之前有写个linux之间的Rsync备份,现在写一份Rsync+ssh通道安全备份
Server: 192.168.101.115
Client: 192.168.101.116
首先在 Client 做密钥
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
8d:89:b6:f2:6c:34:9c:da:7e:a7:b1:02:59:a4:8e:f6 root@Client
The key's randomart p_w_picpath is:
上传密钥到 Server
[root@Client /]# ssh-copy-id -i /root/.ssh/id_rsa.pub "-p 22 root@192.168.101.115"
Server和 Client 都安装 Rsync
tar zxvf rsync-3.0.9.tar.gz
cd rsync-3.0.9
./configure --prefix=/usr && make && make install
Server 配置Rsync
[root@Server /]# vim /etc/rsyncd.conf
uid = root
gid = root
use chroot = yes
max connections = 3
pid file = /var/run/rsyncd.pid
lock file = /var/run/rsync.lock
log file = /var/log/rsyncd.log
port = 873
hosts allow = 192.168.101.116
log format = %t %a %m %f %b
[web]
comment = web file
path = /data/bak
ignore errors
read only = no
#write only = no
list = no
auth users = amei
secrets file = /data/pad
制作认证密码文件 和 加入开机启动
[root@Server /]# chown root:root /etc/rsyncd.secrets //修改权限
[root@Server /]# chmod 600 /etc/rsyncd.secrets
Server 加入开机启动:
[root@Server /]# chkconfig rsync on
或者
[root@Server /]# chkconfig --add rsync
Server 启动 Rsync
[root@Server /]# /usr/bin/rsync --daemon
Client 加入开机启动:
[root@Client /]# chkconfig rsync on
或者
[root@Client /]# chkconfig --add rsync
Client 启动 Rsync
[root@Client /]# /usr/bin/rsync --daemon
最后在Client 编写 shell
#!/bin/bash
/usr/bin/rsync -avz --delete -e ssh root@192.168.101.115:/data/bak /data/abc
######### -e ssh 是采用ssh模式 #########
### root@192.168.101.115:/data/bak 是Server要同步的文件夹
### /data/abc 是将Server 同步到本地的文件夹
加入crontab定时执行
###每天凌晨1点定时备份###
如果有些防火墙的 请将Rsync端口允许通过即可
