nfs高可用

image.png

1 nfs02 下载软件，nfs-utils rpcbind

yum install -y nfs-utils rpcbind
官方源安装 nginx

2 修改配置文件

#注意：我这地方的uid和gid是nginx 客户端和服务端要对应才可以存图片，因为web服务器php是nginx管理，所以这里我也是用nginx管理
vim /etc/exports
/data/blog/  172.16.1.0/24(rw,sync,no_all_squash,root_squash,anonuid=998,anongid=996)
/data/www/  172.16.1.0/24(rw,sync,no_all_squash,root_squash,anonuid=998,anongid=996)
/data/wecenter/  172.16.1.0/24(rw,sync,no_all_squash,root_squash,anonuid=998,anongid=996)

3.修改目录权限

chown -R nginx. data/

4.启动nfs功能

systemctl start rpcbind
systemctl enable rpcbind
systemctl start nfs
systemctl enable nfs

5.实现实时同步

开启实时同步服务
yum install -y lsyncd
systemctl start lsyncd.service 
systemctl enable lsyncd.service

编写配置文件  让nfs02和backup实现实时同步
cat /etc/lsyncd.conf 
settings {
 logfile = "/var/log/lsyncd/lsyncd.log",
 statusFile = "/var/log/lsyncd/lsyncd.status",
 inotifyMode = "CloseWrite",
 maxProcesses = 8,
}
sync {
 default.rsync,
 source = "/data",
 target = "rsync_backup@172.16.1.41::ss",
 delete= true,
 exclude = { ".*" },
 delay = 1,
rsync = {
 binary = "/usr/bin/rsync",
 archive = true,
 compress = true,
 verbose = true,
 password_file = "/etc/rsync.password",
 _extra = {"--bwlimit=200"}
}
}

重启实时同步服务
systemctl restart lsyncd.service
创建密码文件
cat /etc/rsync.password
123456
chmod 600 /etc/rsync.password
测试是否能与backup实时同步

6.安装keepalived 测试ip地址能否在nfs01与nfs02来回漂移

yum install -y keepalived

6.1.编写脚本并赋予权限

cat /service/scripts/check_status.sh  
#!/bin/bash
NfsStatus=$(systemctl status nfs|awk 'NR==5{print $2}')
RpcStatus=$(systemctl status rpcbind.socket |awk 'NR==3{print $2}')
if [ $NfsStatus != 'active' ]|| [ $RpcStatus != 'active' ]
then
    exit 1
else
    exit 0
fi

必须要给执行权限，否则keepalived运行不了脚本
chmod +x  /service/scripts/check_status.sh

6.2.编写配置文件

#我使用的是keepalived的权重来实现ip地址漂移的
nfs01配置文件
 cat /etc/keepalived/keepalived.conf 
! Configuration File for keepalived

global_defs {
   notification_email {
     acassen@firewall.loc
     failover@firewall.loc
     sysadmin@firewall.loc
   }
   notification_email_from Alexandre.Cassen@firewall.loc
   smtp_server 192.168.200.1
   smtp_connect_timeout 30
   router_id nfs01
}
    
   vrrp_script check_nfs {                    
          script "/service/scripts/check_status.sh"    
          interval 2                                         
          weight - 2                            
}
vrrp_instance test{
    state MASTER
    interface eth0
    virtual_router_id 111
    priority 101
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass 1234
    }
    virtual_ipaddress {
         172.16.1.30
    }
   track_script {
          check_nfs
     }
}

nfs02
cat /etc/keepalived/keepalived.conf 
! Configuration File for keepalived

global_defs {
   notification_email {
     acassen@firewall.loc
     failover@firewall.loc
     sysadmin@firewall.loc
   }
   notification_email_from Alexandre.Cassen@firewall.loc
   smtp_server 192.168.200.1
   smtp_connect_timeout 30
   router_id nfs02
}

vrrp_instance test{
    state BACKUP
    interface eth0
    virtual_router_id 111
    priority 100
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass 1234
    }
    virtual_ipaddress {
        172.16.1.30
    }
}

7 部署 nfs01和nfs02 实现实时同步

密码文件
cat /etc/rsync.pwd  
123456
身份认证文件
cat /etc/rsync.password 
rsync_backup:123456

nfs01客户端 lsync配置文件
cat /etc/lsyncd.conf 
settings {
 logfile = "/var/log/lsyncd/lsyncd.log",
 statusFile = "/var/log/lsyncd/lsyncd.status",
 inotifyMode = "CloseWrite",
 maxProcesses = 8,
}
sync {
 default.rsync,
 source = "/data",
 target = "rsync_backup@172.16.1.41::ss",
 delete= true,
 exclude = { ".*" },
 delay = 1,
rsync = {
 binary = "/usr/bin/rsync",
 archive = true,
 compress = true,
 verbose = true,
 password_file = "/etc/rsync.pwd",
 _extra = {"--bwlimit=200"}
}
}
sync {
 default.rsync,
 source = "/data",
 target = "rsync_backup@172.16.1.32::data",
 delete= true,
 exclude = { ".*" },
 delay = 1,
rsync = {
 binary = "/usr/bin/rsync",
 archive = true,
 compress = true,
 verbose = true,
 password_file = "/etc/rsync.pwd",
 _extra = {"--bwlimit=200"}
}
}

nfs02 服务端 rsync.conf配置文件
cat /etc/rsyncd.conf 
#rsync_config
#created by HQ at 2017
##rsyncd.conf start##

uid = nginx
gid = nginx
port = 873
fake super = yes
use chroot = no
max connections = 200
timeout = 300
pid file = /var/run/rsyncd.pid
lock file = /var/run/rsync.lock
log file = /var/log/rsyncd.log
ignore errors
read only = false
list = false
hosts allow = 172.16.1.0/24
hosts deny = 0.0.0.0/32
auth users = rsync_backup
secrets file = /etc/rsync.password
[data]
comment = "data "
path = /data


nfs02 客户端 lsync配置文件
cat /etc/lsyncd.conf 
settings {
 logfile = "/var/log/lsyncd/lsyncd.log",
 statusFile = "/var/log/lsyncd/lsyncd.status",
 inotifyMode = "CloseWrite",
 maxProcesses = 8,
}
sync {
 default.rsync,
 source = "/data",
 target = "rsync_backup@172.16.1.41::ss",
 delete= true,
 exclude = { ".*" },
 delay = 1,
rsync = {
 binary = "/usr/bin/rsync",
 archive = true,
 compress = true,
 verbose = true,
 password_file = "/etc/rsync.pwd",
 _extra = {"--bwlimit=200"}
}
}
sync {
 default.rsync,
 source = "/data",
 target = "rsync_backup@172.16.1.31::data",
 delete= true,
 exclude = { ".*" },
 delay = 1,
rsync = {
 binary = "/usr/bin/rsync",
 archive = true,
 compress = true,
 verbose = true,
 password_file = "/etc/rsync.pwd",
 _extra = {"--bwlimit=200"}
}
}

nfs01服务端 rsync.conf配置文件
cat /etc/rsyncd.conf 
#rsync_config
#created by HQ at 2017
##rsyncd.conf start##

uid = nginx
gid = nginx
port = 873
fake super = yes
use chroot = no
max connections = 200
timeout = 300
pid file = /var/run/rsyncd.pid
lock file = /var/run/rsync.lock
log file = /var/log/rsyncd.log
ignore errors
read only = false
list = false
hosts allow = 172.16.1.0/24
hosts deny = 0.0.0.0/32
auth users = rsync_backup
secrets file = /etc/rsync.password
[data]
comment = "data " 
path = /data

8.重新挂载web端节点

把之前的卸载掉
umount  -lf /html/blog/wp-content/uploads/ 
umount  -lf /html/wecenter/uploads/article
umount  -lf /html/www/uploadfile/

重新挂载
mount -t nfs 172.16.1.30:/data/blog /html/blog/wp-content/uploads/ 
mount -t nfs 172.16.1.30:/data/wecenter /html/wecenter/uploads/article
mount -t nfs 172.16.1.30:/data/www /html/www/uploadfile/

放到 /etc/rc.local 开机自启
mount -t nfs 172.16.1.30:/data/blog /html/blog/wp-content/uploads/ 
mount -t nfs 172.16.1.30:/data/wecenter /html/wecenter/uploads/article
mount -t nfs 172.16.1.30:/data/www /html/www/uploadfile/

未经博主允许，不得转载

最后编辑于：2019.08.24 17:53:47

人面猴
序言：七十年代末，一起剥皮案震惊了整个滨河市，随后出现的几起案子，更是在滨河造成了极大的恐慌，老刑警刘岩，带你破解...
沈念sama阅读 205,132评论 6赞 478
死咒
序言：滨河连续发生了三起死亡事件，死亡现场离奇诡异，居然都是意外死亡，警方通过查阅死者的电脑和手机，发现死者居然都...
沈念sama阅读 87,802评论 2赞 381
救了他两次的神仙让他今天三更去死
文/潘晓璐我一进店门，熙熙楼的掌柜王于贵愁眉苦脸地迎上来，“玉大人，你说我怎么就摊上这事。” “怎么了？”我有些...
开封第一讲书人阅读 151,566评论 0赞 338
道士缉凶录：失踪的卖姜人
文/不坏的土叔我叫张陵，是天一观的道长。经常有香客问我，道长，这世上最难降的妖魔是什么？我笑而不...
开封第一讲书人阅读 54,858评论 1赞 277
港岛之恋（遗憾婚礼）
正文为了忘掉前任，我火速办了婚礼，结果婚礼上，老公的妹妹穿的比我还像新娘。我一直安慰自己，他们只是感情好，可当我...
茶点故事阅读 63,867评论 5赞 368
恶毒庶女顶嫁案：这布局不是一般人想出来的
文/花漫我一把揭开白布。她就那样静静地躺着，像睡着了一般。火红的嫁衣衬着肌肤如雪。梳的纹丝不乱的头发上，一...
开封第一讲书人阅读 48,695评论 1赞 282
城市分裂传说
那天，我揣着相机与录音，去河边找鬼。笑死，一个胖子当着我的面吹牛，可吹牛的内容都是我干的。我是一名探鬼主播，决...
沈念sama阅读 38,064评论 3赞 399
双鸳鸯连环套：你想象不到人心有多黑
文/苍兰香墨我猛地睁开眼，长吁一口气：“原来是场噩梦啊……” “哼！你这毒妇竟也来了？” 一声冷哼从身侧响起，我...
开封第一讲书人阅读 36,705评论 0赞 258
万荣杀人案实录
序言：老挝万荣一对情侣失踪，失踪者是张志新（化名）和其女友刘颖，没想到半个月后，有当地人在树林里发现了一具尸体，经...
沈念sama阅读 42,915评论 1赞 300
护林员之死
正文独居荒郊野岭守林人离奇死亡，尸身上长有42处带血的脓包…… 初始之章·张勋以下内容为张勋视角年9月15日...
茶点故事阅读 35,677评论 2赞 323
白月光启示录
正文我和宋清朗相恋三年，在试婚纱的时候发现自己被绿了。大学时的朋友给我发了我未婚夫和他白月光在一起吃饭的照片。...
茶点故事阅读 37,796评论 1赞 333
活死人
序言：一个原本活蹦乱跳的男人离奇死亡，死状恐怖，灵堂内的尸体忽然破棺而出，到底是诈尸还是另有隐情，我是刑警宁泽，带...
沈念sama阅读 33,432评论 4赞 322
日本核电站爆炸内幕
正文年R本政府宣布，位于F岛的核电站，受9级特大地震影响，放射性物质发生泄漏。R本人自食恶果不足惜，却给世界环境...
茶点故事阅读 39,041评论 3赞 307
男人毒药：我在死后第九天来索命
文/蒙蒙一、第九天我趴在偏房一处隐蔽的房顶上张望。院中可真热闹，春花似锦、人声如沸。这庄子的主人今日做“春日...
开封第一讲书人阅读 29,992评论 0赞 19
一桩弑父案，背后竟有这般阴谋
文/苍兰香墨我抬头看了看天上的太阳。三九已至，却和暖如春，着一层夹袄步出监牢的瞬间，已是汗流浃背。一阵脚步声响...
开封第一讲书人阅读 31,223评论 1赞 260
情欲美人皮
我被黑心中介骗来泰国打工，没想到刚下飞机就差点儿被人妖公主榨干…… 1. 我叫王不留，地道东北人。一个月前我还...
沈念sama阅读 45,185评论 2赞 352
代替公主和亲
正文我出身青楼，却偏偏与公主长得像，于是被迫代替她去往敌国和亲。传闻我的和亲对象是个残疾皇子，可洞房花烛夜当晚...
茶点故事阅读 42,535评论 2赞 343

nfs高可用

推荐阅读更多精彩内容