柚子快報(bào)邀請(qǐng)碼778899分享：LVS小型系統(tǒng)架構(gòu)搭建筆記

http://yzkb.51969.com/

搭建環(huán)境說(shuō)明

? ? ? 本次實(shí)現(xiàn)用到了6臺(tái)節(jié)點(diǎn),實(shí)現(xiàn)一個(gè)小型的Lvs負(fù)載調(diào)度

節(jié)點(diǎn)1客戶(hù)端配置代表互聯(lián)網(wǎng)用戶(hù)

[root@centos7 network-scripts]# vi ifcfg-ens37

TYPE=Ethernet

PROXY_METHOD=none

BROWSER_ONLY=no

BOOTPROTO=static

IPADDR=172.20.0.222

NETMASK=255.255.0.0

GATEWAY=172.20.0.80

DNS=172.20.127.159

DEFROUTE=yes

IPV4_FAILURE_FATAL=no

IPV6INIT=yes

IPV6_AUTOCONF=yes

IPV6_DEFROUTE=yes

IPV6_FAILURE_FATAL=no

IPV6_ADDR_GEN_MODE=stable-privacy

NAME=ens37

UUID=d4341ea9-dfc5-4eb4-8f08-6349b7315cd8

DEVICE=ens37

ONBOOT=yes

PEERDNS=no

網(wǎng)卡配置

[root@centos7 network-scripts]# ip addr

1: lo: mtu 65536 qdisc noqueue state UNKNOWN qlen 1

link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00

inet 127.0.0.1/8 scope host lo

valid_lft forever preferred_lft forever

inet6 ::1/128 scope host

valid_lft forever preferred_lft forever

2: ens37: mtu 1500 qdisc pfifo_fast state UP qlen 1000

link/ether 00:0c:29:6e:7f:0b brd ff:ff:ff:ff:ff:ff

inet 172.20.0.222/16 brd 172.20.255.255 scope global ens37

valid_lft forever preferred_lft forever

inet6 fe80::385:eb6f:c485:527e/64 scope link

valid_lft forever preferred_lft forever

3: virbr0: mtu 1500 qdisc noqueue state DOWN qlen 1000

link/ether 52:54:00:e0:74:53 brd ff:ff:ff:ff:ff:ff

inet 192.168.122.1/24 brd 192.168.122.255 scope global virbr0

valid_lft forever preferred_lft forever

4: virbr0-nic: mtu 1500 qdisc pfifo_fast master virbr0 state DOWN qlen 1000

link/ether 52:54:00:e0:74:53 brd ff:ff:ff:ff:ff:ff

#路由配置

[root@centos7 network-scripts]# route -n

Kernel IP routing table

Destination Gateway Genmask Flags Metric Ref Use Iface

0.0.0.0 172.20.0.80 0.0.0.0 UG 100 0 0 ens37

172.20.0.0 0.0.0.0 255.255.0.0 U 100 0 0 ens37

192.168.122.0 0.0.0.0 255.255.255.0 U 0 0 0 virbr0

路由和網(wǎng)絡(luò)

[root@centos7 network-scripts]# cat /etc/resolv.conf

# Generated by NetworkManager

nameserver 172.20.127.159

[root@centos7 network-scripts]#

配置DNS

節(jié)點(diǎn)2DNS服務(wù)器

[root@localhost ~]# ip addr

1: lo: mtu 65536 qdisc noqueue state UNKNOWN qlen 1

link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00

inet 127.0.0.1/8 scope host lo

valid_lft forever preferred_lft forever

inet6 ::1/128 scope host

valid_lft forever preferred_lft forever

2: ens33: mtu 1500 qdisc pfifo_fast state UP qlen 1000

link/ether 00:0c:29:f6:59:d2 brd ff:ff:ff:ff:ff:ff

inet 172.20.127.159/16 brd 172.20.255.255 scope global dynamic ens33

valid_lft 77367sec preferred_lft 77367sec

inet 172.20.127.160/16 brd 172.20.255.255 scope global secondary ens33

valid_lft forever preferred_lft forever

inet6 fe80::c4be:ccbf:ed3c:f146/64 scope link

valid_lft forever preferred_lft forever

[root@localhost ~]# route -n

Kernel IP routing table

Destination Gateway Genmask Flags Metric Ref Use Iface

0.0.0.0 172.20.0.1 0.0.0.0 UG 100 0 0 ens33

172.20.0.0 0.0.0.0 255.255.0.0 U 100 0 0 ens33

網(wǎng)絡(luò)和路由

[root@localhost network-scripts]# vi ifcfg-ens33

TYPE=Ethernet

PROXY_METHOD=none

BROWSER_ONLY=no

BOOTPROTO=dhcp

IPADDR=172.20.127.160

NETMASK=255.255.0.0

DEFROUTE=yes

IPV4_FAILURE_FATAL=no

IPV6INIT=yes

IPV6_AUTOCONF=yes

IPV6_DEFROUTE=yes

IPV6_FAILURE_FATAL=no

IPV6_ADDR_GEN_MODE=stable-privacy

NAME=ens33

UUID=9eb578d3-4019-478f-9f9f-8a75dc50b157

DEVICE=ens33

ONBOOT=yes

網(wǎng)卡配置

節(jié)點(diǎn)3路由器

[root@localhost network-scripts]# vi ifcfg-ens33

TYPE=Ethernet

PROXY_METHOD=none

BROWSER_ONLY=no

BOOTPROTO=static

IPADDR=172.20.0.80

NETMASK=255.255.0.0

DEFROUTE=yes

IPV4_FAILURE_FATAL=no

IPV6INIT=yes

IPV6_AUTOCONF=yes

IPV6_DEFROUTE=yes

IPV6_FAILURE_FATAL=no

IPV6_ADDR_GEN_MODE=stable-privacy

NAME=ens33

DEVICE=ens33

ONBOOT=yes

[root@localhost network-scripts]# vi ifcfg-ens37

TYPE=Ethernet

PROXY_METHOD=none

BROWSER_ONLY=no

BOOTPROTO=static

IPADDR=192.168.30.200

NETMASK=255.255.255.0

DEFROUTE=yes

IPV4_FAILURE_FATAL=no

IPV6INIT=yes

IPV6_AUTOCONF=yes

IPV6_DEFROUTE=yes

IPV6_FAILURE_FATAL=no

IPV6_ADDR_GEN_MODE=stable-privacy

NAME=ens37

DEVICE=ens37

ONBOOT=yes

網(wǎng)卡配置

[root@localhost network-scripts]# ip addr

1: lo: mtu 65536 qdisc noqueue state UNKNOWN qlen 1

link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00

inet 127.0.0.1/8 scope host lo

valid_lft forever preferred_lft forever

inet6 ::1/128 scope host

valid_lft forever preferred_lft forever

2: ens33: mtu 1500 qdisc pfifo_fast state UP qlen 1000

link/ether 00:0c:29:3b:b5:39 brd ff:ff:ff:ff:ff:ff

inet 172.20.0.80/16 brd 172.20.255.255 scope global ens33

valid_lft forever preferred_lft forever

inet6 fe80::fa59:9f2f:aa03:7229/64 scope link

valid_lft forever preferred_lft forever

3: ens37: mtu 1500 qdisc pfifo_fast state UP qlen 1000

link/ether 00:0c:29:3b:b5:43 brd ff:ff:ff:ff:ff:ff

inet 192.168.30.200/24 brd 192.168.30.255 scope global ens37

valid_lft forever preferred_lft forever

inet 10.0.0.100/24 scope global ens37

valid_lft forever preferred_lft forever

inet6 fe80::7c:88e7:2378:b883/64 scope link

valid_lft forever preferred_lft forever

[root@localhost network-scripts]# route -n

Kernel IP routing table

Destination Gateway Genmask Flags Metric Ref Use Iface

10.0.0.0 10.0.0.200 255.255.255.255 UGH 0 0 0 ens37

10.0.0.0 0.0.0.0 255.255.255.0 U 0 0 0 ens37

172.20.0.0 0.0.0.0 255.255.0.0 U 100 0 0 ens33

192.168.30.0 0.0.0.0 255.255.255.0 U 100 0 0 ens37

路由表

?開(kāi)啟路由包轉(zhuǎn)發(fā)

? ? ?echo "net.ipv4.ip_forward = 1" >> /etc/sysctl.conf?

? ? ?sysctl -p?????????????? ----加載,使得配置文件立即生效

節(jié)點(diǎn)4Lvs服務(wù)器

? ? ? 1.安裝lvs客戶(hù)端管理工具包

? ? ? ? ?[root@localhost network-scripts]# yum install ipvsadm

[root@localhost network-scripts]# vi ifcfg-ens33

TYPE=Ethernet

PROXY_METHOD=none

BROWSER_ONLY=no

BOOTPROTO=static

IPADDR=192.168.30.7

NETMASK=255.255.255.0

GATEWAY=192.168.30.200

DEFROUTE=yes

IPV4_FAILURE_FATAL=no

IPV6INIT=yes

IPV6_AUTOCONF=yes

IPV6_DEFROUTE=yes

IPV6_FAILURE_FATAL=no

IPV6_ADDR_GEN_MODE=stable-privacy

NAME=ens33

UUID=9eb578d3-4019-478f-9f9f-8a75dc50b157

DEVICE=ens33

ONBOOT=yes

[root@localhost network-scripts]# route -n

Kernel IP routing table

Destination Gateway Genmask Flags Metric Ref Use Iface

0.0.0.0 172.20.0.1 0.0.0.0 UG 100 0 0 ens37

0.0.0.0 192.168.30.200 0.0.0.0 UG 101 0 0 ens33

10.0.0.0 0.0.0.0 255.255.255.0 U 0 0 0 ens37

172.20.0.0 0.0.0.0 255.255.0.0 U 100 0 0 ens37

192.168.30.0 0.0.0.0 255.255.255.0 U 100 0 0 ens33

[root@localhost network-scripts]# ip addr

1: lo: mtu 65536 qdisc noqueue state UNKNOWN qlen 1

link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00

inet 127.0.0.1/8 scope host lo

valid_lft forever preferred_lft forever

inet6 ::1/128 scope host

valid_lft forever preferred_lft forever

2: ens33: mtu 1500 qdisc pfifo_fast state UP qlen 1000

link/ether 00:0c:29:a6:8d:ce brd ff:ff:ff:ff:ff:ff

inet 192.168.30.7/24 brd 192.168.30.255 scope global ens33

valid_lft forever preferred_lft forever

inet6 fe80::389:d83b:6d7a:226d/64 scope link

valid_lft forever preferred_lft forever

3: ens37: mtu 1500 qdisc pfifo_fast state UP qlen 1000

link/ether 00:0c:29:a6:8d:d8 brd ff:ff:ff:ff:ff:ff

inet 172.20.127.175/16 brd 172.20.255.255 scope global dynamic ens37

valid_lft 81555sec preferred_lft 81555sec

inet 10.0.0.200/24 scope global ens37

valid_lft forever preferred_lft forever

inet6 fe80::80ef:9ba0:749:8123/64 scope link

valid_lft forever preferred_lft forever

網(wǎng)卡配置和路由

[root@localhost network-scripts]# ipvsadm -A -t 10.0.0.200:80 -s rr

[root@localhost network-scripts]# ipvsadm -a -t 10.0.0.200:80 -r 192.168.30.17

[root@localhost network-scripts]# ipvsadm -a -t 10.0.0.200:80 -r 192.168.30.27

[root@localhost network-scripts]# ipvsadm -Ln

IP Virtual Server version 1.2.1 (size=4096)

Prot LocalAddress:Port Scheduler Flags

-> RemoteAddress:Port Forward Weight ActiveConn InActConn

TCP 10.0.0.200:80 rr

-> 192.168.30.17:80 Route 1 0 0

-> 192.168.30.27:80 Route 1 0 0

lvs設(shè)置命令

節(jié)點(diǎn)5webserver1

TYPE=Ethernet

PROXY_METHOD=none

BROWSER_ONLY=no

BOOTPROTO=static

IPADDR=192.168.30.17

NETMASK=255.255.255.0

GATEWAY=192.168.30.200

DEFROUTE=yes

IPV4_FAILURE_FATAL=no

IPV6INIT=yes

IPV6_AUTOCONF=yes

IPV6_DEFROUTE=yes

IPV6_FAILURE_FATAL=no

IPV6_ADDR_GEN_MODE=stable-privacy

NAME=ens33

UUID=9eb578d3-4019-478f-9f9f-8a75dc50b157

DEVICE=ens33

ONBOOT=yes

[root@localhost html]# ip addr a 10.0.0.200/24 dev ens33

[root@localhost html]# cd /proc/sys/net/ipv4/conf/all

[root@localhost all]# echo 1 > arp_ignore

[root@localhost all]# echo 2 > arp_announce

網(wǎng)絡(luò)配置

節(jié)點(diǎn)6webserver2

TYPE=Ethernet

PROXY_METHOD=none

BROWSER_ONLY=no

BOOTPROTO=static

IPADDR=192.168.30.27

NETMASK=255.255.255.0

GATEWAY=192.168.30.200

DEFROUTE=yes

IPV4_FAILURE_FATAL=no

IPV6INIT=yes

IPV6_AUTOCONF=yes

IPV6_DEFROUTE=yes

IPV6_FAILURE_FATAL=no

IPV6_ADDR_GEN_MODE=stable-privacy

NAME=ens33

UUID=9eb578d3-4019-478f-9f9f-8a75dc50b157

DEVICE=ens33

ONBOOT=yes

[root@localhost html]# ip addr a 10.0.0.200/24 dev ens33

[root@localhost html]# cd /proc/sys/net/ipv4/conf/all

[root@localhost all]# echo 1 > arp_ignore

[root@localhost all]# echo 2 > arp_announce

網(wǎng)絡(luò)配置

注意事項(xiàng)

IP地址每段的最大值是255,超過(guò)255的設(shè)置都不會(huì)生效

[root@centos7 ~]# ip addr a 10.0.0.100/24 dev ens37

[root@centos7 ~]# ip addr del 10.0.0.100/24 dev ens37

添加靜態(tài)路由

ip route add 10.0.0.0/24 via 10.0.0.100 dev ens37

給一個(gè)網(wǎng)卡添加多個(gè)IP地址 不能使用ifconfig查看

[root@localhost ]# ip addr

如果在ip配置文件里面配置的網(wǎng)關(guān),需要重啟網(wǎng)絡(luò)服務(wù)才會(huì)生效

路由匹配和系統(tǒng)中路由表記錄的順序有關(guān),當(dāng)匹配到前一條記錄的時(shí)候后面的記錄不會(huì)再生效

#記錄順序1 不能訪(fǎng)問(wèn)外網(wǎng)

[root@localhost network-scripts]# route -n

Kernel IP routing table

Destination Gateway Genmask Flags Metric Ref Use Iface

0.0.0.0 192.168.30.200 0.0.0.0 UG 100 0 0 ens33

0.0.0.0 172.20.0.1 0.0.0.0 UG 101

[root@localhost network-scripts]# ping 8.8.8.8

PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data.

From 192.168.30.200 icmp_seq=1 Destination Net Unreachable

#記錄順序2 能訪(fǎng)問(wèn)外網(wǎng)

[root@localhost network-scripts]# route del default gw 192.168.30.200

[root@localhost network-scripts]# systemctl restart network

[root@localhost network-scripts]# route -n

Kernel IP routing table

Destination Gateway Genmask Flags Metric Ref Use Iface

0.0.0.0 172.20.0.1 0.0.0.0 UG 100 0 0 ens37

0.0.0.0 192.168.30.200 0.0.0.0 UG 101

[root@localhost network-scripts]# ping www.baidu.com

PING www.a.shifen.com (61.135.169.125) 56(84) bytes of data.

64 bytes from 61.135.169.125 (61.135.169.125): icmp_seq=1 ttl=56 time=96.8 ms

From 172.20.127.96 (172.20.127.96) icmp_seq=2 Redirect Network(New nexthop: gateway (172.20.0.1))

View Code

最終效果

在節(jié)點(diǎn)1上進(jìn)行測(cè)試

[root@centos7 ~]# curl www.tianhuang.com

天皇萬(wàn)歲,我是web1

[root@centos7 ~]# curl www.tianhuang.com

天皇萬(wàn)歲,我是web2

[root@centos7 ~]# curl www.tianhuang.com

天皇萬(wàn)歲,我是web1

[root@centos7 ~]# curl www.tianhuang.com

天皇萬(wàn)歲,我是web2

[root@centos7 ~]# curl www.tianhuang.com

天皇萬(wàn)歲,我是web1

[root@centos7 ~]# curl www.tianhuang.com

天皇萬(wàn)歲,我是web2

[root@centos7 ~]#

View Code

柚子快報(bào)邀請(qǐng)碼778899分享：LVS小型系統(tǒng)架構(gòu)搭建筆記

http://yzkb.51969.com/

推薦閱讀