepalived-1.1.20.tar.gz
3,安装:cd keepalived-1.1.20; ./configure –prefix=/usr/local/keepalive; make;make install
安装完成生成目录:/usr/local/keepalived
4,配置keepalived.conf :
vi /usr/local/keepalive/etc/keepalived/keepalived.conf
LVS主:
! Configuration File for keepalived global_defs { router_id LVS_DEVEL_1 } vrrp_sync_group VGM { group { VI_CACHE } } vrrp_instance VI_CACHE { state MASTER interface eth0 lvs_sync_daemon_inteface eth0 virtual_router_id 216 priority 150 advert_int 5 authentication { auth_type PASS auth_pass 1111 } virtual_ipaddress { 192.168.1.98 } } virtual_server 192.168.1.98 80 { delay_loop 6 lb_algo wlc lb_kind DR # persistence_timeout 50 (这里可以让访问的IP在一段时间转发到相同的real_server) protocol TCP real_server 192.168.1.226 80 { weight 100 TCP_CHECK { connect_timeout 5 nb_get_retry 3 delay_before_retry 3 connect_port 80 } } real_server 192.168.1.220 80 { weight 100 TCP_CHECK { connect_timeout 5 nb_get_retry 3 delay_before_retry 3 connect_port 80 } } }
LVS备的配置多和LVS主的配置一致,需要修改以下几段:
global_defs { router_id LVS_DEVEL_2 #随便取,不重复就行 }
vrrp_instance VI_CACHE { state BACKUP # interface eth0 lvs_sync_daemon_inteface eth0 virtual_router_id 217 #随便取,不重复就行 priority 100 #备比主的值小就行 advert_int 5 authentication { auth_type PASS auth_pass 1111 } virtual_ipaddress { 192.168.1.98 } }
配置完成。
LVS主/备启动keepalived。因为我的配置文件的路径不是/etc/keepalived/keepalived.conf
所以必须带上-f或--use-file
/usr/local/keepalive/sbin/keepalived --use-file /usr/local/keepalive/etc/keepalived/keepalived.conf
5,开启net.ipv4.ip_forward = 1 在 /etc/sysctl.conf 中,并使生效:sysctl -p
二、real_server都增加以下脚本并启动
#!/bin/bash #description : start realserver VIP=192.168.1.98 /etc/rc.d/init.d/functions case "$1" in start) echo " start LVS of REALServer" /sbin/ifconfig lo:0 $VIP broadcast $VIP netmask 255.255.255.255 up echo "1" >/proc/sys/net/ipv4/conf/lo/arp_ignore echo "2" >/proc/sys/net/ipv4/conf/lo/arp_announce echo "1" >/proc/sys/net/ipv4/conf/all/arp_ignore echo "2" >/proc/sys/net/ipv4/conf/all/arp_announce ;; stop) /sbin/ifconfig lo:0 down echo "close LVS Directorserver" echo "0" >/proc/sys/net/ipv4/conf/lo/arp_ignore echo "0" >/proc/sys/net/ipv4/conf/lo/arp_announce echo "0" >/proc/sys/net/ipv4/conf/all/arp_ignore echo "0" >/proc/sys/net/ipv4/conf/all/arp_announce ;; *) echo "Usage: $0 {start|stop}" exit 1 esac
启动:/usr/local/bin/lvs_real start
在局域网中的其它电脑上ping 192.168.1.98 ,如果不通请先检查防火墙相关设置。
正在 Ping 192.168.1.98 具有 32 字节的数据: 来自 192.168.1.98 的回复: 字节=32 时间=6ms TTL=64 来自 192.168.1.98 的回复: 字节=32 时间=1ms TTL=64 来自 192.168.1.98 的回复: 字节=32 时间=1ms TTL=64 来自 192.168.1.98 的回复: 字节=32 时间=1ms TTL=64
配置成功。