First environment requires:
LVS: Main 192.168.238.141
LVS: Preparation of 192.168.238.142
VIP: IP 192.168.238.181
web1 : 192.168.238.131
web2 : 192.168.238.132
Ipvsadm installation and service keepalived on LVS
yum -y install ipvsadm keepalived
Configuration profiles increase keepalived VIP address and web server address in the primary LVS
vim /etc/keepalived/keepalived.conf Modifications are as follows: virtual_ipaddress { 192.168 . 238.181 #VIP address } virtual_server 192.168 . 238.181 80 {#VIP address delay_loop 6 lb_algo rr #rr algorithm lb_kind DR #DR mode Persistence_timeout # 50 conversation held in 50 seconds nat_mask 255,255 . 255.0 protocol TCP real_server 192.168 . 238.133 80 {# server address web1 weight 1 TCP_CHECK {# health checks connect_prot 80 # 80 to check the connection port connect_timeout 3 nb_get_retry 3 delay_before_retry 3 } } real_server 192.168.238.134 80 { weight 1 TCP_CHECK { connect_prot 80 connect_timeout 3 nb_get_retry 3 delay_before_retry 3 } } }
Preparation of the same modified LVS
Xintian following changes
modify the BACKUP state (to the standby state)
prioity 90 (90 to less than the main priority)
Turn off the firewall service restart keepalived
ip a VIP checks to see if
Increase LVS rule
First increase VIP ipvsadm -A -t 192.168.238.181:80 -s rr Increase web server address ipvsadm -a -t 192.168.238.181:80 -r 192.168.238.133:80 -g ipvsadm -a -t 192.168.238.181:80 -r 192.168.238.133:80 -g
After the completion of the increase can be viewed through -Ln ipvsadm
The following operation is performed two end web
Copy out a loopback interface is convenient VIP
cd /etc/sysconfig/network-scripts/ cp ifcfg-lo ifcfg-lo:0 vim ifcfg-lo:0: Modify the following DEVICE=lo:0 IPADDR=192.168.238.181 NETMASK=255.255.255.255 ONBOOT=yes
Modify arp level
Response level echo 1 > /proc/sys/net/ipv4/conf/lo/arp_ignore echo 1 > /proc/sys/net/ipv4/conf/all/arp_ignore Notice level echo 2 > /proc/sys/net/ipv4/conf/lo/arp_announce echo 2 > /proc/sys/net/ipv4/conf/all/arp_announce
Increased routing
route add 192.168.238.181 dev lo
Written test page in a web end and turn off the firewall
VIP access through the successful test page appears!