saltstack搭建keepalived高可用集羣

一、SaltStack簡介

SaltStack管理工具允許管理員對多個操作系統創建一個一致的管理系統。

二、特點

 1.快；多線程併發執行

 2.底層基於python

 3.豐富的api

 4.運行模式：本地運行；master/minion；salt SSH

  5.三大功能：遠程執行；配置管理；雲管理

  6.支持的操作系統比較豐富

三、SaltStack安裝基礎環境準備
1.server1:安裝saltstack

[root@server1 2018]# cd /root/saltstack/rhel7/2018
[root@server1 2018]# ls
PyYAML-3.11-1.el7.x86_64.rpm            python2-libcloud-2.0.0-2.el7.noarch.rpm
libsodium-1.0.16-1.el7.x86_64.rpm       repodata
openpgm-5.2.122-2.el7.x86_64.rpm        salt-2018.3.3-1.el7.noarch.rpm
python-cherrypy-5.6.0-2.el7.noarch.rpm  salt-api-2018.3.3-1.el7.noarch.rpm
python-crypto-2.6.1-2.el7.x86_64.rpm    salt-cloud-2018.3.3-1.el7.noarch.rpm
python-futures-3.0.3-1.el7.noarch.rpm   salt-master-2018.3.3-1.el7.noarch.rpm
python-msgpack-0.4.6-1.el7.x86_64.rpm   salt-minion-2018.3.3-1.el7.noarch.rpm
python-psutil-2.2.1-1.el7.x86_64.rpm    salt-ssh-2018.3.3-1.el7.noarch.rpm
python-tornado-4.2.1-1.el7.x86_64.rpm   salt-syndic-2018.3.3-1.el7.noarch.rpm
python-zmq-15.3.0-3.el7.x86_64.rpm      zeromq-4.1.4-7.el7.x86_64.rpm

[root@server1 2018]# yum install -y *

設置iserver1爲主master：

[root@server1 ~]# cd /etc/salt/
[root@server1 salt]# ls
cloud           cloud.maps.d       master    minion.d  proxy.d
cloud.conf.d    cloud.profiles.d   master.d  pki       roster
cloud.deploy.d  cloud.providers.d  minion    proxy
[root@server1 salt]# vim minion

 16 master: 172.25.60.1

開啓服務：

[root@server1 salt]# systemctl start salt-master.service  
[root@server1 salt]# systemctl start salt-minion.service 

查看端口是否開啓：

[root@server1 salt]# netstat -antlp

4505端口：用來鏈接slave，發佈訂閱
4506端口：請求響應，模式爲：zmq（消息隊列）

server2操作與1相同，但只需要開啓salt-minion.service服務即可

安裝saltstack
[root@server2 2018]# cd /etc/salt/
[root@server2 salt]# vim minion
16 master: 172.25.60.1

[root@server2 salt]# systemctl start salt-minion.service 

2.Salt祕鑰認證設置

[root@server1 salt]# salt-key -L
[root@server1 salt]# salt-key -A
Proceed? [n/Y] Y   
[root@server1 salt]# salt-key -L

3.編輯執行文件

[root@server1 ~]# mkdir /srv/salt 
[root@server1 ~]# cd /srv/salt/ 
[root@server1 salt]# mkdir keepalived
[root@server1 salt]# cd keepalived/
[root@server1 keepalived]# mkdir files
[root@server1 keepalived]# vim install.sls

kp-install: 
  pkg.installed: 
    - pkgs: 
      - keepalived 
  file.managed: 
    - name: /etc/keepalived/keepalived.conf 
    - source: salt://keepalived/files/keepalived.conf 
    - template: jinja 
      {% if grains['fqdn'] == 'server1' %} 
      STATE: MASTER 
      VRID: 51 
      PRIORITY: 100 
      {% elif grains['fqdn'] == 'server2' %}
      STATE: BACKUP 
      VRID: 51 
      PRIORITY: 50 
      {% endif %} 

  service.running: 
    - name: keepalived 
    - reload: True 
    - watch: 
      - file: kp-install

 

[root@server1 keepalived]# cd files/
[root@server1 files]# vim keepalived.conf

! Configuration File for keepalived

global_defs {
   notification_email {
	root@localhost
   }
   notification_email_from keepalived@localhost
   smtp_server 127.0.0.1
   smtp_connect_timeout 30
   router_id LVS_DEVEL
}

vrrp_instance VI_1 {
    state {{ STATE }}
    interface eth0
    virtual_router_id {{ VRID }}
    priority {{ PRIORITY }}
    advert_int 1
    authentication {
        auth_type PASS
        auth_pass 1111
    }
    virtual_ipaddress {
        172.25.60.100
    }
}

 

[root@server1 salt]# cd /srv/salt/
[root@server1 salt]# vim top.sls

base:
  'server1':
    - keepalived.install        
 
  'server2':
    - keepalived.install

4.執行top.sls文件，向所有節點安裝部署服務

[root@server1 salt]# salt '*' state.highstate

5.測試:

[root@server1 salt]# ip addr

vip在server1上，關閉keepalived服務再次查看：

[root@server1 salt]# systemctl stop keepalived.service 
[root@server1 salt]# ip addr

[root@server2 ~]# ip a    

當server1宕機時，vip漂移到server2上。

再次打開keepalived，vip又回到server1上：

[root@server1 salt]# systemctl start keepalived.service 
[root@server1 salt]# ip addr