nginx+keepalived负载均衡及高可用

obboda2025-03-03 11:17

一、环境准备

|-------------|-----------------------------------------|-----------------|
| 主机名 | ip地址 | 备注 |
| openEuler-1 | 192.168.121.11(本机) 192.168.131.11(心跳连接) | nginx主负载均衡调度器 |
| openEuler-2 | 192.168.121.12(本机) 192.168.131.12(心跳连接) | nginx-2主负载均衡调度器 |
| openEuler-3 | 192.168.121.13 | web1 |
| openEuler-4 | 192.168.121.14 | web2 |
| Rocky-1 | 192.168.121.51 | client |

二、配置nginx反向代理

复制代码 
[root@openEuler-1 ~]# cd /etc/nginx/conf.d/
[root@openEuler-1 conf.d]# vim lb.conf
upstream webs {
        server 192.168.121.13:80;
        server 192.168.121.14:80;
}

server {
        location / {
                proxy_pass http://webs;
        }
}
[root@openEuler-1 conf.d]# scp lb.conf 192.168.121.12:$PWD

# 重启nginx服务

三、配置keepalived

复制代码 
[root@openEuler-1 conf.d]# cd /etc/keepalived/
[root@openEuler-1 keepalived]# vim keepalived.conf
! Configuration File for keepalived

global_defs {
   router_id LVS_1
}

vrrp_script check_nginx {
        script "killall -0 nginx"
}

vrrp_instance VI_1 {
    state MASTER
    interface ens160
    lvs_sync_daemon_interface ens192
    virtual_router_id 51
    priority 100
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass 1111
    }

    track_script {
        check_nginx
    }

    virtual_ipaddress {
        192.168.121.10
    }
}

# 副负载均衡调度器上稍作修改
[root@openEuler-1 keepalived]# scp keepalived.conf 192.168.121.12:$PWD
修改为;
! Configuration File for keepalived

global_defs {
   router_id LVS_2
}

vrrp_script check_nginx {
        script "killall -0 nginx"
}

vrrp_instance VI_1 {
    state BACKUP
    interface ens160
    lvs_sync_daemon_interface ens192
    virtual_router_id 51
    priority 80
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass 1111
    }

    track_script {
        check_nginx
    }

    virtual_ipaddress {
        192.168.121.10
    }
}

# 两台调度器都重启keepalived服务

四、测试

复制代码 
# 关闭nginx主负载调度器
[root@openEuler-1 ~]# systemctl stop nginx.service

# 副负载调度器接管服务
[root@openEuler-2 ~]# tail -f /var/log/messages
Mar  2 16:25:16 openEuler-2 Keepalived_vrrp[3078]: Sending gratuitous ARP on ens160 for 192.168.121.10
Mar  2 16:25:16 openEuler-2 Keepalived_vrrp[3078]: Sending gratuitous ARP on ens160 for 192.168.121.10
Mar  2 16:25:16 openEuler-2 kernel: [ 9964.205163] IPVS: stopping backup sync thread 3081 ...
Mar  2 16:25:16 openEuler-2 kernel: [ 9964.208213] IPVS: sync thread started: state = MASTER, mcast_ifn = ens192, syncid = 0, id = 0
Mar  2 16:25:21 openEuler-2 Keepalived_vrrp[3078]: (VI_1) Sending/queueing gratuitous ARPs on ens160 for 192.168.121.10
Mar  2 16:25:21 openEuler-2 Keepalived_vrrp[3078]: Sending gratuitous ARP on ens160 for 192.168.121.10
Mar  2 16:25:21 openEuler-2 Keepalived_vrrp[3078]: Sending gratuitous ARP on ens160 for 192.168.121.10
Mar  2 16:25:21 openEuler-2 Keepalived_vrrp[3078]: Sending gratuitous ARP on ens160 for 192.168.121.10
Mar  2 16:25:21 openEuler-2 Keepalived_vrrp[3078]: Sending gratuitous ARP on ens160 for 192.168.121.10
Mar  2 16:25:21 openEuler-2 Keepalived_vrrp[3078]: Sending gratuitous ARP on ens160 for 192.168.121.10
相关推荐
冬奇Lab9 小时前
一天一个开源项目(第46篇):Caddy - 自动 HTTPS 的现代化 Web 服务器,支持 HTTP/3
网络协议·nginx·开源
架构师沉默12 小时前
别又牛逼了!AI 写 Java 代码真的行吗?
java·后端·架构
后端AI实验室16 小时前
我把一个生产Bug的排查过程,交给AI处理——20分钟后我关掉了它
java·ai
凉年技术18 小时前
Java 实现企业微信扫码登录
java·企业微信
狂奔小菜鸡19 小时前
Day41 | Java中的锁分类
java·后端·java ee
hooknum19 小时前
学习记录:基于JWT简单实现登录认证功能-demo
java
程序员Terry20 小时前
同事被深拷贝坑了3小时,我教他原型模式的正确打开方式
java·设计模式
NE_STOP20 小时前
MyBatis-缓存与注解式开发
java
码路飞20 小时前
不装 OpenClaw,我用 30 行 Python 搞了个 QQ AI 机器人
java
Re_zero20 小时前
以为用了 try-with-resources 就稳了?这三个底层漏洞让TCP双向通讯直接卡死
java·后端
热门推荐
01GitHub 镜像站点02OpenClaw 使用和管理 MCP 完全指南03本地部署 OpenClaw + DeepSeek-R1 完全指南04OpenClaw 连接飞书完整指南:插件安装、配置与踩坑记录05Window 10部署openclaw报错node.exe : npm error code 12806OpenClaw 接入 QQ Bot 完整实践指南07OpenClaw 飞书机器人不回复消息?3 小时踩坑总结08npm-error code 128问题解决方法09OpenClaw macOS 完整安装与本地模型配置教程(实战版)10OpenClaw + 飞书(Feishu)环境搭建指南