基于 openEuler 构建 LVS-DR 群集

1、环境准备

准备好下面四台台服务器：

|-------------|----------------|-----------------|
| 主机名 | IP | 角色 |
| openEuler-1 | 192.168.121.11 | Director Server |
| openEuler-2 | 192.168.121.12 | Real Server1 |
| openEuler-3 | 192.168.121.13 | Real Server2 |
| Rocky8 | 192.168.121.51 | Client |

2、Web服务器配置

在两台RS上安装并配置nginx服务：

[root@openEuler-2 ~]# yum install nginx -y

[root@openEuler-2 ~]# echo "this is test page!(ip:`hostname -I`)" > /usr/share/nginx/html/index.html

[root@openEuler-2 ~]# systemctl enable --now nginx

[root@openEuler-2 ~]# curl localhost
this is test page!(ip:192.168.121.12 )

# 第二台RS配置同上

3、添加VIP的相关配置

在两台RS和DS上：

[root@openEuler-1 ~]# nmcli con add type dummy ifname dummy1 ipv4.method manual ipv4.addresses 192.168.121.10/32
Connection 'dummy-dummy1' (7a44b435-72fc-4aa4-afb2-28bf52a1b5b4) successfully added.
[root@openEuler-1 ~]# ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: ens160: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000
    link/ether 00:0c:29:12:dd:13 brd ff:ff:ff:ff:ff:ff
    inet 192.168.121.11/24 brd 192.168.121.255 scope global noprefixroute ens160
       valid_lft forever preferred_lft forever
    inet6 fe80::20c:29ff:fe12:dd13/64 scope link noprefixroute
       valid_lft forever preferred_lft forever
3: dummy1: <BROADCAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default qlen 1000
    link/ether 82:81:c6:9e:a9:f6 brd ff:ff:ff:ff:ff:ff
    inet 192.168.121.10/32 scope global noprefixroute dummy1
       valid_lft forever preferred_lft forever
    inet6 fe80::1837:14b2:ae95:267a/64 scope link noprefixroute
       valid_lft forever preferred_lft forever

# 剩下二台RS配置同上

Linux Dummy 接口基础概念：

Dummy 接口 是 Linux 操作系统中的一个虚拟网络接口，它不与任何物理硬件设备关联，主要用于测试和配置网络环境。Dummy 接口可以模拟一个网络接口，允许你在没有实际网络硬件的情况下进行网络相关的操作和测试。

4、配置arp抑制

在两台RS上：

[root@openEuler-2 ~]# cat >> /etc/sysctl.conf << EOF
> net.ipv4.conf.all.arp_ignore = 1
> net.ipv4.conf.all.arp_announce = 2
> net.ipv4.conf.dummy1.arp_ignore = 1
> net.ipv4.conf.dummy1.arp_announce = 2
> EOF

# 使其生效
[root@openEuler-2 ~]# sysctl -p

# 第二台RS配置同上

5、LVS配置

在DS上：

[root@openEuler-1 ~]# yum install ipvsadm -y
[root@openEuler-1 ~]# ipvsadm -At 192.168.121.10:80 -s rr
[root@openEuler-1 ~]# ipvsadm -at 192.168.121.10:80 -r 192.168.121.12:80 -g
[root@openEuler-1 ~]# ipvsadm -at 192.168.121.10:80 -r 192.168.121.13:80 -g
[root@openEuler-1 ~]# ipvsadm -Ln
IP Virtual Server version 1.2.1 (size=4096)
Prot LocalAddress:Port Scheduler Flags
  -> RemoteAddress:Port           Forward Weight ActiveConn InActConn
TCP  192.168.121.10:80 rr
  -> 192.168.121.12:80            Route   1      0          0
  -> 192.168.121.13:80            Route   1      0          0


[相关参数说明]
# ipvsadm --help
-A  添加虚拟服务器
-t  设置群集地址（VIP，Virtual IP）
-s  指定负载调度算法
-a  添加真实服务器
-d  删除真实服务器
-r  指定真实服务器（Real Server）的地址
-m  使用NAT模式；-g、-i分别对应DR、TUN模式
-w  为节点服务器设置权重，默认为1

6、测试

在Client上：

[root@localhost ~]# for ((i=1;i<10;i++)); do curl 192.168.121.10; done
this is test page!(ip:192.168.121.13 )
this is test page!(ip:192.168.121.12 )
this is test page!(ip:192.168.121.13 )
this is test page!(ip:192.168.121.12 )
this is test page!(ip:192.168.121.13 )
this is test page!(ip:192.168.121.12 )
this is test page!(ip:192.168.121.13 )
this is test page!(ip:192.168.121.12 )
this is test page!(ip:192.168.121.13 )