轉(zhuǎn)載：http://blog.51cto.com/10963213/2096100

準(zhǔn)備工作

三臺機(jī)器上都執(zhí)行執(zhí)行

systemctl stop firewalld; systemctl disable firewalld

安裝iptables-services

systemctl enable iptables; systemctl start iptables; iptables -F; service iptables save?

setenforce 0

分發(fā)器的設(shè)置

配置內(nèi)網(wǎng)ip 192.168.130.116

[root@lynn-04 ~]# vim /etc/sysconfig/network-scripts/ifcfg-ens33TYPE=EthernetPROXY_METHOD=noneBROWSER_ONLY=noBOOTPROTO=staticDEFROUTE=yesIPV4_FAILURE_FATAL=noIPV6INIT=yesIPV6_AUTOCONF=yesIPV6_DEFROUTE=yesIPV6_FAILURE_FATAL=noIPV6_ADDR_GEN_MODE=stable-privacyNAME=ens33DEVICE=ens33ONBOOT=yesIPADDR=192.168.130.116NETMASK=255.255.255.0GATEWAY=192.168.130.2DNS1=119.29.29.29

配置外網(wǎng)ip 192.168.214.116 （vmware僅主機(jī)模式）

[root@lynn-04 ~]# vim /etc/sysconfig/network-scripts/ifcfg-ens37TYPE=EthernetPROXY_METHOD=noneBROWSER_ONLY=noBOOTPROTO=staticDEFROUTE=yesIPV4_FAILURE_FATAL=noIPV6INIT=yesIPV6_AUTOCONF=yesIPV6_DEFROUTE=yesIPV6_FAILURE_FATAL=noIPV6_ADDR_GEN_MODE=stable-privacyNAME=ens37DEVICE=ens37ONBOOT=noIPADDR=192.168.214.116

安裝ipvsadm

[root@lynn-04~]# yum install -y ipvsadm

編寫腳本/usr/local/sbin/lvs_nat.sh

[root@lynn-04 ~]# vim /usr/local/sbin/lvs_nat.sh#! /bin/bash# director 服務(wù)器上開啟路由轉(zhuǎn)發(fā)功能echo1 > /proc/sys/net/ipv4/ip_forward# 關(guān)閉icmp的重定向echo0 > /proc/sys/net/ipv4/conf/all/send_redirectsecho0 > /proc/sys/net/ipv4/conf/default/send_redirects# 注意區(qū)分網(wǎng)卡名字随静，我的兩個(gè)網(wǎng)卡分別為ens33和ens37echo0 > /proc/sys/net/ipv4/conf/ens33/send_redirectsecho0 > /proc/sys/net/ipv4/conf/ens37/send_redirects# director 設(shè)置nat防火墻iptables -t nat -Fiptables -t nat -Xiptables -t nat -A POSTROUTING-s192.168.130.0/24? -j MASQUERADE# director設(shè)置ipvsadmIPVSADM='/usr/sbin/ipvsadm'$IPVSADM-C$IPVSADM-A -t 192.168.214.116:80-swlc$IPVSADM-a-t 192.168.214.116:80 -r 192.168.130.118:80 -m -w 1$IPVSADM-a-t 192.168.214.116:80 -r 192.168.130.128:80 -m -w 1

加載腳本/usr/local/sbin/lvs_nat.sh

[root@lynn-04~]# sh /usr/local/sbin/lvs_nat.sh

rs1的設(shè)置

配置內(nèi)網(wǎng)ip 192.168.130.118

配置網(wǎng)關(guān) 192.168.130.116 （這里的網(wǎng)關(guān)為分發(fā)器的內(nèi)網(wǎng)ip）

[root@lynn-05 ~]# vim /etc/sysconfig/network-scripts/ifcfg-ens33TYPE=EthernetPROXY_METHOD=noneBROWSER_ONLY=noBOOTPROTO=staticDEFROUTE=yesIPV4_FAILURE_FATAL=noIPV6INIT=yesIPV6_AUTOCONF=yesIPV6_DEFROUTE=yesIPV6_FAILURE_FATAL=noIPV6_ADDR_GEN_MODE=stable-privacyNAME=ens33DEVICE=ens33ONBOOT=yesIPADDR=192.168.130.118NETMASK=255.255.255.0GATEWAY=192.168.130.116DNS1=119.29.29.29

安裝nginx 需要在能外網(wǎng)通信的時(shí)候安裝

[root@lynn-05~]# yum install -y nginx

啟動(dòng)nginx

[root@lynn-05~]# systemctl start nginx[root@lynn-05~]# ps aux |grep nginxroot21310.00.21229082244?? ? ? ? Ss16:030:00nginx: master process /usr/sbin/nginxnginx21320.00.31232923596?? ? ? ? S16:030:00nginx: worker processnginx21330.00.31232923596?? ? ? ? S16:030:00nginx: worker processnginx21340.00.31232923592?? ? ? ? S16:030:00nginx: worker processnginx21350.00.31232923600?? ? ? ? S16:030:00nginx: worker processroot21420.00.0112676984pts/0S+16:090:00grep--color=auto nginx

給nginx默認(rèn)主頁設(shè)置一個(gè)標(biāo)志方便測試

[root@lynn-05~]# echo 'lynn-05' > /usr/share/nginx/html/index.html[root@lynn-05~]# cat /usr/share/nginx/html/index.htmllynn-05

rs2的設(shè)置

配置內(nèi)網(wǎng)ip 192.168.130.128

配置網(wǎng)關(guān) 192.168.130.116 （這里的網(wǎng)關(guān)為分發(fā)器的內(nèi)網(wǎng)ip）

[root@lynn-06 ~]# vim /etc/sysconfig/network-scripts/ifcfg-ens33TYPE=EthernetPROXY_METHOD=noneBROWSER_ONLY=noBOOTPROTO=staticDEFROUTE=yesIPV4_FAILURE_FATAL=noIPV6INIT=yesIPV6_AUTOCONF=yesIPV6_DEFROUTE=yesIPV6_FAILURE_FATAL=noIPV6_ADDR_GEN_MODE=stable-privacyNAME=ens33UUID=fef8a686-6a1e-49bc-b03e-7797fc4c58bbDEVICE=ens33ONBOOT=yesIPADDR=192.168.130.128NETMASK=255.255.255.0GATEWAY=192.168.130.116DNS1=119.29.29.29

安裝nginx 需要在能外網(wǎng)通信的時(shí)候安裝

[root@lynn-06~]# yum install -y nginx

啟動(dòng)nginx

[root@lynn-06~]# systemctl start nginx[root@lynn-06~]# ps aux |grep nginxroot36150.00.21229082244?? ? ? ? Ss11:030:00nginx: master process /usr/sbin/nginxnginx36160.00.31232923348?? ? ? ? S11:030:00nginx: worker processnginx36170.00.31232923600?? ? ? ? S11:030:00nginx: worker processnginx36180.00.31232923600?? ? ? ? S11:030:00nginx: worker processnginx36190.00.31232923600?? ? ? ? S11:030:00nginx: worker processroot534550.00.0112676984pts/0S+16:100:00grep--color=auto nginx

給nginx默認(rèn)主頁設(shè)置一個(gè)標(biāo)志方便測試

[root@lynn-06~]# echo 'lynn-06' > /usr/share/nginx/html/index.html[root@lynn-06~]# cat /usr/share/nginx/html/index.htmllynn-06

測試

通過外網(wǎng)ip訪問

[root@lynn-04 ~]#curl192.168.214.116lynn-05[root@lynn-04 ~]#curl192.168.214.116lynn-06[root@lynn-04 ~]#curl192.168.214.116lynn-05[root@lynn-04 ~]#curl192.168.214.116lynn-06[root@lynn-04 ~]#curl192.168.214.116lynn-05[root@lynn-04 ~]#curl192.168.214.116lynn-06