Nginx对(apache+foreman+puppet)负载均衡

Nginx对(apache+foreman+puppet)负载均衡

一、前提准备

试验环境:

OS:Centos 6.5_x86

puppet-server-3.8.3

foreman-1.9.2

foreman-proxy-1.9.2

httpd-2.2.15

服务器已经搭建好了apache+foreman+puppet详情请参考:

http://4709096.blog.51cto.com/4699096/1710697

二、修改pupeptmaster相关配置

2.1修改puppetmaster端口

#vim /etc/sysconfig/puppetmaster

PUPPETMASTER_PORTS=( 18140 18141 )

2.2修改puppetmaster目录访问权限

#vim /etc/puppt/auth.conf

path /

auth any

allow *

不修改这里，nginx请求会出现403错误

2.3修改puppetmaster的httpd端口

#vim /etc/httpd/conf/ports.conf

Listen 18140

NameVirtualHost *:18140

新增:18141监听

Listen 18141

NameVirtualHost *:18141

#vim /etc/httpd/conf.d/25-puppet.conf

新增18141的虚拟主机

#cp /etc/httpd/conf.d/25-puppet.conf /etc/httpd/conf.d/26-puppet.conf

修改26-puppet.conf中

三、Nginx安装及配置

3.1安装Nginx

#tar -zxvf nginx-1.4.7.tar.gz

#cd nginx-1.4.7

./configure --prefix=/usr/local/nginx --with-http_stub_status_module --with-http_ssl_module

make && make install

3.2修改nginx.conf配置

#vim /usr/local/nginx/conf/nginx.conf

在httpd{}内加入如下内容:

upstream puppetmaster {

server 127.0.0.1:18140;

server 127.0.0.1:18141;

}

server {

listen 8140 ssl;

server_name puppet.test.com;

root /etc/puppet;

ssl on;

ssl_session_timeout 5m;

#如下为puppetmaster服务器端证书地址

ssl_certificate /var/lib/puppet/ssl/certs/puppet.test.com.pem;

ssl_certificate_key /var/lib/puppet/ssl/private_keys/puppet.test.com.pem;

ssl_client_certificate /var/lib/puppet/ssl/ca/ca_crt.pem;

ssl_crl /var/lib/puppet/ssl/ca/ca_crl.pem;

ssl_verify_client optional;

ssl_protocols SSLv2 SSLv3 TLSv1;

ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;

#File sections

location /production/file_content/files/ {

types { }

default_type application/x-raw;

#定义puppet推送路径别名

alias /etc/puppet/files/;

}

# Modules files sections

location ~ /production/file_content/modules/.+/ {

root /etc/puppet/modules;

types { }

default_type application/x-raw;

rewrite ^/production/file_content/modules/(.+)/(.+)$ /$1/files/$2 break;

}

location / {

##设置跳转到puppetmaster负载均衡

proxy_pass https://puppetmaster;

proxy_redirect off;

proxy_set_header Host $host;

proxy_set_header X-Real-IP $remote_addr;

proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

proxy_set_header X-Client-Verify $ssl_client_verify;

proxy_set_header X-SSL-Subject $ssl_client_s_dn;

proxy_set_header X-SSL-Issuer $ssl_client_i_dn;

proxy_buffer_size 10m;

proxy_buffers 1024 10m;

proxy_busy_buffers_size 10m;

proxy_temp_file_write_size 10m;

proxy_read_timeout 120;

}

四、启动相关服务

4.1启动nginx

#/usr/local/nginx/sbin/nginx

4.2启动Apache

#service httpd start

4.3启动foreman-proxy

#service foreman-porxy start

4.4启动puppetmaster(不启动也可以)

#puppet master start

五、开启客户端进行验证即可

#puppet agent --server=puppet.test.com --test

鸣谢:本人参考了多篇文章后总结而得,在此感谢各位网络分享者!

时间： 2024-10-11 18:27:25

Nginx对(apache+foreman+puppet)负载均衡的相关文章

双节点(nginx+keepalived)为两台apache服务器提供负载均衡

说明:本实验为双节点nginx为两台apache服务器提供负载均衡,本文不是做lvs,所以realserver不是配置在keepalived.conf而是在nginx的配置文件中upstream.此架构需考虑的问题:1)Master没挂,则Master占有vip且nginx运行在Master上2)Master挂了,则backup抢占vip且在backup上运行nginx服务3)如果master服务器上的nginx服务挂了,则vip资源转移到backup服务器上4)检测后端服务器的健康状态Mast

单节点nginx为两台apache服务器提供负载均衡

需求:本实验为单节点nginx为两台apache服务器提供负载均衡,所有配置为最简单 1.初始化3台测试server,该关的关了 [[email protected] ~]# vim /etc/hosts 192.168.1.101 ng-master 192.168.1.161 web1 192.168.1.162 web2 [[email protected] ~]# yum clean all [[email protected] ~]# systemctl stop firewalld.

puppet负载均衡之nginx+passenger

由于3.x系列已不再支持mongrel,所以就采用nginx+passenger来做负载均衡:之前有发过nginx+mongrel,puppet version是2.7系列的,所以还是可以用的: 环境说明: 操作系统:centos 5.8 64位 puppet版本:3.1系列 1,升级ruby至1.8.7,安装rubygems # rpm -Uvh http://rbel.frameos.org/rbel5 # yum install -y ruby rubygems ruby-devel.x8

单节点nginx为两台apache服务器提供负载均衡（转载）

单节点nginx为两台apache服务器提供负载均衡需求:本实验为单节点nginx为两台apache服务器提供负载均衡,所有配置为最简单 1.初始化3台测试server,该关的关了 1 2 3 4 5 6 7 8 9 [[email protected] ~]# vim /etc/hosts 192.168.1.101 ng-master 192.168.1.161 web1 192.168.1.162 web2 [[email protected] ~]# yum clean a

nginx反向代理及tomcat负载均衡

tomcat服务器及负载均衡 1:tomcat主要用于web网页应用,它的静态处理能力低于nginx服务器, 但是可以当做容器主要用于JAVA程序编写的页面.jsp.用于测试. 2:可以实现负载均衡,反向代理,tomcat和其他的服务相比较,性价比高另外tomcat是有apache基金会维护和支持 3:根据案例搭建tomcat服务器,以及实现负载均衡一..实施准备 1.启动后关闭iptables防火墙 #service iptables stop 2.安装jdk.配置java环境 (1

Nginx+Keepalived 实现反代负载均衡高可用(HA)配置

Nginx+Keepalived实现反代负载均衡高可用(HA)配置 Nginx+Keepalived实现反代负载均衡高可用配置 OS IP 子网掩码路由网关 Centos6.6 nginx Keepalived Eth0:192.168.26.210 255.255.252.0 192.168.25.3 VIP:192.168.27.210 Centos6.6 Nginx Keepalived Eth0:192.168.26.211 255.255.252.0 192.168.25.3 VIP

keepalived+nginx实现高可用and负载均衡集群

keepalived+nginx实现高可用and负载均衡集群前言因生产环境需要,现需要搭建一个前端为nginx的HA双向互备.后端为nginx代理的loadbalance负载均衡集群.nginx进程基于于Master+Slave(worker)多进程模型,自身具有非常稳定的子进程管理功能.在Master进程分配模式下,Master进程永远不进行业务处理,只是进行任务分发,从而达到Master进程的存活高可靠性,Slave(worker)进程所有的业务信号都由主进程发出,Slave(work

keepalived+nginx搭建高可用and负载均衡集群

keepalived+nginx搭建高可用and负载均衡集群前言因生产环境需要,现需要搭建一个前端为nginx的HA双向互备.后端为nginx代理的loadbalance负载均衡集群.nginx进程基于于Master+Slave(worker)多进程模型,自身具有非常稳定的子进程管理功能.在Master进程分配模式下,Master进程永远不进行业务处理,只是进行任务分发,从而达到Master进程的存活高可靠性,Slave(worker)进程所有的业务信号都由主进程发出,Slave(worke

Nginx的反相代理，负载均衡

转自 http://freeloda.blog.51cto.com/2033581/1288553 大纲一.前言二.环境准备三.安装与配置Nginx 四.Nginx之反向代理五.Nginx之负载均衡六.Nginx之页面缓存七.Nginx之URL重写八.Nginx之读写分离注,操作系统为 CentOS 6.4 x86_64 , Nginx 是版本是最新版的1.4.2,所以实验用到的软件请点击这里下载:http://yunpan.cn/QXIgqMmVmuZrm 一.前言在前面的几