红旗认证辅导:LVS集群学习笔记解析
前期预告:试验情形 Red Hat Enterprise Linux 4 U2
软件版本 ipvsadm-1.24.tar.gz
编译安装注重
#pwd
/usr/src
#ln -s kernels/2.6.9-22.EL.i686 linux 假如没有目录则安装RPEM包kernel-devel-2.6.9-22.EL
#rpmbuild -tb ipvsadm-1.24.tar.gz
#rpm -ivh /usr/src/redhat/RPEM/i386/ipvsadm-1.24-6.i386.rpm
正常使用时提醒:
# ipvsadm
IP Virtual Server version 1.2.0
Prot LocalAddress:Port Scheduler Flags
- RemoteAddress:Port Forward Weight ActiveConn InActConn
一、NAT体例
Load Balance:192.168.1.1
Virtual IP: 10.0.0.1
RealServer1: 192.168.1.2
RealServer2: 192.168.1.3
nameserver: 192.168.1.1
gateway: 192.168.1.1
1.开启路由机制
#echo 1 /proc/sys/net/ipv4/ip_forward
注重:
永远改削要改削sysctl.conf
2.加载nat模块
#modprobe iptable_nat
注重:
用lsmod搜检,另假如不加载此模块,也可以在第一次访谒时成功,可是会在再次访谒时呈现延迟过长,或访谒超时现象。
3.加载rule
#ipvsadm -A -t 10.0.0.1:80 -s rr
#ipvsadm -a -t 10.0.0.1:80 -r 192.168.1.2:80 -m
#ipvsadm -a -t 10.0.0.1:80 -r 192.168.1.3:80 -m
rr 轮询体例
-m 设置为NAT体例
4.保留rule
#ipvsadm ——save /etc/sysconfig/ipvsadm
5.邦定vip
#ifconfig eth0:1 10.0.0.1 netmask 255.255.255.0 borcast 10.0.0.255
6.RealServer设置
RealServer1:
ip: 192.168.1.2
gateway: 192.168.1.1
nameserver: 192.168.1.1
开启HTTP处事,确认自己能够访谒。
RealServer2:
ip: 192.168.1.3
gateway: 192.168.1.1
nameserver: 192.168.1.1
开启HTTP处事,确认自己能够访谒。页面与realserver1分歧就可以。
7.测试
选择一台主机,ip设置10.0.0.2 ,访谒http://10.0.0.1一再刷新网页,每次呈现的网页分歧则暗示成功。
二、Direct Routing体例
Load Balance:192.168.1.1
Virtual IP: 10.0.0.1
RealServer1: 192.168.1.2
RealServer2: 192.168.1.3
nameserver: 192.168.1.254
gateway: 192.168.1.254
1.开启路由机制
#echo 1 /proc/sys/net/ipv4/ip_forward
注重:
永远改削要改削sysctl.conf
2.加载rule
#ipvsadm -A -t 10.0.0.1:80 -s rr
#ipvsadm -a -t 10.0.0.1:80 -r 192.168.1.2:80 -g
#ipvsadm -a -t 10.0.0.1:80 -r 192.168.1.3:80 -g
rr 轮询体例
-g 设置为DR体例
3.保留rule
#ipvsadm ——save /etc/sysconfig/ipvsadm
4.邦定vip
红旗认证辅导:LVS集群学习笔记解析
#ifconfig eth0:1 10.0.0.1 netmask 255.255.255.0 borcast 10.0.0.2554.RealServer设置
RealServer1:
ip: 192.168.1.2
gateway: 192.168.1.254
nameserver: 192.168.1.254
#ifconfig lo:1 10.0.0.1 netmask 255.255.255.255 borcast 10.0.0.1
#echo 1 /proc/sys/net/ipv4/conf/lo/arp_ignore 注释:这四句目的是为了封锁ARP广播响应
#echo 2 /proc/sys/net/ipv4/conf/lo/arp_announce
#echo 1 /proc/sys/net/ipv4/conf/all/arp_ignore
#echo 2 /proc/sys/net/ipv4/conf/all/arp_announce
开启HTTP处事,确认自己能够访谒。
RealServer2:
ip: 192.168.1.3
gateway: 192.168.1.254
nameserver: 192.168.1.254
#ifconfig lo:1 10.0.0.1 netmask 255.255.255.255 borcast 10.0.0.1
#echo 1 /proc/sys/net/ipv4/conf/lo/arp_ignore
#echo 2 /proc/sys/net/ipv4/conf/lo/arp_announce
#echo 1 /proc/sys/net/ipv4/conf/all/arp_ignore
#echo 2 /proc/sys/net/ipv4/conf/all/arp_announce
开启HTTP处事,确认自己能够访谒。页面与realserver1分歧就可以。
5.测试
在网关作测试即可,其一一块ip设置10.0.0.2 ,另一块设置192.168.1.254。访谒http://10.0.0.1,一再刷新网页,每次呈现的网页分歧则暗示成功。
三、IP Tunnel体例
vpn server:
eth0:10.0.0.3
gateway server:
eth0:10.0.0.2
eth1:192.168.1.254
gatewat server2:
eth0:10.0.0.4
eth1:172.0.0.254
LVS Director Servers:
Load Balance:192.168.1.1
Virtual IP: 10.0.0.1
nameserver: 192.168.1.254
gateway: 192.168.1.254
RealServer1:
ip: 192.168.1.2
gateway: 192.168.1.254
nameserver: 192.168.1.254
tun0: 20.0.0.1
RealServer2:
ip: 172.0.0.1
gateway: 172.0.0.254
nameserver: 172.0.0.254
tun0: 20.0.0.2
1.开启路由机制
#echo 1 /proc/sys/net/ipv4/ip_forward
注重:
永远改削要改削sysctl.conf
2.加载rule
#ipvsadm -A -t 10.0.0.1:80 -s rr
#ipvsadm -a -t 10.0.0.1:80 -r 20.0.0.1:80 -i
#ipvsadm -a -t 10.0.0.1:80 -r 20.0.0.2:80 -i
rr 轮询体例
-i 设置为IP Tunnel体例
3.保留rule
#ipvsadm ——save /etc/sysconfig/ipvsadm
4.邦定vip
#ifconfig eth0:1 10.0.0.1 netmask 255.255.255.0 borcast 10.0.0.255
5.RealServer设置
RealServer1:
ip: 192.168.1.2
gateway: 192.168.1.254
nameserver: 192.168.1.254
tun0: 20.0.0.1
#ifconfig tunl0 10.0.0.1 netmask 255.255.255.255 borcast 10.0.0.1
#echo 1 /proc/sys/net/ipv4/conf/tunl0/arp_ignore 注释:这四句目的是为了封锁ARP广播响应
#echo 2 /proc/sys/net/ipv4/conf/tunl0/arp_announce
#echo 1 /proc/sys/net/ipv4/conf/all/arp_ignore
#echo 2 /proc/sys/net/ipv4/conf/all/arp_announce
开启HTTP处事,确认自己能够访谒。
RealServer2:
RealServer2:
ip: 172.0.0.1
gateway: 172.0.0.254
nameserver: 172.0.0.254
tun0: 20.0.0.2
#ifconfig tunl0 10.0.0.1 netmask 255.255.255.255 borcast 10.0.0.1
#echo 1 /proc/sys/net/ipv4/conf/tunl0/arp_ignore
#echo 2 /proc/sys/net/ipv4/conf/tunl0/arp_announce #echo 1 /proc/sys/net/ipv4/conf/all/arp_ignore
#echo 2 /proc/sys/net/ipv4/conf/all/arp_announce
开启HTTP处事,确认自己能够访谒。页面与realserver1分歧就可以。
6.测试
在网关作测试即可,访谒http://10.0.0.1一再刷新网页,每次呈现的网页分歧则暗示成功
页:
[1]