7.saltstack配置管理-功能模块-haproxy

最新推荐文章于 2022-06-08 10:16:36 发布
最新推荐文章于 2022-06-08 10:16:36 发布
阅读量136 收藏 1
点赞数
分类专栏: 运维 saltstack
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_41515615/article/details/80870986
版权

功能模块:

根据整个系统架构图,我们可以分为两大部分来完成。前端高可用和后端上线服务,前端高可用主要包括haproxy和keepalived安装及配置。后端线上服务包括nginx、php、memcache、mysql的安装及配置。以下是haproxy和keepalived安装和配置。


1.安装的每个服务目录要清晰;


创建Haproxy模块的文件目录:
[root@salt-master ~]# mkdir /srv/salt/prod/pkg
注:pkg目录用于存放软件安装包
[root@salt-master ~]# mkdir /srv/salt/prod/haproxy
[root@salt-master ~]# mkdir /srv/salt/prod/haproxy/files
注:haproxy目录用于存放haroxy的安装脚本和文件



注意:要先把启动文件cp到files目录下:
[root@salt-master ~]#cd /usr/local/src/
[root@salt-master ~]#tar -zxvf haproxy-1.7.11.tar.gz.tar
[root@salt-master ~]# vi /usr/local/src/haproxy-1.7.11/examples/haproxy.init   
BIN=/usr/local/haproxy/sbin/$BASENAME  #修改这行

cp到haproxy/files/目录下
[root@salt-master ~]# cp /usr/local/src/haproxy-1.7.11/examples/haproxy.init /srv/salt/prod/haproxy/files/




[root@salt-master ~]# cat /srv/salt/prod/pkg/pkg-init.sls  
pkg-init:
  pkg.installed:
    - names:
      - gcc
      - gcc-c++
      - glibc
      - make
      - autoconf
      - openssl
      - openssl-devel

注:pkg-init.sls用解决源码安装所需要的相关依赖,安装其他服务也是如此;


[root@salt-master ~]#vi /srv/salt/prod/haproxy/install.sls   编辑安装文件<==========================================
include:
  - pkg.pkg-init
haproxy-install:
  file.managed:
    - name: /usr/local/src/haproxy-1.7.11.tar.gz.tar
    - source: salt://haproxy/files/haproxy-1.7.11.tar.gz.tar
    - user: root
    - group: root
    - mode: 755
  cmd.run:
    - name: cd /usr/local/src/ && tar xf haproxy-1.7.11.tar.gz.tar && cd haproxy-1.7.11 && make TARGET=linux2628 PREFIX=/usr/local/haproxy && make install PREFIX=/usr/local/haproxy
    - unless: test -d /usr/local/haproxy #判断haproxy目录是否存在,如果存在不在继续安装
    - require: #执行完cmd.run后,如果执行成功,则继续。否则,不执行以下。
      - pkg: pkg-init
      - file: haproxy-install      
net.ipv4.ip_nonlocal_bind:#监听本地ip
  sysctl.present:
    - value: 1
haproxy-init: #定义haproxy-init,包括:拷贝haproxy启动脚本到相关路径下、添加系统服务
  file.managed:
    - name: /etc/init.d/haproxy
    - source: salt://haproxy/files/haproxy.init
    - user: root
    - group: root
    - mode: 755
    - require:
      - cmd: haproxy-install
  cmd.run:
    - name: systemctl start haproxy
    - unless: systemctl enable haproxy
    - require:
      - file: /etc/init.d/haproxy
haproxy-config-dir:    #创建haproxy的目录
  file.directory:
    - name: /etc/haproxy
    - user: root
    - group: root
    - mode: 755

注意:编写的时候不能有多余的空格或者tab键;

功能名称:requisites
功      能:处理状态间关系
常用方法:
    require    #依赖某个状态
    require_in    #被某个状态依赖
    watch    #关注某个状态
    watch_in    #被某个状态关注
状态模块:状态间关系
功      能:条件判断,主要用于cmd状态模块
常用方法:
    -onlyif:检查的命令,仅当“onlyif”选项指向的命令返回true时才执行name定义的命令。
    -unless;用于检查的命令,仅当“unless”选项指向的命令返回false时才执行name指向的命令。














    
目录结构,如下:
[root@salt-master prod]# tree
.
├── haproxy
│   ├── files
│   │   └── haproxy-1.7.11.tar.gz.tar
│   └── install.sls
└── pkg
    └── pkg-init.sls

3 directories, 3 files








执行安装haproxy:
[root@salt-master ~]# salt '*' state.sls haproxy.install env=prod
salt-minion2.2018.com:
----------
          ID: pkg-init
    Function: pkg.installed
        Name: gcc
      Result: True
     Comment: Package gcc is already installed.
     Started: 14:19:20.602407
    Duration: 461.778 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: glibc
      Result: True
     Comment: Package glibc is already installed.
     Started: 14:19:21.064363
    Duration: 0.316 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: openssl
      Result: True
     Comment: Package openssl is already installed.
     Started: 14:19:21.064771
    Duration: 0.225 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: openssl-devel
      Result: True
     Comment: Package openssl-devel is already installed.
     Started: 14:19:21.065048
    Duration: 0.262 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: autoconf
      Result: True
     Comment: Package autoconf is already installed.
     Started: 14:19:21.065364
    Duration: 0.208 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: gcc-c++
      Result: True
     Comment: Package gcc-c++ is already installed.
     Started: 14:19:21.065620
    Duration: 0.246 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: make
      Result: True
     Comment: Package make is already installed.
     Started: 14:19:21.065916
    Duration: 0.207 ms
     Changes:   
----------
          ID: haproxy-install
    Function: file.managed
        Name: /usr/local/src/haproxy-1.7.11.tar.gz.tar
      Result: True
     Comment: File /usr/local/src/haproxy-1.7.11.tar.gz.tar is in the correct state
     Started: 14:19:21.067640
    Duration: 19.354 ms
     Changes:   
----------
          ID: haproxy-install
    Function: cmd.run
        Name: cd /usr/local/src/ && tar zxf haproxy-1.7.11.tar.gz.tar && cd haproxy-1.7.11 && make TARGET=linux26 PREFIX=/usr/local/haproxy && make install PREFIX=/usr/local/haproxy
      Result: True
     Comment: unless execution succeeded
     Started: 14:19:21.087977
    Duration: 5.653 ms
     Changes:   
----------
          ID: net.ipv4.ip_nonlocal_bind
    Function: sysctl.present
      Result: True
     Comment: Sysctl value net.ipv4.ip_nonlocal_bind = 1 is already set
     Started: 14:19:21.094111
    Duration: 22.274 ms
     Changes:   
----------
          ID: haproxy-init
    Function: file.managed
        Name: /etc/init.d/haproxy
      Result: True
     Comment: File /etc/init.d/haproxy updated
     Started: 14:19:21.116629
    Duration: 29.865 ms
     Changes:   
              ----------
              diff:
                  New file
              mode:
                  0755
----------
          ID: haproxy-init
    Function: cmd.run
        Name: systemctl start haproxy
      Result: True
     Comment: unless execution succeeded
     Started: 14:19:21.146939
    Duration: 286.851 ms
     Changes:   
----------
          ID: haproxy-config-dir
    Function: file.directory
        Name: /etc/haproxy
      Result: True
     Comment: Directory /etc/haproxy is in the correct state
     Started: 14:19:21.434024
    Duration: 0.668 ms
     Changes:   

Summary
-------------
Succeeded: 13 (changed=1)
Failed:     0
-------------
Total states run:     13
salt-minion1.2018.com:
----------
          ID: pkg-init
    Function: pkg.installed
        Name: gcc
      Result: True
     Comment: Package gcc is already installed.
     Started: 14:19:20.362396
    Duration: 464.007 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: glibc
      Result: True
     Comment: Package glibc is already installed.
     Started: 14:19:20.826524
    Duration: 0.376 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: openssl
      Result: True
     Comment: Package openssl is already installed.
     Started: 14:19:20.826952
    Duration: 0.266 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: openssl-devel
      Result: True
     Comment: Package openssl-devel is already installed.
     Started: 14:19:20.827274
    Duration: 0.207 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: autoconf
      Result: True
     Comment: Package autoconf is already installed.
     Started: 14:19:20.827531
    Duration: 0.279 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: gcc-c++
      Result: True
     Comment: Package gcc-c++ is already installed.
     Started: 14:19:20.827859
    Duration: 0.201 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: make
      Result: True
     Comment: Package make is already installed.
     Started: 14:19:20.828109
    Duration: 0.265 ms
     Changes:   
----------
          ID: haproxy-install
    Function: file.managed
        Name: /usr/local/src/haproxy-1.7.11.tar.gz.tar
      Result: True
     Comment: File /usr/local/src/haproxy-1.7.11.tar.gz.tar is in the correct state
     Started: 14:19:20.830427
    Duration: 12.208 ms
     Changes:   
----------
          ID: haproxy-install
    Function: cmd.run
        Name: cd /usr/local/src/ && tar zxf haproxy-1.7.11.tar.gz.tar && cd haproxy-1.7.11 && make TARGET=linux26 PREFIX=/usr/local/haproxy && make install PREFIX=/usr/local/haproxy
      Result: True
     Comment: unless execution succeeded
     Started: 14:19:20.843770
    Duration: 5.678 ms
     Changes:   
----------
          ID: net.ipv4.ip_nonlocal_bind
    Function: sysctl.present
      Result: True
     Comment: Sysctl value net.ipv4.ip_nonlocal_bind = 1 is already set
     Started: 14:19:20.849940
    Duration: 21.455 ms
     Changes:   
----------
          ID: haproxy-init
    Function: file.managed
        Name: /etc/init.d/haproxy
      Result: True
     Comment: File /etc/init.d/haproxy updated
     Started: 14:19:20.871694
    Duration: 38.909 ms
     Changes:   
              ----------
              diff:
                  New file
              mode:
                  0755
----------
          ID: haproxy-init
    Function: cmd.run
        Name: systemctl start haproxy
      Result: True
     Comment: unless execution succeeded
     Started: 14:19:20.911008
    Duration: 316.499 ms
     Changes:   
----------
          ID: haproxy-config-dir
    Function: file.directory
        Name: /etc/haproxy
      Result: True
     Comment: Directory /etc/haproxy is in the correct state
     Started: 14:19:21.227778
    Duration: 0.729 ms
     Changes:   

Summary
-------------
Succeeded: 13 (changed=1)
Failed:     0
-------------
Total states run:     13
salt-master.2018.com:
----------
          ID: pkg-init
    Function: pkg.installed
        Name: gcc
      Result: True
     Comment: Package gcc is already installed.
     Started: 14:19:19.403811
    Duration: 510.289 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: glibc
      Result: True
     Comment: Package glibc is already installed.
     Started: 14:19:19.914223
    Duration: 0.354 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: openssl
      Result: True
     Comment: Package openssl is already installed.
     Started: 14:19:19.914633
    Duration: 0.207 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: openssl-devel
      Result: True
     Comment: Package openssl-devel is already installed.
     Started: 14:19:19.914891
    Duration: 0.272 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: autoconf
      Result: True
     Comment: Package autoconf is already installed.
     Started: 14:19:19.915213
    Duration: 0.201 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: gcc-c++
      Result: True
     Comment: Package gcc-c++ is already installed.
     Started: 14:19:19.915464
    Duration: 0.263 ms
     Changes:   
----------
          ID: pkg-init
    Function: pkg.installed
        Name: make
      Result: True
     Comment: Package make is already installed.
     Started: 14:19:19.915778
    Duration: 0.196 ms
     Changes:   
----------
          ID: haproxy-install
    Function: file.managed
        Name: /usr/local/src/haproxy-1.7.11.tar.gz.tar
      Result: True
     Comment: File /usr/local/src/haproxy-1.7.11.tar.gz.tar is in the correct state
     Started: 14:19:19.917674
    Duration: 9.958 ms
     Changes:   
----------
          ID: haproxy-install
    Function: cmd.run
        Name: cd /usr/local/src/ && tar zxf haproxy-1.7.11.tar.gz.tar && cd haproxy-1.7.11 && make TARGET=linux26 PREFIX=/usr/local/haproxy && make install PREFIX=/usr/local/haproxy
      Result: True
     Comment: unless execution succeeded
     Started: 14:19:19.928663
    Duration: 8.278 ms
     Changes:   
----------
          ID: net.ipv4.ip_nonlocal_bind
    Function: sysctl.present
      Result: True
     Comment: Sysctl value net.ipv4.ip_nonlocal_bind = 1 is already set
     Started: 14:19:19.937498
    Duration: 27.672 ms
     Changes:   
----------
          ID: haproxy-init
    Function: file.managed
        Name: /etc/init.d/haproxy
      Result: True
     Comment: File /etc/init.d/haproxy updated
     Started: 14:19:19.965425
    Duration: 7.191 ms
     Changes:   
              ----------
              diff:
                  New file
              mode:
                  0755
----------
          ID: haproxy-init
    Function: cmd.run
        Name: systemctl start haproxy
      Result: True
     Comment: unless execution succeeded
     Started: 14:19:19.972960
    Duration: 574.228 ms
     Changes:   
----------
          ID: haproxy-config-dir
    Function: file.directory
        Name: /etc/haproxy
      Result: True
     Comment: Directory /etc/haproxy is in the correct state
     Started: 14:19:20.547340
    Duration: 0.857 ms
     Changes:   

Summary
-------------
Succeeded: 13 (changed=1)
Failed:     0
-------------
Total states run:     13

注:env=prod 指定prod目录下执行,如果不加此参数会默认从base环境下执行sls文件

可以看到执行haproxy安装成功了。










yongbang_yan
关注
  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
6.saltstack配置管理-系统初始化
大坏蛋的博客
06-30 2998
系统初始化:1、系统初始化也就是系统优化,下面简单的给系统做系统优化。比如:修改/proc/sys/fs/file-max 、/proc/sys/vm/swappiness 、/proc/sys/net/ipv4/ip_local_port_range2.创建saltstack初始化目录也是层层依赖关系,认真的看即可知道。以下全是在master上操作:首先:[root@salt-master ~]...
5.saltstack配置管理YAML和jinja
大坏蛋的博客
06-30 522
1、系统初始化。  2、功能模块。  3、业务模块。yaml语法三大规则规则一:缩进  yaml使用一个固定的缩进风格表示数据层结构关系,Saltstack需要每个缩进级别由两个空格组成。============注意:一定不能使用tab键==================规则二:冒号  yaml:  mykey: my_value  每个冒号后面一定要有一个空格(以冒号结尾不需要空格,表示文件路...
Linux 关于问题 Transaction check error: package xxxx is already installed
九术沫的博客
06-08 4349
package xxxx is already installed
saltstack进阶
yongchaocsdn的博客
04-05 493
vim /etc/salt/master:[root@localhost pillar]# mkdir /srv/salt/base [root@localhost pillar]# mkdir /srv/salt/test [root@localhost pillar]# mkdir /srv/salt/prod [root@localhost base]# salt '*' state.sls...
解决package jdk1.8-2000:1.8.0_171-fcs.x86_64 is already installed问题
热门推荐
cplasf1949的博客
06-28 1万+
在linux系统中,当我们在重新安装JDK的时候,经常会出现出现以下提示信息:网上有帖子说可以使用--replacepkgs命令忽略该错误信息,但楼主试了不太可靠。出现这种问题的原因在于,用户在安装好JDK之后,使用rm -rf命令将JDK的安装目录删除掉了,但实际上并没有删除干净。此时有一个简单的办法,进入到JDK的安装路径下,执行rpm -e jdk1.8命令,此时将彻底删除安装的JDK相关的...
8.saltstack配置管理-业务模块-haproxy
大坏蛋的博客
06-30 333
业务引用之Haproxy负载均衡的实现=====================注意:真正服务器使用时不鞥有这些#号注稀或者空格、tab键。检测可以在vi 里面:set list来判断是否有空格==================先看过来    Haproxy的安装我们选择源码包进行安装,我们通过文件管理模块进行haproxy的文件配置管理,需要将两个节点配置为负载均衡模式。创建业务引用相关目录:...
netty-codec-haproxy-4.1.73.Final-API文档-中英对照版.zip
05-03
赠送jar包:netty-codec-haproxy-4.1.73.Final.jar; 赠送原API文档:netty-codec-haproxy-4.1.73.Final-javadoc.jar; 赠送源代码:netty-codec-haproxy-4.1.73.Final-sources.jar; 赠送Maven依赖信息文件:netty-...
netty-codec-haproxy-4.1.74.Final-API文档-中文版.zip
07-06
赠送jar包:netty-codec-haproxy-4.1.74.Final.jar; 赠送原API文档:netty-codec-haproxy-4.1.74.Final-javadoc.jar; 赠送源代码:netty-codec-haproxy-4.1.74.Final-sources.jar; 赠送Maven依赖信息文件:netty-...
netty-codec-haproxy-4.1.74.Final-API文档-中英对照版.zip
07-04
赠送jar包:netty-codec-haproxy-4.1.74.Final.jar; 赠送原API文档:netty-codec-haproxy-4.1.74.Final-javadoc.jar; 赠送源代码:netty-codec-haproxy-4.1.74.Final-sources.jar; 赠送Maven依赖信息文件:netty-...
netty-codec-haproxy-4.1.73.Final-API文档-中文版.zip
05-09
赠送jar包:netty-codec-haproxy-4.1.73.Final.jar; 赠送原API文档:netty-codec-haproxy-4.1.73.Final-javadoc.jar; 赠送源代码:netty-codec-haproxy-4.1.73.Final-sources.jar; 赠送Maven依赖信息文件:netty-...
haproxy-1.6.9.tar.gz
05-05
- 解压`haproxy-1.6.9`压缩包,进入目录并配置`haproxy.cfg`,定义前端和后端服务器、负载均衡策略等。 - 编译并安装HAProxy,启动服务,然后根据需要调整配置并重新加载。 通过理解HAProxy的工作原理和1.6.9版本...
1.SaltStack-安装并简单配置使用(CentOS 7.3)
大坏蛋的博客
06-30 349
SaltStack使用教程(一):安装并简单配置使用SaltStack作用于仆从和主拓扑。SaltStack与特定的命令结合使用可以在一个或多个下属执行。实现这一点,此时Salt Master可以发出命令,如salt '*' cmd.run 'ls -l /'。除了运行远程命令,SaltStack允许管理员使用“grain”。grain可以在SaltStack仆从运行远程查询,因此收集仆从的状态信...
4.saltstack文件配置管理
大坏蛋的博客
06-30 322
文件配置管理官网 https://docs.saltstack.com/en/latest/ref/states/all/salt.states.file.html#module-salt.states.file配置master文件:[root@salt-master ~]# vi /etc/salt/masterfile_roots:  base:    - /srv/salt/base  te...
3.saltstack远程执行(targeting、modulee、returnnres)
大坏蛋的博客
06-30 295
    Saltstack远程执行语法例:salt '*' cmd.run 'w' -  命令:salt -  目标:'*' -  模块:cmd.run,自带150+模块,也可以自己写模块 -  返回:执行后结果返回,Returnners组件1、指定目标(targeting)官网文档:https://docs.saltstack.com/en/latest/topics/targeting/ind...
12.saltstack配置管理-功能模块与业务模块-php
大坏蛋的博客
07-01 289
功能模块之php安装创建php安装目录[root@salt-master ~]# mkdir /srv/salt/prod/php[root@salt-master ~]# mkdir /srv/salt/prod/app/php/files/php -p[root@salt-master ~]# mkdir /srv/salt/prod/php/files/将安装包拷贝到files目录下:[ro...
10.saltstack配置管理-业务模块-keepalived
大坏蛋的博客
07-01 227
业务引用之keepalived    同haproxy业务引用一样,我们同样在cluster目录下进行。编写salt文件:    salt文件涉及到keepalived的安装的引用;每个节点的具体参数如何这里主要通过编写jiaja模版来实现每个节点参数的差异性。通过grains的fqdn来判断不同的主机名,实现不同主机不同参数。在cluster目录编辑:[root@salt-master ~]# ...
11.saltstack配置管理-功能模块与业务模块-nginx
大坏蛋的博客
07-01 187
后端线上服务(注意:后端另外开启另外两台虚拟机)完成前端高可用之后,我们就可以去完成线上服务了。线上服务包括nginx、php、memache、mysql等的安装及配置。一、功能模块之nginx安装创建nginx安装目录:[root@salt-master ~]# mkdir /srv/salt/prod/nginx/[root@salt-master ~]# mkdir /srv/salt/pr...
9.saltstack配置管理-功能模块-keepalived
大坏蛋的博客
06-30 158
功能模块之keepalived的安装=====================注意:真正服务器使用时不鞥有这些#号注稀或者空格、tab键。检测可以在vi 里面:set list来判断是否有空格==================先看过来    在keepalived安装之前,我们首先需要准备keepalived的安装包、启动脚本以及配置文件等。我们需要将所有的这些东西都放到keepalived/f...
haproxy 如何配置 Access-Control-Allow-Private-Network
最新发布
04-30
要在 HAProxy 中配置 `Access-Control-Allow-Private-Network`,需要使用 `http-response set-header` 选项。以下是一个示例配置: ``` frontend my_frontend bind *:80 mode http ...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值