ライブドアテクノãƒã‚¸ãƒ¼ã‚»ãƒŸãƒŠãƒ¼ã«è¡Œã£ã¦ãã¾ã—ãŸã‚ˆã€‚
id:naoyaã•ã‚“㯠LVS++ã¨ã„ã†è©± ã§ã—ãŸãŒã€è‡ªåˆ†ã‚‚ 1å¹´ã»ã©å‰ã«ã€æŸã‚µã‚¤ãƒˆã®è² è·åˆ†æ•£ã‚’ LVS + Ultra Monkey (heartbeat + ldrectord) ã§ã‚„ã£ãŸã®ã§ã€ç¤¾å†… Wiki ã«æ›¸ã„ã¦ãŸãƒ¡ãƒ¢ã‚’æ™’ã—ã¦ãŠãã¾ã™ã€‚
# 今ãªã‚‰ heartbeat ã˜ã‚ƒãªã㦠keepalived ãŒæ™®é€šãªã®ã‹ã‚‚知れãšã€æƒ…å ±ãŒå¤ã‚ã®å¯èƒ½æ€§ã¯ã‚ã‚Šã¾ã™
ã¨ã„ã†æ§‹æˆã€‚
LVS 㨠Real Server を別ã«ã™ã‚‹ã®ã¯ã¡ã‚‡ã£ã¨ã‚³ã‚¹ãƒˆçš„ã«ã‚‚ã£ãŸã„ãªã‹ã£ãŸãŸã‚ã€Director 㨠Real Server ã‚’åŒä¸€ãƒžã‚·ãƒ³ã«ä¹—ã›ã‚‹å½¢ã«ã€‚http://ultramonkey.jp/2.0.1/topologies/sl-ha-lb-eg.html ã®å½¢æ…‹ã€‚
帰りã®ãƒ‘ケット㯠Director を経由ã›ãšã€ç›´æŽ¥ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã«å¸°ã‚‹ã„ã‚ゆる DSR ã§ã™ã€‚
# 以下ã€IPアドレスã€ãƒ›ã‚¹ãƒˆåã¯å®Ÿéš›ã¨ã¯å¤‰ãˆã¦ã‚ã‚Šã¾ã™ã€‚
www
192.168.0.10(VIP)
www1 | | www2 www3
+----192.168.0.7-----+ +-----192.168.0.8----+ +-----192.168.0.9----+
| Director (active) | | Director (standby) | | httpd |
| httpd | | httpd | +--------------------+
+--------------------+ +--------------------+
+-----192.168.0.11-----+
| PostgreSQL |
+----------------------+OS 㯠CentOS-4 (kernel-2.6.9)。
Heartbeat, ipvsadm 㯠www1 㨠www2 ã®ã¿ã«ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ« / è¨å®šã€‚arptables ã®è¨å®šã¯3å°å…±é€šã€‚
- Heartbeat 㯠Ultra Monkey ã®ã‚µã‚¤ãƒˆã‹ã‚‰ RHEL3 用㮠SRPMS をリビルド
- ipvsadm 㯠http://www.linuxvirtualserver.org/ ã‹ã‚‰ Kernel-2.6 用㮠ipvsadm-1.24-6.src.rpm をリビルド
- http://www.linuxvirtualserver.org/software/ipvs.html#kernel-2.6
- RHEL3 用㮠1.21 㯠Kernel-2.4 用㧠CentOS 4 ã«ã¯ä½¿ç”¨ã§ããªã„ã®ã§æ³¨æ„
[追記] ç¾åœ¨ã¯ã€CentOS-4 extras ã« heartbeat, ipvsadm ã®ãƒ‘ッケージãŒã‚ã‚Šã¾ã™ã€‚
インストールã•ã‚ŒãŸ RPM。
- heartbeat-1.2.3.cvs.20050927-1.centos.um.1
- heartbeat-pils-1.2.3.cvs.20050927-1.centos.um.1
- heartbeat-ldirectord-1.2.3.cvs.20050927-1.centos.um.1
- heartbeat-stonith-1.2.3.cvs.20050927-1.centos.um.1
- ipvsadm-1.24-6
- arptables-noarp-addr-0.99.1-1.rh.el.um.1
- arptables_jf-0.0.8-2
# /etc/ha.d/haresources
www1.example.com 192.168.0.10 \
ldirectord::ldirectord.cf \
IPaddr::192.168.0.10/24/eth0ldirectord ã§ã€VIP ã§å…¬é–‹ã™ã‚‹ã‚µãƒ¼ãƒ“ス㨠Real Server ã®è¨å®šã€‚
# /etc/ha.d/ldirectord.cf
# Global Directives
checktimeout=10
checkinterval=5
autoreload=no
logfile="local0"
quiescent=yes
# Virtual Server for HTTP
virtual=192.168.0.10:80
real=192.168.0.7:80 gate
real=192.168.0.8:80 gate
real=192.168.0.9:80 gate
service=http
request="ping.cgi"
receive="ok"
scheduler=rr
#persistent=600
protocol=tcp
checktype=negotiate
virtual=192.168.0.10:443
real=192.168.0.7:443 gate
real=192.168.0.8:443 gate
real=192.168.0.9:443 gate
service=https
request="ping.cgi"
receive="ok"
scheduler=rr
#persistent=600
protocol=tcp
checktype=negotiateDirectorã®æ»æ´»ç›£è¦– (heartbeat) è¨å®šã€‚
# /etc/ha.d/ha.cf logfacility local0 # bcast eth0 ucast eth0 192.168.0.8 <-- 相手㮠IP addr auto_failback off node www1.example.com node www2.example.com respawn hacluster /usr/lib/heartbeat/ipfail
heartbeat ã®èªè¨¼æƒ…å ±ã€‚
# /etc/ha.d/authkeys auth 2 2 sha1 xxxxxxxx
arptables ã¯ã€Virtual IP addr ã«å¯¾ã™ã‚‹ arp ã«ã€ãƒªã‚¢ãƒ«ã‚µãƒ¼ãƒãŒåå¿œã—ãªã„よã†ã«ã™ã‚‹ãŸã‚ã«ä½¿ã†ã€‚
# /etc/sysconfig/arptables *filter :IN ACCEPT [10:280] :OUT ACCEPT [1:28] :FORWARD ACCEPT [0:0] [6:168] -A IN -d 192.168.0.10 -j DROP [0:0] -A OUT -s 192.168.0.10 -o eth0 -j mangle --mangle-ip-s 192.168.0.7 <-- 自分㮠real IP addr COMMIT
Director ㌠Active / Standby ã«ãªã£ãŸã‚¿ã‚¤ãƒŸãƒ³ã‚°ã§ã€arptables ã®è¨å®šã‚’変更ã™ã‚‹ãŸã‚ã«
# ( cd /etc/ha.d/rc.d && ln -s arptables-noarp-addr_takeip local_takeip; ) # ( cd /etc/ha.d/rc.d && ln -s arptables-noarp-addr_giveip local_giveip; )
を実行。
ã‚ã¨ã¯ã€èµ·å‹•æ™‚ã« heartbeat, arptables_jf ãŒèµ·å‹•ã™ã‚‹ã‚ˆã†ã«è¨å®šã€‚ldirectord 㯠heartbeat 経由ã§èµ·å‹•ã•ã‚Œã‚‹ã®ã§ã€è‡ªå‹•èµ·å‹•ã•ã›ãªã„。
# chkconfig --level 345 heartbeat on # chkconfig --level 345 arptables_jf on # chkconfig --level 345 ldirectord off
