利用keepalived和haPRoxy配置MySQL的高可用負載均衡實驗系統:CentOS 6.6_x86_64(2.6.32-504.30.3.el6.x86_64)
實驗前提:防火墻和selinux都關閉
實驗說明:本實驗共有4臺主機,ip分配如拓撲
實驗軟件:keepalived-1.2.19 haproxy-1.5.14 mariadb-10.0.20
下載地址:http://pan.baidu.com/s/1bnnYiMr
實驗拓撲:
一�����、安裝mariadb
1.在兩臺數據庫服務器安裝:
tar xf mariadb-10.0.20-linux-x86_64.tar.gz -C /usr/local/cd /usr/local/ln -sv mariadb-10.0.20-linux-x86_64 mysqluseradd -r mysqlmkdir -pv /mydata/datachown -R mysql.mysql /mydata/data/cd mysql/chown -R root.mysql .scripts/mysql_install_db --user=mysql --datadir=/mydata/data/cp support-files/my-large.cnf /etc/my.cnfcp support-files/mysql.server /etc/init.d/mysqldchkconfig --add mysqldchkconfig mysqld on
2.配置主主復制:
19.74:
vim /etc/my.cnf ----------------------------------------------->[mysqld]server-id = 1datadir = /mydata/datalog-bin = /mydata/data/mysql1-binbinlog_format = ROWrelay_log = /mydata/data/relay-logauto-increment-increment = 2auto-increment-offset = 1sync_binlog = 1sync_master_info = 1sync_relay_log = 1sync_relay_log_info = 1
19.76:
vim /etc/my.cnf ----------------------------------------------->[mysqld]server-id = 2datadir = /mydata/datalog-bin = /mydata/data/mysql2-binbinlog_format = ROWrelay_log = /mydata/data/relay-logauto-increment-increment = 2auto-increment-offset = 2sync_binlog = 1sync_master_info = 1sync_relay_log = 1sync_relay_log_info = 1
3.創建具有復制權限的用戶:
19.74:
service mysqld start/usr/local/mysql/bin/mysql------------------------------------------>GRANT REPLICATION SLAVE,REPLICATION CLIENT ON *.* TO 'master'@'192.168.19.76' IDENTIFIED BY '123456';FLUSH PRIVILEGES;
19.76:
service mysqld start/usr/local/mysql/bin/mysql------------------------------------------>GRANT REPLICATION SLAVE,REPLICATION CLIENT ON *.* TO 'master'@'192.168.19.74' IDENTIFIED BY '123456';FLUSH PRIVILEGES;
4.查看二進制位置:
19.74:
SHOW MASTER LOGS;
19.76上使用相同命令:
5.配置雙主:
19.74:
CHANGE MASTER TO MASTER_HOST='192.168.19.76',MASTER_USER='master',MASTER_PASSWord='123456',MASTER_LOG_FILE='mysql2-bin.000001',MASTER_LOG_POS=1112;START SLAVE;
19.76:
CHANGE MASTER TO MASTER_HOST='192.168.19.74',MASTER_USER='master',MASTER_PASSWORD='123456',MASTER_LOG_FILE='mysql1-bin.000001',MASTER_LOG_POS=1112;START SLAVE;
二���、編譯安裝haproxy
1.在19.66和19.79上編譯安裝haproxy:
tar xf haproxy-1.5.14.tar.gz cd haproxy-1.5.14make TARGET=linux2628 ARCH=x86_64 //根據自己主機設定make install SBINDIR=/usr/sbin/ MANDIR=/usr/share/man/ DOCDIR=/usr/share/doc/
2.提供啟動腳本:
vim /etc/init.d/haproxy--------------------------------------------------->#!/bin/sh## haproxy## chkconfig: - 85 15# description: HAProxy is a free, very fast and reliable solution /# offering high availability, load balancing, and /# proxying for TCP and HTTP-based applications# processname: haproxy# config: /etc/haproxy/haproxy.cfg# pidfile: /var/run/haproxy.pid# Source function library.. /etc/rc.d/init.d/functions# Source networking configuration.. /etc/sysconfig/network# Check that networking is up.[ "$NETWORKING" = "no" ] && exit 0exec="/usr/sbin/haproxy"prog=$(basename $exec)[ -e /etc/sysconfig/$prog ] && . /etc/sysconfig/$progcfgfile=/etc/haproxy/haproxy.cfgpidfile=/var/run/haproxy.pidlockfile=/var/lock/subsys/haproxycheck() { $exec -c -V -f $cfgfile $OPTIONS}start() { $exec -c -q -f $cfgfile $OPTIONS if [ $? -ne 0 ]; then echo "Errors in configuration file, check with $prog check." return 1 fi echo -n $"Starting $prog: " # start it up here, usually something like "daemon $exec" daemon $exec -D -f $cfgfile -p $pidfile $OPTIONS retval=$? echo [ $retval -eq 0 ] && touch $lockfile return $retval}stop() { echo -n $"Stopping $prog: " # stop it here, often "killproc $prog" killproc $prog retval=$? echo [ $retval -eq 0 ] && rm -f $lockfile return $retval}restart() { $exec -c -q -f $cfgfile $OPTIONS if [ $? -ne 0 ]; then echo "Errors in configuration file, check with $prog check." return 1 fi stop start}reload() { $exec -c -q -f $cfgfile $OPTIONS if [ $? -ne 0 ]; then echo "Errors in configuration file, check with $prog check." return 1 fi echo -n $"Reloading $prog: " $exec -D -f $cfgfile -p $pidfile $OPTIONS -sf $(cat $pidfile) retval=$? echo return $retval}force_reload() { restart}fdr_status() { status $prog}case "$1" in start|stop|restart|reload) $1 ;; force-reload) force_reload ;; check) check ;; status) fdr_status ;; condrestart|try-restart) [ ! -f $lockfile ] || restart ;; *) echo $"Usage: $0 {start|stop|status|restart|try-restart|reload|force-reload}" exit 2esac<---------------------------------------------------chkconfig --add haproxychkconfig haproxy onchmod +x /etc/init.d/haproxy 3.提供配置文件:
mkdir /etc/haproxymkdir /var/lib/haproxyuseradd -r haproxyvim /etc/haproxy/haproxy.cfg----------------------------------------------------------------------->global log 127.0.0.1 local2 chroot /var/lib/haproxy pidfile /var/run/haproxy.pid maxconn 4000 user haproxy group haproxy daemon stats socket /var/lib/haproxy/statsdefaults mode tcp //haproxy運行模式 log global option dontlognull option redispatch retries 3 timeout http-request 10s timeout queue 1m timeout connect 10s timeout client 1m timeout server 1m timeout http-keep-alive 10s timeout check 10s maxconn 600 //最大連接數listen stats //配置haproxy狀態頁 mode http bind :6677 //找一個比較特殊的端口 stats enable stats hide-version //隱藏haproxy版本號 stats uri /haproxyadmin?stats //一會用于打開狀態頁的uri stats realm Haproxy/ Statistics //輸入賬戶密碼時的提示文字 stats auth admin:admin //用戶名:密碼 stats admin if TRUE //開啟狀態頁的管理功能frontend main *:3306 //這里為了實驗方便,使用3306端口 default_backend mysql //后端服務器組名backend mysql balance leastconn //使用最少連接方式調度 server m1 192.168.19.74:3306 check port 3306 maxconn 300 server m2 192.168.19.76:3306 check port 3306 maxconn 300
4.啟動日志:
vim /etc/rsyslog.conf -----------------------------------------------------># Provides UDP syslog reception //去掉下面兩行注釋����,開啟UDP監聽$ModLoad imudp$UDPServerRun 514local2.* /var/log/haproxy.log //添加此行<-----------------------------------------------------service rsyslog restart
5.啟動測試haproxy:
service haproxy startnetstat -tnlp
6.在19.74上創建遠程登錄賬號:
GRANT ALL ON *.* TO 'jason'@'192.168.19.%' IDENTIFIED BY '123456';FLUSH PRIVILEGES;
7.分別在19.66和19.79上登錄mysql,若都能連接成功則繼續往下:
yum -y install mysql //如果沒有mysql客戶端則運行此命令mysql -ujason -p123456 -h192.168.19.66 //在19.66上登錄mysql -ujason -p123456 -h192.168.19.79 //在19.79上登錄
三�����、安裝keepalived
1.在19.66和19.79上編譯安裝keepalived:
tar xf keepalived-1.2.19.tar.gz cd keepalived-1.2.19./configure --prefix=/usr/local/keepalived --sbindir=/usr/sbin/ --sysconfdir=/etc/ --mandir=/usr/local/share/man/ --with-kernel-dir=/usr/src/kernels/2.6.32-504.30.3.el6.x86_64/ //內核版本換成自己主機的make && make installchkconfig --add keepalivedchkconfig keepalived on
2.在19.66上配置:
vim /etc/keepalived/keepalived.conf----------------------------------------------------->! Configuration File for keepalivedglobal_defs { //此段暫時略過,下同 notification_email { acassen@firewall.loc failover@firewall.loc sysadmin@firewall.loc } notification_email_from Alexandre.Cassen@firewall.loc smtp_server 192.168.200.1 smtp_connect_timeout 30 router_id LVS_DEVEL}vrrp_script chk_haproxy { script "/etc/keepalived/chk.sh" //檢查haproxy的腳本 interval 2 //每兩秒檢查一次}vrrp_instance VI_1 { state BACKUP //定義為BACKUP節點 nopreempt //開啟不搶占 interface eth0 virtual_router_id 51 priority 100 //開啟了不搶占����,所以此處優先級必須高于另一臺 advert_int 1 authentication { auth_type PASS auth_pass abcd } virtual_ipaddress { 192.168.19.150 //配置VIP } track_script { chk_haproxy //調用檢查腳本 } notify_backup "/etc/init.d/haproxy restart" notify_fault "/etc/init.d/haproxy stop"} 3.在19.79上配置:
vim /etc/keepalived/keepalived.conf----------------------------------------------------->! Configuration File for keepalivedglobal_defs { notification_email { acassen@firewall.loc failover@firewall.loc sysadmin@firewall.loc } notification_email_from Alexandre.Cassen@firewall.loc smtp_server 192.168.200.1 smtp_connect_timeout 30 router_id LVS_DEVEL}vrrp_script chk_haproxy { script "/etc/keepalived/chk.sh" interval 2}vrrp_instance VI_1 { state BACKUP interface eth0 virtual_router_id 51 priority 99 advert_int 1 authentication { auth_type PASS auth_pass abcd } virtual_ipaddress { 192.168.19.150 } track_script { chk_haproxy } notify_backup "/etc/init.d/haproxy restart" notify_fault "/etc/init.d/haproxy stop"} 4.在兩臺機器上創建chk.sh文件:
vim /etc/keepalived/chk.sh------------------------------------------------>#!/bin/bash#if [ $(ps -C haproxy --no-header | wc -l) -eq 0 ]; then /etc/init.d/keepalived stopfi<------------------------------------------------chmod +x /etc/keepalived/chk.sh
5.在19.66和19.79上進行測試:
service keepalived start
此處兩臺主機均配置為BACKUP�����,因此哪臺先運行keepalived,VIP就在哪臺上����。我這里剛開始VIP運行在19.66上,然后進行連接測試:
mysql -ujason -p123456 -h192.168.19.150------------------------------------------->CREATE DATABASE bokeyuan��;
后端數據庫服務器抓包:
停掉19.66的keepalived服務�����,讓VIP轉移到19.79上����,再進行測試:
service keepalived stop //停掉19.66的keepalived服務mysql -ujason -p123456 -h192.168.19.150------------------------------------------->SHOW DATABASES;
后端數據庫服務器抓包:
6.在瀏覽器打開http://192.168.19.150:6677/haproxyadmin?stats,打開haproxy狀態頁:
在19.74上關閉mysql服務��,可以看到haproxy對于后端服務器的檢測是很迅速的:
service mysqld stop
7.額外說明:
繼續之前的實驗��,將19.66上的keepalived服務再次啟動�����,可以發現��,VIP仍然在19.79上,這就是之前為什么要配置不搶占的原因��。如果按照正常的配置��,將19.66配置為MASTER����,當它重啟keepalived服務后,則一定會將VIP搶回�����。但實際上我們并不希望這樣�����,因為19.79仍在正常工作�����,19.66沒有理由去搶奪資源�����,造成沒必要的資源切換��。實驗演示就到這里�����,謝謝大家��!
