|
so you have two directors, each with a VIP (say VIP1, VIP2) and
forwarding its virtual service(s). On failover, what happens? One
machine winds up with both VIPs? and then when the machine comes up
again, the VIP migrates back so that each machine has a single VIP again?
If so can you post the working config file and an explanation for how it
works and I'll put it in the HOWTO
Hi Joe,
I'll explain what I do and post the config file below. This might become
a somewhat long mail :)
Read carefully as there are a lot of numbers, this is a fairly complex
and special setup and I may not have typed everything correctly. I'll
re-read it to correct errors, but you never know.
########
# Goal #
########
My goal is a HA MySQL database. As the MySQL cluster storage engine
lacks several important features (like foreign keys e.g.), I cannot use
a MySQL cluster. So now I use MySQL replication in a
master-to-master-setup. As my clients are able to re-connect after a
connection loss, but cannot connect to a different IP on connection
loss, a VIP setup is the goal. So my clients only know the VIP(s), not
the real IPs of the MySQL Servers.
#########
# Setup #
#########
I have two machines. Each machine runs keepalived and MySQL. Each
machine has 2 NICs. eth0 going to the switch, eth1 connecting SRV1 and SRV2.
My setup looks like this:
Intranet
|
|
##SWITCH##
| |
| |
| |
SRV1---SRV2
Clients connect through the switch, replication is done over the direct
gigabit connection between SRV1 and SRV2.
SRV1 IPs:
eth0 10.6.10.20
eth1 10.250.250.20
SRV2 IPs:
eth0 10.6.10.21
eth1 10.250.250.21
####################
# Virtual Services #
####################
I need two VIPs, as I want write-queries to go to SRV1, and read-queries
to go to SRV2 - just as in a normal replication-setup, for
loadbalancing-purposes. Note that it is not keepalived or LVS that does
the loadbalancing here, as each virtual service only has one realserver
and one sorry-server!
"Loadbalancing" is just writing-to-the-database-software connecting to
one server, reading-from-the-database-software connecting to another server.
10.6.10.24:3306
SRV1 (MASTER state for this VIP)
Realserver: 127.0.0.1:3306
Sorryserver: 10.250.250.21:3306
SRV2 (BACKUP state for this VIP)
Realserver 10.250.250.20:3306
Sorryserver: 127.0.0.1:3306
10.6.10.240:3306
SRV1 (BACKUP state for this VIP)
Realserver 10.250.250.21:3306
Sorryserver: 127.0.0.1:3306
SRV2: (MASTER state for this VIP)
Realserver: 127.0.0.1:3306
Sorryserver: 10.250.250.20:3306
So this is basically the "localhost"-feature, plus one sorryserver per
virtual service.
############
# Failover #
############
If one of the eth0 network connections fail, the VIP moves to the other
director, but connections still get directed to the same MySQL server.
So the MySQL-loadbalancing still works.
If MySQL fails on one machine, connections are redirected to the other
server's eth1-IP (10.250.250.2[01]). In order to be able to route that
back over the director it came from, there are ip-rules on each server:
------------------------------
- SVR1 ip rules and routing: -
------------------------------
cat /etc/iproute2/rt_tables
2 mysqlrouting
...
ip rule show
...
32765: from 10.250.250.20 lookup mysqlrouting
...
ip route show table mysqlrouting
default via 10.250.250.21 dev eth1
Setup-steps for this:
echo "2 mysqlrouting" > /tmp/rt_tables
cat /etc/iproute2/rt_tables >> /tmp/rt_tables
ip rule add from 10.250.250.20 table mysqlrouting
ip route add default via 10.250.250.21 dev eth1 table mysqlrouting
------------------------------
- SVR2 ip rules and routing: -
------------------------------
cat /etc/iproute2/rt_tables
2 mysqlrouting
...
ip rule show
...
32765: from 10.250.250.20 lookup mysqlrouting
...
ip route show table mysqlrouting
default via 10.250.250.20 dev eth1
Setup-steps for this:
echo "2 mysqlrouting" > /tmp/rt_tables
cat /etc/iproute2/rt_tables >> /tmp/rt_tables
ip rule add from 10.250.250.21 table mysqlrouting
ip route add default via 10.250.250.20 dev eth1 table mysqlrouting
#######################
# Configuration files #
#######################
------------------------------------
- keepalived configuration on SRV1 -
------------------------------------
! Configuration File for keepalived
global_defs {
notification_email { foo@xxxxxxxxxxxx }
notification_email_from keepalived@xxxxxxxxxxxx
smtp_server 10.2.20.6
smtp_connect_timeout 30
lvs_id TEST-MYSQL-1
}
vrrp_sync_group test_mysql_one {
group {
vip_mysql_one
}
}
vrrp_sync_group test_mysql_two {
group {
vip_mysql_two
}
}
vrrp_instance vip_mysql_one {
state MASTER
interface eth0
virtual_router_id 51
priority 100
advert_int 1
authentication {
auth_type PASS
auth_pass 12345
}
virtual_ipaddress {
10.6.10.24/24 brd 10.6.10.255 dev eth0
}
}
vrrp_instance vip_mysql_two {
state BACKUP
interface eth0
virtual_router_id 52
priority 10
advert_int 1
authentication {
auth_type PASS
auth_pass 12345
}
virtual_ipaddress {
10.6.10.240/24 brd 10.6.10.255 dev eth0
}
}
virtual_server 10.6.10.24 3306 {
delay_loop 6
# lb_algo is actually not important, as we have only one real_server
lb_algo wlc
lb_kind NAT
nat_mask 255.255.255.0
protocol TCP
real_server 127.0.0.1 3306 {
TCP_CHECK {
connect_port 3306
connect_timeout 30
} #TCP_CHECK
}
sorry_server 10.250.250.21 3306
}
virtual_server 10.6.10.240 3306 {
delay_loop 6
# lb_algo is actually not important, as we have only one real_server
lb_algo wlc
lb_kind NAT
nat_mask 255.255.255.0
protocol TCP
real_server 10.250.250.21 3306 {
TCP_CHECK {
connect_port 3306
connect_timeout 30
} #TCP_CHECK
}
sorry_server 127.0.0.1 3306
}
------------------------------------
- keepalived configuration on SRV2 -
------------------------------------
! Configuration File for keepalived
global_defs {
notification_email { foo@xxxxxxxxxxxx }
notification_email_from keepalived@xxxxxxxxxxxx
smtp_server 10.2.20.6
smtp_connect_timeout 30
lvs_id TEST-MYSQL-2
}
vrrp_sync_group ACDDB_mysql_one {
group {
vip_mysql_one
}
}
vrrp_sync_group ACDDB_mysql_two {
group {
vip_mysql_two
}
}
vrrp_instance vip_mysql_one {
state BACKUP
interface eth0
virtual_router_id 51
priority 100
advert_int 1
authentication {
auth_type PASS
auth_pass 12345
}
virtual_ipaddress {
10.6.10.24/24 brd 10.6.10.255 dev eth0
}
}
vrrp_instance vip_mysql_one {
state MASTER
interface eth0
virtual_router_id 52
priority 100
advert_int 1
authentication {
auth_type PASS
auth_pass 12345
}
virtual_ipaddress {
10.6.10.240/24 brd 10.6.10.255 dev eth0
}
}
virtual_server 10.6.10.24 3306 {
delay_loop 6
# lb_algo is actually not important, as we have only one real_server
lb_algo wlc
lb_kind NAT
nat_mask 255.255.255.0
protocol TCP
real_server 10.250.250.20 3306 {
TCP_CHECK {
connect_port 3306
connect_timeout 30
} #TCP_CHECK
}
sorry_server 127.0.0.1 3306
}
virtual_server 10.6.10.240 3306 {
delay_loop 6
# lb_algo is actually not important, as we have only one real_server
lb_algo wlc
lb_kind NAT
nat_mask 255.255.255.0
protocol TCP
real_server 127.0.0.1 3306 {
TCP_CHECK {
connect_port 3306
connect_timeout 30
} #TCP_CHECK
}
sorry_server 10.250.250.20 3306
}
As MySQL requires some specific configuration, I will briefly post the
relevant parts, but not go into detail here, because it is actually OT
for this list. Read the MySQL-Documentation for further detail, if you
do not understand the configuration parts below:
http://dev.mysql.com/doc/refman/5.0/en/replication.html
-------------------------------
- MySQL configuration on SRV1 -
-------------------------------
log-bin=mysql-bin
log-slave-updates
server-id = 5000
auto_increment_increment=2
auto_increment_offset=1
master-host = 10.250.250.21
master-user = replication
master-password = replication
master-port = 3306
-------------------------------
- MySQL configuration on SRV1 -
-------------------------------
log-bin=mysql-bin
log-slave-updates
server-id = 5001
auto_increment_increment=2
auto_increment_offset=2
master-host = 10.250.250.20
master-user = replication
master-password = replication
master-port = 3306
########
# Note #
########
On failover, there is no connection-sync, so every client has to
re-connect. Connection-sync is imho not possible in this setup, as
real-servers are different on SRV1 and SRV2.
Comment if you like, feel free to ask questions if something is not clear.
Feel free to add it to the HOWTO, if you think this might be of help for
someone. Please use "klein.dominik@xxxxxx" as author-mail-address for
that, as you never know how long one works for one company :)
Best regards,
Dominik
|
