keepalived+nginx+tomcat
发表于:2024-09-24 作者:千家信息网编辑
千家信息网最后更新 2024年09月24日,https://pan.baidu.com/s/1tXzFm2DVckZNS6HuwDwGoA //软件连接百度云在80.100虚拟机下systemctl stop firewalld //
千家信息网最后更新 2024年09月24日keepalived+nginx+tomcat
https://pan.baidu.com/s/1tXzFm2DVckZNS6HuwDwGoA //软件连接百度云
在80.100虚拟机下
systemctl stop firewalld //关闭防火墙setenforce 0 //关闭监控yum install lrz* -y //可以直接把软件包拖到xshell当前目录里面的命令tar xf nginx-1.13.9.tar.gz -C /opt/ //解压压缩包到/opt/下cd /opt/ls
cd /opt/nginx-1.13.9/ //进入文件
useradd -s /sbin/nologin -M nginx //创建一个无法登陆系统的用户yum install -y \ //安装编译工具及插件 gcc \ gcc-c++ \ make \ openssl-devel \ zlib-devel \ pcre-devel./configure \ //个性化配置--user=nginx \--group=nginx \--with-file-aio \--with-http_flv_module \--with-http_stub_status_module \--with-http_ssl_module \--with-http_gzip_static_module \--with-http_realip_modulemake && make install //编译且安装cd //到root根目录下vi /usr/local/nginx/conf/nginx.conf user nginx nginx; worker_processes 1; #error_log logs/error.log; #error_log logs/error.log notice; error_log logs/error.log info; pid logs/nginx.pid; events { worker_connections 1024; } http { include mime.types; default_type application/octet-stream; log_format main '$remote_addr - $remote_user [$time_local] "$request" ' '$status $body_bytes_sent "$http_referer" ' '"$http_user_agent" "$http_x_forwarded_for"'; access_log logs/access.log main; add_header X-Server $hostname; server_names_hash_bucket_size 128; server_name_in_redirect off; sendfile on; tcp_nopush on; tcp_nodelay on; #keepalive_timeout 0; keepalive_timeout 60; client_header_buffer_size 32k; large_client_header_buffers 4 128k; client_max_body_size 512m; open_file_cache max=65535 inactive=20s; open_file_cache_valid 30s; open_file_cache_min_uses 1; gzip on; gzip_static on; gzip_http_version 1.1; gzip_comp_level 2; gzip_min_length 1024; gzip_vary on; gzip_types text/plain text/javascript application/x-javascript text/css text/xml application/xml application/xml+rss; server_tokens off; fastcgi_connect_timeout 300; fastcgi_send_timeout 300; fastcgi_read_timeout 300; fastcgi_buffer_size 512k; fastcgi_buffers 6 512k; fastcgi_busy_buffers_size 512k; fastcgi_temp_file_write_size 512k; fastcgi_intercept_errors on; client_body_buffer_size 128k; proxy_connect_timeout 600; proxy_read_timeout 600; proxy_send_timeout 600; proxy_buffer_size 32k; proxy_buffers 4 32k; proxy_busy_buffers_size 64k; proxy_temp_file_write_size 2m; proxy_ignore_client_abort on; proxy_cache_path /usr/local/nginx/cache_temp levels=2:2 keys_zone=cache_temp:128m inactive=30m max_size=2g; proxy_cache_valid 200 302 10m; include /usr/local/nginx/conf/conf.d/*.conf; server { listen 80; server_name localhost; charset UTF-8; #access_log logs/host.access.log main; location / { root html; index index.html index.htm; } #error_page 404 /404.html; # redirect server error pages to the static page /50x.html # error_page 500 502 503 504 /50x.html; location = /50x.html { root html; } # proxy the PHP scripts to Apache listening on 127.0.0.1:80 # #location ~ \.php$ { # proxy_pass http://127.0.0.1; #} # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000 # #location ~ \.php$ { # root html; # fastcgi_pass 127.0.0.1:9000; # fastcgi_index index.php; # fastcgi_param SCRIPT_FILENAME /scripts$fastcgi_script_name; # include fastcgi_params; #} # deny access to .htaccess files, if Apache's document root # concurs with nginx's one # #location ~ /\.ht { # deny all; #} } # another virtual host using mix of IP-, name-, and port-based configuration # #server { # listen 8000; # listen somename:8080; # server_name somename alias another.alias; # location / { # root html; # index index.html index.htm; # } #} # HTTPS server # #server { # listen 443 ssl; # server_name localhost; # ssl_certificate cert.pem; # ssl_certificate_key cert.key; # ssl_session_cache shared:SSL:1m; # ssl_session_timeout 5m; # ssl_ciphers HIGH:!aNULL:!MD5; # ssl_prefer_server_ciphers on; # location / { # root html; # index index.html index.htm; # } #} } :wq //保存退出ln -s /usr/local/nginx/sbin/nginx /usr/sbin/ //软链接nginx -t //检查nginx有没有错误cd /usr/local/nginx/conf/ mkdir conf.dcd conf.d/vi lvs01.conf //新建子配置文件 server { listen 80; server_name lvs01 192.168.80.100; //服务器名称与IP地址 index index.html index.jsp; root /usr/local/nginx/html; access_log /usr/local/nginx/logs/tomcat.aa.com_access.log main; location ~ .*\.jsp$ { index index.jsp; proxy_set_header HOST $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header Client-IP $remote_addr; proxy_set_header X-For $proxy_add_x_forwarded_for; proxy_pass http://center_pool; } location ~ .*\.(gif|jpg|jpeg|png|bmp|swf)$ { expires 30d; proxy_pass http://center_pool; } location ~ .*\.(js|css)?$ { expires 1h; proxy_pass http://center_pool; } } :wq //保存退出vi pool.conf //创建服务器池 #添加以下内容 upstream center_pool { //默认轮询 server 192.168.80.102:8080; server 192.168.80.103:8080; } :wq //保存退出nginx -tvi /etc/init.d/nginx #!/bin/bash # chkconfig: 35 99 20 # description: Nginx Service Control Script PROG="/usr/local/nginx/sbin/nginx" PIDF="/usr/local/nginx/logs/nginx.pid" case "$1" in start) $PROG ;; stop) kill -s QUIT $(cat $PIDF) ;; restart) $0 stop $0 start ;; reload) kill -s HUP $(cat $PIDF) ;; *) echo "Usage: $0 {start|stop|restart|reload}" exit 1 esac exit 0 :wq //保存退出chmod +x /etc/init.d/nginx //增加执行权限chkconfig --add nginx //加入系统管理服务service nginx start //启动nginx服务 netstat -anpt | grep 80 //查看80端口有哪些服务在开启状态
在浏览器地址栏中输入192.168.80.100
在浏览器地址栏中输入192.168.80.100/index.jsp
在浏览器地址栏中输入192.168.80.100/index.jsp
scp /usr/local/nginx/conf/nginx.conf root@192.168.80.101:/usr/local/nginx/conf/nginx.conf //把本机上的nginx.conf传送到80.101虚拟机上yes自己设置的root密码scp * root@192.168.80.101:/usr/local/nginx/conf/conf.d/ //传送到80.101虚拟机上自己设置的root密码scp /etc/init.d/nginx root@192.168.80.101:/etc/init.d自己设置的root密码cd /etc/yum.repos.d/ //进入目录cp back/* ./ //把back里面所有内容提取到上一个目录下ifconfig ens34 down //关闭网卡ifconfig ens34 up //开启网卡yum install -y epel-release //安装yum install keepalived -y //安装cd //到root根目录下vi /etc/keepalived/keepalived.conf #把里面内容都删了添加以下内容 ! Configuration File for keepalived global_defs { route_id NGINX-01 } vrrp_script nginx { script "/opt/nginx.sh" interval 2 weight -10 } vrrp_instance VI_1 { state MASTER interface ens32 virtual_router_id 51 priority 150 advert_int 1 authentication { auth_type PASS auth_pass 1111 } track_script { nginx } virtual_ipaddress { 192.168.80.188 } } :wq //保存退出scp /etc/keepalived/keepalived.conf root@192.168.80.101:/etc/keepalived/自己设置root的密码cd /opt/vi nginx.sh #!/bin/bash #Filename:nginx.sh A=$(ps -ef | grep keepalived | grep -v grep | wc -l) if [ $A -gt 0 ]; then /etc/init.d/nginx start else /etc/init.d/nginx stop fi :wq //保存退出chmod +x nginx.sh //给这个文件权限./nginx.sh //执行这个脚本systemctl start keepalived //重启keepalived服务systemctl stop firewalld //关闭firewalld服务chkconfig --add nginx service nginx start //重启nginx服务./nginx.sh //在执行脚本在浏览器地址栏中输入192.168.80.188
在浏览器地址栏中输入192.168.80.188/index.jsp
在80.101虚拟机下
systemctl stop firewalld //关闭防火墙setenforce 0 //关闭监控yum install lrz* -y //可以直接把软件包拖到xshell当前目录里面的命令yum install -y \ //安装编译工具及插件 gcc \ gcc-c++ \ make \ openssl-devel \ zlib-devel \ pcre-devel ./configure \ //个性化配置--user=nginx \--group=nginx \--with-file-aio \--with-http_flv_module \--with-http_stub_status_module \--with-http_ssl_module \--with-http_gzip_static_module \--with-http_realip_modulemake && make install //编译且安装cd /usr/local/nginx/conf/ //进入文件夹mkdir conf.d //创建这个文件vi conf.d/lvs01.conf把80.100改成80.101chkconfig --add nginxuseradd -s /sbin/nologin -M nginx //创建一个无法登陆系统的用户service nginx start //重启nginx在浏览器地址栏中输入192.168.80.101/index.jsp
cd /etc/yum.repos.d/ //进入这个目录cp back/* ./ //把back这个目录里面的内容转到上一个目录下ifconfig ens34 down //关闭网卡ifconfig ens34 up //开启网卡yum install -y epel-release //安装yum install keepalived -y //安装vi /etc/keepalived/keepalived.conf //进入文件cd /opt/ //到/opt/下vi nginx.sh #!/bin/bash #Filename:nginx.sh A=$(ip addr | grep 192.168.80.188/32 | grep -v grep | wc -l) if [ $A -gt 0 ]; then /etc/init.d/nginx start else /etc/init.d/nginx stop fi :wq //保存退出chmod +x nginx.sh //给这个脚本执行权限./nginx.sh //启动这个脚本systemctl start keepalived //重启服务在80.102虚拟机下
systemctl stop firewalld //关闭防火墙setenforce 0 //关闭监控yum install lrz* -y //可以直接把软件包拖到xshell当前目录里面的命令tar xf apache-tomcat-8.5.23-embed.tar.gz //压缩apache-tomcat-8.5.23-embed.tar.gz到当前目录上tar xf jdk-8u144-linux-x64.tar.gz //压缩jdk-8u144-linux-x64.tar.gz到当前目录上cp -rv jdk1.8.0_144/ /usr/local/java //把jdk1.8.0_144拷贝到 /usr/local/java 目录下vi /etc/profile //在文件末尾新增export JAVA_HOME=/usr/local/javaexport JRE_HOME=/usr/local/java/jreexport PATH=$PATH:/usr/local/java/binexport CLASSPATH=./:/usr/local/java/lib:/usr/local/java/jre/libsource /etc/profilejava -version //查看版本显示下面内容java version "1.8.0_144"……
……
--------------以上是搭建JAVA环境---------
cp -r apache-tomcat-8.5.23 /usr/local/tomcat8 //把apache-tomcat-8.5.23拷贝到/usr/local/tomcat8ln -s /usr/local/tomcat8/bin/startup.sh /usr/bin/tomcatup //把/usr/local/tomcat8/bin/startup.sh软链接到 /usr/bin/tomcatup ln -s /usr/local/tomcat8/bin/shutdown.sh /usr/bin/tomcatdown //把/usr/local/tomcat8/bin/shutdown.sh软链接到/usr/bin/tomcatdownvi /usr/local/tomcat8/webapps/ROOT/index.jsp在第一行加server aatomcatupnetstat -anpt | grep 8080 //查看当前8080端口有哪些程序在运行在80.103虚拟机下
systemctl stop firewalld //关闭防火墙setenforce 0 //关闭监控yum install lrz* -y //可以直接把软件包拖到xshell当前目录里面的命令tar xf apache-tomcat-8.5.23-embed.tar.gz //压缩apache-tomcat-8.5.23-embed.tar.gz到当前目录上tar xf jdk-8u144-linux-x64.tar.gz //压缩jdk-8u144-linux-x64.tar.gz到当前目录上cp -rv jdk1.8.0_144/ /usr/local/java //把jdk1.8.0_144拷贝到 /usr/local/java 目录下vi /etc/profile //在文件末尾新增export JAVA_HOME=/usr/local/javaexport JRE_HOME=/usr/local/java/jreexport PATH=$PATH:/usr/local/java/binexport CLASSPATH=./:/usr/local/java/lib:/usr/local/java/jre/libsource /etc/profilejava -version //查看版本显示下面内容java version "1.8.0_144"……
……
--------------以上是搭建JAVA环境---------
cp -r apache-tomcat-8.5.23 /usr/local/tomcat8 //把apache-tomcat-8.5.23拷贝到/usr/local/tomcat8ln -s /usr/local/tomcat8/bin/startup.sh /usr/bin/tomcatup //把/usr/local/tomcat8/bin/startup.sh软链接到 /usr/bin/tomcatup ln -s /usr/local/tomcat8/bin/shutdown.sh /usr/bin/tomcatdown //把/usr/local/tomcat8/bin/shutdown.sh软链接到/usr/bin/tomcatdownvi /usr/local/tomcat8/webapps/ROOT/index.jsp在第一行加server bbtomcatupnetstat -anpt | grep 8080 //查看当前8080端口有哪些程序在运行
目录
服务
文件
内容
地址
浏览器
浏览
输入
软件
链接
命令
密码
拷贝
网卡
脚本
软件包
防火墙
监控
编译
防火
数据库的安全要保护哪些东西
数据库安全各自的含义是什么
生产安全数据库录入
数据库的安全性及管理
数据库安全策略包含哪些
海淀数据库安全审计系统
建立农村房屋安全信息数据库
易用的数据库客户端支持安全管理
连接数据库失败ssl安全错误
数据库的锁怎样保障安全
重庆渝北区域网络技术培训班
网络安全会议强调
discuz数据库端口
植被数据库论文
中山正规软件开发价位
电脑怎样启用网络安全策略
全国小学生网络安全教育
网络安全用于保障什么内容
名扬环宇网络技术有限公司
安全生产月网络安全知识竞赛
网络安全宣传周宣传片 高清
网络安全讲课ppt免费下载
杨浦区参考数据库销售服务电话
网络技术作业答案全解
过滤器是运行在服务器端的组件吗
武汉大学外网图书馆数据库
tbc怀旧服会有永久服务器吗
网络安全专题教育动画
开发excel软件开发
泰安数据库有国有企业吗
云服务器无法连接本地测试
mysql数据库只有一张表
艾莱迪网络技术有限公司
国科大网络安全专业专业
语音会议软件开发的服务机构
博雅数据库2017-2019
网络安全开设的课程有什么
天翼云服务器如何设置安全组
hp服务器改管理口ip
中职计算机网络技术教材答案
