编写剧本
[root@rsync-backup rsync_conf]# cat ~/install_rsync_server.yaml # playbook rsync # rsync server - hosts: 10.0.0.30 task: - name: step01 install rsync yum: name=rsync state=installed - name: step02 edit rsync.conf file copy: src=/etc/ansible/conf/rsync_conf/rsyncd.conf dest=/etc/ - name: step03 create rsync user user: name=rsync state=present createhome=no shell=/sbin/nologin - name: step04 create auth file copy: src=/etc/ansible/conf/rsync_conf/rsync.passwd dest=/etc/ mode=600 - name: step05 create backup dir file: dest=/backup state=directory owner=rsync group=rsync - name: step06 boot rsync.server shell: rsync --daemon creates=/var/run/rsyncd.pid # rsync client - host: 10.0.0.50 tasks: - name: step01 create auth file copy: src=/etc/ansible/conf/rsync_conf/rsync_client.passwd dest=/etc/ mode=600
编写rsync服务端第四步需要的密码文件
[root@rsync-backup rsync_conf]# echo "rsync:123456" > rsync.passwd
编写rsync客户端第需要的密码文件
[root@rsync-backup rsync_conf]# echo "123456" > rsync_client.passwd
测试连接:报错
[root@nfs opt]# rsync -avzP /opt/ rsync_backup@10.0.0.30::backup @ERROR: auth failed on module backup
/var/log/rsyncd.log 显示如下:
2023/06/16 13:23:17 [4165] params.c:Parameter() - Ignoring badly formed line in config file: ignore errors 2023/06/16 13:23:18 [4165] name lookup failed for 10.0.0.50: Name or service not known 2023/06/16 13:23:18 [4165] connect from UNKNOWN (10.0.0.50) 2023/06/16 13:23:18 [4165] auth failed on module backup from UNKNOWN (10.0.0.50) for rsync_backup: secret not found
为什么要设置环境变量:RSYNC_PASSWORD
rsync 命令在运行时会检查系统环境变量,并搜索名称为 RSYNC_PASSWORD 的变量。如果找到该变量,则将其值作为密码传递给 rsync 服务器。这样,rsync 服务器在进行身份验证时会使用该密码进行比对。
需要注意的是,rsync 在读取环境变量密码时是一次性的,而不会在每个连接或会话中重新读取。因此,在每个 rsync 命令执行之前,确保已经设置了正确的 RSYNC_PASSWORD 环境变量。