NFSv4.1 Plan for a Smooth Migration

Similar documents
NFSv4.1 Using pnfs PRESENTATION TITLE GOES HERE. Presented by: Alex McDonald CTO Office, NetApp

pnfs, NFSv4.1, FedFS and Future NFS Developments Alex McDonald NetApp

and NFSv4.1 Alex McDonald, NetApp

pnfs & NFSv4.2; a filesystem for grid, virtualization and database David Dale, Director Industry Standards, Netapp Author: Joshua Konkle, DCIG

dcache NFSv4.1 Tigran Mkrtchyan Zeuthen, dcache NFSv4.1 Tigran Mkrtchyan 4/13/12 Page 1

GridNFS: Scaling to Petabyte Grid File Systems. Andy Adamson Center For Information Technology Integration University of Michigan

NFS version 4 LISA `05. Mike Eisler Network Appliance, Inc.

February 15, 2012 FAST 2012 San Jose NFSv4.1 pnfs product community

pnfs, parallel storage for grid and enterprise computing Joshua Konkle, NetApp, Inc.

The New World of NFS. Steve Dickson Consulting Software Engineer, Red Hat Tuesday, April 15

4. Note: This example has NFS version 3, but other settings such as NFS version 4 may also work better in some environments.

Reasons to Migrate from NFS v3 to v4/ v4.1. Manisha Saini QE Engineer, Red Hat IRC #msaini

pnfs, parallel storage for grid, virtualization and database computing Joshua Konkle, Chair NFS SIG

The Evolution of the NFS Protocol:

NFS Version 4 Open Source Project. William A.(Andy) Adamson Center for Information Technology Integration University of Michigan

NFS Version 4.1. Spencer Shepler, Storspeed Mike Eisler, NetApp Dave Noveck, NetApp

Advanced Network and System Administration

Clustered Data ONTAP 8.2 File Access Management Guide for NFS

Synopsys VCS Performance Validation with NetApp Clustered Data ONTAP 8.2 and NFSv4.1/pNFS

NFS Version 4 17/06/05. Thimo Langbehn

CS 470 Spring Distributed Web and File Systems. Mike Lam, Professor. Content taken from the following:

An Introduction to GPFS

CS 470 Spring Distributed Web and File Systems. Mike Lam, Professor. Content taken from the following:

Configuring NFSv4 on SUSE Linux Enterprise 10

OpenStack Manila An Overview of Manila Liberty & Mitaka

NFS around the world Tigran Mkrtchyan for dcache Team dcache User Workshop, Umeå, Sweden

Evaluating Cloud Storage Strategies. James Bottomley; CTO, Server Virtualization

Linux Support of NFS v4.1 and v4.2. Steve Dickson Mar Thu 23, 2017

NFSv4 Enhancements and Best Practices Guide: Data ONTAP Implementation

Leveraging NFSv4 to Build a Federated File System Protocol

The CephFS Gateways Samba and NFS-Ganesha. David Disseldorp Supriti Singh

Dell Fluid File System Version 6.0 Support Matrix

Kerberized NFS 2010 Kerberos Conference

Distributed Systems. Hajussüsteemid MTAT Distributed File Systems. (slides: adopted from Meelis Roos DS12 course) 1/25

NFS with Linux: Current and Future Efforts. Chuck Lever, Network Appliance, Inc Steve Dickson, Red Hat Red Hat Summit 2006

Today: Distributed File Systems. File System Basics

File Locking in NFS. File Locking: Share Reservations

Today: Distributed File Systems

System that permanently stores data Usually layered on top of a lower-level physical storage medium Divided into logical units called files

Advanced Operating Systems

Distributed File Systems

OPS535. NFS Servers and Clients. Advanced TCP/IP Network Administration. Raymond Chan Seneca College of Applied Technology

NFSv4 Multi-Domain Access. Andy Adamson Connectathon 2010

Introduction to the Network File System (NFS)

Distributed File Systems: Design Comparisons

Clustered Data ONTAP NFS Best Practice and Implementation Guide

Realms and Identity Policies

DISTRIBUTED FILE SYSTEMS & NFS

EI 338: Computer Systems Engineering (Operating Systems & Computer Architecture)

Federated Namespace BOF: Applications and Protocols

pnfs Update A standard for parallel file systems HPC Advisory Council Lugano, March 2011

The Parallel NFS Bugaboo. Andy Adamson Center For Information Technology Integration University of Michigan

NFS Version 4 Security Update

Lecture 19. NFS: Big Picture. File Lookup. File Positioning. Stateful Approach. Version 4. NFS March 4, 2005

The File Systems Evolution. Christian Bandulet, Sun Microsystems

Distributed File Systems Issues. NFS (Network File System) AFS: Namespace. The Andrew File System (AFS) Operating Systems 11/19/2012 CSC 256/456 1

Realms and Identity Policies

NFS on Steroids: Building Worldwide Distributed File System Gregory Touretsky Intel IT

A GPFS Primer October 2005

A Quick guide to AFS Simon Wilkinson school of Informatics University of Edinburgh

Identity Management In Red Hat Enterprise Linux. Dave Sirrine Solutions Architect

Introduction to the Network File System (NFS)

Expert Insights: Expanding the Data Center with FCoE

Optimizing and Managing File Storage in Windows Environments

PRESENTATION TITLE GOES HERE. Understanding Architectural Trade-offs in Object Storage Technologies

COS 318: Operating Systems

NFS on the Fast track - fine tuning and futures

Realms and Identity Policies

NFSv4 and rpcsec_gss for linux

ò Server can crash or be disconnected ò Client can crash or be disconnected ò How to coordinate multiple clients accessing same file?

NFS Version 4 Update

NFS. Don Porter CSE 506

DELL EQUALLOGIC FS7500 INTEGRATION WITHIN A LINUX ENVIRONMENT

pnfs and Linux: Working Towards a Heterogeneous Future

Supporting the Cloud Transformation of Agencies across the Public Sector

Lessons Learned Operating Active/Active Data Centers Ethan Banks, CCIE

Storage and File Hierarchy

Distributed Systems. Distributed File Systems. Paul Krzyzanowski

The Nasuni Security Model

Cloud Filesystem. Jeff Darcy for BBLISA, October 2011

Open Source Storage. Ric Wheeler Architect & Senior Manager April 30, 2012

Distributed Systems. Hajussüsteemid MTAT Distributed File Systems. (slides: adopted from Meelis Roos DS12 course) 1/15

The Latest EMC s announcements

CIT 470: Advanced Network and System Administration. Topics. Filesystems and Namespaces. Filesystems

EMC Celerra CNS with CLARiiON Storage

Dell Wyse Datacenter for VMware Horizon View Cloud Pod Architecture

What is a file system

NFS: The Next Generation. Steve Dickson Kernel Engineer, Red Hat Wednesday, May 4, 2011

Sun N1: Storage Virtualization and Oracle

Dell Fluid File System Version 5.0 Support Matrix

BEST PRACTICES TO PROTECTING AWS CLOUD RESOURCES

Remote power and console management in large datacenters

Scale and secure workloads, cost-effectively build a private cloud, and securely connect to cloud services. Beyond virtualization

Welcome to Manila: An OpenStack File Share Service. May 14 th, 2014

Jeremy Allison Samba Team

NFSv4 extensions for performance and interoperability

Samba in a cross protocol environment

ONTAP 9. SMB/CIFS Reference. December _H0 Updated for ONTAP 9.3

pnfs, POSIX, and MPI-IO: A Tale of Three Semantics

Distributed File Systems. Distributed Systems IT332

Transcription:

NFSv4.1 Plan for a Smooth Migration PRESENTATION TITLE GOES HERE Hosted by: Gilles Chekroun Distinguished Engineer, Cisco Presented by: Alex McDonald CTO Office, NetApp

Webcast Presenter Alex McDonald joined NetApp in 2005, after more than 30 years in a variety of roles with some of the best known names in the software industry. Alex McDonald Office of the CTO NetApp With a background in software development, support, sales and a period as an independent consultant, Alex is now part of NetApp s Office of the CTO that supports industry activities and promotes technology & standards based solutions, and is co-chair of the SNIA NFS Special Interest Group. Gilles joined Cisco 18 years ago. For the last ten years, Gilles focus has been Storage & SAN extension technologies for designing and implementing Disaster Recovery Centers. Gilles Chekroun Distinguished Engineer Cisco Gilles is now dedicated to Data Center Technologies like Unified Fabric, FCoE and Unified Computing System and is a member of the Cisco Europe Data Centre and Virtualisation Team as a Distinguished Engineer. He is a member of the Board of Directors of SNIA Europe (Storage Networking Industry Association) as Technical Chair.

Ethernet Storage Forum Members The SNIA Ethernet Storage Forum (ESF) focuses on educating endusers about Ethernetconnected storage networking technologies.

SNIA s NFS Special Interest Group NFS SIG drives adoption and understanding of pnfs across vendors to constituents Marketing, industry adoption, Open Source updates NetApp, EMC, Panasas and Sun founders NetApp, EMC and Panasas act as co-chairs White papers on migration from NFSv3 to NFSv4 An Overview of NFSv4; NFSv4.0, NFSv4.1, pnfs, and proposed NFSv4.2 features Migrating from NFSv3 to NFSv4 Learn more about us at: www.snia.org/forums/esf 4

Previous SNIA NFS Presentations BrightTalk SNIA Channel NFS Mini Series Part1 Four Reasons NFSv4 Discusses the reasons behind the development of NFSv4 and beyond, and the need for a better-than-nfsv3 protocol Part2 Advances in NFS NFSv4.1 and pnfs An overview and some details on NFSv4.1, pnfs (parallel NFS), and FedFS (the Federated Filesystem); and a high level overview of proposed NFSv4.2 features Slides available from http://www.snia-europe.org/en/events/index.cfm/20130108webcast2

The Four Reasons for NFSv4.1 Security High availability Single namespace Performance Functional ACLs for authorization Kerberos for authentication Client and server lease management with fail over Pseudo directory system Multiple read, write, delete operations per RPC call Delegate locks, read and write procedures to clients Parallelised I/O Business Benefit Compliance, improved access, storage efficiency, WAN use High Availability, Operations simplicity, cost containment Reduction in administration & management Better network utilization for all NFS clients Leverage NFS client hardware for better I/O 6

Agenda We ll cover Selecting the application for NFSv4.1 Planning; Filenames and namespace considerations Firewalls Understanding statefulness Security Server & Client Availability Where Next Considering pnfs This is a high level overview Use SNIA white papers and vendors (both client & server) to help you implement 7

Selecting the Parts 1 An NFSv4.1 compliant server Question; files, blocks or objects? 2 An NSFv4.1 compliant client Will almost certainly be *nix based; no native NFS4 Windows client Some applications are their own clients; Oracle, VMware etc 3 Auxiliary tools; Kerberos, DNS, NTP, LDAP

Selecting an Application First task; select an application or storage infrastructure for NFSv4.1 use Home directories HPC applications Don t select Oracle; use dnfs built in to the Oracle kernel VMware & other virtualization tools; no support for anything other than NFSv3 as of this date Oddball applications that expect to be able to internally manage NFSv3 maps with multiple mount points, or auxiliary protocols like mountd, statd etc; Any application that requires UDP; NFSv4 doesn t support anything except TCP 9

I18N Planning; Directory & File Names Directory and File Names NFSv4 uses UTF-8 Backward compatible with 7 bit ASCII Check filenames for compatibility NFSv3 file created with the name René contains an 8 bit ASCII UTF-8 é indicates a multibyte UTF-8 encoding, which will lead to unexpected results Action Review existing NFSv3 names to ensure that they are 7 bit ASCII clean These aren t; 10

Planning; Namespace Uniform and infinite namespace Moving from user/home directories to datacenter & corporate use Meets demands for large scale protocol Unicode support for UTF-8 codepoints No automounter required Simplifies administration 11

Planning; Namespace Namespace Example Server exports /vol/vol0 /vol/vol1 /backup/archive Mount root / over NFSv3: Allows the client to list the contents of vol/vol2 Mount root / over NFSv4: If /vol/vol2 has not been exported and the pseudo filesystem does not contain it; the directory is not visible An explicit mount of vol/vol2 will be required. 12

Planning; Namespace Namespaces Action Consider using the flexibility of pseudo-filesystems to permit easier migration from NFSv3 directory structures to NFSv4, without being overly concerned as to the server directory hierarchy and layout. However; If there are applications that traverse the filesystem structure or assume the entire filesystem is visible, caution should be exercised before moving to NFSv4 to understand the impact presenting a pseudo filesystem Especially when converting NFSv3 mounts of / (root)to NFSv4 13

Planning; Stateful Clients & Sessions Statefulness NFSv4 gives client independence Previous model had dumb stateless client Server had the smarts Pushes work out to client through delegations & caching Compute nodes work best with local data NFSv4 eliminates the need for local storage Exposes more of the backend storage functionality Client can help make server smarter by providing hints 14

Planning; Stateful Clients & Sessions Sessions NFSv3 server never knows if client got reply message NFSv4.1 introduces Sessions A session maintains the server's state relative to the connections belonging to a client Action None; use delegation & caching transparently; client & server provide transparency NFSv4 advantages include session lock clean up automatically

Planning; Firewalls Firewalls NFSv3 promiscuously uses ports; including 111, 1039, 1047, 1048, and 2049 (and possibly more ) NFSv4 has no auxiliary protocols like portmapper, statd, lockd or mountd Functionality built in to the protocol Uses port 2049 with TCP only No floating ports required & easily supported by NAT Action Open port 2049 for TCP on firewalls 16

Planning; Security Strong security framework Access control lists (ACLs) for security and Windows compatibility Security with Kerberos Negotiated RPC security that depends on cryptography, RPCSEC_GSS NFSv4 can be implemented without implementing Kerberos security Not advised; but it is possible 17

Planning; Security Implementing without Kerberos No security is a last resort! NFSv3 represents users and groups via 32 bit integers UIDs and GIDs with GETATTR and SETATTR NFSv4 represents users and groups as strings user@domain or group@domain Requires NFSv3 UID and GID 32 bit integers be converted to all numeric strings Client side; Run idmapd6 /etc/idmapd.conf points to a default domain and specifies translation service nsswitch. Incorrect or incomplete configuration, UID and GID will display nobody Using integers to represent users and groups requires that every client and server that might connect to each other agree on user and group assignments 18

Planning; Security Implementing with Kerberos Find a security expert Requires to be correctly implemented Do not use NFSv4 as a testbed to shake out Kerberos issues! User communities divided into realms Realm has an administrator responsible for maintaining a database of users Correct user@domain or group@domain string is required NFSv3 32 bit integer UIDs and GIDs are explicitly denied access NFSv3 and NFSv4 security models are not compatible with each other Although storage systems may support both NFSv3 and NFSv4 clients, be aware that there may be compatibility issues with ACLs. For example, they may be enforced but not visible to the NFSv3 client. Resources: http://web.mit.edu/kerberos/ 19

Planning; Security Action Review security requirements on NFSv4 filesystems Use Kerberos for robust security, especially across WANs If using Kerberos, ensure it is installed and operating correctly Don t use NFSv4 as a testbed to shake out Kerberos issues Consider using Windows AD Server Easy to manage environment, compatible Last resort If using NFSv3 security, ensure UID and GUID mapping and translation is uniformly implemented across the enterprise 20

Linux Client and NFSv4.1 Upstream (Linus) Linux NFSv4.1 client support Basic client in Kernel 2.6.32 pnfs support (files layout type) in Kernel 2.6.39 Support for the 'objects' and 'blocks' layouts was merged in Kernel 3.0 and 3.1 respectively Full read and write support for all three layout types in the upstream kernel Blocks, files and objects O_DIRECT reads and writes supported 21

Linux Client and NFSv4.1 pnfs client support in distributions Fedora 15 was first for pnfs files Kernel 2.6.40 (released August 2011) Red Hat Enterprise Linux version 6.2 Technical preview" support for NFSv4.1 and for the pnfs files layout type Full support in RHEL6.4, to be announced shortly Other Open Source Microsoft NFSv4.1 Windows client from CITI No support in Solaris Both server and client are NFSv4 only 22

It s Up & Running; now for pnfs NFSv4.1 (pnfs) can aggregate bandwidth Modern approach; relieves issues associated with point-to-point connections NFSv4.1 Client (s) pnfs Client Client read/write a file Server grants permission File layout (stripe map) is given to the client Client parallel R/W directly to data servers Removes IO Bottlenecks No single storage node is a bottleneck Improves large file performance Improves Management Data and clients are load balanced Metadata Server pnfs protocol Control protocol Storage-access protocol Single Namespace Data Servers 23

Summary/Call to Action Start using NFSv4.1 today NFSv4.2 nearing approval Planning is key Application, issues & actions to ensure smooth implementations Next up; pnfs First open standard for parallel I/O across the network Ask vendors to include NFSv4.1 support for client/servers pnfs has wide industry support Commercial implementations and open source Part 4 Using pnfs Next BrightTalk on Tuesday March 5, 16:00GMT, 17:00 CET 24

Question & Answer 25

To download this Webcast after the presentation, go to http://www.snia.org/about/socialmedia/ 26

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback