{"id":7762,"date":"2018-10-08T13:16:06","date_gmt":"2018-10-08T05:16:06","guid":{"rendered":"http:\/\/rmohan.com\/?p=7762"},"modified":"2018-10-08T13:16:06","modified_gmt":"2018-10-08T05:16:06","slug":"centos-7-deploys-rsync-backup-server","status":"publish","type":"post","link":"https:\/\/mohan.sg\/?p=7762","title":{"rendered":"CentOS 7 deploys rsync backup server"},"content":{"rendered":"

1.1 rsync (official address http:\/\/wwww.samba.org\/ftp\/rsync\/rsync.html)<\/p>\n

A remote data synchronization tool that quickly synchronizes files between multiple hosts over a LAN\/WAN. Rsync uses the so-called “rsync algorithm” to synchronize files between two local and remote hosts. This algorithm only transfers different parts of two files, rather than transmitting them all at once, so the speed is quite fast.<\/p>\n

1.2rsync backup mode<\/p>\n

1) Local data backup method<\/p>\n

Rsync parameter The data to be backed up where the backup data is saved<\/p>\n

2) Remote backup mode<\/p>\n

Pull:rsync [OPTION…] [USER@]HOST:SRC… [DEST]
\nWhat is the rsync parameter to pull data from the corresponding host to pull data to save the local path
\nPush:rsync [OPTION…] SRC … [USER@]HOST:DEST
\nrsync where the local data is pushed by the local host data<\/p>\n

3) Daemon process<\/p>\n

Pull:rsync [OPTION…] [USER@]HOST::SRC… [DEST]
\nrsync parameter authenticates the user to pull data from the corresponding host. Pull data to save the local path
\nPush:rsync [OPTION…] SRC … [USER@]HOST::DEST
\nrsync parameter authenticates the location where the user will push the local host data for push data<\/p>\n

2. Environmental preparation<\/p>\n

[root@backup ~]# cat \/etc\/RedHat-release
\nCentOS Linux release 7.2.1511 (Core)
\n[root@backup ~]# uname -r
\n3.10.0-327.el7.x86_64
\n[root@backup ~]# getenforce
\nDisabled
\n[root@backup ~]# systemctl status firewalld.service
\n? firewalld.service – firewalld – dynamic firewall daemon
\nLoaded: loaded (\/usr\/lib\/systemd\/system\/firewalld.service; disabled; vendor preset: enabled)
\nActive: inactive (dead)
\n[root@backup ~]# ifconfig
\neth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
\ninet 10.0.0.41 netmask 255.255.255.0 broadcast 10.0.0.255
\ninet6 fe80::20c:29ff:fe40:1a4e prefixlen 64 scopeid 0x20<link>
\nether 00:0c:29:40:1a:4e txqueuelen 1000 (Ethernet)
\nRX packets 1607 bytes 355312 (346.9 KiB)
\nRX errors 0 dropped 0 overruns 0 frame 0
\nTX packets 358 bytes 47574 (46.4 KiB)
\nTX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
\neth1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
\ninet 172.16.1.41 netmask 255.255.255.0 broadcast 172.16.1.255
\ninet6 fe80::20c:29ff:fe40:1a58 prefixlen 64 scopeid 0x20<link>
\nether 00:0c:29:40:1a:58 txqueuelen 1000 (Ethernet)
\nRX packets 0 bytes 0 (0.0 B)
\nRX errors 0 dropped 0 overruns 0 frame 0
\nTX packets 23 bytes 1698 (1.6 KiB)
\nTX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
\nlo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
\ninet 127.0.0.1 netmask 255.0.0.0
\ninet6 ::1 prefixlen 128 scopeid 0x10<host>
\nloop txqueuelen 0 (Local Loopback)
\nRX packets 0 bytes 0 (0.0 B)
\nRX errors 0 dropped 0 overruns 0 frame 0
\nTX packets 0 bytes 0 (0.0 B)
\nTX errors 0 dropped 0 overruns 0 carrier 0 collisions 03.??rsync???????<\/p>\n

3.1 Check if rsync is installed<\/p>\n

[root@backup ~]# rpm -qa rsync<\/p>\n

rsync-3.0.9-17.el7.x86_64<\/p>\n

3.2 Writing rsync configuration files<\/p>\n

[root@backup ~]# cat \/etc\/rsyncd.conf
\n#rsync_config
\n#created by fengyu 2018-3-16
\nuid = rsync Operator
\ngid = rsync User group
\nuse chroot = no Related security
\nmax connections = 200 Maximum number of connections
\ntimeout = 300 Timeout
\npid file = \/var\/run\/rsyncd.pid The process number file corresponding to the process
\nlock file = \/var\/run\/rsyncd.log lock file
\nlog file = \/var\/log\/rsyncd.log log file
\n[backup] module Name
\npath = \/backup module location
\nignore errors ignore error program
\nread only = false read only
\nlist = false list of
\nhosts allowed = 172.16.1.01\/24 network segment allowed accesses
\ndeny = 0.0.0.0\/32 network forbidden to access segment
\nAuth users = rsync_backup User that does not exist, only used for authentication
\nsecrets file = \/etc\/rsync.password There is no key file when the user authenticates<\/p>\n

3.3 Create an administrative user<\/p>\n

[root@backup ~]# useradd -s \/sbin\/nologin -M rsync<\/p>\n

3.4 Creating an Authentication User Password File<\/p>\n

[root@backup ~]# echo “rsync_backup:123456” > \/etc\/rsync.password
\n[root@backup ~]# chmod 600 \/etc\/rsync.password<\/p>\n

3.5 Create a backup directory<\/p>\n

[root@backup ~]# mkdir \/backup
\n[root@backup ~]# chown -R rsync.rsync \/backup\/<\/p>\n

3.6 start daemon<\/p>\n

[root@backup ~]# rsync –daemon
\n[root@backup ~]# netstat -lntup | grep rsync
\ntcp 0 0 0.0.0.0:873 0.0.0.0:* LISTEN 3286\/rsync
\ntcp6 0 0 :::873 :::* LISTEN 3286\/rsync<\/p>\n

4. Configure the rsync daemon client (here, the NFS storage server is used as an example. In the work, the rsync server and the NFS server are matched with each other)<\/p>\n

4.1 Creating a Password Authentication File<\/p>\n

[root@nfs01 ~]# echo “123456” > \/etc\/rsync.password<\/p>\n

[root@nfs01 ~]# chmod 600 \/etc\/rsync.password<\/p>\n

4.2 Writing real-time monitoring push scripts<\/p>\n

[root@nfs01 backup]# cat \/server\/scripts\/inotify.sh
\n#!bin\/bash
\ninotifywait -mrq –format “%w%f” -e create,close_write,delete,moved_to \/data\/|\\
\nwhile read fy
\ndo
\nrsync -az \/data\/ –delete rsync_backup@172.16.1.41::backup –password-file=\/etc\/rsync.password
\ndone<\/p>\n

4.3 Put the script execution command into the \/etc\/rc.local directory (under the CentOS 7 system, you need to execute the permissions in the \/etc\/rc.local directory)<\/p>\n

[root@nfs01 ~]# echo “\/usr\/bin\/sh \/server\/scripts\/inotify.sh” >> \/etc\/rc.local<\/p>\n","protected":false},"excerpt":{"rendered":"

1.1 rsync (official address http:\/\/wwww.samba.org\/ftp\/rsync\/rsync.html)<\/p>\n

A remote data synchronization tool that quickly synchronizes files between multiple hosts over a LAN\/WAN. Rsync uses the so-called “rsync algorithm” to synchronize files between two local and remote hosts. This algorithm only transfers different parts of two files, rather than transmitting them all at once, so the speed is […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[73],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/7762"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=7762"}],"version-history":[{"count":1,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/7762\/revisions"}],"predecessor-version":[{"id":7763,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/7762\/revisions\/7763"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=7762"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=7762"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=7762"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}