The main and most important difference is that thanks to The layout described in the above mentioned post is still valid. The only difference is that this time the back-end iSCSI servers are running Ubuntu-14.04.4 LTS, the front-end initiator servers Debian-8.3 Jessie and different subnets are being used.<\/p>\n What was said here in the previous post about iSCSI and the choice of SCST for the task over other solutions goes here as well, especially since we want to use ALUA which is well matured and documented in SCST. The only difference is that I’ll be using the and on hpms02:<\/p>\n I will not go into details this time. Started by installing some prerequisites:<\/p>\n and fetching the SCST source code from SVN as per usual on both nodes:<\/p>\n I didn’t bother re-compiling the kernel to gain some additional benefits in speed this time since in one of my tests on Ubuntu it failed after 2 hours of compiling so decided it’s not worth the effort. Plus I’m sure this step is not even needed for the latest kernels.<\/p>\n Nothing new here, will just show the resource configuration file where the only noticeable difference is and then perform the initial sync on one of them selecting it as When the sync is complete we just promote the other node to primary too:<\/p>\n after which we have:<\/p>\n In production environment we also need to adjust fencing mechanism to We install needed packages as per usual, this being Ubuntu cloud image I’m using for the VM’s I need to install linux-image-extra-virtual package that provides the clustering goodies:<\/p>\n Then the rest of the software:<\/p>\n Then comes the Corosync configuration file Starting with Corosync-2.0 new Then we set Pacemaker parameters for 2 nodes cluster (on one node only):<\/p>\n And finally take care of the auto start:<\/p>\n Now we can set DRBD under Pacemaker control (on one of the nodes):<\/p>\n after which the cluster state will be:<\/p>\n Since our servers are VM’s running in The We also need to install the libvirt-bin package to have virsh utility available in the VM’s:<\/p>\n Then to enable VM fencing and support live VM migration in the hypervizor, we edit the hypervizor host libvirtd config first and restart:<\/p>\n After all this has been setup we should be able to access the hypervizor from within our VM’s:<\/p>\n meaning the fencing should now work. To test it:<\/p>\n but we need to add the hpms01 and hpms02 public ssh keys to the hypervisor’s Another option is using external\/libvirt device in which case we don’t need to fiddle with ssh and works over TCP:<\/p>\n We can confirm it’s been started:<\/p>\n In production bare metal server this would be a real remote management dedicated device\/card like ILO, iDRAC, IPMI (depending on the server brand) or network managed UPS unit. Example for IPMI LAN device:<\/p>\n The This is a special case. If the VM’s are running on AWS we need a fencing agent available at fence_ec2<\/a>.<\/p>\n Then the fence primitive would look something like this:<\/p>\n So we need to point the resource to our AWS environment and the API keys to use.<\/p>\n What was said in Highly Available iSCSI Storage with Pacemaker and DRBD about DLM problems in Ubuntu applies here too. After sorting out the issues as described in that article we proceed to creating the vg1 volume group, which thanks to CLVM will be clustered,and the Logical Volume (on one node only) which is describe in more details in Highly Available Replicated Storage with Pacemaker and DRBD in Dual-Primary mode. First we set some LVM parameters in to tell LVM to loock for VGs on the DRBD devices only and change the locking type to cluster. Then we can create the volume.<\/p>\n Although we created the VG on the first node, if we run vgdisplay on the other node we will be able to see the Volume Group there as well. Then we configure the resources in Pacemaker:<\/p>\n after which the state is:<\/p>\nALUA<\/code> (Asymetric Logical Unit Access) the back-end iSCSI storage can work in Active\/Active<\/code> setup thus providing faster fail-over since in this case the resources are not being moved around. Instead, the initiator that now has the paths to the same target on both back-end servers available, can detect when the current active path has failed and quickly switch to the spare one.<\/p>\niSCSI Target Servers Setup<\/span><\/h1>\n
vdisk_blockio<\/code> handler for the LUN’s instead of vdisk_fileio<\/code> in this case since I want to test its performance too. This is the network configuration on the iSCSI hosts, hpms01:<\/p>\nroot@hpms01:~# ifconfig\neth0 Link encap:Ethernet HWaddr 52:54:00:c5:a7:94 \n inet addr:192.168.122.99 Bcast:192.168.122.255 Mask:255.255.255.0\n inet6 addr: fe80::5054:ff:fec5:a794\/64 Scope:Link\n UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1\n RX packets:889537 errors:0 dropped:10 overruns:0 frame:0\n TX packets:271329 errors:0 dropped:0 overruns:0 carrier:0\n collisions:0 txqueuelen:1000\n RX bytes:117094884 (117.0 MB) TX bytes:43494633 (43.4 MB)\n\neth1 Link encap:Ethernet HWaddr 52:54:00:da:f7:ae \n inet addr:192.168.152.99 Bcast:192.168.152.255 Mask:255.255.255.0\n inet6 addr: fe80::5054:ff:feda:f7ae\/64 Scope:Link\n UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1\n RX packets:512956 errors:0 dropped:10 overruns:0 frame:0\n TX packets:270358 errors:0 dropped:0 overruns:0 carrier:0\n collisions:0 txqueuelen:1000\n RX bytes:60843899 (60.8 MB) TX bytes:38435981 (38.4 MB)\n<\/code><\/pre>\neth0 Link encap:Ethernet HWaddr 52:54:00:da:95:17 \n inet addr:192.168.122.98 Bcast:192.168.122.255 Mask:255.255.255.0\n inet6 addr: fe80::5054:ff:feda:9517\/64 Scope:Link\n UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1\n RX packets:455133 errors:0 dropped:12 overruns:0 frame:0\n TX packets:697089 errors:0 dropped:0 overruns:0 carrier:0\n collisions:0 txqueuelen:1000\n RX bytes:59913508 (59.9 MB) TX bytes:93174506 (93.1 MB)\n\neth1 Link encap:Ethernet HWaddr 52:54:00:6b:56:12 \n inet addr:192.168.152.98 Bcast:192.168.152.255 Mask:255.255.255.0\n inet6 addr: fe80::5054:ff:fe6b:5612\/64 Scope:Link\n UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1\n RX packets:296660 errors:0 dropped:12 overruns:0 frame:0\n TX packets:485093 errors:0 dropped:0 overruns:0 carrier:0\n collisions:0 txqueuelen:1000\n RX bytes:32516767 (32.5 MB) TX bytes:63285013 (63.2 MB)\n<\/code><\/pre>\nSCST<\/span><\/h2>\n
# aptitude install fakeroot kernel-wedge build-essential makedumpfile kernel-package libncurses5 libncurses5-dev gcc libncurses5-dev linux-headers-$(uname -r) lsscsi patch subversion lldpad\n<\/code><\/pre>\n# svn checkout svn:\/\/svn.code.sf.net\/p\/scst\/svn\/trunk scst-trunk\n# cd scst-trunk\n# make scst scst_install iscsi iscsi_install scstadm scstadm_install srpt srpt_install\n<\/code><\/pre>\nDRBD<\/span><\/h2>\n
\/etc\/drbd.d\/vg1.res<\/code> for vg1<\/code> after we install the drbd8-utils<\/code> package first of course:<\/p>\nresource vg1 {\n startup {\n wfc-timeout 300;\n degr-wfc-timeout 120;\n outdated-wfc-timeout 120;\n become-primary-on both;\n }\n syncer {\n rate 40M;\n }\n disk {\n on-io-error detach;\n fencing resource-only;\n al-extents 3389;\n c-plan-ahead 0;\n }\n handlers {\n fence-peer \"\/usr\/lib\/drbd\/crm-fence-peer.sh\";\n after-resync-target \"\/usr\/lib\/drbd\/crm-unfence-peer.sh\";\n outdate-peer \"\/usr\/lib\/heartbeat\/drbd-peer-outdater\";\n }\n options {\n on-no-data-accessible io-error;\n #on-no-data-accessible suspend-io;\n }\n net {\n allow-two-primaries;\n timeout 60;\n ping-timeout 30;\n ping-int 30;\n cram-hmac-alg \"sha1\";\n shared-secret \"secret\";\n max-epoch-size 8192;\n max-buffers 8912;\n sndbuf-size 512k;\n rr-conflict disconnect;\n after-sb-0pri discard-zero-changes;\n after-sb-1pri discard-secondary;\n after-sb-2pri disconnect;\n }\n volume 0 {\n device \/dev\/drbd0;\n disk \/dev\/sda;\n meta-disk internal;\n }\n on hpms01 {\n address 192.168.152.99:7788;\n }\n on hpms02 {\n address 192.168.152.98:7788;\n\n}\n<\/code><\/pre>\nallow-two-primaries<\/code> in the net section, which allows DRBD to become Active on both nodes. The rest is same, we create the meta-data on both nodes and activate the resource:<\/p>\n# drbdadm create-md vg1\n# drbdadm up vg1\n<\/code><\/pre>\nMaster<\/code>:<\/p>\n# drbdadm primary --force vg1\n<\/code><\/pre>\n# drbdadm primary vg1\n<\/code><\/pre>\nroot@hpms01:~# cat \/proc\/drbd\nversion: 8.4.3 (api:1\/proto:86-101)\nsrcversion: 6551AD2C98F533733BE558C\n 0: cs:Connected ro:Primary\/Primary ds:UpToDate\/UpToDate C r-----\n ns:0 nr:0 dw:0 dr:20372 al:0 bm:0 lo:0 pe:0 ua:0 ap:0 ep:1 wo:f oos:0\n<\/code><\/pre>\nfencing resource-and-stonith;<\/code> so DRBD passes this task to Pacemaker<\/code> once we have STONITH<\/code> tested and working on the bare metal servers.<\/p>\nCorosync and Pacemaker<\/span><\/h2>\n
# aptitude install linux-image-extra-virtual\n# shutdown -r now\n<\/code><\/pre>\n# aptitude install heartbeat pacemaker corosync fence-agents openais cluster-glue resource-agents dlm lvm2 clvm drbd8-utils sg3-utils\n<\/code><\/pre>\n\/etc\/corosync\/corosync.conf<\/code> with double ring setup:<\/p>\ntotem {\n version: 2\n\n # How long before declaring a token lost (ms)\n token: 3000\n\n # How many token retransmits before forming a new configuration\n token_retransmits_before_loss_const: 10\n\n # How long to wait for join messages in the membership protocol (ms)\n join: 60\n\n # How long to wait for consensus to be achieved before starting a new round of membership configuration (ms)\n consensus: 3600\n\n # Turn off the virtual synchrony filter\n vsftype: none\n\n # Number of messages that may be sent by one processor on receipt of the token\n max_messages: 20\n\n # Stagger sending the node join messages by 1..send_join ms\n send_join: 45\n\n # Limit generated nodeids to 31-bits (positive signed integers)\n clear_node_high_bit: yes\n\n # Disable encryption\n secauth: off\n\n # How many threads to use for encryption\/decryption\n threads: 0\n\n # Optionally assign a fixed node id (integer)\n # nodeid: 1234\n\n # CLuster name, needed for DLM or DLM wouldn't start\n cluster_name: iscsi\n\n # This specifies the mode of redundant ring, which may be none, active, or passive.\n rrp_mode: active\n\n interface {\n ringnumber: 0\n bindnetaddr: 192.168.152.99\n mcastaddr: 226.94.1.1\n mcastport: 5404\n }\n interface {\n ringnumber: 1\n bindnetaddr: 192.168.122.99\n mcastaddr: 226.94.41.1\n mcastport: 5405\n }\n transport: udpu\n}\nnodelist {\n node {\n ring0_addr: 192.168.152.99\n ring1_addr: 192.168.122.99\n nodeid: 1\n }\n node {\n ring0_addr: 192.168.152.98\n ring1_addr: 192.168.122.99\n nodeid: 2\n }\n}\nquorum {\n provider: corosync_votequorum\n expected_votes: 2\n two_node: 1\n wait_for_all: 1\n}\namf {\n mode: disabled\n}\nservice {\n # Load the Pacemaker Cluster Resource Manager\n # if 0: start pacemaker\n # if 1: don't start pacemaker\n ver: 1\n name: pacemaker\n}\naisexec {\n user: root\n group: root\n}\nlogging {\n fileline: off\n to_stderr: yes\n to_logfile: no\n to_syslog: yes\n syslog_facility: daemon\n debug: off\n timestamp: on\n logger_subsys {\n subsys: subsys: QUORUM\n debug: off\n tags: enter|leave|trace1|trace2|trace3|trace4|trace6\n }\n}\n<\/code><\/pre>\nquorum<\/code> section has been introduced. For 2-node<\/code> cluster it looks like in the setup above and is very important for proper operation. The option two_node: 1<\/code> tells Corosync this is 2-node cluster and enables the cluster to remain operational when one node powers down or crashes. It implies expected_votes: 2<\/code> to be setup too. The option wait_for_all: 1<\/code> means though that BOTH<\/strong> nodes need to be running in order for the cluster to become operational. This is to prevent split-brain situation in case of partitioned cluster on startup.<\/p>\nroot@hpms02:~# crm configure property stonith-enabled=false\nroot@hpms02:~# crm configure property no-quorum-policy=ignore\n\nroot@hpms02:~# crm status\nLast updated: Sat Mar 5 11:53:20 2016\nLast change: Sat Mar 5 09:53:00 2016 via cibadmin on hpms02\nStack: corosync\nCurrent DC: hpms01 (1) - partition with quorum\nVersion: 1.1.10-42f2063\n2 Nodes configured\n0 Resources configured\n\nOnline: [ hpms01 hpms02 ]\n<\/code><\/pre>\nroot@hpms02:~# update-rc.d corosync enable\nroot@hpms01:~# update-rc.d -f pacemaker remove\nroot@hpms01:~# update-rc.d pacemaker start 50 1 2 3 4 5 . stop 01 0 6 .\nroot@hpms01:~# update-rc.d pacemaker enable\n<\/code><\/pre>\nroot@hpms01:~# crm configure\ncrm(live)configure# primitive p_drbd_vg1 ocf:linbit:drbd \\\n params drbd_resource=\"vg1\" \\\n op monitor interval=\"10\" role=\"Master\" \\\n op monitor interval=\"20\" role=\"Slave\" \\\n op start interval=\"0\" timeout=\"240\" \\\n op stop interval=\"0\" timeout=\"100\"\nms ms_drbd p_drbd_vg1 \\\n meta master-max=\"2\" master-node-max=\"1\" clone-max=\"2\" clone-node-max=\"1\" notify=\"true\" interleave=\"true\"\ncrm(live)configure# commit\ncrm(live)configure# quit\nbye\nroot@hpms01:~#\n<\/code><\/pre>\nroot@hpms01:~# crm status\nLast updated: Wed Mar 9 04:09:38 2016\nLast change: Tue Mar 8 12:24:13 2016 via crmd on hpms01\nStack: corosync\nCurrent DC: hpms02 (2) - partition with quorum\nVersion: 1.1.10-42f2063\n2 Nodes configured\n10 Resources configured\n\n\nOnline: [ hpms01 hpms02 ]\n\n Master\/Slave Set: ms_drbd [p_drbd_vg1]\n Masters: [ hpms01 hpms02 ]\n<\/code><\/pre>\nFencing<\/span><\/h2>\n
Libvirt\/KVM<\/code> we can use the fence_virsh<\/code> STONITH device in this case and we enable the STONITH feature in Pacemaker:<\/p>\nprimitive p_fence_hpms01 stonith:fence_virsh \\\n params action=\"reboot\" ipaddr=\"vm-host\" \\\n login=\"root\" identity_file=\"\/root\/.ssh\/id_rsa\" \\\n port=\"hpms01\"\nprimitive p_fence_hpms02 stonith:fence_virsh \\\n params action=\"reboot\" ipaddr=\"vm-host\" \\\n login=\"root\" identity_file=\"\/root\/.ssh\/id_rsa\" \\\n port=\"hpms02\"\nlocation l_fence_hpms01 p_fence_hpms01 -inf: hpms01.virtual.local\nlocation l_fence_hpms02 p_fence_hpms02 -inf: hpms02.virtual.local\nproperty stonith-enabled=\"true\"\ncommit\n<\/code><\/pre>\nlocation<\/code> parameter takes care that the fencing device for hpms01 never ends up on hpms01 and same for hpms02, a node fencing it self does not make any sense. The port<\/code> parameter tells libvirt which VM needs rebooting.<\/p>\nroot@hpms01:~# aptitude install libvirt-bin\n<\/code><\/pre>\n\/etc\/libvirt\/libvirtd.conf<\/code> as shown bellow:<\/p>\n...\nlisten_tls = 0\nlisten_tcp = 1\ntcp_port = \"16509\"\nauth_tcp = \"none\"\n...\n<\/code><\/pre>\n# service libvirt-bin restart\n<\/code><\/pre>\nroot@hpms01:~# virsh --connect=qemu+tcp:\/\/192.168.1.210\/system list --all\n Id Name State\n----------------------------------------------------\n 15 hpms01 running\n 16 hpms02 running\n 17 proxmox01 running\n 18 proxmox02 running\n<\/code><\/pre>\nroot@hpms01:~# fence_virsh -a 192.168.1.210 -l root -k ~\/.ssh\/id_rsa -n hpms02 -o status\nStatus: ON\n\nroot@hpms02:~# fence_virsh -a 192.168.1.210 -l root -k ~\/.ssh\/id_rsa -n hpms01 -o status\nStatus: ON\n<\/code><\/pre>\n\/root\/.ssh\/authorized_keys<\/code> file for password-less login.<\/p>\nprimitive p_fence_hpms01 stonith:external\/libvirt \\\n params hostlist=\"hpms01\" \\\n hypervisor_uri=\"qemu+tcp:\/\/192.168.1.210\/system\" \\\n op monitor interval=\"60s\"\nprimitive p_fence_hpms02 stonith:external\/libvirt \\\n params hostlist=\"hpms02\" \\\n hypervisor_uri=\"qemu+tcp:\/\/192.168.1.210\/system\" \\\n op monitor interval=\"60s\"\nlocation l_fence_hpms01 p_fence_hpms01 -inf: hpms01.virtual.local\nlocation l_fence_hpms02 p_fence_hpms02 -inf: hpms02.virtual.local\nproperty stonith-enabled=\"true\"\ncommit\n<\/code><\/pre>\nroot@hpms01:~# crm status\nLast updated: Fri Mar 18 01:53:38 2016\nLast change: Fri Mar 18 01:51:01 2016 via cibadmin on hpms01\nStack: corosync\nCurrent DC: hpms02 (2) - partition with quorum\nVersion: 1.1.10-42f2063\n2 Nodes configured\n12 Resources configured\n\nOnline: [ hpms01 hpms02 ]\n\n Master\/Slave Set: ms_drbd [p_drbd_vg1]\n Masters: [ hpms01 hpms02 ]\n Clone Set: cl_lvm [p_lvm_vg1]\n Started: [ hpms01 hpms02 ]\n Master\/Slave Set: ms_scst [p_scst]\n Masters: [ hpms02 ]\n Slaves: [ hpms01 ]\n Clone Set: cl_lock [g_lock]\n Started: [ hpms01 hpms02 ]\n p_fence_hpms01 (stonith:external\/libvirt): Started hpms02\n p_fence_hpms02 (stonith:external\/libvirt): Started hpms01\n<\/code><\/pre>\nprimitive p_fence_hpms01 stonith:fence_ipmilan \\\n pcmk_host_list=\"pcmk-1\" ipaddr=\"<hpms01_ipmi_ip_address>\" \\\n action=\"reboot\" login=\"admin\" passwd=\"secret\" delay=15 \\\n op monitor interval=60s\nprimitive p_fence_hpms02 stonith:fence_ipmilan \\\n pcmk_host_list=\"pcmk-2\" ipaddr=\"<hpms02_ipmi_ip_address>\" \\\n action=\"reboot\" login=\"admin\" passwd=\"secret\" delay=5 \\\n op monitor interval=60s\nlocation l_fence_hpms01 p_fence_hpms01 -inf: hpms01.virtual.local\nlocation l_fence_hpms02 p_fence_hpms02 -inf: hpms02.virtual.local\nproperty stonith-enabled=\"true\"\ncommit\n<\/code><\/pre>\ndelay<\/code> parameter is needed to avoid dual-fencing in two-node clusters and prevent infinite fencing loop. The node with the delay=\"15\"<\/code> will have a 15 second head-start, so in a network partition triggered fence, the node with the delay should always live and the node without the delay will be immediately fenced.<\/p>\nAmazon EC2 fencing<\/span><\/h3>\n
# wget -O \/usr\/sbin\/fence_ec2 https:\/\/raw.githubusercontent.com\/beekhof\/fence_ec2\/392a146b232fbf2bf2f75605b1e92baef4be4a01\/fence_ec2\n# chmod 755 \/usr\/sbin\/fence_ec2\n<\/code><\/pre>\nprimitive stonith_my-ec2-nodes stonith:fence_ec2 \\\n params ec2-home=\"\/root\/ec2\" action=\"reboot\" \\\n pcmk_host_check=\"static-list\" \\\n pcmk_host_list=\"ec2-iscsi-01 ec2-iscsi-02\" \\\n op monitor interval=\"600s\" timeout=\"300s\" \\\n op start start-delay=\"30s\" interval=\"0\"\n<\/code><\/pre>\nDLM, CLVM, LVM<\/span><\/h2>\n
\/etc\/lvm\/lvm.conf<\/code>:<\/p>\n...\n filter = [ \"a|drbd.*|\", \"r|.*|\" ]\n write_cache_state = 0\n locking_type = 3\n...\n<\/code><\/pre>\nroot@hpms01:~# pvcreate \/dev\/drbd0\nroot@hpms01:~# vgcreate -c y vg1 \/dev\/drbd0\nroot@hpms01:~# lvcreate --name lun1 -l 100%vg vg1\n<\/code><\/pre>\nprimitive p_clvm ocf:lvm2:clvmd \\\n params daemon_timeout=\"30\" \\\n op monitor interval=\"60\" timeout=\"30\" \\\n op start interval=\"0\" timeout=\"90\" \\\n op stop interval=\"0\" timeout=\"100\"\nprimitive p_controld ocf:pacemaker:controld \\\n op monitor interval=\"60\" timeout=\"60\" \\\n op start interval=\"0\" timeout=\"90\" \\\n op stop interval=\"0\" timeout=\"100\" \\\n params daemon=\"dlm_controld\" \\\n meta target-role=\"Started\"\nprimitive p_lvm_vg1 ocf:heartbeat:LVM \\\n params volgrpname=\"vg1\" \\\n op start interval=\"0\" timeout=\"30\" \\\n op stop interval=\"0\" timeout=\"30\" \\\n op monitor interval=\"0\" timeout=\"30\"\nclone cl_lock g_lock \\\n meta globally-unique=\"false\" interleave=\"true\"\nclone cl_lvm p_lvm_vg1 \\\n meta interleave=\"true\" target-role=\"Started\" globally-unique=\"false\"\ncolocation co_drbd_lock inf: cl_lock ms_drbd:Master\ncolocation co_lock_lvm inf: cl_lvm cl_lock\norder o_drbd_lock inf: ms_drbd:promote cl_lock\norder o_lock_lvm inf: cl_lock cl_lvm\norder o_vg1 inf: ms_drbd:promote cl_lvm:start ms_scst:start\ncommit\n<\/code><\/pre>\nroot@hpms01:~# crm status\nLast updated: Wed Mar 9 04:20:39 2016\nLast change: Tue Mar 8 12:24:13 2016 via crmd on hpms01\nStack: corosync\nCurrent DC: hpms02 (2) - partition with quorum\nVersion: 1.1.10-42f2063\n2 Nodes configured\n10 Resources configured\n\nOnline: [ hpms01 hpms02 ]\n\n Master\/Slave Set: ms_drbd [p_drbd_vg1]\n Masters: [ hpms01 hpms02 ]\n Clone Set: cl_lvm [p_lvm_vg1]\n Started: [ hpms01 hpms02 ]\n Clone Set: cl_lock [g_lock]\n Started: [ hpms01 hpms02 ]\n<\/code><\/pre>\n