nginx集群系列（一）：结合keepalived搭建主从模式的nginx集群

[root@DB-Slave ~]# nginx -V
nginx version: nginx/1.25.3
built by gcc 4.8.5 20150623 (Red Hat 4.8.5-44) (GCC) 
built with OpenSSL 1.1.1d  10 Sep 2019
TLS SNI support enabled
configure arguments: --without-http_gzip_module --with-http_ssl_module --with-http_stub_status_module --with-http_v2_module --with-file-aio --with-openssl=/usr/local/gmssl --with-cc-opt=-I/usr/local/gmssl/include --with-ld-opt=-lm

global_defs {
   notification_email {
     acassen@firewall.loc
     failover@firewall.loc
     sysadmin@firewall.loc
   }
   notification_email_from Alexandre.Cassen@firewall.loc
   smtp_server 192.168.17.129
   smtp_connect_timeout 30
   # 通过它，可以访问到主机，在hosts文件中，要做映射关系，类似于 127.0.0.1 LVS_DEVEL
   router_id LVS_DEVEL  
}


vrrp_script chk_http_port {
   script "/usr/local/src/nginx_check.sh"   # 执行脚本所在的位置
   interval 2   #检测脚本执行的间隔，单位秒，每个2秒执行一次脚本
   weight 2
}
  
vrrp_instance VI_1 {
   state MASTER   # 备份服务器上将 MASTER 改为 BACKUP
   interface ens33   # 绑定的网卡
   virtual_router_id 51   # 主、备机的 virtual_router_id 必须相同
   priority 100   # 主、备机取不同的优先级，主机值较大，备份机值较小
   advert_int 1   #每隔一秒发送一次心跳，确保从服务器是否还活着
   authentication {    # 心跳检测需要的密码
     auth_type PASS
     auth_pass 1111
   }
   virtual_ipaddress {
   192.168.1.50   # VRRP H 虚拟地址
   }
}

global_defs {
   notification_email {
     acassen@firewall.loc
     failover@firewall.loc
     sysadmin@firewall.loc
   }
   notification_email_from Alexandre.Cassen@firewall.loc
   smtp_server 192.168.17.129
   smtp_connect_timeout 30
   # 通过它，可以访问到主机，在hosts文件中，要做映射关系，类似于 127.0.0.1 LVS_DEVEL
   router_id LVS_DEVEL  
}


vrrp_script chk_http_port {
   script "/usr/local/src/nginx_check.sh"   # 执行脚本所在的位置
   interval 2   #检测脚本执行的间隔，单位秒，每个2秒执行一次脚本
   weight 2
}
  
vrrp_instance VI_1 {
   state MASTER   # 备份服务器上将 MASTER 改为 BACKUP
   interface ens33   # 绑定的网卡
   virtual_router_id 51   # 主、备机的 virtual_router_id 必须相同
   priority 90   # 主、备机取不同的优先级，主机值较大，备份机值较小
   advert_int 1   #每隔一秒发送一次心跳，确保从服务器是否还活着
   authentication {    # 心跳检测需要的密码
     auth_type PASS
     auth_pass 1111
   }
   virtual_ipaddress {
   192.168.1.50   # VRRP H 虚拟地址
   }
}

#!/bin/bash
A=`ps -C nginx –no-header |wc -l`
if [ $A -eq 0 ];then
 usr/local/nginx/sbin/nginx   #Nginx启动命令的位置
 sleep 2
 if [ `ps -C nginx --no-header |wc -l` -eq 0 ];then
 killall keepalived
 fi
fi

#!/bin/bash


while true; do
    # 检测Nginx进程
    nginx_process_count=$(ps -C nginx --no-header |wc -l)


    # 判断Nginx进程是否存在
    if [ $nginx_process_count -eq 0 ]; then
        echo "Nginx进程不存在，正在停止keepalived.service服务..."
        systemctl stop keepalived.service
        break  # 退出循环，因为服务已被停止
    else
        echo "Nginx进程存在，正在启动keepalived.service服务..."
        systemctl start keepalived.service
        break  # 退出循环，因为服务已被启动
    fi


    sleep 2  # 暂停2秒钟再次检测
done

systemctl start keepalived.service
systemctl restart keepalived.service
systemctl status keepalived.service
nginx -s reload

2: ens33: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether 00:0c:29:2f:20:61 brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.138/24 brd 192.168.1.255 scope global noprefixroute dynamic ens33
       valid_lft 1717sec preferred_lft 1717sec
    inet 192.168.1.50/32 scope global ens33
       valid_lft forever preferred_lft forever
    inet6 fe80::ab04:d981:54a0:9f52/64 scope link noprefixroute 
       valid_lft forever preferred_lft forever

2: ens33: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether 00:0c:29:f1:24:91 brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.137/24 brd 192.168.1.255 scope global noprefixroute dynamic ens33
       valid_lft 1376sec preferred_lft 1376sec
    inet 192.168.1.50/32 scope global ens33
       valid_lft forever preferred_lft forever
    inet6 fe80::ab04:d981:54a0:9f52/64 scope link tentative noprefixroute dadfailed 
       valid_lft forever preferred_lft forever
    inet6 fe80::460b:fc4:bde5:73ec/64 scope link noprefixroute 
       valid_lft forever preferred_lft forever