CL260 - ch13s03

Bookmark this page

Implementing Storage in OpenStack Components

Objectives

After completing this section, you should be able to describe how OpenStack implements Ceph storage for each storage-related OpenStack component.

OpenStack Storage Implementation Overview

Before Ceph, each of the storage components used local storage, such as direct attached physical or virtual disks, or network-attached storage (NAS), or storage area network (SAN) hardware. Use of NAS and SAN configurations supports larger storage that the control plane nodes can share, but that requires additional physical NICs or host adapters, limiting the ability of the control plane to scale easily.

The Network File System (NFS) is also a valid method for shared storage access across compute and controller nodes. Although mature and capable of significant performance and resilience when configured for redundancy, NFS has scaling limitations and was not designed for cloud application requirements. OpenStack needs a scalable storage solution design for use in the cloud.

Reviewing Ceph Capabilities in OSP

Ceph is a scalable storage solution that replicates data across commodity storage nodes. Ceph uses an object storage architecture for data storage, and provides multiple storage interfaces for object storage, block storage, and file systems.

Ceph integration with OpenStack features:

Supports the same API that the Swift Object Store uses.
Supports thin provisioning by using copy-on-write, making volume-based provisioning fast.
Supports Keystone identity authentication, for transparent integration with or replacement of the Swift Object Store.
Consolidates object storage and block storage.
Supports the CephFS distributed file system interface.

Storage Implementation by Type

Each OpenStack service is an API abstraction that hides the back-end implementation. Many services can configure multiple back ends for use simultaneously. A service might configure multiple pools in Ceph, and use tiering or tagging criteria for transparently selecting an appropriate storage pool. Tiers can also accommodate workloads with different performance requirements. If tiers are implemented in an existing cluster, then CRUSH rule changes can result in significant pool data movement.

OpenStack services use unique service accounts, which are called after the service. The service account runs service actions on behalf of the requesting user or of another service. Similar accounts are created in Ceph for each OpenStack service that requires storage access. For example, the Image service is configured for Ceph access by using this command:

[admin@node ~]# ceph auth get-or-create client.glance mon 'profile rbd' \
osd 'profile rbd pool=images' mgr 'profile rbd pool=images'

Image Storage

In OpenStack, the default back end for the Image service is a file store that is located with the Glance API node on the controller node. The location is configurable, with a default of /var/lib/glance. To improve scalability, the Image service implemented an image cache at the default /var/lib/glance/image-cache/ location on the controller node. When the Compute service loads images that are stored in the default QCOW2 format to convert to RAW for use on the compute nodes, then the converted image is cached.

When Red Hat OpenStack Platform is installed with the Swift Object Store, TripleO places the image service back end on Swift by default. The Swift service creates a container called glance for storing Glance images.

When Ceph storage is integrated into RHOSP, TripleO places the image service back end on Ceph RADOS Block Devices (RBD) by default. Glance images are stored in a Ceph pool called images. RHOSP works with images as immutable blobs and handles them accordingly. The pool name is configurable with the glance_pool_name property. The images pool is configured as a replicated pool by default, which means that all images are replicated across storage devices for transparent resilience.

An image pool can be configured as erasure-coded to conserve disk space with a slight increase in CPU utilization.

When using Ceph as the storage back end, it is important to disable the image cache, as it is not needed because Ceph expects Glance images to be stored in the RAW format. When using RAW images, all image interactions occur within Ceph, including image clone and snapshot creation. Disabling the image cache eliminates significant CPU and network activity on controller nodes.

When using a distributed architecture with Distributed Compute Nodes (DCN), TripleO can configure the Image service with an image pool at each remote site. You can copy images between the central (hub) site and the remote sites. The DCN Ceph cluster uses RBD technologies, such as copy-on-write and snapshot layering, for fast instance launching. The Image, Block Storage, and Compute services must all be configured to use Ceph RBD as their back-end storage.

Object Storage

Object storage is implemented in OpenStack by the Object Store service (Swift). The Object Store service implements both the Swift API and the Amazon S3 API. The default storage back end is file-based, and uses an XFS-formatted partition mount in subdirectories of /srv/node on the designated storage node. You can also configure the Object Store service to use an existing, external Swift cluster as a back end.

When Ceph storage is integrated into RHOSP, TripleO configures the Object Store service to use the RADOS Gateway (RGW) as the back end. Similarly, the Image service is configured for RGW because Swift would not be available as a back end.

The Ceph Object Gateway can be integrated with the Keystone identity service. This integration configures RGW to use the Identity service as the user authority. If Keystone authorizes a user to access the gateway, then the user is also initially created on the Ceph Object Gateway. Identity tokens that Keystone validates are considered valid by the Ceph Object Gateway. The Ceph Object Gateway is also configured as an object-storage endpoint in Keystone.

Block Storage

Block storage is implemented in OpenStack by the Block Storage service (Cinder). The Block Storage service provides persistent volumes that remain in storage and are stable when not attached to any instance. It is common to configure the Block Storage service with multiple back ends. The default storage back end is the Logical Volume Manager (LVM), which is configured to use a volume group called cinder-volumes. TripleO can create the volume group during an installation, or use an existing cinder-volumes volume group.

When Ceph storage is integrated into RHOSP, TripleO configures the Block Storage service to use RADOS Block Devices (RBD) as the back end. Block Storage volumes are stored in a Ceph pool called volumes. Volume backups are stored in a Ceph pool called backups. Ceph block device images attach to an OpenStack instance by using libvirt, which configures the QEMU interface to the librbd Ceph module. Ceph stripes block volumes across multiple OSDs within the cluster, providing increased performance for large volumes when compared to local drives.

OpenStack volumes, snapshots, and clones are implemented as block devices. OpenStack uses volumes to boot VMs, or to attach to running VMs as further application storage.

File Storage

File storage is implemented in OpenStack by the Shared File Systems service (Manila). The Shared File Systems service supports multiple back ends and can provision shares from one or more back ends. Share servers export file shares by using various file system protocols such as NFS, CIFS, GlusterFS, or HDFS.

The Shared File Systems service is persistent storage and can be mounted to any number of client machines. You can detach file shares from one instance and attach them to another instance without data loss. The Shared File Systems service manages share attributes, access rules, quotas, and rate limits. Because unprivileged users are not allowed to use the mount command, the Shared File Systems service acts as a broker to mount and unmount shares that the storage operator configured.

When Ceph storage is integrated into RHOSP, TripleO configures the Shared File Systems service to use CephFS as the back end. CephFS uses the NFS protocol with the Shared File Systems service. TripleO can use the ControllerStorageNFS server role to configure an NFS Ganesha cluster as the scalable interface to the libcephfs back end.

Compute Storage

Ephemeral storage is implemented in OpenStack by the Compute service (Nova). The Compute service uses the KVM hypervisor with libvirt to launch compute workloads as VMs. The Compute service requires two types of storage for libvirt operations:

Base image: A cached and formatted copy of the image from the Image service.
Instance overlay: A layered volume to be overlaid on the base image to become the VM's instance disk.

When Ceph storage is integrated into RHOSP, TripleO configures the Compute service to use RADOS Block Devices (RBD) as the back end. With RBD, instance operating system disks can be managed either as ephemeral, to be deleted when the instance is shut down, or as a persistent volume. An ephemeral disk behaves like a normal disk, to be listed, formatted, mounted, and used as a block device. However, the disk and its data cannot be preserved or accessed beyond the instance that it is attached to.

In earlier OpenStack releases, a disk of a running VM appeared in the /var/lib/nova/instances/<uuid> directory of the hypervisor file system. Earlier Ceph versions could boot VMs only with the Block Storage services boot-from-volume function.

In recent versions, you can boot every VM inside Ceph directly without using the Block Storage service. This feature enables hypervisors to use the live-migration and evacuate operations to restore VMs in another hypervisor during a maintenance operation or on a hardware failure.

References

Cinder Administration: Configure multiple-storage back ends

For more information, refer to the Creating and Managing Instances Guide at https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/16.1/html-single/creating_and_managing_instances/index

For more information, refer to the Distributed compute node and storage deployment at https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/16.1/html-single/distributed_compute_node_and_storage_deployment/index

For more information, refer to the CephFS Back End Guide for the Shared File System Service at https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/16.1/html-single/cephfs_back_end_guide_for_the_shared_file_system_service/index

For more information, refer to the Deploying the Shared File Systems service with CephFS through NFS at https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/16.1/html-single/deploying_the_shared_file_systems_service_with_cephfs_through_nfs/index

Discuss Cloud Storage with Red Hat Ceph Storage

Go to community

Red Hat Ceph Storage for OpenStack (CL260)

Haley_Ruccio

3 sie 2023

Build, expand and maintain cloud-scale, clustered storage for your applications with Red Hat Ceph StorageCloud Storage with Red Hat Ceph Storage (CL260) is designed for storage administrators and cloud operators who deploy Red Hat Ceph Storage in a production data center environment or as a component of a Red Hat OpenStack Platform or OpenShift Container Platform infrastructure. Learn how to deploy, manage, and scale a Ceph storage cluster to provide hybrid storage resources, including Amazon S3 and OpenStack Swift-compatible object storage, Ceph-native and iSCSI-based block storage, and shared file storage. This course is based on Red Hat Ceph Storage 5.0.Course summaryDeploy and manage a Red Hat Ceph Storage cluster on commodity servers.Perform common management operations using the web-based management interface.Create, expand, and control access to storage pools provided by the Ceph cluster.Access Red Hat Ceph Storage from clients using object, block, and file-based methods.Analyze and tune Red Hat Ceph Storage performance.Integrate Red Hat OpenStack Platform image, object, block, and file storage with a Red Hat Ceph Storage cluster.Integrate OpenShift Container Platform with a Red Hat Ceph Storage cluster.Target AudienceThis course is intended for storage administrators and cloud operators who want to learn how to deploy and manage Red Hat Ceph Storage on servers in an enterprise data center or within a Red Hat OpenStack Platform or OpenShift Container Platform environment.Developers writing applications that use cloud-based storage will learn the distinctions of various storage types and client access methods.Recommended trainingTake our free assessment to gauge whether this offering is the best fit for your skills.Red Hat Certified System Administrator (RHCSA) certification, or equivalent experience.For candidates that have not earned an RHCSA or equivalent, confirmation of the correct skill set knowledge can be obtained by taking the online skills assessment.Some experience with storage administration is recommended but not required.Technology considerationsThis course does not have any special technical requirements.This course is not intended for BYOD.Internet access is recommended.

Welcome to the Red Hat Ceph Storage for OpenStack (CL260) group in the Red Hat Learning Community!

cschunke

31 lip 2023

We are excited to launch a space dedicated to the Red Hat Training course CL260! To gain the most value from this group - click the "Join Group" button in the upper right hand corner of the group home page.We encourage group members to collaborate in this group to discuss topics, ask questions, share best practices and tips, provide course feedback, and share their accomplishments as it relates to CL260.Read more about Red Hat Ceph Storage for OpenStack here.

381

Revision: cl260-5.0-29d2128