# GlusterFS服务器端Quorum ## 现状和问题 GlusterFS是基于网络的分布式文件系统,具有多副本镜像的容灾能力,并且可以实现`单个`机房网络(或服务器)故障时,不影响客户端访问。机房网络(或服务器)恢复时候,能够自动平衡恢复副本,对挂载GlusterFS的客户端(应用)是透明的容灾,无需用户干预处理。 但是,实际生产环境中,如果出现核心网络故障,会导致各个机房之间网络断开,此时所有机房都成为`孤岛`。由于分布式文件系统是需要通过心跳来判断对方节点是否正常,这种`孤岛`的网络故障会使得所有的GlusterFS认为自己节点是正常的,对方节点异常,此时继续提供存储服务的话,会导致各个机房的客户端写入冲突的数据,也就导致了`脑裂`。 在这种多机房网络故障的情况下,我们希望做到自动停止GluserFS服务,等网络恢复以后再自动恢复服务。同时,如果只是个别机房(单个机房)故障,另外2个机房网络互通正常,我们仍希望通过正常的GlusterFS服务继续提供服务,实现服务高可用。 ## 解决方案 解决的方案是使用GlusterFS的`quorum`功能:原理是`服务器节点发现低于指定比率服务节点存活时停止工作`。 在3个机房部署跨机房3个副本的GlusterFS集群,并设置 quorum 为 `51%` ``` gluster volume set mqha cluster.server-quorum-type server gluster volume set all cluster.server-quorum-ratio 51% ``` > 参考[Features/Server-quorum](http://www.gluster.org/community/documentation/index.php/Features/Server-quorum),默认并没有开启`cluster.server-quorum-type server`,**只有开启了这个参数设置才能使得Quorum生效。** 当一个机房和其他机房断开连接时,这个机房的服务器会判断自己机房的服务器节点数量只有`1/3`,低于quorum阀值,就会停止工作。而另外两个机房相互之间通讯的节点`2/3`,大于 `51%`,可以继续提供服务。 如果3个机房同时出现通讯中断,则整个集群停止服务。 ## 实验室验证 线下测试环境部署了3个节点 ``` 192.168.1.55 192.168.2.55 192.168.3.55 ``` ### 3节点测试卷的创建 > 这里建立的卷名称是`mqha`,是一个共享队列 在3个节点上准备好brick ``` mv /home/mqha /home/mqha.bak mkdir /home/mqha ``` 在一个节点上重建卷 ``` gluster volume create mqha replica 3 transport tcp \ 192.168.1.55:/home/mqha \ 192.168.2.55:/home/mqha \ 192.168.3.55:/home/mqha gluster volume set mqha cluster.server-quorum-type server gluster volume set all cluster.server-quorum-ratio 51% ``` > 注意:设置`cluster.server-quorum-ratio`需要全局,对`all`设置,而设置`cluster.server-quorum-type`需要对单个卷设置 启动卷 ``` gluster volume start mqha ``` 在3个节点上添加挂载配置`/etc/fstab` ``` 192.168.1.55:/home/mqha /mqha glusterfs defaults,_netdev,direct-io-mode=enable,backupvolfile-server=192.168.2.55 0 0 ``` 在3个节点挂载 ``` mount /mqha ``` 在其中一个节点上设置好目录权限 ``` chown mqm:mqm /mqha ``` ### 测试一:3个机房全部互相断开 用iptables禁掉了两两之间的连接 ``` 192.168.1.55: iptables -I INPUT -s 192.168.2.55 -j DROP iptables -I INPUT -s 192.168.3.55 -j DROP 192.168.2.55: iptables -I INPUT -s 192.168.1.55 -j DROP iptables -I INPUT -s 192.168.3.55 -j DROP 192.168.3.55: iptables -I INPUT -s 192.168.1.55 -j DROP iptables -I INPUT -s 192.168.2.55 -j DROP ``` 此时在所有节点上使用 `df -h` 都会卡住,然后过一会,再使用`df -h`,可以看到glusterfs的卷`mqha`已经消失了 ``` [2016-01-28 07:55:00.656830] I [client.c:2229:client_rpc_notify] 0-mqha-client-2: disconnected from 192.168.3.55:49153. Client process will keep trying to connect to glusterd until brick's port is available [2016-01-28 07:55:00.656846] W [socket.c:589:__socket_rwv] 0-mqha-client-1: readv on 192.168.2.55:49153 failed (Connection timed out) [2016-01-28 07:55:00.656863] I [client.c:2229:client_rpc_notify] 0-mqha-client-1: disconnected from 192.168.2.55:49153. Client process will keep trying to connect to glusterd until brick's port is available [2016-01-28 07:55:00.656872] E [afr-common.c:4304:afr_notify] 0-mqha-replicate-0: All subvolumes are down. Going offline until atleast one of them comes back up. [2016-01-28 07:55:03.073755] E [client-handshake.c:1760:client_query_portmap_cbk] 0-mqha-client-0: failed to get the port number for remote subvolume. Please run 'gluster volume status' on server to see if brick process is running. [2016-01-28 07:55:03.073796] I [client.c:2229:client_rpc_notify] 0-mqha-client-0: disconnected from 192.168.1.55:24007. Client process will keep trying to connect to glusterd until brick's port is available [2016-01-28 07:58:20.540796] E [socket.c:2244:socket_connect_finish] 0-mqha-client-2: connection to 192.168.3.55:24007 failed (Connection timed out) ``` 注意:这里可以看到一句日志 ``` E [afr-common.c:4304:afr_notify] 0-mqha-replicate-0: All subvolumes are down. Going offline until atleast one of them comes back up. ``` ### 测试二:恢复2个机房互联 清除掉 192.168.2.55 和 192.168.3.55 上的iptables,模拟这两个机房恢复网络 ``` iptables -F ``` 此时观察这两个恢复节点的日志,可以看到 ``` [2016-01-28 08:04:36.214768] I [client-handshake.c:1677:select_server_supported_programs] 0-mqha-client-1: Using Program GlusterFS 3.3, Num (1298437), Version (330) [2016-01-28 08:04:36.214988] I [client-handshake.c:1462:client_setvolume_cbk] 0-mqha-client-1: Connected to 192.168.2.55:49153, attached to remote volume '/home/mqha'. [2016-01-28 08:04:36.215002] I [client-handshake.c:1474:client_setvolume_cbk] 0-mqha-client-1: Server and Client lk-version numbers are not same, reopening the fds [2016-01-28 08:04:36.215039] I [afr-common.c:4267:afr_notify] 0-mqha-replicate-0: Subvolume 'mqha-client-1' came back up; going online. [2016-01-28 08:04:36.215741] I [client-handshake.c:450:client_set_lk_version_cbk] 0-mqha-client-1: Server lk version = 1 [2016-01-28 08:04:51.214373] I [rpc-clnt.c:1729:rpc_clnt_reconfig] 0-mqha-client-2: changing port to 49153 (from 0) [2016-01-28 08:04:51.214731] I [client-handshake.c:1677:select_server_supported_programs] 0-mqha-client-2: Using Program GlusterFS 3.3, Num (1298437), Version (330) [2016-01-28 08:04:51.214935] I [client-handshake.c:1462:client_setvolume_cbk] 0-mqha-client-2: Connected to 192.168.3.55:49153, attached to remote volume '/home/mqha'. [2016-01-28 08:04:51.214950] I [client-handshake.c:1474:client_setvolume_cbk] 0-mqha-client-2: Server and Client lk-version numbers are not same, reopening the fds [2016-01-28 08:04:51.216591] I [client-handshake.c:450:client_set_lk_version_cbk] 0-mqha-client-2: Server lk version = 1 ``` 注意其中:有恢复卷的日志 ``` [afr-common.c:4267:afr_notify] 0-mqha-replicate-0: Subvolume 'mqha-client-1' came back up; going online. ``` 此时,在这两个节点上,会自动重新挂载卷,用 `df -h` 可以看到 ``` 127.0.0.1:/mqha 922G 65G 857G 7% /mqha ``` 注意,这时候 192.168.1.55 网络尚未恢复,所以在这个节点还看不到挂载的卷 ### 测试三:恢复最后一个机房互联 再在 192.168.1.55 清除掉iptables模拟最后一个机房恢复 ``` iptables -F ``` 很快这个节点也重新挂载上了卷 mqha,并且可以看到,在192.168.2.55 和 192.168.3.55前面恢复后,192.168.1.55恢复之前的文件也被同步回来。 ## 小结 上述实验验证了GlusterFS的Quorum设置: * 单机房故障,正常工作的两个机房可以继续提供GlusterFS服务,对应用无影响(会有短暂的hang,默认最长41秒,可缩短时间)。当单机房故障恢复后,无需人工干预,自动平衡数据恢复到3个副本。这种故障情况下能够保持高可用。 * 当发生两两不能互通情况(所有3个机房成为孤岛),则glusterfs自动停止服务,避免脏数据影响产生脑裂。当机房恢复服务,GlusterFS也能自动恢复服务,无需人工干预。这种故障情况下,保证数据安全。 ## 参考 * [Configuring Server-Side Quorum](https://access.redhat.com/documentation/en-US/Red_Hat_Storage/2.0/html/Administration_Guide/sect-User_Guide-Managing_Volumes-Quorum.html) * [Features/Server-quorum](http://www.gluster.org/community/documentation/index.php/Features/Server-quorum) * [Server Quorum](http://gluster.readthedocs.org/en/release-3.7.0/Features/server-quorum/) --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://huataihuang.gitbook.io/cloud-atlas-draft/storage/glusterfs/glusterfs_server_quorum.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.