要求:两台Web服务器实现数据同步
服务器一:172.16.11.126
服务器二:172.16.11.127
一、配置ssh备份源(这里推荐使用专用的普通用户,注意相应的权限问题,如遇特殊情况使用root用户也可以,即不用考虑权限问题了。 )
1、新建备份用户rget rput 分别用来上传下载
useradd rget
useradd rput
passwd rget
passwd rput
确认sshd服务正常启动,且允许用户rget rput访问
vim /etc/ssh/sshd_config
..........
UserDNS no
AllowUsers rget rput
service sshd restart
chown -R rput:rput/var/www/html
setfacl -R -m user:daemon:rwx /var/www/html /upload
getgacl /var/www/html/upload
setfacl -m default:user:daemon:rwx /var/www/html/upload/
getfacl /var/www/html/upload | grep default
二、配置rsync源服务器。
yum install rsync
/etc/init.d/httpd restart
cd /var/www/html/
/etc/init.d/sshd restart
[root@localhost html]# vim /etc/rsyncd.conf
uid = nobody
gid = nobody
use chroot = yes //禁锢在源目录
address = 172.16.11.126 //监听地址
port 873 //监听端口
log file = /var/log/rsyncd.log //日志文件位置
pid file = /var/run/rsyncd.pid //存放进程ID的文件位置
hosts allow = 172.16.11.0/24 //允许访问的客户机地址
[wwwroot] //共享模块名称
path = /var/www/html //源目录的世纪路径
comment = Document Root of www1.dong.com
read only = yes //只读
dont compress = *.gz *.bz2 *.tgz *.zip *.rar *.z //同步时不再压缩的文件类型
auth users = backuper //授权账户
secrets file = /etc/rsyncd_users.db //存放账户信息的数据文件
[root@localhost html]# vim /etc/rsyncd_users.db
backuper:pwd123
chmod 600 /etc/rsyncd_users.db
rsync –daemon //启动rsync服务
netstat -anpt | grep rsync
tcp 0 0 192.168.1.1:873 0.0.0.0:* LISTEN 5458/rsync
# 如需关闭rsync服务时
# kill $(cat /var/run/rsyncd.pid)
vim /etc/xinetd.d/rsync
# default: off
# description: The rsync server is a good addition to an ftp server, a
s it \
# allows crc checksumming etc.
service rsync
{
disable = no //将原有的yes改为no
socket_type = stream
wait = no
user = root
server = /usr/bin/rsync
server_args = --daemon //确认有—daemon服务选项
log_on_failure += USERID
}
yum -y install xinetd
/etc/init.d/xinetd start