keepalived+nginx+tomcat
发表于:2025-12-04 作者:千家信息网编辑
千家信息网最后更新 2025年12月04日,https://pan.baidu.com/s/1tXzFm2DVckZNS6HuwDwGoA //软件连接百度云在80.100虚拟机下systemctl stop firewalld //
千家信息网最后更新 2025年12月04日keepalived+nginx+tomcat
https://pan.baidu.com/s/1tXzFm2DVckZNS6HuwDwGoA //软件连接百度云
在80.100虚拟机下
systemctl stop firewalld //关闭防火墙setenforce 0 //关闭监控yum install lrz* -y //可以直接把软件包拖到xshell当前目录里面的命令tar xf nginx-1.13.9.tar.gz -C /opt/ //解压压缩包到/opt/下cd /opt/ls
cd /opt/nginx-1.13.9/ //进入文件
useradd -s /sbin/nologin -M nginx //创建一个无法登陆系统的用户yum install -y \ //安装编译工具及插件 gcc \ gcc-c++ \ make \ openssl-devel \ zlib-devel \ pcre-devel./configure \ //个性化配置--user=nginx \--group=nginx \--with-file-aio \--with-http_flv_module \--with-http_stub_status_module \--with-http_ssl_module \--with-http_gzip_static_module \--with-http_realip_modulemake && make install //编译且安装cd //到root根目录下vi /usr/local/nginx/conf/nginx.conf user nginx nginx; worker_processes 1; #error_log logs/error.log; #error_log logs/error.log notice; error_log logs/error.log info; pid logs/nginx.pid; events { worker_connections 1024; } http { include mime.types; default_type application/octet-stream; log_format main '$remote_addr - $remote_user [$time_local] "$request" ' '$status $body_bytes_sent "$http_referer" ' '"$http_user_agent" "$http_x_forwarded_for"'; access_log logs/access.log main; add_header X-Server $hostname; server_names_hash_bucket_size 128; server_name_in_redirect off; sendfile on; tcp_nopush on; tcp_nodelay on; #keepalive_timeout 0; keepalive_timeout 60; client_header_buffer_size 32k; large_client_header_buffers 4 128k; client_max_body_size 512m; open_file_cache max=65535 inactive=20s; open_file_cache_valid 30s; open_file_cache_min_uses 1; gzip on; gzip_static on; gzip_http_version 1.1; gzip_comp_level 2; gzip_min_length 1024; gzip_vary on; gzip_types text/plain text/javascript application/x-javascript text/css text/xml application/xml application/xml+rss; server_tokens off; fastcgi_connect_timeout 300; fastcgi_send_timeout 300; fastcgi_read_timeout 300; fastcgi_buffer_size 512k; fastcgi_buffers 6 512k; fastcgi_busy_buffers_size 512k; fastcgi_temp_file_write_size 512k; fastcgi_intercept_errors on; client_body_buffer_size 128k; proxy_connect_timeout 600; proxy_read_timeout 600; proxy_send_timeout 600; proxy_buffer_size 32k; proxy_buffers 4 32k; proxy_busy_buffers_size 64k; proxy_temp_file_write_size 2m; proxy_ignore_client_abort on; proxy_cache_path /usr/local/nginx/cache_temp levels=2:2 keys_zone=cache_temp:128m inactive=30m max_size=2g; proxy_cache_valid 200 302 10m; include /usr/local/nginx/conf/conf.d/*.conf; server { listen 80; server_name localhost; charset UTF-8; #access_log logs/host.access.log main; location / { root html; index index.html index.htm; } #error_page 404 /404.html; # redirect server error pages to the static page /50x.html # error_page 500 502 503 504 /50x.html; location = /50x.html { root html; } # proxy the PHP scripts to Apache listening on 127.0.0.1:80 # #location ~ \.php$ { # proxy_pass http://127.0.0.1; #} # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000 # #location ~ \.php$ { # root html; # fastcgi_pass 127.0.0.1:9000; # fastcgi_index index.php; # fastcgi_param SCRIPT_FILENAME /scripts$fastcgi_script_name; # include fastcgi_params; #} # deny access to .htaccess files, if Apache's document root # concurs with nginx's one # #location ~ /\.ht { # deny all; #} } # another virtual host using mix of IP-, name-, and port-based configuration # #server { # listen 8000; # listen somename:8080; # server_name somename alias another.alias; # location / { # root html; # index index.html index.htm; # } #} # HTTPS server # #server { # listen 443 ssl; # server_name localhost; # ssl_certificate cert.pem; # ssl_certificate_key cert.key; # ssl_session_cache shared:SSL:1m; # ssl_session_timeout 5m; # ssl_ciphers HIGH:!aNULL:!MD5; # ssl_prefer_server_ciphers on; # location / { # root html; # index index.html index.htm; # } #} } :wq //保存退出ln -s /usr/local/nginx/sbin/nginx /usr/sbin/ //软链接nginx -t //检查nginx有没有错误cd /usr/local/nginx/conf/ mkdir conf.dcd conf.d/vi lvs01.conf //新建子配置文件 server { listen 80; server_name lvs01 192.168.80.100; //服务器名称与IP地址 index index.html index.jsp; root /usr/local/nginx/html; access_log /usr/local/nginx/logs/tomcat.aa.com_access.log main; location ~ .*\.jsp$ { index index.jsp; proxy_set_header HOST $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header Client-IP $remote_addr; proxy_set_header X-For $proxy_add_x_forwarded_for; proxy_pass http://center_pool; } location ~ .*\.(gif|jpg|jpeg|png|bmp|swf)$ { expires 30d; proxy_pass http://center_pool; } location ~ .*\.(js|css)?$ { expires 1h; proxy_pass http://center_pool; } } :wq //保存退出vi pool.conf //创建服务器池 #添加以下内容 upstream center_pool { //默认轮询 server 192.168.80.102:8080; server 192.168.80.103:8080; } :wq //保存退出nginx -tvi /etc/init.d/nginx #!/bin/bash # chkconfig: 35 99 20 # description: Nginx Service Control Script PROG="/usr/local/nginx/sbin/nginx" PIDF="/usr/local/nginx/logs/nginx.pid" case "$1" in start) $PROG ;; stop) kill -s QUIT $(cat $PIDF) ;; restart) $0 stop $0 start ;; reload) kill -s HUP $(cat $PIDF) ;; *) echo "Usage: $0 {start|stop|restart|reload}" exit 1 esac exit 0 :wq //保存退出chmod +x /etc/init.d/nginx //增加执行权限chkconfig --add nginx //加入系统管理服务service nginx start //启动nginx服务 netstat -anpt | grep 80 //查看80端口有哪些服务在开启状态
在浏览器地址栏中输入192.168.80.100
在浏览器地址栏中输入192.168.80.100/index.jsp
在浏览器地址栏中输入192.168.80.100/index.jsp
scp /usr/local/nginx/conf/nginx.conf root@192.168.80.101:/usr/local/nginx/conf/nginx.conf //把本机上的nginx.conf传送到80.101虚拟机上yes自己设置的root密码scp * root@192.168.80.101:/usr/local/nginx/conf/conf.d/ //传送到80.101虚拟机上自己设置的root密码scp /etc/init.d/nginx root@192.168.80.101:/etc/init.d自己设置的root密码cd /etc/yum.repos.d/ //进入目录cp back/* ./ //把back里面所有内容提取到上一个目录下ifconfig ens34 down //关闭网卡ifconfig ens34 up //开启网卡yum install -y epel-release //安装yum install keepalived -y //安装cd //到root根目录下vi /etc/keepalived/keepalived.conf #把里面内容都删了添加以下内容 ! Configuration File for keepalived global_defs { route_id NGINX-01 } vrrp_script nginx { script "/opt/nginx.sh" interval 2 weight -10 } vrrp_instance VI_1 { state MASTER interface ens32 virtual_router_id 51 priority 150 advert_int 1 authentication { auth_type PASS auth_pass 1111 } track_script { nginx } virtual_ipaddress { 192.168.80.188 } } :wq //保存退出scp /etc/keepalived/keepalived.conf root@192.168.80.101:/etc/keepalived/自己设置root的密码cd /opt/vi nginx.sh #!/bin/bash #Filename:nginx.sh A=$(ps -ef | grep keepalived | grep -v grep | wc -l) if [ $A -gt 0 ]; then /etc/init.d/nginx start else /etc/init.d/nginx stop fi :wq //保存退出chmod +x nginx.sh //给这个文件权限./nginx.sh //执行这个脚本systemctl start keepalived //重启keepalived服务systemctl stop firewalld //关闭firewalld服务chkconfig --add nginx service nginx start //重启nginx服务./nginx.sh //在执行脚本在浏览器地址栏中输入192.168.80.188
在浏览器地址栏中输入192.168.80.188/index.jsp
在80.101虚拟机下
systemctl stop firewalld //关闭防火墙setenforce 0 //关闭监控yum install lrz* -y //可以直接把软件包拖到xshell当前目录里面的命令yum install -y \ //安装编译工具及插件 gcc \ gcc-c++ \ make \ openssl-devel \ zlib-devel \ pcre-devel ./configure \ //个性化配置--user=nginx \--group=nginx \--with-file-aio \--with-http_flv_module \--with-http_stub_status_module \--with-http_ssl_module \--with-http_gzip_static_module \--with-http_realip_modulemake && make install //编译且安装cd /usr/local/nginx/conf/ //进入文件夹mkdir conf.d //创建这个文件vi conf.d/lvs01.conf把80.100改成80.101chkconfig --add nginxuseradd -s /sbin/nologin -M nginx //创建一个无法登陆系统的用户service nginx start //重启nginx在浏览器地址栏中输入192.168.80.101/index.jsp
cd /etc/yum.repos.d/ //进入这个目录cp back/* ./ //把back这个目录里面的内容转到上一个目录下ifconfig ens34 down //关闭网卡ifconfig ens34 up //开启网卡yum install -y epel-release //安装yum install keepalived -y //安装vi /etc/keepalived/keepalived.conf //进入文件cd /opt/ //到/opt/下vi nginx.sh #!/bin/bash #Filename:nginx.sh A=$(ip addr | grep 192.168.80.188/32 | grep -v grep | wc -l) if [ $A -gt 0 ]; then /etc/init.d/nginx start else /etc/init.d/nginx stop fi :wq //保存退出chmod +x nginx.sh //给这个脚本执行权限./nginx.sh //启动这个脚本systemctl start keepalived //重启服务在80.102虚拟机下
systemctl stop firewalld //关闭防火墙setenforce 0 //关闭监控yum install lrz* -y //可以直接把软件包拖到xshell当前目录里面的命令tar xf apache-tomcat-8.5.23-embed.tar.gz //压缩apache-tomcat-8.5.23-embed.tar.gz到当前目录上tar xf jdk-8u144-linux-x64.tar.gz //压缩jdk-8u144-linux-x64.tar.gz到当前目录上cp -rv jdk1.8.0_144/ /usr/local/java //把jdk1.8.0_144拷贝到 /usr/local/java 目录下vi /etc/profile //在文件末尾新增export JAVA_HOME=/usr/local/javaexport JRE_HOME=/usr/local/java/jreexport PATH=$PATH:/usr/local/java/binexport CLASSPATH=./:/usr/local/java/lib:/usr/local/java/jre/libsource /etc/profilejava -version //查看版本显示下面内容java version "1.8.0_144"……
……
--------------以上是搭建JAVA环境---------
cp -r apache-tomcat-8.5.23 /usr/local/tomcat8 //把apache-tomcat-8.5.23拷贝到/usr/local/tomcat8ln -s /usr/local/tomcat8/bin/startup.sh /usr/bin/tomcatup //把/usr/local/tomcat8/bin/startup.sh软链接到 /usr/bin/tomcatup ln -s /usr/local/tomcat8/bin/shutdown.sh /usr/bin/tomcatdown //把/usr/local/tomcat8/bin/shutdown.sh软链接到/usr/bin/tomcatdownvi /usr/local/tomcat8/webapps/ROOT/index.jsp在第一行加server aatomcatupnetstat -anpt | grep 8080 //查看当前8080端口有哪些程序在运行在80.103虚拟机下
systemctl stop firewalld //关闭防火墙setenforce 0 //关闭监控yum install lrz* -y //可以直接把软件包拖到xshell当前目录里面的命令tar xf apache-tomcat-8.5.23-embed.tar.gz //压缩apache-tomcat-8.5.23-embed.tar.gz到当前目录上tar xf jdk-8u144-linux-x64.tar.gz //压缩jdk-8u144-linux-x64.tar.gz到当前目录上cp -rv jdk1.8.0_144/ /usr/local/java //把jdk1.8.0_144拷贝到 /usr/local/java 目录下vi /etc/profile //在文件末尾新增export JAVA_HOME=/usr/local/javaexport JRE_HOME=/usr/local/java/jreexport PATH=$PATH:/usr/local/java/binexport CLASSPATH=./:/usr/local/java/lib:/usr/local/java/jre/libsource /etc/profilejava -version //查看版本显示下面内容java version "1.8.0_144"……
……
--------------以上是搭建JAVA环境---------
cp -r apache-tomcat-8.5.23 /usr/local/tomcat8 //把apache-tomcat-8.5.23拷贝到/usr/local/tomcat8ln -s /usr/local/tomcat8/bin/startup.sh /usr/bin/tomcatup //把/usr/local/tomcat8/bin/startup.sh软链接到 /usr/bin/tomcatup ln -s /usr/local/tomcat8/bin/shutdown.sh /usr/bin/tomcatdown //把/usr/local/tomcat8/bin/shutdown.sh软链接到/usr/bin/tomcatdownvi /usr/local/tomcat8/webapps/ROOT/index.jsp在第一行加server bbtomcatupnetstat -anpt | grep 8080 //查看当前8080端口有哪些程序在运行
目录
服务
文件
内容
地址
浏览器
浏览
输入
软件
链接
命令
密码
拷贝
网卡
脚本
软件包
防火墙
监控
编译
防火
数据库的安全要保护哪些东西
数据库安全各自的含义是什么
生产安全数据库录入
数据库的安全性及管理
数据库安全策略包含哪些
海淀数据库安全审计系统
建立农村房屋安全信息数据库
易用的数据库客户端支持安全管理
连接数据库失败ssl安全错误
数据库的锁怎样保障安全
商业数据库的技术
网络安全问题比例最高的是
软件开发类企业成本科目明细
湖南网络安全专业哪个学校最好
农业生物信息数据库
javabean数据库
中国移动宽带无法连接服务器
电信网络技术技术工程师
软件开发能力分析
gp数据库设置用户权限
数据库建立的优势
数据库课程设计感悟
北大软微金融大数据库
梦幻西游选什么服务器
将文件存放到服务器上
财务软件的服务器平时要不要关机
茶陵软件开发培训多少钱
我的世界手机基岩版服务器卡顿
网络安全手抄报教学简单
基站服务器属于什么公司
口碑好的存储服务器供应商
遵守商业道德履行网络安全
铜梁区工商软件开发服务特点
临沂粉果果网络技术
宜良创新软件开发
广东开创网络安全
m n er数据库关系
网络安全法中关键信息运营者
铁锈战争可以玩官方服务器的版本
maude数据库的作用
