您好,登錄后才能下訂單哦!
puppet可以獨立工作,但當(dāng)在一個成百上千臺服務(wù)器的大規(guī)模集群中部署 Puppet 環(huán)境后,各個 Agent 節(jié)點與 Master 之間的同步、檢查、通訊就會成為瓶頸,會頻繁出現(xiàn)連接超時、讀取失敗等錯誤。究其原因,由于 Puppet Master 默認(rèn)使用的 WEBrick 是一個簡單的單進(jìn)程的 WEB SERVER 服務(wù)(類似原始的 CGI),因而在大訪問量、高并發(fā)的情況下就不適用了。所以,要使用性能更好的 Web Server 來提供 Puppet Rails 應(yīng)用。在實際應(yīng)用中,通常將其與apache或者nginx結(jié)合使用,以解決高并發(fā)的問題。
LoadModule passenger_module /usr/lib64/ruby/gems/1.8/gems/passenger-4.0.17/buildout/apache2/mod_passenger.so PassengerRoot /usr/lib64/ruby/gems/1.8/gems/passenger-4.0.17 PassengerDefaultRuby /usr/bin/ruby PassengerHighPerformance on #PassengerUseGlobalQueue on PassengerMaxPoolSize 3 PassengerMaxRequests 4000 #關(guān)閉空閑超過1800秒的passenger實例 PassengerPoolIdleTime 1800 Include conf/extra/puppetmaster.conf #將puppetmaster.conf配置文件載入 |
# you probably want to tune these settings PassengerHighPerformance on PassengerMaxPoolSize 12 PassengerPoolIdleTime 1500 PassengerMaxRequests 4000 PassengerStatThrottleRate 120 #RackAutoDetect Off #RailsAutoDetect Off Listen 8140 <VirtualHost *:8140> SSLEngine on SSLProtocol -ALL +SSLv3 +TLSv1 SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:-LOW:-SSLv2:-EXP SSLCertificateFile /var/lib/puppet/ssl/certs/puppet-master.cmmobi-wh.com.pem SSLCertificateKeyFile /var/lib/puppet/ssl/private_keys/puppet-master.cmmobi-wh.com.pem SSLCertificateChainFile /var/lib/puppet/ssl/ca/ca_crt.pem SSLCACertificateFile /var/lib/puppet/ssl/ca/ca_crt.pem # If Apache complains about invalid signatures on the CRL, you can try disabling # CRL checking by commenting the next line, but this is not recommended. SSLCARevocationFile /var/lib/puppet/ssl/ca/ca_crl.pem SSLVerifyClient optional SSLVerifyDepth 1 # The `ExportCertData` option is needed for agent certificate expiration warnings SSLOptions +StdEnvVars +ExportCertData # This header needs to be set if using a loadbalancer or proxy RequestHeader unset X-Forwarded-For RequestHeader set X-SSL-Subject %{SSL_CLIENT_S_DN}e RequestHeader set X-Client-DN %{SSL_CLIENT_S_DN}e RequestHeader set X-Client-Verify %{SSL_CLIENT_VERIFY}e DocumentRoot /etc/puppet/rack/public/ RackBaseURI / <Directory /etc/puppet/rack/> Options None AllowOverride None Order allow,deny allow from all </Directory> </VirtualHost> |
linux交流群:22346652。歡迎Linux愛好者加入,一起學(xué)習(xí),一起進(jìn)步。
免責(zé)聲明:本站發(fā)布的內(nèi)容(圖片、視頻和文字)以原創(chuàng)、轉(zhuǎn)載和分享為主,文章觀點不代表本網(wǎng)站立場,如果涉及侵權(quán)請聯(lián)系站長郵箱:is@yisu.com進(jìn)行舉報,并提供相關(guān)證據(jù),一經(jīng)查實,將立刻刪除涉嫌侵權(quán)內(nèi)容。