Linux Cache

unset key protection enable
set clock dst-off
set clock ntp
set clock timezone 8
set clock dst recurring start-weekday 2 0 3 02:00 end-weekday 1 0 11 02:00
set vrouter trust-vr sharable
set vrouter “untrust-vr”
exit
set vrouter “trust-vr”
unset auto-route-export
exit
set service “OPENVPN” protocol udp src-port 0-65535 dst-port 1194-1194
set service “HTTP2” protocol tcp src-port 0-65535 dst-port 8080-8080
set alg appleichat enable
unset alg appleichat re-assembly enable
set alg sctp enable
set auth-server “Local” id 0
set auth-server “Local” server-name “Local”
set auth default auth server “Local”
set auth radius accounting port 1646
set admin name “netscreen”
set admin password “nOUoImr0FJQCcDTNysHDssAtkpJPon”
set admin http redirect
set admin auth web timeout 10
set admin auth server “Local”
set admin format dos
set zone “Trust” vrouter “trust-vr”
set zone “Untrust” vrouter “trust-vr”
set zone “DMZ” vrouter “trust-vr”
set zone “VLAN” vrouter “trust-vr”
set zone “Untrust-Tun” vrouter “trust-vr”
set zone “Trust” tcp-rst
set zone “Untrust” block
unset zone “Untrust” tcp-rst
set zone “MGT” block
unset zone “V1-Trust” tcp-rst
unset zone “V1-Untrust” tcp-rst
set zone “DMZ” tcp-rst
unset zone “V1-DMZ” tcp-rst
unset zone “VLAN” tcp-rst
set zone “Untrust” screen tear-drop
set zone “Untrust” screen syn-flood
set zone “Untrust” screen ping-death
set zone “Untrust” screen ip-filter-src
set zone “Untrust” screen land
set zone “V1-Untrust” screen tear-drop
set zone “V1-Untrust” screen syn-flood
set zone “V1-Untrust” screen ping-death
set zone “V1-Untrust” screen ip-filter-src
set zone “V1-Untrust” screen land
set interface “ethernet0/0” zone “Trust”
set interface “ethernet0/1” zone “Trust”
set interface “ethernet0/2” zone “Untrust”
set interface “ethernet0/3” zone “Untrust”
set interface “ethernet0/7” zone “Trust”
set interface ethernet0/0 ip 192.168.21.1/24
set interface ethernet0/0 nat
unset interface vlan1 ip
set interface ethernet0/1 ip 192.168.11.1/24
set interface ethernet0/1 nat
set interface ethernet0/2 ip 113.106.92.174/27
set interface ethernet0/2 route
set interface ethernet0/3 ip 106.3.224.174/27
set interface ethernet0/3 route
set interface ethernet0/7 ip 172.16.0.1/24
set interface ethernet0/7 nat
unset interface vlan1 bypass-others-ipsec
unset interface vlan1 bypass-non-ip
set interface ethernet0/0 ip manageable
set interface ethernet0/1 ip manageable
set interface ethernet0/2 ip manageable
set interface ethernet0/3 ip manageable
set interface ethernet0/7 ip manageable
unset interface ethernet0/0 manage ssh
unset interface ethernet0/0 manage telnet
unset interface ethernet0/0 manage snmp
unset interface ethernet0/1 manage ssh
unset interface ethernet0/1 manage telnet
set interface ethernet0/2 manage ping
set interface ethernet0/2 manage ssh
set interface ethernet0/3 manage ping
set interface ethernet0/3 manage ssh
unset interface ethernet0/7 manage telnet
unset interface ethernet0/7 manage snmp
set interface vlan1 manage mtrace
set interface ethernet0/2 vip interface-ip 1194 “OPENVPN” 192.168.11.70 manual
set interface ethernet0/2 vip 113.106.92.180 8080 “HTTP2” 192.168.11.100 manual
set interface ethernet0/3 vip 106.3.224.180 8080 “HTTP2” 192.168.11.100 manual
unset flow no-tcp-seq-check
set flow tcp-syn-check
unset flow tcp-syn-bit-check
set flow reverse-route clear-text prefer
set flow reverse-route tunnel always
set pki authority default scep mode “auto”
set pki x509 default cert-path partial
set dns host dns1 202.96.134.33
set dns host dns2 202.96.128.86
set dns host dns3 0.0.0.0
set address “Trust” “10.8.0.0/24” 10.8.0.0 255.255.255.0
set address “Trust” “192.168.1.0/24” 192.168.1.0 255.255.255.0
set address “Trust” “192.168.1.1/24” 192.168.1.1 255.255.255.0
set address “Trust” “192.168.100.0/24” 192.168.100.0 255.255.255.0
set address “Trust” “192.168.11.0/24” 192.168.11.0 255.255.255.0
set address “Trust” “192.168.21.0/21” 192.168.21.0 255.255.248.0
set address “Untrust” “192.168.1.1/24” 192.168.1.1 255.255.255.0
set address “Untrust” “192.168.11.1/24” 192.168.11.1 255.255.255.0
set address “Untrust” “220.243.139.229/27” 220.243.139.229 255.255.255.224
set crypto-policy
exit
set ike respond-bad-spi 1
set ike ikev2 ike-sa-soft-lifetime 60
unset ike ikeid-enumeration
unset ike dos-protection
unset ipsec access-session enable
set ipsec access-session maximum 5000
set ipsec access-session upper-threshold 0
set ipsec access-session lower-threshold 0
set ipsec access-session dead-p2-sa-timeout 0
unset ipsec access-session log-error
unset ipsec access-session info-exch-connected
unset ipsec access-session use-error-log
set vrouter “untrust-vr”
exit
set vrouter “trust-vr”
exit
set l2tp default dns1 202.96.128.86
set l2tp default dns2 202.96.134.33
set l2tp default ppp-auth chap
set url protocol websense
exit
set policy id 1 from “Trust” to “Untrust” “192.168.21.0/21” “Any” “ANY” permit log
set policy id 1
exit
set policy id 2 from “Trust” to “Untrust” “192.168.11.0/24” “Any” “ANY” permit log
set policy id 2
exit
set policy id 6 from “Untrust” to “Trust” “Any” “VIP(ethernet0/2)” “OPENVPN” permit log
set policy id 6
exit
set policy id 7 from “Untrust” to “Trust” “Any” “VIP(113.106.92.180)” “HTTP2” permit log
set policy id 7 disable
set policy id 7
exit
set policy id 8 from “Untrust” to “Trust” “Any” “VIP(106.3.224.180)” “HTTP2” permit log
set policy id 8 disable
set policy id 8
exit
set nsmgmt bulkcli reboot-timeout 60
set ssh version v2
set ssh enable
set config lock timeout 5
unset license-key auto-update
set telnet client enable
set ntp server “time.nist.gov”
set ntp server src-interface “ethernet0/2”
set snmp community “public” Read-Write Trap-on traffic version any
set snmp host “public” 192.168.11.70 255.255.255.255 trap v2
set snmp contact “GDC A12 RACK”
set snmp name “SSG140”
set snmp port listen 161
set snmp port trap 162
set vrouter “untrust-vr”
exit
set vrouter “trust-vr”
set source-routing enable
unset add-default-route
set route 0.0.0.0/0 interface ethernet0/2 gateway 113.106.92.161
set route 10.8.0.0/24 interface ethernet0/1 gateway 192.168.11.70
set route 0.0.0.0/0 interface ethernet0/3 gateway 106.3.224.161
exit
set vrouter “untrust-vr”
exit
set vrouter “trust-vr”
exit

导出完整数据库
mysqldump -u username -p password dbname > dbname.sql

只导出表结构
mysqldump -d -u username -p password dbname > dbname.sql

只导出数据库中指定表的表结构
mysqldump -d -u username -p password dbname tablename > tablename.sql

导出数据库中指定表的表结构和数据
mysqldump -u username -p password dbname tablename > tablename.sql

只导出指定表中的数据
mysqldum -t -c -u username -p password dbanme tablename > tablename.sql
# mysqldump –help

导出含有BLOB格式的数据库

/usr/bin/mysqldump -uroot -p password -R -q –hex-blob abc > /tmp/abc.sql

-c, –complete-insert
Use complete insert statements.

-t, –no-create-info
Don’t write table creation info.

-d, –no-data No row information.

-p, –password[=name]
Password to use when connecting to server. If password is
not given it’s solicited on the tty.

-u, –user=name User for login if not current user.

查看备份数据库文件大小约11GB
[root@msr11 ~]# ll
total 10857420
-rw——-. 1 root root 1048 Jun 12 07:29 anaconda-ks.cfg
-rw-r–r– 1 root root 11049373430 Jun 16 09:47 linuxcache.140616.sql
-rw-r–r–. 1 root root 8526 Jun 12 07:29 install.log
-rw-r–r–. 1 root root 3384 Jun 12 07:28 install.log.syslog
-r–r–r– 1 root root 68592501 Jun 12 08:10 VMwareTools-8.6.11-1310128.tar.gz
drwxr-xr-x 7 201 201 4096 Sep 5 2013 vmware-tools-distrib
[root@msr11 ~]#

执行导入数据库操作是中断并出现错误提示
[root@msr11 ~]# time mysql -u root -pmysqlpass linuxcache <linuxcache.140616.sql
ERROR 1153 (08S01) at line 1557: Got a packet bigger than ‘max_allowed_packet’ bytes

real 0m18.396s
user 0m2.516s
sys 0m0.176s
[root@msr11 ~]#

编辑my.cnf修改设置为大于当前数据库文件大小并重启数据库服务
[root@msr11 mysql]# vi /etc/my.cnf
max_allowed_packet=12G
[root@msr11 ~]# service mysqld restart
Stopping mysqld: [ OK ]
Starting mysqld: [ OK ]
[root@msr11 ~]#

重新导入数据库文件
[root@msr11 ~]# time mysql -u root -pmysqlpass linuxcache <linuxcache.140616.sql

real 38m7.555s
user 3m33.893s
sys 0m13.377s
[root@msr11 ~]#

处于同步状态的MySQL Slave服务区所产生的错误信息
mysql> show slave status\G;
Slave_IO_Running: No
Slave_SQL_Running: Yes
Last_IO_Error: Got a packet bigger than ‘slave_max_allowed_packet’ bytes

修改配置后数据复制任务不再报错
[root@msr12 mysql]# service mysqld stop
Stopping mysqld: [ OK ]
[root@msr12 mysql]# vi /etc/my.cnf
max_allowed_packet=12G

查看mysqld.log日志

[root@msr02 ~]# less /var/log/mysqld.log
140603 10:39:36 [ERROR] Slave SQL: Error ‘Duplicate entry ‘78419’ for key ‘PRIMARY” on
query. Default database: ‘linuxcache’. Query: ‘insert into ls_signedlist(order_id, signed_time,
amount) values (88556, ‘2014-05-31 23:58:44’, 52),(87405, ‘2014-05-31 23:57:52’, 20),(87625,
‘2014-05-31 23:32:20’, 92),(87110, ‘2014-05-31 23:13:09’, 13),(88140, ‘2014-05-31 23:12:19’,
155),(88015, ‘2014-05-31 23:12:08’, 20),(88422, ‘2014-05-31 23:00:06’, 84),(85980, ‘2014-05
-31 22:48:13’, 9),(85994, ‘2014-05-31 22:48:07’, 19),(85986, ‘2014-05-31 22:48:01’, 22),
(85938, ‘2014-05-31 22:46:19’, 40),(85998, ‘2014-05-31 22:46:18’, 16.5),(85928, ‘2014-05-31
22:46:16’, 34),(85925, ‘2014-05-31 22:46:16’, 105),(85972, ‘2014-05-31 22:46:16’, 37),
(85912, ‘2014-05-31 22:46:15’, 48),(85921, ‘2014-05-31 22:46:15’, 13),(85947, ‘2014-05-31
22:46:14’, 68),(85936, ‘2014-05-31 22:46:12’, 251),(85949, ‘2014-05-31 22:46:11’, 11),
(85905, ‘2014-05-31 22:46:11’, 19),(85940, ‘2014-05-31 22:46:10’, 9),(85976, ‘2014-05-31
22:46:10’, 21),(85881, ‘2014-05-31 22:46:10’, 28),(85887,
140603 10:39:36 [Warning] Slave: Duplicate entry ‘78419’ for key ‘PRIMARY’ Error_code: 1062
140603 10:39:36 [ERROR] Error running query, slave SQL thread aborted. Fix the problem, and
restart the slave SQL thread with “SLAVE START”. We stopped at log ‘mysql-bin.000005’
position 684145438
Last_SQL_Error: Error ‘Duplicate entry ‘78419’ for key ‘PRIMARY” on query. Default
database: ‘linuxcache’. Query: ‘insert into ls_signedlist(order_id, signed_time, amount) values
(88556, ‘2014-05-31 23:58:44’, 52),(87405, ‘2014-05-31 23:57:52’, 20),(87625, ‘2014-05-31
23:32:20’, 92),(87110, ‘2014-05-31 23:13:09’, 13),(88140, ‘2014-05-31 23:12:19’, 155),
(88015, ‘2014-05-31 23:12:08’, 20),(88422, ‘2014-05-31 23:00:06’, 84),(85980, ‘2014-05-31
22:48:13’, 9),(85994, ‘2014-05-31 22:48:07’, 19),(85986, ‘2014-05-31 22:48:01’, 22),(85938,
‘2014-05-31 22:46:19’, 40),(85998, ‘2014-05-31 22:46:18’, 16.5),(85928, ‘2014-05-31
22:46:16’, 34),(85925, ‘2014-05-31 22:46:16’, 105),(85972, ‘2014-05-31 22:46:16’, 37),
(85912, ‘2014-05-31 22:46:15’, 48),(85921, ‘2014-05-31 22:46:15’, 13),(85947, ‘2014-05-31
22:46:14’, 68),(85936, ‘2014-05-31 22:46:12’, 251),(85949, ‘2014-05-31 22:46:11’, 11),
(85905, ‘2014-05-31 22:46:11’, 19),(85940, ‘2014-05-31 22:46:10’, 9),(85976, ‘2014-05-31
22:46:10’, 21),(85881, ‘2014-05-31 22:46:10’, 28),(85887, ‘2014-05-31
在Slave主机删除原有数据库并重新启用复制
mysql> show slave status\G;

Slave_IO_Running: Yes
Slave_SQL_Running: No

mysql> drop database linuxcache;
Query OK, 145 rows affected (0.62 sec)

mysql> stop slave;
Query OK, 0 rows affected, 1 warning (0.00 sec)

mysql> change master to
master_host=’192.168.197.85′,master_user=’msrslave’,master_password=’slavepasswd’;
Query OK, 0 rows affected (0.18 sec)

mysql> start slave;
Query OK, 0 rows affected (0.01 sec)

mysql>

 

查看复制运行状态

mysql> show master status;
+——————+———–+————–+——————+
| File | Position | Binlog_Do_DB | Binlog_Ignore_DB |
+——————+———–+————–+——————+
| mysql-bin.000005 | 712371369 | | mysql |
+——————+———–+————–+——————+
1 row in set (0.00 sec)

mysql>

mysql> show slave status\G;

Slave_IO_Running: Yes
Slave_SQL_Running: Yes

Master_Log_File: mysql-bin.000005
Read_Master_Log_Pos: 712371369
[root@msr02 ~]# less /var/log/mysqld.log
140604 10:54:49 [Note] Slave I/O thread killed while reading event
140604 10:54:49 [Note] Slave I/O thread exiting, read up to log ‘mysql-bin.000005’, position
712820015
140604 10:54:53 [Note] Slave SQL thread initialized, starting replication in log ‘mysql-
bin.000002’ at position 454737874, relay log ‘./mysqld-relay-bin.000005’ position: 454738019
140604 10:54:53 [Note] Slave I/O thread: connected to master
‘msrslave@192.168.197.85:3306’,replication started in log ‘mysql-bin.000005’ at position
712820015

 

安装
[root@msr01 ~]# yum install mysql-server
Installed:
mysql-server.x86_64 0:5.1.73-3.el6_5

Dependency Installed:
mysql.x86_64 0:5.1.73-3.el6_5
perl-DBD-MySQL.x86_64 0:4.013-3.el6
perl-DBI.x86_64 0:1.609-4.el6

启动并修改密码
[root@msr01 ~]# service mysqld start

Please report any problems with the /usr/bin/mysqlbug script!

[ OK ]
Starting mysqld: [ OK ]
[root@msr01 ~]# /usr/bin/mysqladmin -u root password ‘mysqlpass’
[root@msr01 ~]#
查看默认的my.cnf配置
[root@msr01 ~]# cat /etc/my.cnf
[mysqld]
datadir=/var/lib/mysql
socket=/var/lib/mysql/mysql.sock
user=mysql
# Disabling symbolic-links is recommended to prevent assorted security risks
symbolic-links=0

[mysqld_safe]
log-error=/var/log/mysqld.log
pid-file=/var/run/mysqld/mysqld.pid
[root@msr01 ~]#

修改主服务器my.cnf配置
[root@msr01 ~]# vi /etc/my.cnf
[mysqld]
datadir=/var/lib/mysql
socket=/var/lib/mysql/mysql.sock
user=mysql
# Disabling symbolic-links is recommended to prevent assorted security risks
symbolic-links=0

server-id=1
log-bin=mysql-bin
binlog-ignore-db=mysql

[mysqld_safe]
log-error=/var/log/mysqld.log
pid-file=/var/run/mysqld/mysqld.pid
在主数据库中增加复制用户并授权
mysql> grant replication slave on *.* to ‘msrslave’@’192.168.197.86’ identified by ‘slavepasswd’;
Query OK, 0 rows affected (0.00 sec)

mysql>
mysql> show master status;
+——————+———-+————–+——————+
| File | Position | Binlog_Do_DB | Binlog_Ignore_DB |
+——————+———-+————–+——————+
| mysql-bin.000001 | 106 | | mysql |
+——————+———-+————–+——————+
1 row in set (0.00 sec)

mysql> exit

修改从服务器my.cnf配置文件
[mysqld]
datadir=/var/lib/mysql
socket=/var/lib/mysql/mysql.sock
user=mysql
# Disabling symbolic-links is recommended to prevent assorted security risks
symbolic-links=0

server-id=2
log-bin=mysql-bin
replicate-ignore-db=mysql

[mysqld_safe]
log-error=/var/log/mysqld.log
pid-file=/var/run/mysqld/mysqld.pid
停止slave线程并配置连接master
mysql> stop slave;
Query OK, 0 rows affected, 1 warning (0.00 sec)

mysql> change master to master_host=’192.168.197.85′,master_user=’msrslave’,master_password=’slavepasswd’;
Query OK, 0 rows affected (0.16 sec)

mysql>

在主服务器上开启3306端口
[root@msr01 ~]# iptables -I INPUT -p tcp –dport 3306 -j ACCEPT
[root@msr01 ~]# service iptables save
iptables: Saving firewall rules to /etc/sysconfig/iptables:[ OK ]
[root@msr01 ~]#

重新启动slave服务器
mysql> start slave;
Query OK, 0 rows affected (0.00 sec)

查看slave运行状态
mysql> show slave status\G;
*************************** 1. row ***************************
Slave_IO_State: Connecting to master
Master_Host: 192.168.197.85
Master_User: msrslave
Master_Port: 3306
Connect_Retry: 60
Master_Log_File:
Read_Master_Log_Pos: 4
Relay_Log_File: mysqld-relay-bin.000001
Relay_Log_Pos: 4
Relay_Master_Log_File:
Slave_IO_Running: No
Slave_SQL_Running: Yes
Replicate_Do_DB:
Replicate_Ignore_DB: mysql
Replicate_Do_Table:
Replicate_Ignore_Table:
Replicate_Wild_Do_Table:
Replicate_Wild_Ignore_Table:
Last_Errno: 0
Last_Error:
Skip_Counter: 0
Exec_Master_Log_Pos: 0
Relay_Log_Space: 106
Until_Condition: None
Until_Log_File:
Until_Log_Pos: 0
Master_SSL_Allowed: No
Master_SSL_CA_File:
Master_SSL_CA_Path:
Master_SSL_Cert:
Master_SSL_Cipher:
Master_SSL_Key:
Seconds_Behind_Master: NULL
Master_SSL_Verify_Server_Cert: No
Last_IO_Errno: 2013
Last_IO_Error: error connecting to master ‘msrslave@192.168.197.85:3306′ – retry-time: 60 retries: 86400
Last_SQL_Errno: 0
Last_SQL_Error:
1 row in set (0.00 sec)

ERROR:
No query specified

mysql>
在主服务器上建立新数据库并导入数据
mysql> create database linuxcache;
Query OK, 1 row affected (0.00 sec)

mysql> grant all on linuxcache.* to linuxcache;
Query OK, 0 rows affected (0.02 sec)

mysql> grant all on linuxcache.* to linuxcache@’%’;
Query OK, 0 rows affected (0.01 sec)

mysql> set password for linuxcache@’%’=password(‘lcpasswd’);
Query OK, 0 rows affected (0.00 sec)

mysql> flush privileges;
Query OK, 0 rows affected (0.01 sec)
[root@msr01 ~]# mysql -u root -pmysqlpass linuxcache < linuxcache.05_06_14.sql

在从服务器上查看复制生成的数据库
[root@msr02 ~]# mysql -u root -p
Enter password:
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 13
Server version: 5.1.73-log Source distribution

Copyright (c) 2000, 2013, Oracle and/or its affiliates. All rights reserved.

Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.

Type ‘help;’ or ‘\h’ for help. Type ‘\c’ to clear the current input statement.

mysql> show databases;
+——————–+
| Database |
+——————–+
| information_schema |
| mysql |
| linucache |
| test |
+——————–+
4 rows in set (0.00 sec)

mysql>