lvs+keepalived+nginx實現高性能負載均衡集群 高性能jsp集群
LVS-backup:192.168.254.135
LVS-VIP:192.168.254.88
nginx+tomcat:192.168.254.131
nginx+tomcat:192.168.254.132
nginx+tomcat:192.168.254.133
(根據需求可以添加多個)
安裝基礎包
yum install -y gcc-c++ pcre pcre-devel zlib zlib-devel openssl openssl-devel
安裝nginx
(下載路徑自己選擇)
下載nginx1.14.0穩定版本
wget http://nginx.org/download/nginx-1.14.0.tar.gz
進入解壓好後的源碼目錄:cd nginx-1.14.0
使用默認配置:./configure
編譯並安裝nginx:make && make install
啟動nginx:/usr/local/nginx/sbin/nginx
快速停止nginx:/usr/local/nginx/sbin/nginx -s stop
優雅停止nginx(會將正在處理中的請求處理完畢):/usr/local/nginx/sbin/nginx -s quit
檢測配置是否錯誤:/usr/local/nginx/sbin/nginx -t
重新加載配置:/usr/local/nginx/sbin/nginx -s reload
vim /etc/init.d/nginx
並在其中寫入如下內容:
#!/bin/bash
#chkconfig: - 30 21
#description: http service.
#Source Function Library
. /etc/init.d/functions
#Nginx Settings
NGINX_SBIN="/usr/local/nginx/sbin/nginx"
NGINX_CONF="/usr/local/nginx/conf/nginx.conf"
NGINX_PID="/usr/local/nginx/logs/nginx.pid"
prog="Nginx"
start() {
echo -n $"Starting $prog: "
mkdir -p /dev/shm/nginx_temp
daemon $NGINX_SBIN -c $NGINX_CONF
RETVAL=$?
echo
return $RETVAL
}
stop() {
echo -n $"Stopping $prog: "
killproc -p $NGINX_PID $NGINX_SBIN -TERM
rm -rf /dev/shm/nginx_temp
RETVAL=$?
echo
return $RETVAL
}
reload(){
echo -n $"Reloading $prog: "
killproc -p $NGINX_PID $NGINX_SBIN -HUP
RETVAL=$?
echo
return $RETVAL
}
restart(){
stop
start
}
configtest(){
$NGINX_SBIN -c $NGINX_CONF -t
return 0
}
case "$1" in
start)
start
;;
stop)
stop
;;
reload)
reload
;;
restart)
restart
;;
configtest)
configtest
;;
*)
echo $"Usage: $0 {start|stop|reload|
restart|configtest}"
RETVAL=1
esac
exit $RETVAL
並更改文件的執行權限:chmod 755 /etc/init.d/nginx
加入系統服務啟動列表 :chkconfig --add nginx
並使開機啟動:chkconfig nginx on
開啟服務 : service nginx start 或者 /etc/init.d/nginx start|stop|restart
查看nginx頁面是否可以正常訪問。
http://192.168.254.131/
安裝基礎環境jdk
wget http://download.oracle.com/otn-pub/java/jdk/8u171-b11/512cd62ec5174c3487ac17c61aaa89e8/jdk-8u171-linux-x64.tar.gz?AuthParam=1530931780_fdbf6ecf3dfcc8e6eb6fcef06a7eaaec
tar -zxf jdk-8u171-linux-x64.tar.gz -C /usr/local/
cd /usr/local/
mv jdk1.8.0_171/ jdk1.8
vi /etc/profile
在最後添加jdk環境變量
export JAVA_HOME=/usr/local/jdk1.8
export PATH=$JAVA_HOME/bin:$PATH
export CLASSPATH=.:$JAVA_HOME/lib/dt.jar:$JAVA_HOME/lib/tools.jar
使環境變量生效
source /etc/profile
查看jdk版本
java -version
java version "1.8.0_171"
Java(TM) SE Runtime Environment (build 1.8.0_171-b11)
Java HotSpot(TM) 64-Bit Server VM (build 25.171-b11, mixed mode)
查看jdk路徑
echo $JAVA_HOME
/usr/local/jdk1.8
安裝tomcat
wget http://mirrors.hust.edu.cn/apache/tomcat/tomcat-9/v9.0.10/bin/apache-tomcat-9.0.10.tar.gz
tar -zxf apache-tomcat-9.0.10.tar.gz
mv apache-tomcat-9.0.10 /usr/local/tomcat
創建項目目錄
mkdir -p /home/www/web/ (裏面寫個index.jsp)
vi index.jsp (保存推出即可)
修改tomcat 訪問路徑
cd /usr/local/tomcat/conf/
vi server.xml
<Host name="localhost" appBase="/home/www/web"
unpackWARs="true" autoDeploy="true">
這一行是添加的
<Context path="" docBase="/home/www/web" reloadable="true"/>
查看tomcat頁面是否可以正常訪問
http://192.168.254.131:8080/
配置nginx和tomcat 負載均衡/反向代理
cd /usr/local/nginx/conf/
vi nginx.conf
user www www;
worker_processes 4;
error_log /usr/local/nginx/logs/error.log;
error_log /usr/local/nginx/logs/error.log notice;
error_log /usr/local/nginx/logs/error.log info;
pid /usr/local/nginx/logs/nginx.pid;
#工作模式及連接數上限
events {
use epoll;
worker_connections 65535;}
#設定http服務器,利用它的反向代理功能提供負載均衡支持
http {
#設定mime類型
include mime.types;
default_type application/octet-stream;
include /usr/local/nginx/conf/proxy.conf;
log_format main ‘$remote_addr - $remote_user [$time_local] "$request" ‘
‘$status $body_bytes_sent "$http_referer" ‘
‘"$http_user_agent" "$http_x_forwarded_for"‘;
access_log logs/access.log main;
#設定請求緩沖
server_names_hash_bucket_size 128;
client_header_buffer_size 32K;
large_client_header_buffers 4 32k;
# client_max_body_size 8m;
sendfile on;
tcp_nopush on;
tcp_nodelay on;
#keepalive_timeout 0;
keepalive_timeout 65;
gzip on;
gzip_min_length 1k;
gzip_buffers 4 16k;
gzip_http_version 1.1;
gzip_comp_level 2;
gzip_types text/plain application/x-javascript text/css application/xml;
gzip_vary on;
#此處為你tomcat的地址,可以寫多個tomcat地址
upstream tomcat_pool {
server 192.168.254.133:8080 weight=4 max_fails=2 fail_timeout=30s;
server 192.168.254.132:8080 weight=4 max_fails=2 fail_timeout=30s;
server 192.168.254.131:8080 weight=4 max_fails=2 fail_timeout=30s;
}
server {
listen 80;
server_name www.web2.com;#此處替換為你自己的網址,如有多個中間用空格
index index.jsp index.htm index.html index.do;#設定訪問的默認首頁地址
root /home/www/web; #設定網站的資源存放路徑
#charset koi8-r;
#access_log logs/host.access.log main;
location / {
# root html;
index index.jsp index.html index.htm;
}
location ~ \.(jsp|jspx|dp)?$ #所有JSP的頁面均交由tomcat處理
{
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_pass http://tomcat_pool;#轉向tomcat處理
}
#設定訪問靜態文件直接讀取不經過tomcat
location ~ .*\.(htm|html|gif|jpg|jpeg|png|bmp|swf|ioc|rar|zip|txt|flv|mid|doc|ppt|pdf|xls|mp3|wma)$
{
expires 30d;
}
location ~ .*\.(js|css)?$
{
expires 1h;
}
access_log /usr/local/nginx/logs/ubitechtest.log main;#設定訪問日誌的存放路徑
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root html;
}
# pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
#
#location ~ \.php$ {
# root html;
# fastcgi_pass 127.0.0.1:9000;
# fastcgi_index index.php;
# fastcgi_param SCRIPT_FILENAME /scripts$fastcgi_script_name;
# include fastcgi_params;
#}
# deny access to .htaccess files, if Apache‘s document root
# concurs with nginx‘s one
#
#location ~ /\.ht {
# deny all;
#}
}
server {
listen 80;
server_name bbs.yourdomain.com;
location / {
root /home/www/web/springmvc; #設定網站的資源存放路徑
index index.jsp index.htm index.html index.do welcome.jsp;#設定訪問的默認首頁地址
}
location ~ \.(jsp|jspx|dp)?$ #所有JSP的頁面均交由tomcat處理
{
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_pass http://tomcat_pool;#轉向tomcat處理
}
#設定訪問靜態文件直接讀取不經過tomcat
location ~ .*\.(htm|html|gif|jpg|jpeg|png|bmp|swf|ioc|rar|zip|txt|flv|mid|doc|ppt|pdf|xls|mp3|wma)$
{
expires 30d;
}
location ~ .*\.(js|css)?$
{
expires 1h;
}
access_log /usr/local/nginx/logs/ubitechztt.log main;#設定訪問日誌的存放路徑
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root html;
}
}
# another virtual host using mix of IP-, name-, and port-based configuration
#
#server {
# listen 8000;
# listen somename:8080;
# server_name somename alias another.alias;
# location / {
# root html;
# index index.html index.htm;
# }
#}}
創建用戶www和用戶組www為該文件目錄的使用權限者
/usr/sbin/groupadd www
/usr/sbin/useradd -g www www -s /sbin/nologin
mkdir -p /home/www
chmod +w /home/www
chown -R www:www/home/www
vi /usr/local/nginx/conf/proxy.conf
proxy_redirect off;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
client_max_body_size 10m;
client_body_buffer_size 128k;
proxy_connect_timeout 90;
proxy_send_timeout 90;
proxy_read_timeout 90;
proxy_buffer_size 4k;
proxy_buffers 4 32k;
proxy_busy_buffers_size 64k;
proxy_temp_file_write_size 64k;
/usr/local/nginx/sbin/nginx -t
nginx: the configuration file /usr/local/nginx/conf/nginx.conf syntax is ok
nginx: configuration file /usr/local/nginx/conf/nginx.conf test is successful
簡單測試
3個nginx都可以分別訪問代理的三個tomcat 。
[root@Zabbix conf]# curl 192.168.254.131
2222222222222222222222222222222222222222
[root@Zabbix conf]# curl 192.168.254.131
33333333333333333333333333333
[root@Zabbix conf]# curl 192.168.254.131
111111111111111111111111111111111111111
ok,到此,nginx和tomcat 完成了。
(註意:以上每組配置都一樣)
安裝lvs+keepalived。
yum -y install ipvsadm keepalived (yum安裝就不多說了 )
開啟路由轉發
永久開啟
echo "net.ipv4.ip_forward = 1" >> /etc/sysctl.conf
sysctl -p ----加載,使得配置文件立即生效
檢查:
sysctl -a |grep "ip_forward"
net.ipv4.ip_forward = 1
net.ipv4.ip_forward_use_pmtu = 0
配置keepalived(master配置)
vi /etc/keepalived/keepalived.conf
! Configuration File for keepalived
global_defs {
notification_email {[email protected]
br/>[email protected]
notification_email_from [email protected]
smtp_server 127.0.0.1
smtp_connect_timeout 30
router_id LVS_MASTER #備份服務器上將MASTER改為BACKUP
}
vrrp_instance VI_1 {
state BACKUP #備份服務器上將MASTER改為BACKUP
interface ens32 #該網卡名字需要查看具體服務器的網口
virtual_router_id 51
priority 100 # 備份服務上將100改為90
nopreempt
advert_int 1
authentication {
auth_type PASS
auth_pass 1111
}
virtual_ipaddress {
192.168.254.88
#(如果有多個VIP,繼續換行填寫.)
}
}
virtual_server 192.168.254.88 80 {
delay_loop 6 #(每隔6秒查詢realserver狀態)
lb_algo rr #(rr 算法)
lb_kind DR #(Direct Route)
persistence_timeout 50 #(同一IP的連接60秒內被分配到同一臺realserver)
protocol TCP #(用TCP協議檢查realserver狀態)
real_server 192.168.254.131 80 {
weight 1 #(權重)
TCP_CHECK {
connect_timeout 10 #(10秒無響應超時)
nb_get_retry 3
delay_before_retry 3
connect_port 80
}
}
real_server 192.168.254.132 80 {
weight 1
TCP_CHECK {
connect_timeout 10
nb_get_retry 3
delay_before_retry 3
connect_port 80
}
}
real_server 192.168.254.133 80 {
weight 1
TCP_CHECK {
connect_timeout 10
nb_get_retry 3
delay_before_retry 3
connect_port 80
}
}}
backup配置
vi /etc/keepalived/keepalived.conf
! Configuration File for keepalived
global_defs {
notification_email {[email protected]
br/>[email protected]
notification_email_from [email protected]
smtp_server 127.0.0.1
smtp_connect_timeout 30
router_id LVS_BACKUP #備份服務器上將MASTER改為BACKUP
}
vrrp_instance VI_2 {
state BACKUP #備份服務器上將MASTER改為BACKUP
interface ens32 #該網卡名字需要查看具體服務器的網口
virtual_router_id 51
priority 90 # 備份服務上將100改為90
nopreempt
advert_int 1
authentication {
auth_type PASS
auth_pass 1111
}
virtual_ipaddress {
192.168.254.88
#(如果有多個VIP,繼續換行填寫.)
}
}
virtual_server 192.168.254.88 80 {
delay_loop 6 #(每隔6秒查詢realserver狀態)
lb_algo rr #(rr 算法)
lb_kind DR #(Direct Route)
persistence_timeout 50 #(同一IP的連接60秒內被分配到同一臺realserver)
protocol TCP #(用TCP協議檢查realserver狀態)
real_server 192.168.254.131 80 {
weight 1 #(權重)
TCP_CHECK {
connect_timeout 10 #(10秒無響應超時)
nb_get_retry 3
delay_before_retry 3
connect_port 80
}
}
real_server 192.168.254.132 80 {
weight 1
TCP_CHECK {
connect_timeout 10
nb_get_retry 3
delay_before_retry 3
connect_port 80
}
}
real_server 192.168.254.133 80 {
weight 1
TCP_CHECK {
connect_timeout 10
nb_get_retry 3
delay_before_retry 3
connect_port 80
}
}}
service keepalived start
ens32: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 00:0c:29:e3:f4:ff brd ff:ff:ff:ff:ff:ff
inet 192.168.254.135/24 brd 192.168.254.255 scope global noprefixroute ens32
valid_lft forever preferred_lft forever
inet 192.168.254.88/32 scope global ens32
valid_lft forever preferred_lft forever
顯示虛擬IP 啟動好了
最後就是在ngnx 服務器上配置
vi /etc/init.d/realserver
#!/bin/bashSNS_VIP=192.168.254.88
/etc/rc.d/init.d/functions
case "$1" in
start)
ifconfig lo:0 $SNS_VIP netmask 255.255.255.255 broadcast $SNS_VIP
/sbin/route add -host $SNS_VIP dev lo:0
echo "1" >/proc/sys/net/ipv4/conf/lo/arp_ignore
echo "2" >/proc/sys/net/ipv4/conf/lo/arp_announce
echo "1" >/proc/sys/net/ipv4/conf/all/arp_ignore
echo "2" >/proc/sys/net/ipv4/conf/all/arp_announce
sysctl -p >/dev/null 2>&1
echo "RealServer Start OK"
;;
stop)
ifconfig lo:0 down
route del $SNS_VIP >/dev/null 2>&1
echo "0" >/proc/sys/net/ipv4/conf/lo/arp_ignore
echo "0" >/proc/sys/net/ipv4/conf/lo/arp_announce
echo "0" >/proc/sys/net/ipv4/conf/all/arp_ignore
echo "0" >/proc/sys/net/ipv4/conf/all/arp_announce
echo "RealServer Stoped"
;;
*)
echo "Usage: $0 {start|stop}"
exit 1
esac
exit 0
chmod 755 /etc/init.d/realserver
service realserver start
lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet 192.168.254.88/32 brd 192.168.254.88 scope global lo:0
valid_lft forever preferred_lft forever
看到虛擬IP 就好了
(同理在其他nginx服務器都要操作)
測試
[root@data-node1 ~]# curl 192.168.254.88444444444444444444444444
[root@data-node1 ~]# curl 192.168.254.88
55555555555555555555555555
[root@data-node1 ~]# curl 192.168.254.88
22222222222222222222222222222222222222222222222222222
[root@data-node1 ~]# curl 192.168.254.88
444444444444444444444444
[root@data-node1 ~]# curl 192.168.254.88
33333333333333333333333333333
[root@data-node1 ~]# curl 192.168.254.88
111111111111111111111111111111111111111
lvs+keepalived+nginx實現高性能負載均衡集群 高性能jsp集群