A Quick guide to AFS Simon Wilkinson school of Informatics University of Edinburgh

Similar documents
CSE 486/586: Distributed Systems

THE AFS NAMESPACE AND CONTAINERS

HPC File Systems and Storage. Irena Johnson University of Notre Dame Center for Research Computing

Status Report. AFS & Kerberos Best Practice Workshop 2006

Storage and File System

Bhaavyaa Kapoor Person #

DISTRIBUTED SYSTEMS [COMP9243] Lecture 9b: Distributed File Systems INTRODUCTION. Transparency: Flexibility: Slide 1. Slide 3.

Basics of system administration on a Unix system

AURISTOR FILE SYSTEM AND LINUX KERNEL AFS/AF_RXRPC PRESENTED BY JEFFREY ALTMAN

Henry B. Hotz Jet Propulsion Laboratory California Institute of Technology. Kerberos 5 Upgrade

EMC Celerra CNS with CLARiiON Storage

COS 318: Operating Systems. File Systems. Topics. Evolved Data Center Storage Hierarchy. Traditional Data Center Storage Hierarchy

Chapter Two File Systems. CIS 4000 Intro. to Forensic Computing David McDonald, Ph.D.

An Introduction to GPFS

BeoLink.org. Design and build an inexpensive DFS. Fabrizio Manfredi Furuholmen. FrOSCon August 2008

DFS 3.1 for Gateway Environments

Hit The Ground Running: AFS

OpenAFS A HPC filesystem? Rich Sudlow Center for Research Computing University of Notre Dame

NFSv4.1 Plan for a Smooth Migration

Storage and File Hierarchy

COS 318: Operating Systems

SSSD. Client side identity management. LinuxDays 2012 Jakub Hrozek

Optimizing and Managing File Storage in Windows Environments

NFS on Steroids: Building Worldwide Distributed File System Gregory Touretsky Intel IT

HPE Nimble Storage HF20 Adaptive Dual Controller 10GBASE-T 2-port Configure-to-order Base Array (Q8H72A)

Windows Server 2003 Network Administration Goals

Distributed File Systems. CS432: Distributed Systems Spring 2017

Architecture and Deployment

Survey of Oracle Database

Today: Coda, xfs! Brief overview of other file systems. Distributed File System Requirements!

HP Data Protector 8.00 Platform and Integration Support Matrix

Compatibility and Support Information Nasuni Corporation Boston, MA

Introduction to Linux Overview and Some History

IBM TotalStorage. Open Enterprise FileStore. Connected. Protected. Complete. Stonehenge: "virtual distributed NAS"

CS 470 Spring Distributed Web and File Systems. Mike Lam, Professor. Content taken from the following:

Virtualization. Michael Tsai 2018/4/16

VERITAS SANPoint Storage Appliance Overview of an Open Platform for the Implementation of Intelligent Storage Server

Veritas NetBackup Enterprise Server and Server 6.x OS Software Compatibility List

HPE Data Protector 8.10 Platform and Integration Support Matrix

Replication, History, and Grafting in the Ori File System Ali José Mashtizadeh, Andrea Bittau, Yifeng Frank Huang, David Mazières Stanford University

Use Distributed File system as a Storage Tier! Fabrizio Manfred Furuholmen!

Vembu NetworkBackup. File Backup, Microsoft Exchange, SQL Server, SharePoint, System State, Outlook and MySQL Backup VEMBU TECHNOLOGIES PARTNERS

FILE REPLICATION AND COLLABORATION REQUIREMENT: THE ESSENTIALS

Chapter 17: Distributed-File Systems. Operating System Concepts 8 th Edition,

IBM Tivoli Directory Server

Veritas NetBackup Enterprise Server and Server x OS Software Compatibility List

Oracle ACFS 12c Release 2.

Copyright 2010 EMC Corporation. Do not Copy - All Rights Reserved.

CS 470 Spring Distributed Web and File Systems. Mike Lam, Professor. Content taken from the following:

Data Protector 10.x Express Support Matrix

OpenAFS Quick Start Guide for UNIX

Veritas Storage Foundation from Symantec

Managing Copy Services

ABOUT ZEPCAM SOFTWARE INSTALLATION MANAGEMENT AND BACKUPS. Description What is it Installation requirement Server requirement

NFSv4.1 Using pnfs PRESENTATION TITLE GOES HERE. Presented by: Alex McDonald CTO Office, NetApp

Unit 2: Manage Files Graphically with Nautilus Objective: Manage files graphically and access remote systems with Nautilus

Designing the Stable Infrastructure for Kernel-based Virtual Machine using VPN-tunneled VNC

Mass Storage at the PSC

Distributed File Systems. Case Studies: Sprite Coda

EI 338: Computer Systems Engineering (Operating Systems & Computer Architecture)

DELL POWERVAULT NX3500 INTEGRATION WITHIN A MICROSOFT WINDOWS ENVIRONMENT

NFS around the world Tigran Mkrtchyan for dcache Team dcache User Workshop, Umeå, Sweden

Distributed Computing Environment (DCE)

Unisys SafeGuard Solutions

Distributed Systems. Hajussüsteemid MTAT Distributed File Systems. (slides: adopted from Meelis Roos DS12 course) 1/25

IBM System Storage N3000 Express series Modular Disk Storage Systems

Replication. Feb 10, 2016 CPSC 416

IOPStor: Storage Made Easy. Key Business Features. Key Business Solutions. IOPStor IOP5BI50T Network Attached Storage (NAS) Page 1 of 5

CyberStore Veeam. Backup & Replication Appliances. Broadberry. CyberStore Veeam. Backup Storage Appliances. Powering these organisations

Samba and Ceph. Release the Kraken! David Disseldorp

RED HAT ENTERPRISE LINUX: ACTIVE DIRECTORY - CLIENT INTEGRATION OPTIONS

Frequently asked questions from the previous class survey

Azure Webinar. Resilient Solutions March Sander van den Hoven Principal Technical Evangelist Microsoft

Deploying Software Defined Storage for the Enterprise with Ceph. PRESENTATION TITLE GOES HERE Paul von Stamwitz Fujitsu

Opendedupe & Veritas NetBackup ARCHITECTURE OVERVIEW AND USE CASES

What Makes Up the Modern Linux OS?

Database Services at CERN with Oracle 10g RAC and ASM on Commodity HW

CMPSC 311- Introduction to Systems Programming Module: UNIX/Operating Systems

IBM IBM Open Systems Storage Solutions Version 4. Download Full Version :

Delivers cost savings, high definition display, and supercharged sharing

NFS Version 4 Open Source Project. William A.(Andy) Adamson Center for Information Technology Integration University of Michigan

Keeping Up With The Linux Kernel. Marc Dionne AFS and Kerberos Workshop Pittsburgh

EMC VNXe SERIES UNIFIED STORAGE SYSTEMS

istorage Server and IP SEC

Deep Dive on SimpliVity s OmniStack A Technical Whitepaper

FreeBSD Jails vs. Solaris Zones

Distributed Systems 16. Distributed File Systems II

Axway Validation Authority Suite

Lecture 2 Distributed Filesystems

Data Protection for Cisco HyperFlex with Veeam Availability Suite. Solution Overview Cisco Public

Chapter 1: Windows Platform and Architecture. You will learn:

Vembu BDR Suite Free Edition

Operating Systems Design 16. Networking: Remote File Systems

Symantec NetBackup PureDisk Compatibility Matrix Created August 26, 2010

The OnApp Cloud Platform

IBM Europe Announcement ZP , dated November 6, 2007

ROYAL INSTITUTE OF INFORMATION & MANAGEMENT

Chapter 11: File-System Interface

OpenAFS. Windows Client experiences

Veritas InfoScale Enterprise for Oracle Real Application Clusters (RAC)

Transcription:

A Quick guide to AFS Simon Wilkinson school of Informatics University of Edinburgh simon@sxw.org.uk

AFS Originally developed by Carnegie Mellon University as part of Project Andrew Commercialised by Transarc, later acquired by IBM Became open source (and free!) in 2000 Strong development community since then

AFS is......a secure, global, federated, location independent open source storage system providing data access from a broad range of devices scaling from handsets to super computers.

A Secure Filesystem For today s purposes a Secure Filesystem is One that does not rely on network trust One that insulates users of multi-user machines from each other Generally not NFS before version 4

AFS Security AFS uses Kerberos for user authentication Data transfer is (optionally) encrypted File access is policed on a per user, per access basis Per directory access control lists allow user control of all permissions

A Global Filesystem How big is your world? A room A city, A country A planet?

A solar system? http://workshop.openafs.org/afsbpw06/talks/keynote_djbyrne.pdf

AFS across the Globe AFS is designed for WAN use Works well over low bitrate, high latency links Operates across NAT devices

A Federated Filesystem Collaborative working requires file access by many different users across multiple organisations Difficult to handle with many filesystems How do you manage cross-institution users How do you control cross-site access?

AFS Federation AFS leverages Kerberos s cross-realm capabilities If a user has access to a realm you trust, they can be given access to your files Lightweight authentication solutions can be used to give truly global access

A Location Independent System Users don t need to know where their data lives Users don t want to know when you re moving their data between file servers

Access Your Files Anywhere At work At home At a conference On the train

... from a Web Cafe...

... from a PDA...

AFS Units of file manipulation file directory volume partition The volume is the key unit for management

Volumes Basic volume is a read-write copy Multiple read-only replicas for redundancy and load sharing Single backup volumes provide a snapshot for backup & recovery Volume replication is a manual process

Backup Volumes Backup volumes are maintained as deltas No protection against disk failure Provide means for users to access yesterday s data

More on Volumes AFS allows volumes to be transparently migrated between servers Volumes are stitched together through mountpoints to produce the filesystem Filesystem is typically identical on every host running AFS

A Global Filesystem Standard mountpoint on all clients - /afs Next level is cell - your site - /afs/inf.ed.ac.uk Derived from DNS or global config file Below this, is up to the individual site All AFS sites can access /afs/inf.ed.ac.uk Our clients can access all AFS cells

Cells and Databases A cell is the AFS organisational unit Each cell will have a number of database servers providing Volume Location - which fileserver a given volume is on Protection database - group membership and permissions for all users in a AFS has powerful multimaster replication for all databases - you want more than one!

Fileservers Each cell may contain any number of fileservers Fileservers do not store data on disk in human readable form - all access must come through AFS client Possible to completely bypass the native filesystem and use the raw disk

Clients Clients are comprised of a kernel module, plus a user space daemon - the cache manager Cache manager deals with fitting volumes together into the filesystem Also handles powerful local caching system

Callbacks AFS protects cache integrity using Callbacks When a client opens a file it registers a callback with the fileserver Any changes to that file will result in the fileserver notifying the client

Authentication Originally AFS used Kerberos v4 Can now use Kerberos v5 natively Only supports DES encryption On-the-wire encryption is even weaker Better encryption on the way...

ACLs And Groups ACLs available to control access on a per directory basis ACLs can set permissions by user, system wide group, or by user defined group Permissions can be both position and negative Special groups exist for any authenticated user and any user

Platform Support AIX 5.1-5.3 HPUX 11.0, 11i, 11i v2 IRIX 6.5 Linux 2.4 and 2.6 (through.24) kernels Fedora Core 3-9, RHEL3-5 Debian, Ubuntu Gentoo and others MacOS 10.3-10.5 Microsoft Windows 2000, XP, Server 2003, Vista, Server 2008 (32-bit and 64-bit) NetBSD, FreeBSD and OpenBSD (server only) Solaris (Sparc and x86) 7-11 and OpenSolaris

Futures Disconnected Operation Better cryptography Object storage

Users Argonne National Laboratory, Carnegie Mellon University, CERN, DAPNIA, Duke University, Edinburgh University, ENEA, Fermi National Accelerator Laboratory, Iowa State University, Jet Propulsion Laboratory, KTH, Leiden University, Manchester Computing, MIT, Morgan Stanley, NASA, Naval Research Laboratory, New Jersey Institute of Technology, Intel, NCSA, Pictage, Pittsburgh Supercomputing Centre, Stanford Linear Accelerator Centre, Stanford University, Stockholm University, United Airways, University of Maryland, University of Michigan, University of North Carolina, University of Notre Dame, University of Pittsburgh, United States Geological Service, Rutherford Appleton Laboratory 180 public cells - and an increasing number of known private cells.

Pictage Wedding Photography Service Over 260 Terabytes of AFS storage (May 2007) (planned growth to 420TB by now!)... large number of Windows clients http://workshop.openafs.org/afsbpw07/talks/keynote.pdf

United States Geological Survey Provide natural hazard information on the web... even in the event of large-scale regional disasters AFS replication used to mirror web data between multiple regional data centres http://www.openafs.org/success.html

Morgan Stanley 25000+ hosts in 50+ sites on 6 continents No AFS, No Unix http://www-conf.slac.stanford.edu/ AFSBestPractices/Slides/MorganStanley.pdf

United Airlines All aircraft maintenance information stored in AFS Millions of pages of documentation Available at every gate, maintenance bay and vendor world wide http://workshop.openafs.org/afsbpw05/talks/lifeofacell.ppt

QUESTIONS? This talk (and others on AFS) available from http://www.dice.inf.ed.ac.uk/publications/ Feel free to email me simon@sxw.org.uk

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback