nginx-sync-1.1-1.el8 参考

最新推荐文章于 2023-05-22 13:40:09 发布
最新推荐文章于 2023-05-22 13:40:09 发布
阅读量441 收藏
点赞数
分类专栏: Nginx 文章标签: nginx linux 服务器
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/zzhongcy/article/details/125990903
版权

这里是nginx-sync-1.1-1.el8的参考,具体可以再centos网站下载:

https://centos.pkgs.org/8/getpagespeed-noarch/nginx-sync-1.1-1.el8.ngx.noarch.rpm.html

#!/bin/sh
#
# Copyright (C) Nginx, Inc.

TEST=/usr/bin/test
MKDIR=/bin/mkdir
CHOWN=/bin/chown
CHMOD=/bin/chmod
RM=/bin/rm
MV=/bin/mv
SED=/bin/sed
[ -x /sbin/service ] && SERVICE=/sbin/service || SERVICE=/usr/sbin/service
RSYNC=/usr/bin/rsync
NGINX=/usr/sbin/nginx
SSH=/usr/bin/ssh
DIFF=/usr/bin/diff
SUDO=/usr/bin/sudo
GREP=/bin/grep
WC=/usr/bin/wc
USERPREFIX=

ID=`/usr/bin/id -u`

LOCKFILE=/tmp/nginx-sync.lock
CONF=/etc/nginx-sync.conf
BACKUPDIR=/var/lib/nginx-sync
SSHKEY="$HOME/.ssh/id_rsa"
MAXBACKUPCOPY=9
RSYNCVERB="-q"
DIFFVERB="-rq"
MINDEPTH=2
EXIT=0

set_sudo_prefix() {
    # we will need to run all local and remote commands with SUDO,
    # and rsync/ssh as the non-root user if desired, you can whitelist 
    # following commands in /etc/sudoers
    for VAR in TEST MKDIR CHOWN CHMOD RM MV SED SERVICE RSYNC NGINX DIFF; do
        eval $VAR=\"\$SUDO \$$VAR\"
    done

    USERPREFIX="$USER@"
    SSH="$SSH -t"
    RRSYNCPARAMS="-e \"ssh -i $SSHKEY\" --rsync-path=\"$RSYNC\""
}

check_remote_rsync() {
    $SSH $1 $RSYNC --version >/dev/null
    if [ $? -ne 0 ]; then
        echo "rsync binary check failed on $1"
        return 1
        EXIT=2
    else
        return 0
    fi
}

check_remote_nginx() {
   $SSH $1 $NGINX -v >/dev/null
    if [ $? -ne 0 ]; then
        echo "nginx binary check failed on $1"
        return 1
        EXIT=2
    else
        return 0
    fi
}

check_remote_nginx_conf() {
    echo " * Testing nginx config on $1"
    echo

    $SSH $1 $NGINX -t
    if [ $? -ne 0 ]; then
        echo "nginx configuration check failed on $1"
        return 1
        EXIT=2
    else
        return 0
    fi
}

backup_remote_nginx_conf() {
    echo " * Backing up configuration on $1"
    echo

    $SSH $1 "$TEST ! -e $BACKUPDIR && $MKDIR -p $BACKUPDIR"
    if [ $? -ne 0 ]; then
        echo "Cannot create backup directory $BACKUPDIR on $1"
        echo "Please fix the issue manually."
        return 1
        EXIT=2
    fi

    for file in $CONFPATHS; do
        $SSH $1 "$TEST -e $file"

        if [ $? -ne 0 ]; then
            continue
        fi

        $SSH $1 "$RSYNC -aR $RSYNCVERB $EXCLUDEARGS $file $BACKUPDIR"

        if [ $? -ne 0 ]; then
            echo "Failed to backup $file to $BACKUPDIR on $1"
            echo "Please fix the issue manually."
            return 1
            EXIT=2
        fi
    done

    return 0
}

restore_remote_nginx_conf() {
    echo " * Restoring old configuration on $1"
    echo

    for file in $CONFPATHS; do
        $SSH $1 "$TEST -e $file"

        if [ $? -ne 0 ]; then
            continue
        fi

        $SSH $1 "if $TEST -d $BACKUPDIR/$file;\
            then $RSYNC -a $RSYNCVERB --delete $EXCLUDEARGS $BACKUPDIR/$file/ $file;\
            else $RSYNC -a $RSYNCVERB --delete $EXCLUDEARGS $BACKUPDIR/$file $file; fi"

        if [ $? -ne 0 ]; then
            echo "Failed to restore $file on $1"
            echo "Please fix the issue manually."
            return 1
            EXIT=2
        fi
    done

    return 0
}

update_remote_nginx_conf() {
    echo " * Updating configuration on $1"
    echo

    for file in $CONFPATHS; do
        $SSH $1 "$TEST -e $file || $TEST -d `dirname $file`"

        if [ $? -ne 0 ]; then
            continue
        fi

        if $TEST -d $file ; then
            eval $RSYNC -a $RSYNCVERB $RRSYNCPARAMS --delete $EXCLUDEARGS $file/ $1:$file
        elif $TEST -f $file ; then
            eval $RSYNC -a $RSYNCVERB $RRSYNCPARAMS --delete $EXCLUDEARGS $file $1:$file
        else
            continue
        fi

        if [ $? -ne 0 ]; then
            echo "Failed to update $file on $1"
            echo "Please fix the issue manually."
            return 1
            EXIT=2
        fi
    done

    return 0
}

cmp_remote_config() {
    echo " * Comparing local and remote configs"
    echo

    # can do this as non-root
    LOCALCONFDIR=`mktemp -dq /tmp/localconf.XXXXXXXX`
    REMOTECONFDIR=`mktemp -dq /tmp/remoteconf.XXXXXXXX`

    if [ -z "$LOCALCONFDIR" -o -z "$REMOTECONFDIR" ]; then
        echo "Failed to create tmp directories"
        exit 1
    fi

    for file in $CONFPATHS; do
        $RSYNC -aR $RSYNCVERB $EXCLUDEARGS $file $LOCALCONFDIR/ || \
            echo "Failed to copy $file to $LOCALCONFDIR"
        eval $RSYNC -aR $RSYNCVERB $RRSYNCPARAMS $EXCLUDEARGS $1:$file \
            $REMOTECONFDIR/ || \
            echo "Failed to copy $1:$file to $REMOTECONFDIR"
    done

    echo " * Comparing configs on master node and $1:"
    echo
    $DIFF $DIFFVERB $LOCALCONFDIR $REMOTECONFDIR | \
        sed "s|$LOCALCONFDIR|local:|" |sed "s|$REMOTECONFDIR|remote:|"

    $RM -rf $LOCALCONFDIR
    $RM -rf $REMOTECONFDIR

}

post_sync_remote_replace() {
    if [ ! -z "$POSTSYNC" ]; then
        echo " * Adjusting configuration on $1"
        echo

        for r in $POSTSYNC;do
            REPLACESTR=${r##*|}
            FILENAME=${r%%|*}
            if $SSH $1 "$TEST ! -f $FILENAME"; then
                echo "File $FILENAME is listed in POSTSYNC, but does not exist"
                continue
            fi
            echo "Editing file $FILENAME on $1"
            $SSH $1 "$SED -i'' $REPLACESTR $FILENAME"
        done
    fi

    return 0
}

delete_remote_nginx_backup() {
    $SSH $1 "$TEST -e $BACKUPDIR" || return 0

    echo " * Deleting remote backup directory"
    echo

    $SSH $1 "$TEST -d $BACKUPDIR && $RM -rf $BACKUPDIR"

    if [ $? -eq 0 ]; then
        return 0
    else
        echo "Cannot find or delete directory $BACKUPDIR on $1"
        echo "Please fix the issue manually."
        return 1
        EXIT=2
    fi
}

save_local_conf() {
    echo " * Testing local nginx configuration file"
    echo
    $NGINX -t
    if [ $? -ne 0 ]; then
        echo "Config file test failed, exiting"
        exit 1
    fi

    if ! $TEST -e $BACKUPDIR ; then
        $MKDIR -p $BACKUPDIR
        $CHMOD 700 $BACKUPDIR
    fi

    if ! $TEST -d $BACKUPDIR ; then
        echo "$BACKUPDIR exists already and it is not a directory, exiting"
        exit 1
    fi

    $TEST -d $BACKUPDIR/old && $RM -rf $BACKUPDIR/old
    $TEST -d $BACKUPDIR/$MAXBACKUPCOPY && \
        $MV $BACKUPDIR/$MAXBACKUPCOPY $BACKUPDIR/old
    for i in `seq $MAXBACKUPCOPY -1 0`; do
        $TEST -d $BACKUPDIR/$i && $MV $BACKUPDIR/$i $BACKUPDIR/$(($i + 1))
    done

    $MKDIR -p $BACKUPDIR/0
    for file in $CONFPATHS; do
        $RSYNC -aR $RSYNCVERB $EXCLUDEARGS $file $BACKUPDIR/0/
        if [ $? -ne 0 ]; then
            echo "Failed to save local copy of $file directory"
            EXIT=1
        fi
    done

    if [ $EXIT -ne 0 ]; then
        echo "Config backup failed, exiting"
        exit 1
    fi

}

usage() {
    echo
    echo `basename $0` " [-h | -c node_address| -C] [-r] [-d] [-u] [-l logfile]"
    echo `basename $0` " without arguments synchronizes configs from the master node"
    echo "to the slave nodes"
    echo "  -c compares local configs with configs on node_address"
    echo "  -C compares local configs with configs of other nodes"
    echo "  -r enables verbose rsync output"
    echo "  -d enables verbose diff output"
    echo "  -u run without sudo if started from non root user"
    echo "  -l saves script output to the logfile"
    echo
    echo "Prerequisites:"
    echo " * config file /etc/nginx-sync.conf"
    echo " * set up ssh key authentication between nodes"
    echo
    echo "Config variables define a list of values, one per line:"
    echo "NODES - list of the slave nodes"
    echo "CONFPATHS - paths to directories and files to be synchronized"
    echo "EXCLUDE - patterns to be excluded from synchronization"
    echo "POSTSYNC - filename|sed_expression to be run after synchronization"
    echo
    echo "To setup ssh key authentication it is required:"
    echo " * to generate key pair on the master node run"
    echo "   'ssh-keygen -t rsa -b 2048' command from the root user"
    echo " * copy public key /root/.ssh/id_rsa.pub to the slave nodes as"
    echo "   /root/.ssh/authorized_keys"
    echo " * add directive 'PermitRootLogin without-password', that allows"
    echo "   only key authentication to log in with root credentials, to the"
    echo "   /etc/ssh/sshd_config on the slave nodes and reload sshd"
    echo " * to ensure key authentication works run from the master node"
    echo "   ssh <slave node> echo test"
    echo "   command, where <slave node> is slave node's name or ip address"
    echo
    echo " Sample config file content:"
    echo
    echo "NODES=\"node2.example.com"
    echo "node3.example.com\""
    echo "CONFPATHS=\"/etc/nginx"
    echo "/etc/ssl/nginx\""
    echo "EXCLUDE=\"default.conf\""
    echo
    exit
}

init() {
    args=`getopt "c:l:hdruC" $1` || usage
    set -- $args

    for opt
    do
        case "$opt" in
            -h) usage; shift;;
            -c) CMPHOST=$2; shift; shift;;
            -l) LOGFILE=$2; shift; shift;;
            -r) RSYNCVERB="-v"; shift;;
            -d) DIFFVERB="-ru"; shift;;
            -u) UNPRIVILIGED=1; shift;;
            -C) CMPNODES=1; shift;;
            --) shift; break;;
        esac
    done

    if [ -n "$CMPHOST" -a -n "$CMPNODES" ]; then
        echo "-c and -C options are mutually exclusive"
        exit 1
    fi

    unset NODES CONFPATHS EXCLUDE POSTSYNC

    if [ -f $CONF ]; then
        . $CONF
    else
        echo "Configuration file $CONF does not exist."
        usage
    fi

    if [ ! -z "$EXCLUDE" ]; then
        for i in $EXCLUDE; do
            EXCLUDEARGS=`echo "$EXCLUDEARGS --exclude=$i"`
        done
    fi

    if [ -e $LOCKFILE ]; then
        echo "lockfile exists, probably another copy of the script is running"
        exit 1
    else
        touch $LOCKFILE
    fi
    trap 'rm -f $LOCKFILE; echo; echo " * Synchronization ended at" `/bin/date -u`' 0 1 2 3 15
}

check_prerequisites() {
    echo " * Checking prerequisites"
    echo

    if [ -z "$CONFPATHS" ]; then
        echo "Configuration file $CONF does not define variable \$CONFPATHS"
        echo "with paths to synchronize"
        exit 1
    fi

    for file in $CONFPATHS; do
        DEPTH=`echo $file | $GREP -o '/' | $WC -l`
        if [ $DEPTH -lt $MINDEPTH ]; then
            echo "Path $file depth is less than minimal depth $MINDEPTH, exiting"
            exit 1
        fi
    done

    if [ -z "$NODES" -a -z "$CMPHOST" ]; then
        echo "Configuration file $CONF does not define variable \$NODES"
        echo "with names or ip addresses of the other nginx nodes"
        exit 1
    fi

    if [ ! -x $SSH ]; then
        echo "$SSH not found, please install ssh, exiting"
        exit 1
    fi

    if [ ! -x $RSYNC ]; then
        echo "$RSYNC not found, please install rsync, exiting"
        exit 1
    fi

    if [ ! -x $NGINX ]; then
        echo "$NGINX not found, please install nginx-plus, exiting"
        exit 1
    fi

    if [ ! -x $DIFF ]; then
        echo "$DIFF not found, please install diff, exiting"
        exit 1
    fi
}

main() {
    echo " * Synchronization started at" `/bin/date -u`
    echo
    check_prerequisites

    if [ -z "$ID" -o $ID -ne 0 ]; then
        if [ -z "$UNPRIVILIGED" ]; then
            # please be aware that running as non-root and using sudo
            # is no more secure than running as root

            set_sudo_prefix
        fi
    fi 

    if [ -n "$CMPHOST" ]; then
        check_remote_rsync $USERPREFIX$CMPHOST && \
            cmp_remote_config $USERPREFIX$CMPHOST
        exit $EXIT
    fi

    if [ -n "$CMPNODES" ]; then
        for n in $NODES; do
            n=$USERPREFIX$n
            check_remote_rsync $n || continue
            cmp_remote_config $n
        done
        exit $EXIT
    fi

    save_local_conf

    for n in $NODES; do
        n=$USERPREFIX$n
        check_remote_rsync $n || continue
        check_remote_nginx $n || continue
        delete_remote_nginx_backup $n || continue
        backup_remote_nginx_conf $n || continue

        if ! update_remote_nginx_conf $n; then
            restore_remote_nginx_conf $n
            continue
        fi

        if ! post_sync_remote_replace $n; then
            restore_remote_nginx_conf $n
            continue
        fi

        if ! check_remote_nginx_conf $n; then
            restore_remote_nginx_conf $n
            continue
        fi

        if $SSH $n "$SERVICE nginx status > /dev/null"; then
            $SSH $n "$SERVICE nginx reload" && continue
            echo "nginx failed to reload on $n, restoring previous config"
            restore_remote_nginx_conf $n && $SSH $n "$SERVICE nginx reload"
        else
            echo "nginx is not running on $n, skipping reload"
        fi
    done

    exit $EXIT
}

init "$*"

if [ -z "$LOGFILE" ]; then
    main
else
    if [ ! -e $LOGFILE ]; then
        /usr/bin/touch $LOGFILE
        if [ $? -ne 0 ]; then
            echo "Failed to create log file $LOGFILE"
            exit 1
        fi
    elif [ ! -f $LOGFILE ]; then
        echo "$LOGFILE exists and is not a file"
        exit 1
    fi

    main 2>&1 | /usr/bin/tee -ai $LOGFILE
fi

zzhongcy
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
文章11:同步与异步 阻塞与非阻塞
www.keything.net
09-25 4141
欢迎大家转载,转载请注明出处http://blog.csdn.net/yankai0219/article/details/8018232 来自yankai0219 文章内容: 0.序 1.生活中事件与技术问题的对应    1.1所采用生活中的事件:    1.2对应技术的问题:    1.3小结: 2.同步、异步、阻塞、非阻塞的理解    2.1同步阻塞I/
nginx-asg-syncNGINX Plus与Cloud Autoscaling的集成
02-10
NGINX Plus与Cloud Autoscaling的集成-nginx-asg-sync -asg-sync允许发现云提供商的扩展组的实例(虚拟机)。 支持以下提供程序: AWS Azure 当实例数量改变时,nginx-asg-sync将新实例添加到NGINX Plus配置中,并删除终止的实例。 这个怎么运作 nginx-asg-sync是与NGINX Plus在同一实例上运行的代理进程。 它通过Cloud Provider API轮询对后端实例组的更改。 当发现发生扩展事件时,它将通过NGINX Plus API从NGINX Plus配置中添加或删除相应的后端实例。 注意: nginx-asg-sync不扩展云扩展组,它仅获取组中实例的IP地址。 在下面的示例(AWS)中,NGINX Plus配置为在两个AWS Auto Scaling组的实例(后端一和后端二)之间平衡
nginx+upsync+consul 构建动态nginx配置系统
幽雨雨幽
01-08 2567
参考: http://www.php230.com/weixin1456193048.html  【upsync模块说明、性能评测】 https://www.jianshu.com/p/76352efc5657 https://www.jianshu.com/p/c3fe55e6a5f2   说明: 动态nginx负载均衡的配置,可以通过Consul+Consul-template方式...
nginx缓存及rsync远程访问控制
m0_61417337的博客
05-22 589
代表级存是二层目录(有16425=1096个目录),如/dta/nginx/cache/b/51/d7b6e5978e3f02f52e875005925951。proxy_cache_path /data/nainx/cache:代专所有缓在只有一个目录,比加/dta/nrinx/cache/d7b6e5978e3f042f52e875005925e516。rsync -avz -e 'ssh -p 22' root@192.168.232.80.30:/opt/rh/ /data 目录中的文件。
syncml 协议 1.1 版本
weixin_34336526的博客
01-23 144
SyncML 同步协议(SyncML Sync Protocol) 翻译 周鹏 2006-1-24 摘要 本规范定义了SyncML客户和服务的同步协议。 它规范了怎样使用SynML表示层协议去完成SyncML客户端和服务端的操...
nginx-1.24.0-1.el6.ngx.x86-64.rpm
04-17
nginx官网不再更新centos6版,此rpm构建于nginx最新稳定版1.24.0
ingress-nginx-controller-1.9.yaml
10-18
对于 "nginx-tomcat-svc-ingress.yaml" 和 "nginx-tomcat-deploy.yaml",同样使用 `kubectl apply` 命令进行部署,以启动 Tomcat 应用并设置其 Ingress 规则。 验证配置是否生效的方法有很多,例如,你可以使用 `...
nginx-1.24.0-1.el7.ngx.x86-64-ipv6.rpm
05-26
2023年5月26日,当前最新稳定版本nginx 1.24.0 已开启ipv6支持 二进制rpm包 适用于centos7 redhat 7系列的操作系统使用 适用于x86架构 主要修复安全漏洞、升级更新nginx版本,增强web服务器安全性
nginx-1.8.0-1.el6.ngx.x86_64.cpio
08-12
nginx-1.8.0-1.el6.ngx.x86_64.rpm libpcre.so.0()(64bit) 被 nginx-1.18.0-1.el6.ngx.x86_64 需要
nginx-1.18.0-2.el7.ngx.x86-64.rpm安装包(含有部署手册)
06-26
nginx-1.18.0-2.el7.ngx.x86_64.rpm安装包(含有部署手册) nginx-1.18.0-2.el7.ngx.x86_64.rpm安装包(含有部署手册) nginx-1.18.0-2.el7.ngx.x86_64.rpm安装包(含有部署手册) nginx-1.18.0-2.el7.ngx.x86_64.rpm...
nginx 文件同步方案
weixin_42575811的博客
08-17 1365
nginx同步
Rsync+Inotify实现nginx配置文件同步
菜鸟博客
09-01 1710
Rsync+Inotify实现nginx配置文件自动同步
nginx-upsync-module模块安装
田小胖爸爸
11-09 3301
1:下载对应安装包nginx-upsync-module对nginx的版本有相关要求 我们这里采用的是1.8x的版本 wget http://nginx.org/download/nginx-1.8.0.tar.gz wget https://releases.hashicorp.com/consul/0.9.2/consul_0.9.2_linux_amd64.zip下载完成后解压如下:
nginx-upsync-module使用
沈首二
10-25 5584
nginx-upsync-module使用编译模块到nginx安装nginx依赖以及其他工具apt-get install git apt-get build-dep nginx下载nginx-upsync-module源码git clone https://github.com/weibocom/nginx-upsync-module.git下载nginx源码 wget 'http://nginx
一步一步搭建Nginx高可用(二) :Nginx配置双向同步
那个那个
09-08 2396
一步一步搭建Nginx高可用(二): Nginx配置双向同步 一、背景描述 文章接:一步一步搭建Nginx高可用(一) 高可用是搭建好了,但是有一个问题Nginx配置文件的CRUD如何做到两台服务器一致呢? 服务器:10.20.11.80 服务器:10.20.11.81 同步目录:/usr/local/nginx/conf 该目录下所有文件 目标实现两台服务器,该目录双向实时同步。 二、Centos7下数据同步 ①、为什么要用Rsync+sersync架构? 1.1、sersync是基于Inotify开发的
实现Rsync同步Nginx前端配置
weixin_33901843的博客
03-30 204
近期,由于我们的阿里前端服务器频频受到恶意的流量攻击,导致前端NGINX进入黑洞而无法正常访问公司网站。  按之前的预计方法,采用加速乐及备用全配置前端的作法,将恶意短时流量攻击的损失时间降到最短。现将C这台机用作全配置的NGINX前端,A和B前端的任何NGINX配置都会通过RSYNC同步到C这台机器上。   部署的思路如下: 规范A和B的nginx配置目录(用include conf.d...
Nginx RTMP 模块 nginx-rtmp-module 指令详解
热门推荐
Defonds 的专栏
07-08 11万+
译序:截至 Jul 8th,2013 官方公布的最新 Nginx RTMP 模块 nginx-rtmp-module 指令详解。 指令 Core rtmp 语法:rtmp { ... } 上下文:根 描述:保存所有 RTMP 配置的块。 server 语法:server { ... } 上下文:rtmp 描述:声明一个 RTMP 实例。 rtmp {   server {
Nginx容器动态流量管理方案-nginx-upsync-module+nginx_upstream_check_module初体验
Skycrab
10-12 1万+
缘起最近一直在研究日志收集系统的框架,之前在线游戏的数据发送都是由游戏服务器发送的,我来之前一直是rsync传输,也还算稳定。但现在上了单机游戏,只能由手机客户端直接发送,dau比较高,最近很火的<<贪吃蛇>>在海外上线,一个星期dau已经达到千万级别。初步方案,lvs做4层负载均衡,下挂nginx做7层转发,数据直接入kafaka。一直不太喜欢通过reload修改nginx upstream,刚好
hualinux2.2 环境基础:rpm包安装el6、el7、el8选择
hualinux(阿华的linux)
05-04 8397
我们在用centos的yum、rpm、dnf(centos8)安装文件时候,有的初学者在centos6安装的rpm包,当系统升到centos7中,再用那个rpm包,发现安装成功的,但是使用不了。这是因为,rpm包有系统版本要求的,我们常见rpm包中会有el6、el7中字样。 到底什么是el、以及el6、el7、el8有什么区别呢? EL是Red Hat Enterprise Linux(EL...
tar -zxvf nginx-1.16.0.tar.gz
最新发布
07-02
`tar` 是一个在 Unix 和类 Unix 系统中广泛使用的文件打包和管理工具。`tar` 的 `-zxvf` 参数...注意,这个命令假设你已经下载了 `nginx-1.16.0.tar.gz` 文件,并且你有权限在当前工作目录或指定目录下执行这个操作。
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值