Red Hat OpenStack Platform 9 Storage Guide
Red Hat OpenStack Platform9Storage GuideUnderstanding, using, and managing persistent storage in OpenStackOpenStack Team
Red Hat OpenStack Platform 9 Storage GuideUnderstanding, using, and managing persistent storage in OpenStackOpenStack Teamrhos-docs@redhat.com
Legal NoticeCopyright 2017 Red Hat, Inc.The text of and illustrations in this document are licensed by Red Hat under a Creative CommonsAttribution–Share Alike 3.0 Unported license ("CC-BY-SA"). An explanation of CC-BY-SA isavailable athttp://creativecommons.org/licenses/by-sa/3.0/. In accordance with CC-BY-SA, if you distribute this document or an adaptation of it, you mustprovide the URL for the original version.Red Hat, as the licensor of this document, waives the right to enforce, and agrees not to assert,Section 4d of CC-BY-SA to the fullest extent permitted by applicable law.Red Hat, Red Hat Enterprise Linux, the Shadowman logo, JBoss, OpenShift, Fedora, the Infinitylogo, and RHCE are trademarks of Red Hat, Inc., registered in the United States and othercountries.Linux is the registered trademark of Linus Torvalds in the United States and other countries.Java is a registered trademark of Oracle and/or its affiliates.XFS is a trademark of Silicon Graphics International Corp. or its subsidiaries in the United Statesand/or other countries.MySQL is a registered trademark of MySQL AB in the United States, the European Union andother countries.Node.js is an official trademark of Joyent. Red Hat Software Collections is not formally related toor endorsed by the official Joyent Node.js open source or commercial project.The OpenStack Word Mark and OpenStack logo are either registered trademarks/service marksor trademarks/service marks of the OpenStack Foundation, in the United States and other countriesand are used with the OpenStack Foundation's permission. We are not affiliated with, endorsed orsponsored by the OpenStack Foundation, or the OpenStack community.All other trademarks are the property of their respective owners.AbstractThis guide details the different procedures for using and managing persistent storage in a Red HatOpenStack Platform environment. It also includes procedures for configuring and managing therespective OpenStack service of each persistent storage type.
Table of ContentsTable of Contents. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .4. . . . . . . . . .PREFACE.CHAPTER. . . . . . . . .1. .INTRODUCTION. . . . . . . . . . . . . . TO. . . PERSISTENT. . . . . . . . . . . .STORAGE. . . . . . . . . IN. . .OPENSTACK. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5. . . . . . . . . .1.1. SCALABILITY AND BACK END61.2. ACCESSIBILITY AND ADMINISTRATION61.3. SECURITY71.4. REDUNDANCY AND DISASTER RECOVERY7.CHAPTER. . . . . . . . .2. .BLOCK. . . . . . .STORAGE. . . . . . . . . AND. . . . VOLUMES. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9. . . . . . . . . .2.1. BACK ENDS92.2. BLOCK STORAGE SERVICE ADMINISTRATION92.2.1. Group Volume Settings with Volume Types92.2.1.1. List a Host Driver’s Capabilities102.2.1.2. Create and Configure a Volume Type112.2.1.3. Edit a Volume Type122.2.1.4. Delete a Volume Type122.2.1.5. Create and Configure Private Volume Types122.2.2. Create and Configure an Internal Tenant for the Block Storage Service132.2.3. Configure and Enable the Image-Volume Cache2.2.4. Use Quality-of-Service Specifications2.2.4.1. Create and Configure a QOS Spec1415152.2.4.2. Associate a QOS Spec with a Volume Type2.2.4.3. Disassociate a QOS Spec from a Volume Type16162.2.5. Configure Volume Encryption2.2.5.1. Configure Volume Type Encryption16172.2.6. Configure How Volumes are Allocated to Multiple Back Ends2.2.7. Configure and Use Consistency Groups17182.2.7.1. Set Up Consistency Groups2.2.7.2. Create and Manage Consistency Groups2.2.7.3. Create and Manage Consistency Group Snapshots2.2.7.4. Clone Consistency Groups2.2.8. Backup Administration2.2.8.1. View and Modify a Tenant’s Backup Quota2.2.8.2. Enable Volume Backup Management Through the Dashboard2.2.8.3. Set an NFS Share as a Backup Repository19202121222222232.2.8.3.1. Set a Different Backup File Size2.3. BASIC VOLUME USAGE AND CONFIGURATION2.3.1. Create a Volume2.3.2. Specify Back End for Volume Creation2.3.3. Edit a Volume’s Name or Description24242425262.3.4. Delete a Volume2.3.5. Attach and Detach a Volume to an Instance2.3.5.1. Attach a Volume to an Instance2.3.5.2. Detach a Volume From an Instance262626272.3.6. Set a Volume to Read-Only2.3.7. Change a Volume’s Owner2.3.7.1. Transfer a Volume from the Command Line2.3.7.2. Transfer a Volume Using the Dashboard272727282.3.8. Create, Use, or Delete Volume Snapshots2.3.8.1. Protected and Unprotected Snapshots in a Red Hat Ceph Back End2.3.9. Upload a Volume to the Image Service2.3.10. Changing a Volume’s Type (Volume Re-typing)292930301
Red Hat OpenStack Platform 9 Storage Guide2.4. ADVANCED VOLUME CONFIGURATION312.4.1. Back Up and Restore a Volume2.4.1.1. Create a Full Volume Backup2.4.1.1.1. Create a Volume Backup as an Admin2.4.1.2. Create an Incremental Volume Backup313133332.4.1.3. Restore a Volume After a Block Storage Database Loss2.4.1.4. Restore a Volume from a Backup2.4.2. Migrate a Volume2.4.2.1. Migrating Between Back Ends34343535.CHAPTER. . . . . . . . .3. .OBJECT. . . . . . . .STORAGE. . . . . . . . .AND. . . . CONTAINERS. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .37.3.1. OBJECT STORAGE SERVICE ADMINISTRATION373.1.1. Set Object Storage as a Back End for the Image Service3.2. BASIC CONTAINER MANAGEMENT3.2.1. Create a Container3.2.2. Create Pseudo Folder for Container373838383.2.3. Delete a Container3.2.4. Upload an Object39393.2.5. Copy an Object3.2.6. Delete an Object3940. . . . . . . . . .4. .FILECHAPTER. . . . SHARES. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .41.2
Table of Contents3
Red Hat OpenStack Platform 9 Storage GuidePREFACERed Hat OpenStack Platform (Red Hat OpenStack Platform) provides the foundation to build aprivate or public Infrastructure-as-a-Service (IaaS) cloud on top of Red Hat Enterprise Linux. It offersa massively scalable, fault-tolerant platform for the development of cloud-enabled workloads.This guide discusses procedures for creating and managing persistent storage. Within OpenStack,this storage is provided by three main services:Block Storage (openstack-cinder)Object Storage (openstack-swift)Shared File System Storage (openstack-manila), currently a Technology PreviewThese services provide different types of persistent storage, each with its own set of advantages indifferent use cases. This guide discusses the suitability of each for general enterprise storagerequirements.You can manage cloud storage using either the OpenStack dashboard or the command-line clients.Most procedures can be carried out using either method; some of the more advanced procedurescan only be executed on the command line. This guide provides procedures for the dashboardwhere possible.NoteFor the complete suite of documentation for Red Hat OpenStack Platform, see Red HatOpenStack Platform Documentation.4
CHAPTER 1. INTRODUCTION TO PERSISTENT STORAGE IN OPENSTACKCHAPTER 1. INTRODUCTION TO PERSISTENT STORAGE INOPENSTACKOpenStack recognizes two types of storage: ephemeral and persistent. Ephemeral storage isstorage that is associated only to a specific Compute instance. Once that instance is terminated, sois its ephemeral storage. This type of storage is useful for basic runtime requirements, such asstoring the instance’s operating system.Persistent storage, on the other hand, is designed to survive ("persist") independent of any runninginstance. This storage is used for any data that needs to be reused, either by different instances orbeyond the life of a specific instance. OpenStack uses the following types of persistent storage:VolumesThe OpenStack Block Storage service (openstack-cinder) allows users to access blockstorage devices through volumes. Users can attach volumes to instances in order toaugment their ephemeral storage with general-purpose persistent storage. Volumes can bedetached and re-attached to instances at will, and can only be accessed through theinstance they are attached to.Volumes also provide inherent redundancy and disaster recovery through backups andsnapshots. In addition, you can also encrypt volumes for added security. For moreinformation about volumes, see Chapter 2, Block Storage and Volumes.NoteInstances can also be configured to use absolutely no ephemeral storage. In suchcases, the Block Storage service can write images to a volume; in turn, thevolume can be used as a bootable root volume for an instance.ContainersThe OpenStack Object Storage service (openstack-swift) provides a fully-distributedstorage solution used to store any kind of static data or binary object, such as media files,large datasets, and disk images. The Object Storage service organizes these objectsthrough containers.While a volume’s contents can only be accessed through instances, the objects inside acontainer can be accessed through the Object Storage REST API. As such, the ObjectStorage service can be used as a repository by nearly every service within the cloud. Forexample, the Data Processing service (openstack-sahara) can manage all of its binaries,data input, data output, and templates directly through the Object Storage service.SharesThe Shared File System Service (openstack-manila) provides the means to easilyprovision remote, shareable file systems, or shares. Shares allow tenants within the cloud toopenly share storage, and can be consumed by multiple instances simultaneously.5
Red Hat OpenStack Platform 9 Storage GuideImportantThe OpenStack Shared File System service is available in this release as a TechnologyPreview, and therefore is not fully supported by Red Hat. It should only be used for testing,and should not be deployed in a production environment. For more information aboutTechnology Preview features, see Scope of Coverage Details.Each storage type is designed to address specific storage requirements. Containers are designedfor wide access, and as such feature the highest throughput, access, and fault tolerance among allstorage types. Container usage is geared more towards services.On the other hand, volumes are used primarily for instance consumption. They do not enjoy thesame level of access and performance as containers, but they do have a larger feature set and havemore native security features than containers. Shares are similar to volumes in this regard, exceptthat they can be consumed by multiple instances.The following sections discuss each storage type’s architecture and feature set in detail, within thecontext of specific storage criteria.1.1. SCALABILITY AND BACK ENDIn general, a clustered storage solution provides greater back end scalability. For example, whenusing Red Hat Ceph as a Block Storage back end, you can scale storage capacity and redundancyby adding more Ceph OSD (Object Storage Daemon) nodes. Both Block Storage and ObjectStorage services support Red Hat Ceph as a back end.The Block Storage service can use multiple storage solutions as discrete back ends. At the backend level, you can scale capacity by adding more back ends and restarting the service. The BlockStorage service also features a large list of supported back end solutions, some of which featureadditional scalability features.By default, the Object Storage service uses the file system on configured storage nodes, and canuse as much space as is available. The Object Storage service supports the XFS and ext4 filesystems, and both can be scaled up to consume as much available underlying block storage. Youcan also scale capacity by adding more storage devices to the storage node.The Shared File System Service provisions shares backed by storage from a separate storage pool.This pool (which is typically managed by a third-party back end service) provides the share withstorage at the file system level. The Shared File System Service can use both NetApp and CephFS,which can be configured to use a storage pool of pre-created volumes which provisioned shares canuse for storage. In either deployment, scaling involves adding more volumes to the pool.1.2. ACCESSIBILITY AND ADMINISTRATIONVolumes are consumed only through instances, and can only be attached to and mounted withinone instance at a time. Users can create snapshots of volumes, which can be used for cloning orrestoring a volume to a previous state (see Section 1.4, “Redundancy and Disaster Recovery”). TheBlock Storage service also allows you to create volume types, which aggregate volume settings (forexample, size and back end) that can be easily invoked by users when creating new volumes.These types can be further associated with Quality-of-Service specifications, which allow you tocreate different storage tiers for users.Like volumes, shares are consumed through instances. However, shares can be directly mountedwithin an instance, and do not need to be attached through the dashboard or CLI. Shares can also6
CHAPTER 1. INTRODUCTION TO PERSISTENT STORAGE IN OPENSTACKbe mounted by multiple instances simultaneously. The File Share Service also supports sharesnapshots and cloning; you can also create share types to aggregate settings (similar to volumetypes).Objects in a container are accessible via API, and can be made accessible to instances and serviceswithin the cloud. This makes them ideal as object repositories for services; for example, the Imageservice (openstack-glance) can store its images in containers managed by the Object Storageservice.1.3. SECURITYThe Block Storage service provides basic data security through volume encryption. With this, youcan configure a volume type to be encrypted through a static key; the key will then be used forencrypting all volumes created from the configured volume type. See Section 2.2.5, “ConfigureVolume Encryption” for more details.Object and container security, on the other hand, is configured at the service and node level. TheObject Storage service provides no native encryption for containers and objects. Rather, the ObjectStorage service prioritizes accessibility within the cloud, and as such relies solely on the cloud’snetwork security in order to protect object data.The File Share Service can secure shares through access restriction, whether by instance IP,user/group, or TLS certificate. In addition, some File Share Service deployments can feature aseparate share servers to manage the relationship between share networks and shares; someshare servers support (or even require) additional network security. For example, a CIFS shareserver requires the deployment of an LDAP, Active Directory, or Kerberos authentication service.1.4. REDUNDANCY AND DISASTER RECOVERYThe Block Storage service features volume backup and restoration, providing basic disasterrecovery for user storage. Backups allow you to protect volume contents. On top of this, the servicealso supports snapshots; aside from cloning, snapshots are also useful in restoring a volume to aprevious state.In a multi-backend environment, you can also migrate volumes between back ends. This is useful ifyou need to take a back end offline for maintenance. Backups are typically stored in a storage backend separate from their source volumes to help protect the data. This is not possible, however, withsnapshots, as snapshots are dependent on their source volumes.The Block Storage service also supports the creation of consistency groups, which allow you togroup volumes together for simultaneous snapshot creation. This, in turn, allows for a greater levelof data consistency across multiple volumes. See Section 2.2.7, “Configure and Use ConsistencyGroups” for more details.Finally, the Block Storage service also features volume replication. This allows you to configurevolumes to replicate content between each other, thereby providing basic redundancy.NoteVolume replication is only available through specific third-party back ends and theirrespective drivers.7
Red Hat OpenStack Platform 9 Storage GuideThe Object Storage service provides no built-in backup features. As such, all backups must beperformed at the file system or node level. The service, however, features more robust redundancyand fault tolerance; even the most basic deployment of the Object Storage service replicates objectsmultiple times. You can use failover features like dm-multipath to enhance redundancy.The File Share Service provides no built-in backup features for shares, but it does allow you tocreate snapshots for cloning and restoration.8
CHAPTER 2. BLOCK STORAGE AND VOLUMESCHAPTER 2. BLOCK STORAGE AND VOLUMESThe Block Storage service (openstack-cinder) manages the administration, security, scheduling,and overall management of all volumes. Volumes are used as the primary form of persistent storagefor Compute instances.2.1. BACK ENDSBy default, the Block Storage service uses an LVM back end as a repository for volumes. While thisback end is suitable for test environments, we advise that you deploy a more robust back end for anEnterprise environment.When deploying Red Hat OpenStack Platform for the environment, we recommand using thedirector. Doing so helps ensure the proper configuration of each service, including the BlockStorage service (and, by extension, its back end). The director also has several integrated back endconfigurations.Red Hat OpenStack Platform supports Red Hat Ceph and NFS as Block Storage back ends. Forinstructions on how to deploy either, see Director Installation and Usage. In particular:Ceph Storage (overview), Ceph Storage Node Requirements (requirements), and Red Hat CephStorage for the Overcloud (deployment instructions)Configuring NFS StorageThird-Party Storage ProvidersYou can also configure the Block Storage service to use supported third-party storage appliances.The director includes the necessary components for easily deploying the following:Dell EqualLogicDell Storage CenterNetApp (for supported appliances)Fujitsu Eternus is also supported as a back end, but is not yet integrated into the Director. Forinstructions on how to deploy a custom (non-integrated) back end, see Custom Block Storage BackEnd Deployment Guide.For a complete list of supported back end appliances and drivers, see Component, Plug-In, andDriver Support in RHEL OpenStack Platform.2.2. BLOCK STORAGE SERVICE ADMINISTRATIONThe following procedures explain how to configure the Block Storage service to suit your needs. Allof these procedures require administrator privileges.2.2.1. Group Volume Settings with Volume TypesOpenStack allows you to create volume types, which allows you apply the type’s associatedsettings. You can apply these settings during volume creation (Section 2.3.1, “Create a Volume”) oreven afterwards (Section 2.3.10, “Changing a Volume’s Type (Volume Re-typing)”). For example,you can associate:9
Red Hat OpenStack Platform 9 Storage GuideWhether or not a volume is encrypted (Section 2.2.5.1, “Configure Volume Type Encryption”)Which back end a volume should use (Section 2.3.2, “Specify Back End for Volume Creation”and Section 2.4.2.1, “Migrating Between Back Ends”)Quality-of-Service (QoS) SpecsSettings are associated with volume types using key-value pairs called Extra Specs. When youspecify a volume type during volume creation, the Block Storage scheduler applies these key/valuepairs as settings. You can associate multiple key/value pairs to the same volume type.Volume types provide the capab
Red Hat OpenStack Platform (Red Hat OpenStack Platform) provides the foundation to build a private or public Infrastructure-as-a-Service (IaaS) cloud on top of Red Hat Enterprise Linux. It offers a massively scalable, fault-tolerant platform for the development of cloud-enabled workloads.
1.4. set environment variables using the openstack rc file c a t o e st c o an - i e c n 2.1. openstack usage 2.2. openstack optional arguments 2.3. openstack acl delete 2.4. openstack acl get 2.5. openstack acl submit 2.6. openstack acl user add 2.7. openstack acl user remove 2.8. openstack action definition create 2.9. openstack action .
As 20 melhores certificações e cursos do Red Hat Linux Red Hat Certified System Administrator (RHCSA) Engenheiro Certificado Red Hat (RHCE) Red Hat Certified Enterprise Application Developer Red Hat Certified Architect (RHCA) Engenheiro certificado pela Red Hat no Red Hat OpenStack. Administração do Red Hat Enterprise Linux (EL) Desenvolvedor de microsserviços corporativos com .
The Red Hat OpenStack Platform director uses two main concepts: an undercloud and an overcloud. The undercloud installs and configures the overcloud. For more information about the Red Hat OpenStack Platform director architecture, see the Director Installation and Usage guide. Figure 1.1. OpenStack Platform Director — undercloud and overcloud
Red Hat Enterprise Linux 6 Security Guide A Guide to Securing Red Hat Enterprise Linux Mirek Jahoda Red Hat Customer Content Services mjahoda@redhat.com Robert Krátký Red Hat Customer Content Services Martin Prpič Red Hat Customer Content Services Tomáš Čapek Red Hat Customer Content Services Stephen Wadeley Red Hat Customer Content Services Yoana Ruseva Red Hat Customer Content Services .
OpenStack Foundation, the average OpenStack deployment deploys 11 OpenStack services.3 Director is the integrated deployment and life-cycle management tool included with Red Hat OpenStack Platform. Integration with Red Hat's management and automation tools allows you to use an infrastructure-as-code approach
and are used with the OpenStack Foundation's permission. We are not affiliated with, endorsed or sponsored by the OpenStack Foundation, or the OpenStack community. All other trademarks are the property of their respective owners. Abstract This guide provides information on Red Hat OpenDaylight installation and configuration.
IBM Bluemix Private Cloud with Red Hat Red Hat OpenStack Platform IBM Global Data Center Pure OpEx Dedicated IBM Bluemix Private Cloud as a Service IBM Bluemix Private Cloud with Red Hat is a certified and managed deployment of Red Hat OpenStack Platform. IBM Bluemix Private Clo
accounting standards (for domestic filing purposes) and IFRS as issued by the IASB (or other permitted equivalent standards) for the subsidiary, the parent company or the whole group (for the purposes of the EEA listing). We would urge any companies that may be affected by this change to check with the relevant EEA competent authority as soon as possible so that they are clear what .
