keepalived版本:keepalived-1.4.3
操作系统:centos 7.2
keepalived在线安装非常简单: 一条命令就可以搞定了
yum install keepalived -y
keepalived离线安装需要很多依赖,第一次离线安装踩了无数坑,整理出了以下安装步骤。
1、安装openssl-devel
# rpm -ivh libcom_err-1.42.9-7.el7.x86_64.rpm
# rpm -ivh libselinux-2.2.2-6.el7.x86_64.rpm
# rpm -ivh keyutils-libs-1.5.8-3.el7.x86_64.rpm
# rpm -ivh krb5-libs-1.13.2-10.el7.x86_64.rpm
# rpm -ivh libss-1.42.9-7.el7.x86_64.rpm
# rpm -ivh openssl-1.0.1e-42.el7.9.x86_64.rpm
# rpm -ivh keyutils-libs-devel-1.5.8-3.el7.x86_64.rpm
# rpm -ivh e2fsprogs-libs-1.42.9-7.el7.x86_64.rpm
# rpm -ivh libcom_err-devel-1.42.9-7.el7.x86_64.rpm
# rpm -ivh libsepol-devel-2.1.9-3.el7.x86_64.rpm
# rpm -ivh pcre-devel-8.32-15.el7.x86_64.rpm
# rpm -ivh libselinux-devel-2.2.2-6.el7.x86_64.rpm
# rpm -ivh libverto-devel-0.2.5-4.el7.x86_64.rpm
# rpm -ivh krb5-devel-1.13.2-10.el7.x86_64.rpm
# rpm -ivh zlib-devel-1.2.7-15.el7.x86_64.rpm
# rpm -ivh openssl-devel-1.0.1e-42.el7.9.x86_64.rpm
# rpm -ivh e2fsprogs-1.42.9-7.el7.x86_64.rpm
# rpm -ivh krb5-workstation-1.13.2-10.el7.x86_64.rpm
# rpm -ivh keyutils-1.5.8-3.el7.x86_64.rpm
# rpm -ivh libnl-1.1.4-3.el7.x86_64.rpm
# rpm -ivh libnl-devel-1.1.4-3.el7.x86_64.rpm
# rpm -ivh libnfnetlink-devel-1.0.1-4.el7.x86_64.rpm
# rpm -ivh libnfnetlink-1.0.1-4.el7.x86_64.rpm
# rpm -ivh libselinux-python-2.2.2-6.el7.x86_64.rpm
# rpm -ivh libselinux-utils-2.2.2-6.el7.x86_64.rpm
找出这些依赖包,强制安装
rpm -i --force --nodeps *.rpm
2、安装openssl
# cd openssl-1.0.0c/
# ./config --prefix=/usr/local --openssldir=/usr/local/ssl
# make && make install
# ./config shared --prefix=/usr/local --openssldir=/usr/local/ssl
# make clean
# make && make install
prefix 是安装目录,openssldir 是配置文件目录,另外建议安装两次,shared 作用是生成动态连接库。
3、安装keepalived
# tar zxvf keepalived-1.4.3.tar.gz
# mv keepalived-1.4.3 /opt/toolbox/
# cd /opt/toolbox/keepalived-1.4.3/
# ./configure --prefix=/usr/local/keepalived
# make
# make install
# mkdir /etc/keepalived
# cp /usr/local/keepalived/etc/keepalived/keepalived.conf /etc/keepalived/
firewalld防火墙开启vrrp协议,注意修改下面命令中的设备网卡名
# firewall-cmd --direct --permanent --add-rule ipv4 filter INPUT 0 --in-interface eno16777736 --destination 224.0.0.18 --protocol vrrp -j ACCEPT
# firewall-cmd --reload
如果两个keepalived在不同的网段,可能需要开通112端口
启动keepalived
# cd /usr/local/keepalived/sbin
# ./keepalived
安装过程中error while loading shared libraries: libssl.so.1.1: cannot open shared object file: No such file or directory异常处理
默认libssl.so.1.1(openssl组件)会安装在/usr/local/lib64下面;需要通过软连接放置到/usr/lib64下面:
ln -s /usr/local/lib64/libssl.so.1.1 /usr/lib64/libssl.so.1.1
ln -s /usr/local/lib64/libcrypto.so.1.1 /usr/lib64/libcrypto.so.1.1
ln是软链接,软链接代表寓意和windows的快捷方式很类似,软链接并不和数据块相连,只是一个符号,和真实的数据库的一个名称相连;与之相对应的是硬链接,直接和数据块(node)相连,相当于一个数据块的别名。
网友评论