FedFsInstallationGuide0.9

From Linux NFS

(Difference between revisions)
Jump to: navigation, search
m (What you need to allow file servers to access the NSDB)
(Setting up a complete FedFS domain)
Line 67: Line 67:
=== What you need for a minimal FedFS NSDB ===
=== What you need for a minimal FedFS NSDB ===
-
* An installed and configured LDAP server
+
* An installed and configured LDAP server (choose one below)
** [[FedFsOpenLdapServerRecipe|Setting up an OpenLDAP server for use as an NSDB]]
** [[FedFsOpenLdapServerRecipe|Setting up an OpenLDAP server for use as an NSDB]]
** [[FedFs389DsServerRecipe|Setting up a 389-ds server for use as an NSDB]]
** [[FedFs389DsServerRecipe|Setting up a 389-ds server for use as an NSDB]]
 +
 +
=== What you need to administer your NSDB ===
 +
 +
* Installed NSDB administration tools
 +
** [[FedFsInstallNsdbConnParams0.9|Setting up NSDB connection parameters]]
 +
** [[FedFsInstallNsdbAdministrator0.9|Setting up NSDB administrative tools]]
=== What you need to allow file servers to access the NSDB ===
=== What you need to allow file servers to access the NSDB ===
-
* Install nsdbparams program on file servers and administrative clients that participate in your FedFS domain
+
Along with the modified mountd and junction resolution library you installed above, fileservers that contain FedFS junctions also need to know how to contact their domain's NSDB.
 +
 
 +
* Installed nsdbparams program on file servers and administrative clients that participate in your FedFS domain
** [[FedFsInstallNsdbConnParams0.9|Setting up NSDB connection parameters]]
** [[FedFsInstallNsdbConnParams0.9|Setting up NSDB connection parameters]]
=== What you need to administer junctions and NSDB connection parameters remotely ===
=== What you need to administer junctions and NSDB connection parameters remotely ===
-
FedFS specifies an administrative network protocol that allows domain administrators to manage FedFS junctions and NSDB connection parameters remotely.  Installing this server is optional.  For fedfs-utils-0.9, running the administrative daemon should not be considered on open networks, since the daemon currently does not support any form of security.
+
FedFS specifies an administrative network protocol that allows domain administrators to manage FedFS junctions and NSDB connection parameters remotely.  Installing this daemon is optional.  For fedfs-utils-0.9, running the administrative daemon is discouraged on open networks, since the daemon currently does not support any form of security.
-
* Install the FedFS administrative daemon
+
* Installed FedFS administrative daemon
** [[FedFsInstallFedfsd0.9|Setting up the rpc.fedfsd daemon]]
** [[FedFsInstallFedfsd0.9|Setting up the rpc.fedfsd daemon]]

Revision as of 00:14, 18 October 2012

Contents

Project: fedfs-utils

[ Project Home | News | Downloads | Docs | Mailing Lists | Source Control | Issues ]


Introduction

This series of articles will help you prepare for and set up a working FedFS domain using Linux and the fedfs-utils-0.9 package. fedfs-utils allows you to manage a FedFS domain that consists of many exports, each residing on separate fileservers.

There are three roles a host can play in a FedFS domain. A single host can play one or more of these roles.

File-access client
This is a network file system client that communicates with fileservers using a standard file-access protocol (such as NFSv4).
Fileserver
This is a server that stores data or refers file-access clients to other file-access servers.
Namespace Database (NSDB)
An NSDB node stores information about the location of filesets stored on file-access servers in a FedFS domain. LDAP is used to access and manage this information. An NSDB is optional. If an NSDB is employed, an administrative entity that has write access to FedFS records on the NSDB is required to create, modify and delete the entries that describe filesets residing in the FedFS domain.

A DNS SRV record refers file-access clients to the top-most directory in a FedFS domain, which is stored in a special export on a file server.

Clients accessing an existing FedFS domain

If the storage servers in your environment already support a FedFS domain, it's easy to allow your Linux NFS client(s) to participate in the domain.

What you need for a minimal FedFS file-access client

If an NFSv4 client is to use Globally Useful Names (pathnames that appear the same on all FedFS clients), some additional set up is required. Here are the administrative steps that configure your Linux NFS client to participate in a FedFS domain.

Setting up a simple FedFS domain

A "simple" FedFS domain does not use a separate LDAP server to keep track of fileset locations. Only NFS basic junctions (which store fileset locations directly on file servers) are used.

What you need for a minimal FedFS file-access server

Any NFSv4 server can participate in a FedFS domain. However, an NFS server which will contain junctions must support new-style NFS referrals. Eventually this will all be set up by default. For now, the following modifications are required:

What you need to define a FedFS domain

Once you have prepared your NFS clients and servers, these steps create the FedFS name space and allow it to be discovered by FedFS-enabled clients.

Setting up a complete FedFS domain

A "complete" FedFS domain stores fileset location information in an LDAP server known as the domain's Namespace Database (or NSDB). Both NFS basic junctions and FedFS junctions can be used in this type of domain. All the items in the "simple" FedFS domain set up above, and:

What you need for a minimal FedFS NSDB

What you need to administer your NSDB

What you need to allow file servers to access the NSDB

Along with the modified mountd and junction resolution library you installed above, fileservers that contain FedFS junctions also need to know how to contact their domain's NSDB.

What you need to administer junctions and NSDB connection parameters remotely

FedFS specifies an administrative network protocol that allows domain administrators to manage FedFS junctions and NSDB connection parameters remotely. Installing this daemon is optional. For fedfs-utils-0.9, running the administrative daemon is discouraged on open networks, since the daemon currently does not support any form of security.

Personal tools