当前位置:网站首页>7-3 LVS+Keepalived Cluster Description and Deployment

7-3 LVS+Keepalived Cluster Description and Deployment

2022-08-04 04:08:00 Is a stupid boy

文章目录

一,概述Keepalived

  • Keepalived 的设计目标是构建高可用的 LVS 负载均衡群集,可以调用 ipvsadm 工具来创建虚拟服务器,管理服务器池,Not just for dual-machine hot standby

  • Keepalived 也是一个基于VRRP协议来实现的LVS服务高可用方案,可以解决静态路由出现的单点故障问题

1.工作原理

  • 在一个LVS服务集群中通常有主服务器(MASTER)和备份服务器(BACKUP)两种角色的服务器,但是对外表现为一个虚拟IP,主服务器会发送VRRP通告信息给备份服务器,当备份服务器收不到VRRP消息的时候,即主服务器异常的时候,备份服务器就会接管虚拟IP,继续提供服务,从而保证了高可用性

实现原理

  • keepalived 采用 VRRP 热备份协议实现 Linux 服务器的多机热备功能
  • VRRP(虚拟路由冗余协议)是针对路由器的一种备份解决方案
  • 由多台路由器组成一个热备份组,通过共用的虚拟IP地址对外提供服务
  • 每个热备组内同时只有一台主路由器提供服务,其他路由器处于冗余状态,若当前在线的路由器失效,则其他路由器会根据设置的优先级自动接替虚拟IP地址,继续提供服务

2.优点

  • 使用 Keepalived 构建 LVS 群集更加简便易用

  • 对 LVS 负载调度器实现热备切换,提高可用性

  • 支持故障自动切换

  • 支持节点健康状态检查

  • 判断 LVS 负载调度器,节点服务器的可用性,当master 主机出现故障及时切换到 backup 节点保证业务正常,当master When the failed host recovers, rejoin it to the cluster and switch back master 节点(因为设置了优先级)

3.keepalived体系架构中主要有三个模块

模块作用说明
core为keepalived的核心,负责主进程的启动、维护及全局配置文件的加载和解析
vrrp是来实现VRRP协议
check负责健康检查,常见的方式有端口检查及URLCheck or script check

二,LVS-DR+Keepalived部署

To change the configuration,What are the configuration files

  • 1.配置Keepalived master服务器

keepalived.conf是主配置文件

global_defs {…}区段指定全局参数

vrrp_instance 实例名称{…}区段指定VRRP热备参数
注释文字以"∵"符号开头
目录samples,提供了许多配置样例作为参考

  • 2.常用配置选项

router_id HA_TEST_R1:本路由器(服务器)的名称、主备名称要不一样
vrrp_instance Vl_1∶定义VRRP热备实例
state MASTER:热备状态,MASTER表示主服务器
interface ens33:承载VIP地址的物理接口
virtual_router_id 1 :虚拟路由器的ID号,每个热备组保持一致
priority 100:优先级,数值越大优先级越高
advert_int 1:通告间隔秒数(心跳频率)
auth_type PASS:认证类型
auth_pass 123456:密码字串
virtual_ipaddress { vip}:指定漂移地址(VIP),可以有多个

  • 3.配置Keepalived slave服务器

Keepalived备份服务器的配置与master的配置有三个选项不同

router_id:设为自有名称
state:设为BACKUP
priority:值低于主服务器
其他选项与master相同

  • 测试双机热备的效果

router_id:设为自有名称
state:设为BACKUP
priority:值低于主服务器

部署所需环境

The load scheduler masterDR模式 服务器:192.168.113.128
Load scheduler backupDR模式 服务器:192.168.113.129

Web1 节点服务器:192.168.113.126
Web2 节点服务器:192.168.113.125

客户端 win10:192.168.113.131
VIP地址: 192.168.113.200

一,配置负载调度器(主:192.168.113.128)

注:Don't care about the hostname,没更改

注2:The number of rows may vary,According to your own configuration file

1.关闭防火墙,核心防护

[[email protected] ~]# systemctl stop firewalld
[[email protected] ~]# systemctl disable firewalld
[[email protected] ~]# setenforce 0

2.安装服务

[[email protected] ~]# yum install -y ipvsadm.x86_64 keepalived.x86_64 

3.修改配置文件keeplived.conf

[[email protected] keepalived]# cd /etc/keepalived/
[[email protected] keepalived]# cp keepalived.conf keepalived.conf.bak
[[email protected] keepalived]# vim keepalived.conf
......
global_defs {
    						#定义全局参数
--10行--修改,邮件服务指向本地
	smtp_server 127.0.0.1
--12行--修改,指定服务器(路由器)的名称,主备服务器名称须不同,主为LVS_01,备为LVS_02
	router_id LVS_01
}
 
vrrp_instance VI_1 {
    				#定义VRRP热备实例参数
--20行--修改,指定热备状态,主为MASTER,备为BACKUP
    state MASTER
--21行--修改,指定承载vip地址的物理接口
    interface ens33
--22行--修改,指定虚拟路由器的ID号,每个热备组保持一致	
    virtual_router_id 10
--23行--修改,指定优先级,数值越大优先级越高,主为100,备为90
    priority 100
    advert_int 1					#通告间隔秒数(心跳频率)
    authentication {
    				#定义认证信息,每个热备组保持一致
		auth_type PASS				#认证类型
--27行--修改,指定验证密码,主备服务器保持一致
        auth_pass 666888
    }
    virtual_ipaddress {
    				#指定群集vip地址
       192.168.113.200
    }
}
--34行--修改,指定虚拟服务器地址(VIP)、端口,定义虚拟服务器和Web服务器池参数
virtual_server 192.168.113.200 80 {
    
    delay_loop 6					#健康检查的间隔时间(秒)
    lb_algo rr						#指定调度算法,轮询(rr)
--37行--修改,指定群集工作模式,直接路由(DR)
    lb_kind DR
    persistence_timeout 50			#连接保持时间(秒)
    protocol TCP					#应用服务采用的是 TCP协议
--41行--修改,指定第一个Web节点的地址、端口
    real_server 192.168.113.126 {
    
        weight 1					#节点的权重
--43行--删除,添加以下健康检查方式		
        TCP_CHECK {
    
			connet_port 80			#添加检查的目标端口
			connect_timeout 3		#添加连接超时(秒)
			nb_get_retry 3			#添加重试次数
			delay_before_retry 3	#添加重试间隔
		}
	}
 
	real_server 192.168.113.125 80 {
    		#添加第二个 Web节点的地址、端口
        weight 1
        TCP_CHECK {
    
			connet_port 80
			connect_timeout 3
			nb_get_retry 3
			delay_before_retry 3
		}
	}
}
##删除后面多余的配置##

修改,邮件服务指向本地

image-20220802191845521

image-20220802192305509

The original is deleted

image-20220802192328173

image-20220802194929352

image-20220802224211103

4.启动服务、查看虚拟网卡vip

[[email protected] keepalived]# systemctl start keepalived
[[email protected] keepalived]# ip addr show dev ens33 

5.调整proce响应参数,关闭Linux内核的重定向参数响应

##最后一行添加
[[email protected] keepalived]# vim /etc/sysctl.conf
net.ipv4.ip_forward = 1
net.ipv4.conf.all.send_redirects = 0
net.ipv4.conf.default.send_redirects = 0
net.ipv4.conf.ens33.send_redirects = 0

##Refresh to see if it is configured
[[email protected] keepalived]# sysctl -p
net.ipv4.ip_forward = 1
net.ipv4.conf.all.send_redirects = 0
net.ipv4.conf.default.send_redirects = 0
net.ipv4.conf.ens33.send_redirects = 0

image-20220802195938119

一.2,配置ipvsadm

1.配置负载分配策略,并启动服务

[[email protected] keepalived]# ipvsadm-save >/etc/sysconfig/ipvsadm
[[email protected] keepalived]# systemctl start ipvsadm.service

2.清空ipvsadm里的策略,并添加策略

[[email protected] keepalived]# ipvsadm -C
[[email protected] keepalived]# ipvsadm -A -t 192.168.113.200:80 -s rr
[[email protected] keepalived]# ipvsadm -a -t 192.168.113.200:80 -r 192.168.113.126:80 -g
[[email protected] keepalived]# ipvsadm -a -t 192.168.113.200:80 -r 192.168.113.125:80 -g

3.开启ipvsadm,查看是否写入,保存

[[email protected] keepalived]# ipvsadm
[[email protected] keepalived]# ipvsadm -ln
[[email protected] keepalived]# ipvsadm-save >/etc/sysconfig/ipvsadm

image-20220802200708530

一.3 keepalived 配置

keepalivedBy default, the log will be typed in/var/log/messages.如果不进行配置的话,It's hard to debug problems with the logs mixed up

1.Modify the add configuration file

[[email protected] ~]# vim /etc/sysconfig/keepalived
##把KEEPALIVED_OPTIONS="-D" 修改为##KEEPALIVED_OPTIONS="-D -d -S 0"

[[email protected] ~]# vim /etc/rsyslog.conf 
##在/etc/rsyslog.conf 末尾添加local0.* /var/log/keepalived.log

##重启日志记录服务
[[email protected] ~]# systemctl restart rsyslog 
[[email protected] ~]# systemctl status rsyslog ##Check if the status is on 

##重启keepalived服务
[[email protected] ~]# systemctl start keepalived
[[email protected] ~]# cat /var/log/keepalived.log 
##The log file already has the latest log records coming in

image-20220803142445319

image-20220803142633286

image-20220803142738516

二,配置负载调度器(备:192.168.113.129)

1.关闭防火墙,核心防护

[[email protected] ~]# systemctl stop firewalld
[[email protected] ~]# systemctl disable firewalld
[[email protected] ~]# setenforce 0

2.安装服务

[[email protected] ~]# yum install -y ipvsadm.x86_64 keepalived.x86_64 

3.修改配置文件keeplived.conf

[[email protected] ~]# cd /etc/keepalived/
[[email protected] keepalived]# cp keepalived.conf keepalived.conf.bak
[[email protected] keepalived]# vim keepalived.conf
......
global_defs {
    						#定义全局参数
--10行--修改,邮件服务指向本地
	smtp_server 127.0.0.1
--12行--修改,指定服务器(路由器)的名称,主备服务器名称须不同,主为LVS_01,备为LVS_02
	router_id LVS_02
}
 
vrrp_instance VI_1 {
    				#定义VRRP热备实例参数
--20行--修改,指定热备状态,主为MASTER,备为BACKUP
    state BACKUP
--21行--修改,指定承载vip地址的物理接口
    interface ens33
--22行--修改,指定虚拟路由器的ID号,每个热备组保持一致	
    virtual_router_id 10
--23行--修改,指定优先级,数值越大优先级越高,主为100,备为90
    priority 90
    advert_int 1					#通告间隔秒数(心跳频率)
    authentication {
    				#定义认证信息,每个热备组保持一致
		auth_type PASS				#认证类型
--27行--修改,指定验证密码,主备服务器保持一致
        auth_pass 666888
    }
    virtual_ipaddress {
    				#指定群集vip地址
        192.168.113.200
    }
}
--36行--修改,指定虚拟服务器地址(VIP)、端口,定义虚拟服务器和Web服务器池参数
virtual_server 192.168.113.200 80 {
    
    delay_loop 6					#健康检查的间隔时间(秒)
    lb_algo rr						#指定调度算法,轮询(rr)
--39行--修改,指定群集工作模式,直接路由(DR)
    lb_kind DR
    persistence_timeout 50			#连接保持时间(秒)
    protocol TCP					#应用服务采用的是 TCP协议
--43行--修改,指定第一个Web节点的地址、端口
    real_server 192.168.113.126 80 {
    
        weight 1					#节点的权重
--45行--删除,添加以下健康检查方式		
        TCP_CHECK {
    
			connet_port 80			#添加检查的目标端口
			connect_timeout 3		#添加连接超时(秒)
			nb_get_retry 3			#添加重试次数
			delay_before_retry 3	#添加重试间隔
		}
	}
 
	real_server 192.168.113.125 80 {
    		#添加第二个 Web节点的地址、端口
        weight 1
        TCP_CHECK {
    
			connet_port 80
			connect_timeout 3
			nb_get_retry 3
			delay_before_retry 3
		}
	}
}
##删除后面多余的配置##

14行注释掉,didn't cut itimage-20220802210841187

image-20220802201313782

image-20220802192328173

image-20220802194929352

4.启动服务、查看虚拟网卡vip

[[email protected] keepalived]# systemctl start keepalived
[[email protected] keepalived]# ip addr show dev ens33 

image-20220802202401090

5.调整proce响应参数,关闭Linux内核的重定向参数响应

##最后一行添加
[[email protected] keepalived]# vim /etc/sysctl.conf
net.ipv4.ip_forward = 1
net.ipv4.conf.all.send_redirects = 0
net.ipv4.conf.default.send_redirects = 0
net.ipv4.conf.ens33.send_redirects = 0

##Refresh to see if it is configured
[[email protected] keepalived]# sysctl -p
net.ipv4.ip_forward = 1
net.ipv4.conf.all.send_redirects = 0
net.ipv4.conf.default.send_redirects = 0
net.ipv4.conf.ens33.send_redirects = 0

image-20220802202518658

二.2,配置ipvsadm

1.配置负载分配策略,并启动服务

[[email protected] keepalived]# ipvsadm-save >/etc/sysconfig/ipvsadm
[[email protected] keepalived]# systemctl start ipvsadm.service

2.清空ipvsadm里的策略,并添加策略

[[email protected] keepalived]# ipvsadm -C
[[email protected] keepalived]# ipvsadm -A -t 192.168.113.200:80 -s rr
[[email protected] keepalived]# ipvsadm -a -t 192.168.113.200:80 -r 192.168.113.126:80 -g
[[email protected] keepalived]# ipvsadm -a -t 192.168.113.200:80 -r 192.168.113.125:80 -g

3.开启ipvsadm,查看是否写入,保存

[[email protected] keepalived]# ipvsadm
[[email protected] keepalived]# ipvsadm -ln
[[email protected] keepalived]# ipvsadm-save >/etc/sysconfig/ipvsadm

image-20220802203051833

三,配置节点服务器web1(192.168.113.126 )

注:配置基本一致

1.关闭防火墙,核心防护

[[email protected] ~]# systemctl stop firewalld
[root[email protected] ~]# systemctl disable firewalld
[[email protected] ~]# setenforce 0

2.安装并开启httpd服务

[[email protected] ~]# yum -y install httpd
[[email protected] ~]# systemctl start httpd

3.配置站点文件

[[email protected] ~]# vim /var/www/html/index.html
<h1>The question mark of the little friend</h1>

4.配置虚拟vip

[[email protected] ~]# cd /etc/sysconfig/network-scripts/
[email protected] network-scripts]# cp ifcfg-lo ifcfg-lo:0
[[email protected] network-scripts]# vim ifcfg-lo:0
DEVICE=lo:0
IPADDR=192.168.113.200
NETMASK=255.255.255.255
NETWORK=127.0.0.0
# If you're having problems with gated making 127.0.0.0/8 a martian,
# you can change this to something else (255.255.255.255, for example)
BROADCAST=127.255.255.255
ONBOOT=yes
NAME=loopback

image-20220802204637194

5.重启网络服务,开启虚拟网卡

[[email protected] network-scripts]# systemctl restart network
[[email protected] network-scripts]# ifup lo:0
[[email protected] network-scripts]# ifconfig lo:0

image-20220802204843669

6.设置路由

[[email protected] network-scripts]# route add -host 192.168.113.200 dev lo:0
[[email protected] network-scripts]# route -n

image-20220802204945464

7.调整 proc 响应参数

#添加系统只响应目的IP为本地IP的ARP请求
#系统不使用原地址来设置ARP请求的源地址,而是物理mac地址上的IP

[[email protected] network-scripts]# vim /etc/sysctl.conf
net.ipv4.conf.all.arp_ignore = 1
net.ipv4.conf.all.arp_announce = 2
net.ipv4.conf.default.arp_ignore = 1
net.ipv4.conf.default.arp_announce = 2
net.ipv4.conf.lo.arp_ignore = 1
net.ipv4.conf.lo.arp_announce = 2

##刷新proc参数
[[email protected] network-scripts]# sysctl -p
net.ipv4.conf.all.arp_ignore = 1
net.ipv4.conf.all.arp_announce = 2
net.ipv4.conf.default.arp_ignore = 1
net.ipv4.conf.default.arp_announce = 2
net.ipv4.conf.lo.arp_ignore = 1
net.ipv4.conf.lo.arp_announce = 2

image-20220802205025948

四,配置节点服务器web2(192.168.113.125 )

注:不一样的就是HTTPD页面

1.关闭防火墙,核心防护

[[email protected] ~]# systemctl stop firewalld
[[email protected] ~]# systemctl disable firewalld
[[email protected] ~]# setenforce 0

2.安装并开启httpd服务

[[email protected] ~]# yum -y install httpd
[[email protected] ~]# systemctl start httpd

3.配置站点文件

[[email protected] ~]# vim /var/www/html/index.html
<h1>Little question mark friend</h1>

4.配置虚拟vip

[[email protected] ~]# cd /etc/sysconfig/network-scripts/
[email protected] network-scripts]# cp ifcfg-lo ifcfg-lo:0
[[email protected] network-scripts]# vim ifcfg-lo:0
DEVICE=lo:0
IPADDR=192.168.113.200
NETMASK=255.255.255.255
NETWORK=127.0.0.0
# If you're having problems with gated making 127.0.0.0/8 a martian,
# you can change this to something else (255.255.255.255, for example)
BROADCAST=127.255.255.255
ONBOOT=yes
NAME=loopback

5.重启网络服务,开启虚拟网卡

[[email protected] network-scripts]# systemctl restart network
[[email protected] network-scripts]# ifup lo:0
[[email protected] network-scripts]# ifconfig lo:0

6.设置路由

[[email protected] network-scripts]# route add -host 192.168.113.200 dev lo:0
[[email protected] network-scripts]# route -n

7.调整 proc 响应参数

[[email protected] network-scripts]# vim /etc/sysctl.conf
net.ipv4.conf.all.arp_ignore = 1
net.ipv4.conf.all.arp_announce = 2
net.ipv4.conf.default.arp_ignore = 1
net.ipv4.conf.default.arp_announce = 2
net.ipv4.conf.lo.arp_ignore = 1
net.ipv4.conf.lo.arp_announce = 2

##刷新proc参数
[[email protected] network-scripts]# sysctl -p
net.ipv4.conf.all.arp_ignore = 1
net.ipv4.conf.all.arp_announce = 2
net.ipv4.conf.default.arp_ignore = 1
net.ipv4.conf.default.arp_announce = 2
net.ipv4.conf.lo.arp_ignore = 1
net.ipv4.conf.lo.arp_announce = 2

五,模拟测试

1.The mock test master is broken,Whether the equipment is in the upper position

1.1当前使用的为主DR服务器,vipon the main scheduler

image-20220802205822897

1.2备DR服务器没有

image-20220802205920178

1.3断开主DR,VIP不在了

[[email protected] keepalived]# systemctl stop keepalived.service

image-20220802210036335

1.4.查看备DR,直接接管vip

image-20220802210151794

1.5On opening the mainDR,See if you can preempt the meetingVIP,默认是抢占模式

成功抢占

[[email protected] keepalived]# systemctl restart keepalived.service

image-20220802210324168

2.win10 访问测试页面

image-20220802210438953

image-20220802224443532

六,LVS总结

一,首先:LVS是什么?干啥用?What are the layers in the project architecture?

① LVS It is one of the services with load balancing function

② LVS For the backend real server,Provides the function of load balancing and jumping

③ 单台LVS 是做为L4层 负载均衡的服务 TCPProtocol load balancing

LVS +keepalived 组成的HA高可用集群,可以做为L7层的负载均衡

1.L4层负载均衡和L7层负载均衡 有什么区别?

① L4层 就是通过TCPAfter the protocol establishes the connectionip:portReceive requests and 基于IP:port 端口的转发

② L7层 通过TCPThe protocol establishes a three-way handshake,通过HTTP协议传输数据,L7层负载均衡器,需要依据HTTPincoming request,Make the corresponding jump,This jump is based on firstTCP协议的传输(IP:port)+HTTPtransmission of data

如果是L4层:协议只有TCP 就是ip:port的转发

如果是L7层:协议:TCP 三次握手、长连接 + HTTPCanonical transfer data

2.L4层转发和L7What is the difference between layer forwarding?

简单理解: LVS 单台——》L4层 LVS+keepalived 可以基于HTTP的请求进行转发、负载均衡 ——》L7层

二、LVS 有几种模式?How to provide load balancing function(What are the main technologies that provide load balancing functionality)?What to use to manage

1、LVS模式

① LVS-NAT 模式 (地址映射)

  • Mainly by cooperating with firewall rules,to complete the internal and external networkNAT映射 + ipvsadmManagement of tools

  • 实现方式:Based on virtual host(VIP:192.168.226.100)as the access point ipvsadm -A -t 192.168.226.100 -rr

  • ​ 通过LVS的功能,to define the backend“地址池” ipvsadm -a -t 192.168.226.100 -r 192.168.226.130 -m -w 1

    以L4层的方式,直接基于TCP协议的IP:port 端口进行转发

2.LVS-NAT 模式的特性

​ 1) 负载均衡器和真实服务器,均在同一物理网络

2) 接受请求、响应请求,均通过负载均衡器

3) 内外网的映射,通过LVS服务器上的iptables的映射规则来完成

2.1LVS-TUN 模式(隧道模式)

LVS-TUN的特性:
1) 贵!,因为 Load scheduler and real server,not on the same physical network,The real server needs a public networkIP的支持(公网IP要钱)

​ 2) 接收请求+转发请求,是由LVSLoad scheduler to complete,But respond to requests,It is the way that the real server goes directly through the tunnel,响应给客户

2.2 LVS-DR 模式 (直接路由)

​ LVS服务器:
1)关闭LVSRouting and redirection capabilities on the load scheduler

2)定义Ens33A virtual subinterfaceens33:0 to host virtualIP

3)清空防火墙规则/关闭防火墙

4)使用ipvsadm 配置虚拟IP,As access as the entrance

5)使用ipvsadm Configure the address pool of the backend real server+ (-g DR模式)和 rr 轮询模式,来进行转发

小结: 就是使用ipvsadm 来控制LVS服务 使用DRmode for forwarding(主要以L4层 ip:port形式实现)

2.1 PS: 为了不让VIPThe same problem of virtual addresses is caused by routers within the same physical networkARPLearning problems and broadcast storms,So do the following configuration

1)LVSThe server disables route forwarding and redirection

2)LVS服务器的ens33网卡上,Define virtual subinterfaces,来承载VIP虚拟地址

3)on the real serverlo 0 Swap back to define virtual on the NICIP

4)Define routing constraints on the real server+Only respond to requests whose access target is local

5)管理方式,依然是ipvsadm

2.3 LVS-DR模式的特性

1)LVSThe scheduler only serves as the entry point for receiving and forwarding requests

2)When the real server responds to the request,不会经过LVS调度器,而是直接返回给客户端

3)LVS On the same physical network as the real server

2.4 简单描述LVS The three working modes briefly describe their differences?

1.NAT:A virtual server implemented by a network address,The performance of the scheduler during large concurrent access is called
为瓶颈

2.DR:Virtual servers are implemented using router technology,节点服务器需要配置VIP,注
意MAc地址广播

3.TUN:The virtual server is implemented by means of a tunnel

3. real_server 真实服务器:

1)Do routing confinement + The network card that defines the server accepts only the purposeIP/MACIs the local request parameter configuration 在/etc/sysctl.conf 中

2)Defined on the loopback NICVIP虚拟地址(192.168.226.100)

3)网关指向LVS负载均衡器

4)正常搭建web服务
DR模式)和 rr 轮询模式,来进行转发

小结: 就是使用ipvsadm 来控制LVS服务 使用DRmode for forwarding(主要以L4层 ip:port形式实现)

2.1 PS: 为了不让VIPThe same problem of virtual addresses is caused by routers within the same physical networkARPLearning problems and broadcast storms,So do the following configuration

1)LVSThe server disables route forwarding and redirection

2)LVS服务器的ens33网卡上,Define virtual subinterfaces,来承载VIP虚拟地址

3)on the real serverlo 0 Swap back to define virtual on the NICIP

4)Define routing constraints on the real server+Only respond to requests whose access target is local

5)管理方式,依然是ipvsadm

2.3 LVS-DR模式的特性

1)LVSThe scheduler only serves as the entry point for receiving and forwarding requests

2)When the real server responds to the request,不会经过LVS调度器,而是直接返回给客户端

3)LVS On the same physical network as the real server

2.4 简单描述LVS The three working modes briefly describe their differences?

1.NAT:A virtual server implemented by a network address,The performance of the scheduler during large concurrent access is called
为瓶颈

2.DR:Virtual servers are implemented using router technology,节点服务器需要配置VIP,注
意MAc地址广播

3.TUN:The virtual server is implemented by means of a tunnel

3. real_server 真实服务器:

1)Do routing confinement + The network card that defines the server accepts only the purposeIP/MACIs the local request parameter configuration 在/etc/sysctl.conf 中

2)Defined on the loopback NICVIP虚拟地址(192.168.226.100)

3)网关指向LVS负载均衡器

4)正常搭建web服务

原网站

版权声明
本文为[Is a stupid boy]所创,转载请带上原文链接,感谢
https://yzsam.com/2022/216/202208040356335642.html