CentOS构建高性能的LNMP平台(第一版)
[ 文章链接:http://www.g868.com/centos-to-build-high-performance-platform-lnmp-first-edition.html ]
目录大纲:
一、方案规划
二、方案实施
三、方案测试
四、方案补充
附:文章修改历史
一、方案规划
1.介绍:
2.平台环境:
| 分类 | 软件 | 版本 | 本站下载 |
| Web | Nginx | 0.7.61 | http://www.g868.com/upload/lnmp/nginx-0.7.61.tar.gz |
| Pcre | 7.9 | http://www.g868.com/upload/lnmp/pcre-7.9.tar.gz | |
| PHP相关 | PHP | 5.2.10 | http://www.g868.com/upload/lnmp/php-5.2.10.tar.gz |
| Fastcgi补丁 | 0.5.11 | http://www.g868.com/upload/lnmp/php-5.2.10-fpm-0.5.11.diff.gz | |
| libiconv | 1.13 | http://www.g868.com/upload/lnmp/libiconv-1.13.tar.gz | |
| libmcrypt | 2.5.8 | http://www.g868.com/upload/lnmp/libmcrypt-2.5.8.tar.gz | |
| mcrypt | 2.6.8 | http://www.g868.com/upload/lnmp/mcrypt-2.6.8.tar.gz | |
| memcache | 2.2.5 | http://www.g868.com/upload/lnmp/memcache-2.2.5.tgz | |
| mhash | 0.9.9.9 | http://www.g868.com/upload/lnmp/mhash-0.9.9.9.tar.gz | |
| eaccelerator | 0.9.5.3 | http://www.g868.com/upload/lnmp/eaccelerator-0.9.5.3.tar.bz2 | |
| PDO_MYSQL | 1.0.2 | http://www.g868.com/upload/lnmp/PDO_MYSQL-1.0.2.tgz | |
| ImageMagick | 6.5.3-10 | http://www.g868.com/upload/lnmp/ImageMagick-6.5.3-10.tar.gz | |
| imagick | 2.2.2 | http://www.g868.com/upload/lnmp/imagick-2.2.2.tgz | |
| Database | Mysql | 5.1.37 | http://www.g868.com/upload/lnmp/mysql-5.1.37.tar.gz |
二、方案实施
1.系统安装:
| 挂载点 | 系统类型 | 系统大小 | 备注 |
| /boot | ext3 | 100 MB | 主要存放开机引导信息 |
| / | lvm,ext3 | ALL MB | 主要存放应用程序与配置 |
2. 初始化设定:
#关闭IPv6功能
echo "alias net-pf-10 off" >> /etc/modprobe.conf
echo "alias ipv6 off" >> /etc/modprobe.conf
#关闭防火墙功能,仅IPv6防火墙
/sbin/chkconfig --level 35 ip6tables off
#关闭SElinux
sed -i '/SELINUX/s/enforcing/disabled/' /etc/selinux/config
setenforce 0
#安装及设定vim程序
yum install vim-enhanced
sed -i "8 s/^/alias vi='vim'/" /root/.bashrc
echo 'syntax on' > /root/.vimrc
#时钟自动同步
echo "0 */12 * * * /usr/sbin/ntpdate 210.72.145.44 && clock -w" >> /var/spool/cron/root
#修改系统open files数
cat >> /etc/security/limits.conf << EOF
* soft nofile 65535
* hard nofile 65535
EOF
#优化网络参数
cat >> /etc/sysctl.conf << EOF
# Add
net.ipv4.tcp_max_syn_backlog = 65536
net.core.netdev_max_backlog = 32768
net.core.somaxconn = 32768net.core.wmem_default = 8388608
net.core.rmem_default = 8388608
net.core.rmem_max = 16777216
net.core.wmem_max = 16777216net.ipv4.tcp_timestamps = 0
net.ipv4.tcp_synack_retries = 2
net.ipv4.tcp_syn_retries = 2net.ipv4.tcp_tw_recycle = 1
#net.ipv4.tcp_tw_len = 1
net.ipv4.tcp_tw_reuse = 1net.ipv4.tcp_mem = 94500000 915000000 927000000
net.ipv4.tcp_max_orphans = 3276800#net.ipv4.tcp_fin_timeout = 30
#net.ipv4.tcp_keepalive_time = 120
net.ipv4.ip_local_port_range = 1024 65535
EOF
sysctl -p
#安装与更新库文件
LANG=C
yum -y install gcc gcc-c++ autoconf libjpeg libjpeg-devel libpng libpng-devel freetype freetype-devel libmcrypt libmcrypt-devel libxml2 libxml2-devel zlib zlib-devel gd gd-devel glibc glibc-devel glib2 glib2-devel bzip2 bzip2-devel ncurses ncurses-devel curl curl-devel e2fsprogs e2fsprogs-devel krb5 krb5-devel libidn libidn-devel openssl openssl-devel openldap openldap-devel nss_ldap openldap-clients openldap-servers ntpd
3.Mysql:
| 程序名称 | 程序路径 | 数据路径 | 日志路径 | 备注 |
| Mysql | /usr/local/mysql | /opt/db_data | /opt/db_data | - |
Mysql安装与配置:
mkdir /opt/src
cd /opt/src
wget -c http://www.g868.com/upload/lnmp/mysql-5.1.37.tar.gz
tar zxvf mysql-5.1.37.tar.gz
cd mysql-5.1.37
mkdir -p /opt/db_data
useradd mysql -d /opt/db_data -s /sbin/nologin./configure \ "--prefix=/usr/local/mysql" \ "--localstatedir=/opt/db_data" \ "--with-comment=Source" \ "--with-server-suffix=--eric.zhyd@gmail.com" \ "--with-mysqld-user=mysql" \ "--without-debug" \ "--with-big-tables" \ "--with-charset=gbk" \ "--with-collation=gbk_chinese_ci" \ "--with-extra-charsets=all" \ "--with-pthread" \ "--enable-static" \ "--enable-thread-safe-client" \ "--with-client-ldflags=-all-static" \ "--with-mysqld-ldflags=-all-static" \ "--enable-assembler" \ "--without-ndb-debug"make && make install
#初始化mysql
/usr/local/mysql/bin/mysql_install_db --user=mysql
#文件权限分配
cd /usr/local/mysql
chown -R root:mysql .
#制作自启动项
cp share/mysql/mysql.server /etc/rc.d/init.d/mysqld
chmod 755 /etc/rc.d/init.d/mysqld
chkconfig --add mysqld
/etc/rc.d/init.d/mysqld start
#制作快捷方式到应用程序的PATH路径
cd /usr/local/mysql/bin
for i in *; do ln -s /usr/local/mysql/bin/$i /usr/bin/$i; done
#初始化密码
/usr/local/mysql/bin/mysqladmin -u root password 'password'
Mysql配置文件:
cat > /etc/my.cnf << EOF
[client]
port = 3306
socket = /tmp/mysql.sock[mysql]
prompt = "(\u:g868:)[\d]"
no-auto-rehash[mysqld]
user = mysql
port = 3306
socket = /tmp/mysql.sock
basedir = /usr/local/mysql
datadir = /opt/db_data
open_files_limit = 1024
back_log = 20
max_connections = 100
max_connect_errors = 200
table_cache = 60
external-locking = FALSE
max_allowed_packet = 16M
sort_buffer_size = 128K
join_buffer_size = 128K
thread_cache_size = 10
thread_concurrency = 8
query_cache_size = 0M
query_cache_limit = 2M
query_cache_min_res_unit = 2k
default_table_type = MyISAM
thread_stack = 192K
transaction_isolation = READ-UNCOMMITTED
tmp_table_size = 512K
max_heap_table_size = 32M
/opt/db_data/slow.log
/opt/db_data/error.log
long_query_time = 1
log_long_format
server-id = 1
#log-bin = /usr/local/mysql/data/binlog
binlog_cache_size = 2M
max_binlog_cache_size = 4M
max_binlog_size = 512M
expire_logs_days = 7
key_buffer_size = 4M
read_buffer_size = 1M
read_rnd_buffer_size = 2M
bulk_insert_buffer_size = 2M
myisam_sort_buffer_size = 4M
myisam_max_sort_file_size = 10G
myisam_max_extra_sort_file_size = 10G
myisam_repair_threads = 1
myisam_recover[mysqldump]
quick
max_allowed_packet = 16M
EOF
4.PHP (Fastcgi):
| 程序名称 | 程序路径 | 缓存路径 | 日志路径 | 备注 |
| PHP | /usr/local/php | /opt/eaccelerator_cache | - | - |
编译安装PHP 5.2.10所需的支持库:
cd /opt/src
wget -c http://www.g868.com/upload/lnmp/libiconv-1.13.tar.gz
tar zxvf libiconv-1.13.tar.gz
cd libiconv-1.13
./configure --prefix=/usr/local
make
make install
cd /opt/srcwget -c http://www.g868.com/upload/lnmp/libmcrypt-2.5.8.tar.gz
tar zxvf libmcrypt-2.5.8.tar.gz
cd libmcrypt-2.5.8
./configure
make
make install
/sbin/ldconfig
cd libltdl/
./configure --enable-ltdl-install
make
make install
cd /opt/srcwget -c http://www.g868.com/upload/lnmp/mhash-0.9.9.9.tar.gz
tar zxvf mhash-0.9.9.9.tar.gz
cd mhash-0.9.9.9
./configure
make
make install
cd /opt/srcln -s /usr/local/lib/libmcrypt.la /usr/lib/libmcrypt.la
ln -s /usr/local/lib/libmcrypt.so /usr/lib/libmcrypt.so
ln -s /usr/local/lib/libmcrypt.so.4 /usr/lib/libmcrypt.so.4
ln -s /usr/local/lib/libmcrypt.so.4.4.8 /usr/lib/libmcrypt.so.4.4.8
ln -s /usr/local/lib/libmhash.a /usr/lib/libmhash.a
ln -s /usr/local/lib/libmhash.la /usr/lib/libmhash.la
ln -s /usr/local/lib/libmhash.so /usr/lib/libmhash.so
ln -s /usr/local/lib/libmhash.so.2 /usr/lib/libmhash.so.2
ln -s /usr/local/lib/libmhash.so.2.0.1 /usr/lib/libmhash.so.2.0.1wget -c http://www.g868.com/upload/lnmp/mcrypt-2.6.8.tar.gz
tar zxvf mcrypt-2.6.8.tar.gz
cd mcrypt-2.6.8
/sbin/ldconfig
./configure
make
make install
编译安装PHP(FastCGI模式):
cd /opt/src
wget -c http://www.g868.com/upload/lnmp/php-5.2.10.tar.gz
wget -c http://www.g868.com/upload/lnmp/php-5.2.10-fpm-0.5.11.diff.gz
tar zxvf php-5.2.10.tar.gz
gzip -cd php-5.2.10-fpm-0.5.11.diff.gz | patch -d php-5.2.10 -p1
cd php-5.2.10/
./configure \"--prefix=/usr/local/php" \ "--with-config-file-path=/usr/local/php/etc" \ "--with-mysql=/usr/local/mysql" \ "--with-mysqli=/usr/local/mysql/bin/mysql_config" \ "--with-iconv-dir=/usr/local" \ "--with-freetype-dir" \ "--with-jpeg-dir" \ "--with-png-dir" \ "--with-zlib" \ "--with-libxml-dir" \ "--enable-xml" \ "--disable-rpath" \ "--enable-discard-path" \ "--enable-safe-mode" \ "--enable-bcmath" \ "--enable-shmop" \ "--enable-sysvsem" \ "--enable-inline-optimization" \ "--with-curl" \ "--with-curlwrappers" \ "--enable-mbregex" \ "--enable-fastcgi" \ "--enable-fpm" \ "--enable-force-cgi-redirect" \ "--enable-mbstring" \ "--with-mcrypt" \ "--with-gd" \ "--enable-gd-native-ttf" \ "--with-openssl" \ "--with-mhash" \ "--enable-pcntl" \ "--enable-sockets" \ "--with-ldap" \ "--with-ldap-sasl" \ "--with-xmlrpc" \ "--enable-zip" \ "--enable-soap" \ "--without-pear"make ZEND_EXTRA_LIBS='-liconv'
make install
cp php.ini-dist /usr/local/php/etc/php.ini
编译安装PHP5扩展模块:
cd /opt/src
wget -c http://www.g868.com/upload/lnmp/memcache-2.2.5.tgz
tar zxvf memcache-2.2.5.tgz
cd memcache-2.2.5
/usr/local/php/bin/phpize
./configure --with-php-config=/usr/local/php/bin/php-config
make
make install
cd /opt/srcwget -c http://www.g868.com/upload/lnmp/eaccelerator-0.9.5.3.tar.bz2
tar jxvf eaccelerator-0.9.5.3.tar.bz2
cd eaccelerator-0.9.5.3
/usr/local/php/bin/phpize
./configure --enable-eaccelerator=shared --with-php-config=/usr/local/php/bin/php-config
make
make install
cd /opt/srcwget -c http://www.g868.com/upload/lnmp/PDO_MYSQL-1.0.2.tgz
tar zxvf PDO_MYSQL-1.0.2.tgz
cd PDO_MYSQL-1.0.2
/usr/local/php/bin/phpize
./configure --with-php-config=/usr/local/php/bin/php-config --with-pdo-mysql=/usr/local/mysql
make
make install
cd /opt/srcwget -c http://www.g868.com/upload/lnmp/ImageMagick-6.5.3-10.tar.gz
tar zxvf ImageMagick-6.5.3-10.tar.gz
cd ImageMagick-6.5.3-10
./configure
make
make install
cd /opt/srcwget -c http://www.g868.com/upload/lnmp/imagick-2.2.2.tgz
tar zxvf imagick-2.2.2.tgz
cd imagick-2.2.2
/usr/local/php/bin/phpize
./configure --with-php-config=/usr/local/php/bin/php-config
make
make install
cd /opt/src
设定PHP配置文件:
sed -i 's#extension_dir = "./"#extension_dir = "/usr/local/php/lib/php/extensions/no-debug-non-zts-20060613/"\nextension = "memcache.so"\nextension = "pdo_mysql.so"\nextension = "imagick.so"\n#' /usr/local/php/etc/php.ini
sed -i 's#output_buffering = Off#output_buffering = On#' /usr/local/php/etc/php.ini
sed -i "s#; always_populate_raw_post_data = On#always_populate_raw_post_data = On#g" /usr/local/php/etc/php.ini
配置eAccelerator加速PHP:
mkdir -p /opt/eaccelerator_cache
cat >> /usr/local/php/etc/php.ini << EOF
[eaccelerator]
zend_extension="/usr/local/php/lib/php/extensions/no-debug-non-zts-20060613/eaccelerator.so"
eaccelerator.shm_size="32"
eaccelerator.cache_dir="/opt/eaccelerator_cache"
eaccelerator.enable="1"
eaccelerator.optimizer="1"
eaccelerator.check_mtime="1"
eaccelerator.debug="0"
eaccelerator.filter=""
eaccelerator.shm_max="0"
eaccelerator.shm_ttl="3600"
eaccelerator.shm_prune_period="3600"
eaccelerator.shm_only="0"
eaccelerator.compress="1"
eaccelerator.compress_level="9"
eaccelerator.keys = "disk_only"
eaccelerator.sessions = "disk_only"
eaccelerator.content = "disk_only"
EOF
配置php-fpm程序:
useradd www
cat > /usr/local/php/etc/php-fpm.conf << EOF <?xml version="1.0" ?> <configuration><section name="global_options"><value name="pid_file">/usr/local/php/logs/php-fpm.pid</value><value name="error_log">/usr/local/php/logs/php-fpm.log</value><value name="log_level">notice</value><value name="emergency_restart_threshold">10</value><value name="emergency_restart_interval">1m</value><value name="process_control_timeout">5s</value><value name="daemonize">yes</value></section><workers><section name="pool"><value name="name">default</value><value name="listen_address">/tmp/php-cgi.sock</value><value name="listen_options"><value name="backlog">-1</value><value name="owner"></value> <value name="group"></value> <value name="mode">0666</value> </value><value name="php_defines"> <value name="sendmail_path">/usr/sbin/sendmail -t -i</value> <value name="display_errors">1</value> </value><value name="user">www</value><value name="group">www</value><value name="pm"><value name="style">static</value><value name="max_children">4</value><value name="apache_like"><value name="StartServers">20</value><value name="MinSpareServers">5</value><value name="MaxSpareServers">35</value></value></value><value name="request_terminate_timeout">0s</value><value name="request_slowlog_timeout">0s</value><value name="slowlog">logs/slow.log</value><value name="rlimit_files">51200</value><value name="rlimit_core">0</value><value name="chroot"></value><value name="chdir"></value><value name="catch_workers_output">yes</value><value name="max_requests">102400</value><value name="allowed_clients">127.0.0.1</value><value name="environment"> <value name="HOSTNAME">$HOSTNAME</value> <value name="PATH">/usr/local/bin:/usr/bin:/bin</value> <value name="TMP">/tmp</value> <value name="TMPDIR">/tmp</value> <value name="TEMP">/tmp</value> <value name="OSTYPE">$OSTYPE</value> <value name="MACHTYPE">$MACHTYPE</value> <value name="MALLOC_CHECK_">2</value> </value> </section> </workers> </configuration>EOF
PHP开机自动启动:
echo '/usr/local/php/sbin/php-fpm start' >> /etc/rc.local
5.Nginx
Nginx安装:
| 程序名称 | 程序路径 | 数据路径 | 日志路径 | 备注 |
| Nginx | /usr/local/nginx | /opt/wwwroot | /var/log/nginx | - |
cd /opt/src
wget -c http://www.g868.com/upload/lnmp/pcre-7.9.tar.gz
tar zxvf pcre-7.9.tar.gz
cd pcre-7.9/
./configure
make && make install
cd /opt/srcwget -c http://www.g868.com/upload/lnmp/nginx-0.7.61.tar.gz
tar zxvf nginx-0.7.61.tar.gz
cd nginx-0.7.61/
./configure --user=www --group=www --prefix=/usr/local/nginx --with-http_stub_status_module --with-http_ssl_module
make && make install
Nginx配置:
mkdir -p /opt/wwwroot
chown g+s /opt/wwwroot
chown -R www.www /opt/wwwroot/
echo "" > /usr/local/nginx/conf/nginx.confcat > /usr/local/nginx/conf/nginx.conf << EOF
user www www;worker_processes 1;
error_log /var/log/nginx/nginx_error.log crit;
pid /usr/local/nginx/nginx.pid;
#Specifies the value for maximum file descriptors that can be opened by this process.
worker_rlimit_nofile 51200;events
{
use epoll;
worker_connections 51200;
}http
{
include mime.types;
default_type application/octet-stream;#charset gb2312;
server_names_hash_bucket_size 128;
client_header_buffer_size 32k;
large_client_header_buffers 4 32k;sendfile on;
tcp_nopush on;keepalive_timeout 60;
tcp_nodelay on;
fastcgi_connect_timeout 300;
fastcgi_send_timeout 300;
fastcgi_read_timeout 300;
fastcgi_buffer_size 64k;
fastcgi_buffers 4 64k;
fastcgi_busy_buffers_size 128k;
fastcgi_temp_file_write_size 128k;gzip on;
gzip_min_length 1k;
gzip_buffers 4 16k;
gzip_http_version 1.0;
gzip_comp_level 2;
gzip_types text/plain application/x-javascript text/css application/xml;
gzip_vary on;#limit_zone crawler $binary_remote_addr 10m;
server {listen 80; server_name www.g868.com; index index.html index.htm index.php; root /opt/wwwroot;location ~ .*\.(php|php5)?$ { fastcgi_pass unix:/tmp/php-cgi.sock; #fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; include fcgi.conf; }location ~ .*\.(gif|jpg|jpeg|png|bmp|swf)$ { expires 15d; }location ~ .*\.(js|css)?$ { expires 1d; }location / { if (-f $request_filename/index.html){ rewrite (.*) $1/index.html break; } if (-f $request_filename/index.php){ rewrite (.*) $1/index.php; } if (!-f $request_filename){ rewrite (.*) /index.php; } if (-f $request_filename) { rewrite ^/page/(.+)$ /*.*?paged=$1 last; } }}
EOFcat > /usr/local/nginx/conf/fcgi.conf << EOF
fastcgi_param GATEWAY_INTERFACE CGI/1.1;
fastcgi_param SERVER_SOFTWARE nginx;fastcgi_param QUERY_STRING $query_string;
fastcgi_param REQUEST_METHOD $request_method;
fastcgi_param CONTENT_TYPE $content_type;
fastcgi_param CONTENT_LENGTH $content_length;fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
fastcgi_param REQUEST_URI $request_uri;
fastcgi_param DOCUMENT_URI $document_uri;
fastcgi_param DOCUMENT_ROOT $document_root;
fastcgi_param SERVER_PROTOCOL $server_protocol;fastcgi_param REMOTE_ADDR $remote_addr;
fastcgi_param REMOTE_PORT $remote_port;
fastcgi_param SERVER_ADDR $server_addr;
fastcgi_param SERVER_PORT $server_port;
fastcgi_param SERVER_NAME $server_name;# PHP only, required if PHP was built with --enable-force-cgi-redirect
fastcgi_param REDIRECT_STATUS 200;
EOF
Nginx开机自动启动:
echo "/usr/local/nginx/sbin/nginx" >> /etc/rc.local
三、方案测试
建立测试文件:
echo "<? phpinfo() ?>" > /opt/wwwroot/index.php
访问地址:http://www.g868.com/
四、方案补充
1.重新读取Nginx配置:
kill -HUP `cat /usr/local/nginx/nginx.pid`
附:文章修改历史
| 2009年8月22日 | 开始编写本文 |
| 2009年9月1日 | 修正Nginx参数错误 |
| 2009年9月24日 | 修正Mysql参数错误 |
(全文完)
