One 、rsync brief introduction

A fast incremental backup tool

• Remote Sync, Remote synchronization
• Support local replication 、 Remote Replication 、 Remote daemon replication , Or with others SSH、rsync Host synchronization
• Official website ：https://rsync.samba.org/
• With its delta-transfer Algorithm famous .
• rsync Listening port ：873
• rsync Operation mode ：C/S

Two 、rsync Synchronization source

In the remote synchronization task , Responsible for initiating rsync The client of synchronous operation is called client , And responsible for Response from client rsync The server that synchronizes operations is called the backup source , Also known as Synchronization source ;

• Downlink synchronization （ download ） in , The synchronization source is responsible for providing documents Original location , The initiator has Read rights ;
• Uplink synchronization （ Upload ） in , The synchronization source is responsible for providing documents Target location , The initiator has Write rights ;

3、 ... and 、rsync characteristic

You can mirror and save the entire directory and file system
It is easy to maintain the permissions of the original file 、 Time 、 Hard and soft connection, etc
You can install without special permission

Fast
The first synchronization rsync It copies everything , But the next time only the modified files are transferred
rsync In the process of data transmission, compression and decompression operations can be implemented , Therefore, less broadband can be used

Security
have access to scp、ssh And so on to transfer files
Or through direct socket Connect
Support anonymous transmission , In order to facilitate the site image

Four 、 To configure rsync Source

1、 The basic idea

establish rsyncd.conf The configuration file 、 Independent account file
Enable rsync Of --daemon Pattern

2、 The configuration file rsyncd.conf

Authentication configuration auth users、secrets file, If not, it will be anonymous

3、 Independent account file

user name : password
One user record per line
Independent account data , Independent of the system account

4、 Enable rsync service

adopt --daemon Provide services alone ,rsync --daemon
perform kill $(cat /var/run/rsyncd.pid) Close the service

5、 ... and 、 Synchronization mode

① Full backup

Every backup is to back up all the files or directories from the backup source to the destination .

② Differential backup

Backup data that has changed since the last full backup （ For the last full backup , The archive attribute is not clear during the backup ）

③ Incremental backup

Backup data that has changed since the last backup （ Know the storage properties ）

6、 ... and 、rsync command

Commands use syntax

rsync 【 Options 】 Original location   Target location 

Common options

7、 ... and 、 How to configure the source

Format 1 ：

# user name @ The host address : : Share module name 
rsync -avz [email protected]: :wwwroot /root

#backuper It refers to which user identity I use when synchronizing 
#wwwroot It's a module , The default path of synchronization and some features will be written below the module , So we just need to write modules 
#/root Refers to the local node 

Format two ：

#rsync:/ user name @ The host address / Share module name 
rsync -avz rsync: //[email protected]/wwwroot /root


URL： Specific location point , for example ：http://www.baidu.com./class1/men/id01.html
URI： Identifies a collection of features or types of the same class  , for example http://www.baidu.com./class1/men

​

8、 ... and 、 To configure rsync Downlink synchronization

Environment configuration

• Install package Links ：inotify-tools-3.14.tar.gz
• Downlink synchronization ： take master Backup server data to slave The server

​

1、Master（192.168.61.22）

# Basic environment configuration 
systemctl stop firewalld.service 
setenforce 0

# To configure rsync The source server 
rpm -q rsync
yum -y install rsync

# establish /etc/rsyncd.conf The configuration file 
vim /etc/rsyncd.conf      		# Add the following configuration 

uid = nobody					#root
gid = nobody					#root
use chroot = yes				# Locked in the source directory                                                 
address = 192.168.184.50		# Monitor address 
port 873                     	# Listening port  tcp/udp 873, It can be done by  cat /etc/services | grep rsync  see                                            
log file = /var/log/rsyncd.log	# Log file location                   
pid file = /var/run/rsyncd.pid	# Store process ID File location of                   
hosts allow = 192.168.184.0/24	# The client address allowed to access 
[wwwroot]                                                               
path = /var/www/html     		# The actual path to the source directory                                
comment = Document Root of www.ljm.com	
read only = yes             	# Is it read-only                                      
dont comperss = *.gz *.bz2 *.tgz *.zip *.rar *.z  	# File types that are no longer compressed during synchronization       
auth users = backuper           # Authorized account , Multiple accounts are separated by spaces                                  

## secrets file = /etc/rsyncd_users.db # Data file for storing account information       

uid = nobody
gid = nobody
use chroot = yes                                                
address = 192.168.61.22
port 873                                           
log file = /var/log/rsyncd.log                  
pid file = /var/run/rsyncd.pid                  
hosts allow = 192.168.184.0/24
[wwwroot]                                                               
path = /var/www/html                               
comment = Document Root of www.wdc.com	
read only = yes                                     
dont comperss = *.gz *.bz2 *.tgz *.zip *.rar *.z     
auth users = wdc                                
secrets file = /etc/user.db

# Such as anonymity , Just put one of them  “auth users”  and  “secrets file” The configuration item can be removed 

# Create data file for backup account 
vim /etc/user.db
wdc:123123		# There is no need to establish a system user with the same name 

chmod 600 /etc/user.db

# Ensure that all users have access to the source directory  /var/www/html  Have read permission 
mkdir -p /var/www/html
chmod +r /var/www/html/
ls -ld /var/www/html/

# start-up  rsync  Service program 
rsync --daemon
netstat -natp | grep rsync

cd /var/www/html
touch aaa.html bbb.html
ls

# close  rsync  service 
kill $(cat /var/run/rsyncd.pid)
rm -rf /var/run/rsyncd.pid

# Turn off the firewall and installation mechanism

#rsync The system is generally installed by default , install httpd It's to generate /var/www/html Catalog （ It will be used later as a shared directory ）

# edit rsync The configuration file

# Edit user account file , The fixed format is [ name : password ], A line of one

# The official demand is , Better just empower 600！

# Opening service 、 Check port number , Confirm whether the service is successfully started

# Switch to the shared directory , create a file

2、slave（192.168.61.33）

systemctl stop firewalld
systemctl disable firewalld
setenforce 0
# Turn off the firewall and installation mechanism 

yum install -y rsync
# install rsync

mkdir /abc
cd /abc/
# Create a directory /abc, Used to synchronize 

rsync -avz [email protected]::wwwroot /abc
# Use rsync Synchronize the synchronization file of the backup source 

ls 
# Check whether the synchronization is successful 


vim /etc/server.pass
20210311
# Edit the interaction free key file , The first line is password 


chmod 600 /etc/server.pass
# Empower the key file 600

rsync -az --delete --password-file=/etc/server.pass [email protected]::wwwroot /abc
#rsync, Use key file /etc/server/pass Corresponding backuper user ,IP The address is 192.168.61.22 Compress the shared module file , And archive the data synchronized to the current server /abc Under the table of contents , Delete the difference content at the same time , If the original target has , Will increase , What the original target didn't have , Will delete . consistency .

ls /abc

# Check whether the downlink synchronization is successful 

# Turn off the firewall and installation mechanism

# install rsync

# Create a directory /abc, Used to synchronize

# Use rsync Synchronize the synchronization file of the backup source , And see if it's done

# Edit the interaction free key file , The first line is password

# Empower the key file 600

Nine 、 Originator （ client ） To configure rsync+inotify

• Use inotify Notification interface , It can be used to monitor various changes in the file system , Such as file access 、 Delete 、 Move 、 Modify etc. . Using this mechanism , It is very convenient to realize file change alarm 、 Incremental backup , And respond to changes in directories or files in a timely manner .
• take inotify Mechanism and rsync Combination of tools , You can achieve triggered backup （ Real time synchronization ）, That is, as long as the document in the original location changes , Start the incremental backup operation immediately ; Otherwise, it will be in a state of silent waiting . such , This avoids the latency when backing up according to a fixed cycle 、 The period is too dense and so on .
• because inotify The notification mechanism consists of Linux Provided by kernel , Therefore, it is mainly used for local monitoring , It is more suitable for uplink synchronization when applied in triggered backup .

1.Master Turn off read-only mode and enable the shared directory

Master（192.168.61.22）

vim /etc/rsyncd.conf
read only = no
# Turn off read only mode , Otherwise, it will not be writable 


kill `cat /var/run/rsyncd.pid`
# After modifying the configuration file, you need to restart the service , The method of directly killing the process number is adopted here 

netstat -natp | grep rsync
# Check if the service has been terminated 

rsync --daemon
netstat -natp | grep rsync
# Turn on the service again and check the port number to confirm 

2. Optimize Slave Kernel parameters

Slave（192.168.61.33）

cat /proc/sys/fs/inotify/max_queued_events      # Monitor the event queue 
cat /proc/sys/fs/inotify/max_user_instances     # The maximum number of monitoring instances 
cat /proc/sys/fs/inotify/max_user_watches       # The maximum number of monitoring files per instance 

vim /etc/sysctl.conf         # Increase each parameter 
fs.inotify.max_queued_events = 16384
fs.inotify.max_user_instances = 1024
fs.inotify.max_user_watches = 1048576
# When you want to monitor the directory 、 When the amount of file data is large or changes frequently , It is recommended to increase the parameter value 

sysctl -p
# Refresh 

3. client （192.168.61.33）： Compilation and installation inotify-tools

yum install -y gcc gcc-c++ 
# install gcc gcc-c++ 

cd /opt
# Switch to /opt Upload inotify-tools Installation package 

tar zxf inotify-tools-3.14.tar.gz 
# decompression 

cd /opt/inotify-tools-3.14/
./configure
make -j 4 && make install
# Compilation and installation 

4. The client starts listening

# Keep listening to /abc Of modify,create,move,delete operation 
inotifywait -mrq -e modify,create,delete /abc

5、 Write a script to trigger synchronization

vim /opt/inotify.sh
#!/bin/bash
INOTIFY_CMD="inotifywait -mrq -e create,delete,move,modify,attrib /opt/abc/"
RSYNC_CMD="rsync -azH --delete --password-file=/etc/server.pass /opt/abc/ [email protected]::wwwroot"

$INOTIFY_CMD | while read DIRECTORY EVENT FILE
do
    if [ $(pgrep rsync | wc -l) -le 0 ] ; then
        $RSYNC_CMD
	fi
done
---- Detailed explanation ----
#!/bin/bash
INOTIFY_CMD="inotifywait -mrq -e create,delete,move,modify,attrib /opt/abc/"
#INOTIFY_CMD Variable ： Continuous monitoring  /opt/abc Create in directory , Delete , Move , modify , The operation of changing time 
RSYNC_CMD="rsync -azH --delete --password-file=/etc/server.pass /opt/abc/ [email protected]::wwwroot"
#RSYNC_CMD Variable ： send  xixi  user ,/etc/server.pass  The key file , take  /opt/xcf1  Compress the files in the directory , file , Keep hard linked files synchronized to  192.168.61.22  The directory defined by the shared module  /var/www/html  Next , And delete the differences , consistency 

$INOTIFY_CMD | while read DIRECTORY EVENT FILE		# Continuous monitoring ...
do
    if [ $(pgrep rsync | wc -l) -le 0 ] ; then		# If the service is not started , Then perform synchronization 
        $RSYNC_CMD
	fi
done
----

cd /opt/
chmod +x inotify.sh
# Empowering scripts 

chmod +x /etc/rc.d/rc.local 
echo "/opt/inotify.sh" >> /etc/rc.d/rc.local 
# Set power on self start 

sh -x inotify.sh
# Execute the script 

cd /opt/abc
touch jingjing.html
rm -rf jiang.html
# Create a new html Delete the previous file qwe
ls
# Confirm again