1.基础配置
1.1.禁用 SELINUX
描述:对于 SELinux,初学者可以这么理解,它是部署在 Linux 上用于增强系统安全的功能模块。
vim /etc/selinux/config
SELINUX=disabled
SELINUXTYPE=targeted
重新启动系统生效(输入命令):systemctl reboot
临时生效(输入命令): setenforce 0
是否禁用验证(输入命令):getenforce(显示disabled则表示已禁用)
1.2.关闭防火墙
#关闭防火墙
systemctl stop firewalld
#设置开机禁止启动
systemctl disable firewalld
#验证防火墙是否关闭
systemctl status firewalld
显示:Active: inactive (dead)则表示已关闭
2.Nginx安装部署
2.1.Nginx常用命令
cd /usr/local/nginx/sbin
启动:./nginx
重启:./nginx -s reload
关闭:./nginx -s stop
查看nginx版本:./nginx -v
检查配置文件是否正确:./nginx -t
2.2.Ngin安装步骤
第一步:一键安装上面四个依赖
yum -y install gcc zlib zlib-devel pcre-devel openssl openssl-devel
第二步:下载并解压安装包
//创建一个文件夹
cd /usr/local
mkdir nginx
cd nginx
//下载tar包
wget http://nginx.org/download/nginx-1.13.7.tar.gz
tar -xvf nginx-1.13.7.tar.gz
第三步:安装nginx
//进入nginx目录
cd /usr/local/nginx
//进入目录
cd nginx-1.13.7
//执行命令 考虑到后续安装ssl证书 添加两个模块
./configure --with-http_stub_status_module --with-http_ssl_module
//执行make命令
make
//执行make install命令
make install
第四步:修改nginx配置文件
进入Nginx配置文件目录:
cd /usr/local/nginx/conf
vim nginx.conf
将端口改为9001,并增加如下配置
location /NginxStatus
{
stub_status on;
access_log off;
}
第五步:启动nginx
进入目录:
cd /usr/local/nginx/sbin
输入命令启动nginx:./nginx
查看nginx是否启动命令:ps -ef|grep nginx
在浏览器输入访问地址:http://192.168.0.110:9001/NginxStatus
3.Keepalived安装部署
3.1.Keepalived常用命令
keepalived启动:
cd /usr/sbin
启动:service keepalived start
重启:service keepalived restart
systemctl start keepalived
systemctl restart keepalived
systemctl stop keepalived
3.2.Keepalived安装步骤(主服务器)
第一步:安装keepalived
yum install keepalived -y
第二步:配置keepalived.conf文件,添加vip和相关信息
cd /etc/keepalived
主服务器的配置如下:
! Configuration File for keepalived
global_defs {
router_id node1
}
vrrp_script chk_nginx {
script "/etc/keepalived/nginx_check.sh"
interval 2
weight 0
}
vrrp_instance VI_1 {
state MASTER
interface ens33
virtual_router_id 51
priority 100
advert_int 1
authentication {
auth_type PASS
auth_pass 1111
}
virtual_ipaddress {
192.168.0.243
}
track_script {
chk_nginx
}
}
配置的详解具体参考:
https://blog.csdn.net/weixin_40524659/article/details/106892167
第三步:启动keepalived
systemctl start keepalived
查看启动日志:tail -f /var/log/messages
出现如下内容则表示启动成功。
在浏览器中输入:http://192.168.0.243:9001/NginxStatus,能访问则表示配置成功。
3.3.Keepalived安装步骤(从服务器)
从服务器除了配置文件跟主服务器不一样,其它的安装步骤是一致的。另外从服务器未使用时,是不会显示虚拟ip,只有主服务器出现故障的情况下,虚拟ip会自动漂移到从服务器上,这时才会显示虚拟ip。
cd /etc/keepalived
从服务器的配置如下:
! Configuration File for keepalived
global_defs {
router_id node2
}
vrrp_script chk_nginx {
script "/etc/keepalived/nginx_check.sh"
interval 1
weight 0
}
vrrp_instance VI_1 {
state BACKUP
interface ens33
virtual_router_id 51
#优先级
priority 90
advert_int 1
authentication {
auth_type PASS
auth_pass 1111
}
virtual_ipaddress {
192.168.0.243
}
track_script {
chk_nginx
}
}
3.4.nginx_check.sh状态监测脚本
nginx_check.sh脚本跟keepalived的配置文件放到同一目录下
第一步:增加脚本文件
#!/bin/bash
A=$(ps -C nginx --no-header |wc -l)
#echo $A
if [ $A -eq 0 ];then
echo 'nginx not running, stop keepalived!'
systemctl stop keepalived
fi
第二步:增加脚本可执行权限
chmod +x nginx_check.sh
第三步:验证脚本配置是否正确
./nginx_check.sh