使用DRBD和keepalived實現(xiàn)文件實時同步和雙機熱備
DRBD + keepalived實現(xiàn)文件實時同步和雙機熱備
安裝DRBD
系統(tǒng)初始化設(shè)置
注意: 需要有數(shù)據(jù)盤或者多的分區(qū)
| yum update -y |
關(guān)閉防火墻
| systemctl stop firewalld | |
| systemctl disable firewalld |
修改host文件
| vim /etc/hosts | |
| 192.168.1.240 Primary kylin-01 | |
| 192.168.1.241 Secondary kylin-02 |
關(guān)閉SELINUX
| vim /etc/sysconfig/selinux | |
| SELINUX=disabled |
安裝依賴
| yum install gcc libxslt-devel libxslt perl keyutils-libs-devel net-tools -y |
下載源碼編譯安裝
drbd需要兩個安裝報:drbd drbd-utils
drbd 安裝
| wget https://pkg.linbit.com//downloads/drbd/9/drbd-9.2.8.tar.gz | |
| tar -zxvf drbd-9.2.8.tar.gz | |
| cd drbd-9.2.8 | |
| make && make install |
drbd-utils 安裝
| wget https://pkg.linbit.com//downloads/drbd/utils/drbd-utils-9.27.0.tar.gz | |
| tar -zxvf drbd-utils-9.27.0.tar.gz | |
| cd drbd-utils-9.27.0 | |
| ./configure --prefix=/usr/local/drbd --without-83support --with-udev --with-initscripttype=systemd --without-manual | |
| make && make install |
安裝配置路徑:/usr/local/drbd/etc/drbd.d 安裝路徑: /usr/sbin/drbdsetup /usr/sbin/drbdmeta /usr/sbin/drbdadm
配置drbd
磁盤分區(qū) 此處不要格式化磁盤 fdisk /dev/sdb
全局配置
global_common.conf內(nèi)容如下:
| # DRBD is the result of over a decade of development by LINBIT. | |
| # In case you need professional services for DRBD or have | |
| # feature requests visit http://www.linbit.com | |
| global { | |
| usage-count yes; | |
| # Decide what kind of udev symlinks you want for "implicit" volumes | |
|
# (those without explicit volume |
|
|
# /dev/drbd/by-resource/ |
|
|
# /dev/drbd/by-resource/ |
|
| udev-always-use-vnr; # treat implicit the same as explicit volumes | |
| # minor-count dialog-refresh disable-ip-verification | |
| # cmd-timeout-short 5; cmd-timeout-medium 121; cmd-timeout-long 600; | |
| } | |
| common { | |
| handlers { | |
| # These are EXAMPLE handlers only. | |
| # They may have severe implications, | |
| # like hard resetting the node under certain circumstances. | |
| # Be careful when choosing your poison. | |
| # IMPORTANT: most of the following scripts symlink to "notify.sh" which tries to send mail via "mail". | |
| # If you intend to use this notify.sh script make sure that "mail" is installed. | |
| # | |
| pri-on-incon-degr "/usr/lib/drbd/notify-pri-on-incon-degr.sh; /usr/lib/drbd/notify-emergency-reboot.sh; echo b > /proc/sysrq-trigger ; reboot -f"; | |
| pri-lost-after-sb "/usr/lib/drbd/notify-pri-lost-after-sb.sh; /usr/lib/drbd/notify-emergency-reboot.sh; echo b > /proc/sysrq-trigger ; reboot -f"; | |
| local-io-error "/usr/lib/drbd/notify-io-error.sh; /usr/lib/drbd/notify-emergency-shutdown.sh; echo o > /proc/sysrq-trigger ; halt -f"; | |
| # fence-peer "/usr/lib/drbd/crm-fence-peer.sh"; | |
| # split-brain "/usr/lib/drbd/notify-split-brain.sh root"; | |
| # out-of-sync "/usr/lib/drbd/notify-out-of-sync.sh root"; | |
| # before-resync-target "/usr/lib/drbd/snapshot-resync-target-lvm.sh -p 15 -- -c 16k"; | |
| # after-resync-target /usr/lib/drbd/unsnapshot-resync-target-lvm.sh; | |
| # quorum-lost "/usr/lib/drbd/notify-quorum-lost.sh root"; | |
| # disconnected /bin/true; | |
| } | |
| startup { | |
| # wfc-timeout degr-wfc-timeout outdated-wfc-timeout wait-after-sb | |
| } | |
| options { | |
| # cpu-mask on-no-data-accessible | |
| # RECOMMENDED for three or more storage nodes with DRBD 9: | |
| # quorum majority; | |
| # on-no-quorum suspend-io | io-error; | |
| } | |
| disk { | |
| on-io-error detach; #配置I/O錯誤處理策略為分離 | |
| # size on-io-error fencing disk-barrier disk-flushes | |
| # disk-drain md-flushes resync-rate resync-after al-extents | |
| # c-plan-ahead c-delay-target c-fill-target c-max-rate | |
| # c-min-rate disk-timeout | |
| } | |
| net { | |
| # protocol timeout max-epoch-size max-buffers | |
| # connect-int ping-int sndbuf-size rcvbuf-size ko-count | |
| # allow-two-primaries cram-hmac-alg shared-secret after-sb-0pri | |
| # after-sb-1pri after-sb-2pri always-asbp rr-conflict | |
| # ping-timeout data-integrity-alg tcp-cork on-congestion | |
| # congestion-fill congestion-extents csums-alg verify-alg | |
| # use-rle | |
| } | |
| } | |
資源配置
在node1、node2 上分別建立drbd.res: drbd.d目錄下新建資源文件(drbd.res) vim /usr/local/drbd/etc/drbd.d/drbd.res
| resource r1 { #這個r1是定義資源的名字 | |
| protocol C; | |
| on kylin-01 { #on開頭,后面是主機名稱 | |
| device /dev/drbd0; #drbd設(shè)備名稱 | |
| disk /dev/sdb1; #drbd0使用的磁盤分區(qū)為sdb1 | |
| address 192.168.1.240:7789; #設(shè)置drbd監(jiān)聽地址與端口 | |
| meta-disk internal; | |
| } | |
| on kylin-02 { #on開頭,后面是主機名稱 | |
| device /dev/drbd0; #drbd設(shè)備名稱 | |
| disk /dev/sdb1; #drbd0使用的磁盤分區(qū)為sdb1 | |
| address 192.168.1.241:7789; #設(shè)置drbd監(jiān)聽地址與端口 | |
| meta-disk internal; | |
| } | |
| } |
在node1、node2 上初始化資源、啟動drbd:
| [root@kylin-01 drbd.d]# drbdadm create-md r1 | |
| initializing activity log | |
| initializing bitmap (640 KB) to all zero | |
| Writing meta data... | |
| New drbd meta data block successfully created. | |
| #啟動 兩個節(jié)點需要同時啟動才生效 | |
| [root@kylin-01 drbd.d]# systemctl start drbd | |
| # 開機啟動 | |
| [root@kylin-01 drbd.d]# systemctl enable drbd | |
| # 查看狀態(tài) | |
| [root@kylin-01 drbd.d]# systemctl status drbd | |
| # 查看狀態(tài) | |
| netstat -anput|grep 7789 | |
| tcp 0 0 192.168.1.240:33015 192.168.1.241:7789 ESTABLISHED - | |
| tcp 0 0 192.168.1.240:40897 192.168.1.241:7789 ESTABLISHED - | |
檢查資源狀態(tài):
| #查看節(jié)點角色狀態(tài): | |
| drbdadm role r1 | |
| 注:第一次啟動drbd時,兩個drbd節(jié)點默認(rèn)都處于Secondary狀態(tài) |
主節(jié)點執(zhí)行設(shè)置主節(jié)點:
| #初始化資源 | |
| drbdadm primary --force r1 | |
| #查看資源狀態(tài) | |
| drbdadm status r1 | |
| r1 role:Primary | |
| disk:UpToDate | |
| kylin-02 role:Secondary | |
| replication:SyncSource peer-disk:Inconsistent done:6.16 | |
| #查看同步狀態(tài) | |
| cat /proc/drbd | |
| version: 9.2.8 (api:2/proto:86-122) | |
| GIT-hash: e163b05a76254c0f51f999970e861d72bb16409a build by root@kylin-01, 2024-04-08 1556 | |
| Transports (api tcp (9.2.8) | |
| 會把主機上的數(shù)據(jù)傳到備機,開始會顯示同步進(jìn)度,過一會顯示狀態(tài)都是”實時”,表示數(shù)據(jù)同步完成了。接下來就可以使用DRBD了。 |
DRBD使用(測試)
你現(xiàn)在可以把主機上的DRBD設(shè)備掛載到一個目錄上進(jìn)行使用,備機的DRBD設(shè)備無法被掛載,因為它是用來接收主機數(shù)據(jù)的,由DRBD負(fù)責(zé)操作.
格式化文件系統(tǒng)(文件格式根據(jù)自己的系統(tǒng)環(huán)境選擇)
| mkfs.ext4 /dev/drbd0 |
掛載此文件系統(tǒng)
| mkdir /data | |
| mount /dev/drbd0 /data/ |
在掛載data目錄中創(chuàng)建一個測試文件,然后卸載掛載目錄,然后切換主備節(jié)點,在備用節(jié)點上查看剛剛建立的測試文件還是否存在
node1:
| [root@node1 ~]# mkdir /data/test | |
| 將node1變?yōu)閭溆霉?jié)點 | |
| [root@node1 ~]# umount /data/ | |
| [root@node1 ~]# drbdadm secondary r1 | |
| [root@node1 ~]# drbdadm role r1 | |
| Secondary |
node2:
| 將node2變?yōu)橹鞴?jié)點 | |
| [root@node2 ~]# drbdadm primary r1 | |
| [root@node2 ~]# drbdadm role r1 | |
| Primary/Secondary | |
| 掛載設(shè)備,然后看文件是否存在 | |
| [root@node2 ~]# mount /dev/drbd0 /data | |
| [root@node2 ~]# cd /data/ | |
| [root@node2 mnt]# ls | |
| test | |
| OK! 到這里已經(jīng)算是完成了! |
同樣,在Node2上建立文件,然后
卸載/mnt/:umount /mnt/
將Node2降級成備用節(jié)點:drbdadm secondary r1
在Node1上升級為主機節(jié)點:drbdadm primary r1
在Node1上掛載:mount /dev/drbd0 /data
會發(fā)現(xiàn)Node2上的文件也同步到了Node1上。
問題
1、umount時,如果提示device is busy,使用下面方法解決: fuser -m /data 顯示:/data: 25023c 然后kill -9 25023 即可
2、"Split-Brain"(腦裂)的情況:
假設(shè)把Primary主機的的eth0設(shè)備宕掉,然后直接在Secondary主機上進(jìn)行提權(quán)升級為DRBD的主節(jié)點,并且mount掛載DRBD,這時會發(fā)現(xiàn)之前在Primary主機上寫入的數(shù)據(jù)文件確實同步過來了。 接著再把Primary主機的eth0設(shè)備恢復(fù),看看有沒有自動恢復(fù) 主從關(guān)系。經(jīng)過查看,發(fā)現(xiàn)DRBD檢測出了Split-Brain的狀況,也就是兩個節(jié)點都處于standalone狀態(tài), 故障描述如下:Split-Brain detected,dropping connection! 這就是傳說中的“腦裂”。
DRBD官方推薦的手動恢復(fù)方案:
Secondary主機上的操作
| drbdadm secondary r0 | |
| drbdadm disconnect all | |
| drbdadm --discard-my-data connect r0 //或者"drbdadm -- --discard-my-data connect r0" |
Primary主機上的操作
| drbdadm disconnect all | |
| drbdadm connect r0 | |
| drbdsetup /dev/drbd0 primary |
檢查drdb狀態(tài)
| [root@kylin-01 ~]# drbdadm status r1 | |
| r1 role:Primary | |
| disk:UpToDate | |
| kylin-02 role:Secondary | |
| peer-disk:UpToDate |
安裝keepalived
直接采用yum安裝
| yum install -y keepalived |
查看keepalived版本
| [root@kylin-02 keepalived]# keepalived -v | |
| Keepalived v2.0.20 (01/22,2020) | |
|
Copyright(C) 2001-2020 Alexandre Cassen, |
|
| Built with kernel headers for Linux 4.19.90 | |
| Running on Linux 4.19.90-52.25.v2207.ky10.x86_64 #1 SMP Fri Jun 2 1228 CST 2023 | |
| .......... |
更改keepalived配置
注:本處采用pgsql測試兩個機器數(shù)據(jù)同步
pg docker-compose的文件(docker的配置安裝請自行百度)
| version: "3" | |
| services: | |
| postgresql: | |
| image: postgres:11.8 | |
| container_name: postgres | |
| hostname: postgres | |
| ports: | |
| - "5432:5432" | |
| volumes: | |
| - "/data/pgsql:/var/lib/postgresql/data" | |
| - "/etc/localtime:/etc/localtime" | |
| restart: on-failure | |
| logging: | |
| driver: "json-file" | |
| options: | |
| tag: postgres | |
| cap_add: | |
| - ALL | |
| environment: | |
| POSTGRES_USER: "root" | |
| POSTGRES_PASSWORD: "123456" | |
| ALLOW_IP_RANGE: "0.0.0.0/0" | |
| cd /etc/keepalived | |
| vim keepalived.conf |
主節(jié)點keepalived.conf 文件內(nèi)容如下:
注意:再執(zhí)行stop腳本時不能直接執(zhí)行,需要采用腳本調(diào)用腳本的方式執(zhí)行,否則執(zhí)行不完就會被kill掉(原因暫時沒弄清楚)
| ! Configuration File for keepalived | |
| global_defs { | |
| #notification_email { | |
| # acassen@firewall.loc | |
| # failover@firewall.loc | |
| # sysadmin@firewall.loc | |
| #} | |
| #notification_email_from Alexandre.Cassen@firewall.loc | |
| #smtp_server 192.168.200.1 | |
| #smtp_connect_timeout 30 | |
| router_id kylin-02 # 節(jié)點標(biāo)識,主機名 | |
| vrrp_skip_check_adv_addr | |
| vrrp_strict | |
| vrrp_garp_interval 0 | |
| vrrp_gna_interval 0 | |
| } | |
| vrrp_instance VI_1 { | |
| state BACKUP | |
| interface ens32 # 網(wǎng)卡 | |
| virtual_router_id 51 | |
| priority 100 # 節(jié)點權(quán)重,主節(jié)點100 備節(jié)點小于100,數(shù)字越大優(yōu)先級越高 | |
| mcast_src_ip 192.168.1.240 # 本機IP | |
| advert_int 1 | |
| authentication { | |
| auth_type PASS | |
| auth_pass 1111 | |
| } | |
| virtual_ipaddress { | |
| 192.168.1.239 # 綁定的虛擬IP | |
| } | |
| notify_master "/etc/keepalived/notify.sh" # 節(jié)點為master時執(zhí)行腳本 | |
| notify_backup "/etc/keepalived/notify_back.sh" # 切換為備節(jié)點時執(zhí)行腳本 | |
| notify_stop "/etc/keepalived/notify_back.sh" # stop keepalived時執(zhí)行的腳本 | |
| } | |
備節(jié)點keepalived.conf 文件內(nèi)容如下:
| ! Configuration File for keepalived | |
| global_defs { | |
| #notification_email { | |
| # acassen@firewall.loc | |
| # failover@firewall.loc | |
| # sysadmin@firewall.loc | |
| #} | |
| #notification_email_from Alexandre.Cassen@firewall.loc | |
| #smtp_server 192.168.200.1 | |
| #smtp_connect_timeout 30 | |
| router_id kylin-02 # 節(jié)點標(biāo)識,主機名 | |
| vrrp_skip_check_adv_addr | |
| vrrp_strict | |
| vrrp_garp_interval 0 | |
| vrrp_gna_interval 0 | |
| } | |
| vrrp_instance VI_1 { | |
| state BACKUP | |
| interface ens32 | |
| virtual_router_id 51 | |
| priority 99 # 節(jié)點權(quán)重,主節(jié)點100 備節(jié)點小于100,數(shù)字越大優(yōu)先級越高 | |
| mcast_src_ip 192.168.1.241 # 本機IP | |
| advert_int 1 | |
| authentication { | |
| auth_type PASS | |
| auth_pass 1111 | |
| } | |
| virtual_ipaddress { | |
| 192.168.1.239 | |
| } | |
| notify_master "/etc/keepalived/notify.sh" | |
| notify_backup "/etc/keepalived/notify_back.sh" | |
| notify_stop "/etc/keepalived/notify_back.sh" | |
| } |
notify.sh
| #!/bin/bash | |
| drbdadm primary r1 | |
| while true | |
| do | |
| drdbs=$(drbdadm role r1) | |
| echo "drbd status is $drdbs" | |
| if [[ "$drdbs" == "Primary" ]];then | |
| break | |
| else | |
| drbdadm primary r1 | |
| sleep 3 | |
| fi | |
| done | |
| mount /dev/drbd0 /data | |
| docker-compose -f /opt/pgsql/docker-compose.yml up -d | |
stop.sh
| #!/bin/bash | |
| docker stop postgres | |
| umount /data/ | |
| drbdadm secondary r1 | |
| while true | |
| do | |
| drdbs=$(drbdadm role r1) | |
| echo "drbd status is $drdbs" | |
| if [[ "$drdbs"=="Secondary" ]];then | |
| break | |
| else | |
| drbdadm secondary r1 | |
| sleep 3 | |
| fi | |
| done | |
notify_back.sh
| #!/bin/bash | |
| /etc/keepalived/stop.sh |
啟動keepalived
| systemctl start keepalived |
開機啟動
| systemctl enable keepalived |
驗證
在數(shù)據(jù)庫里面執(zhí)行創(chuàng)建刪除,切換keepalived節(jié)點后查看數(shù)據(jù)是否同步
鏈接:https://www.cnblogs.com/pgyLang/p/18124303
聲明:本文內(nèi)容及配圖由入駐作者撰寫或者入駐合作網(wǎng)站授權(quán)轉(zhuǎn)載。文章觀點僅代表作者本人,不代表電子發(fā)燒友網(wǎng)立場。文章及其配圖僅供工程師學(xué)習(xí)之用,如有內(nèi)容侵權(quán)或者其他違規(guī)問題,請聯(lián)系本站處理。
舉報投訴
-
防火墻
+關(guān)注
關(guān)注
0文章
422瀏覽量
35782 -
文件系統(tǒng)
+關(guān)注
關(guān)注
0文章
290瀏覽量
20041 -
Keepalived
+關(guān)注
關(guān)注
0文章
8瀏覽量
4048
原文標(biāo)題:安裝keepalived
文章出處:【微信號:magedu-Linux,微信公眾號:馬哥Linux運維】歡迎添加關(guān)注!文章轉(zhuǎn)載請注明出處。
發(fā)布評論請先 登錄
相關(guān)推薦
雙機熱備單片機系統(tǒng)內(nèi)部通信接口的簡化設(shè)計
雙機熱備單片機系統(tǒng)內(nèi)部通信接口的簡化設(shè)計
分析了工業(yè)測控系統(tǒng)中雙機熱備單片機系統(tǒng)內(nèi)部通信的特點
發(fā)表于 10-01 22:02
?13次下載
雙機熱備與負(fù)載均衡的設(shè)計與實現(xiàn)
針對OpenFlow SDN系統(tǒng)中的策略管理模塊提出了一種新型的雙機熱備和負(fù)載均衡方案,采用了服務(wù)器集群的方式,通過Keepalived和Heartbeat
發(fā)表于 12-24 17:57
?10次下載
基于EHW和雙機熱備技術(shù)的故障自修復(fù)電路系統(tǒng)設(shè)計
基于EHW和雙機熱備技術(shù)的故障自修復(fù)電路系統(tǒng)設(shè)計_張峻賓
發(fā)表于 01-07 18:39
?0次下載
雙機熱備和冷備的區(qū)別
雙機熱備特指基于高可用系統(tǒng)中的兩臺服務(wù)器的熱備(或高可用),因兩機高可用在國內(nèi)使用較多,故得名雙機
發(fā)表于 11-21 15:15
?4.3w次閱讀
雙機熱備和集群的區(qū)別
所謂雙機熱備,就是將中心服務(wù)器安裝成互為備份的兩臺服務(wù)器,并且在同一時間內(nèi)只有一臺服務(wù)器運行。當(dāng)其中運行著的一臺服務(wù)器出現(xiàn)故障無法啟動時,另一臺備份服務(wù)器會迅速的自動啟動并運行,從而保證整個網(wǎng)絡(luò)系統(tǒng)的正常運行
發(fā)表于 11-21 15:37
?1.3w次閱讀
VMWare7.0虛擬機雙機熱備圖列教程資料免費下載
本文檔的主要內(nèi)容詳細(xì)介紹的是VMWare7.0虛擬機雙機熱備圖列教程資料免費下載。
發(fā)表于 06-12 15:59
?8次下載
推薦幾款服務(wù)器的Windows與Linux雙機熱備軟件
服務(wù)商。今天小編就給大家推薦幾款服務(wù)器的Windows與Linux雙機熱備軟件! 眾所周知,雙機熱備
發(fā)表于 11-12 14:16
?3152次閱讀
你知道國產(chǎn)雙機熱備與雙機冷備的意思嗎
機的應(yīng)用系統(tǒng)切換到另一臺主機上繼續(xù)運行,及時地進(jìn)行錯誤隔絕、恢復(fù),以最低成本實現(xiàn)用戶幾乎不停頓的業(yè)務(wù)應(yīng)用。 但高可用軟件也分為雙機熱備和冷備
雙機熱備原理很神秘?看完這文,讓你秒懂
絡(luò),一旦該設(shè)備或該設(shè)備所在鏈路出現(xiàn)故障,就會極大地影響了用戶的網(wǎng)絡(luò)體驗。網(wǎng)絡(luò)可靠性技術(shù)中的雙機熱備功能就能很好的解決這個問題。新支點雙機熱
企業(yè)實施服務(wù)器雙機熱備方案存在重要意義
隨著網(wǎng)絡(luò)信息不斷的發(fā)展,現(xiàn)在很多企業(yè)對于服務(wù)器的要求比較苛刻,需要保證服務(wù)器無休止的運轉(zhuǎn)服務(wù),這對于服務(wù)器來說無疑會出現(xiàn)故障,給企業(yè)帶來影響,那么怎么保證服務(wù)器服務(wù)器安全運轉(zhuǎn)呢?新支點雙機熱備軟件
防火墻雙機組網(wǎng)環(huán)境中的IPSecVPN實驗步驟及配置
FW1/FW2部署雙機熱備,采用主備方式,F(xiàn)W1為主設(shè)備,F(xiàn)W2為備設(shè)備;
Keepalived工作原理簡介
Keepalived是實現(xiàn)高可用架構(gòu)的不二之選,如果你想通過開源軟件來搭建一套雙機熱備架構(gòu)系統(tǒng),Keep
路由器功能介紹-雙機熱備份機制
我們以東用科技的ORB305系列工業(yè)級路由器為例,來為大家簡單介紹一下。所謂的雙機熱備無非就是以7X24小時不中斷的為企業(yè)提供服務(wù)為目的,各種雙機熱
【服務(wù)器數(shù)據(jù)恢復(fù)】Raid5硬盤離線導(dǎo)致熱備盤上線同步失敗的數(shù)據(jù)恢復(fù)案例
自動上線并開始同步數(shù)據(jù)。在熱備盤完成同步之前,該組raid5陣列中另一塊硬盤離線,熱備盤
工商網(wǎng)監(jiān)
評論