17_NFS

32

description

nfs

Transcript of 17_NFS

  • Network File SystemAndrew File SystemNetWare Core ProtocolServer Message BlockCommon Internet File System

  • Share filesystem to other hosts via networkNFS HistoryIntroduced by Sun Microsystems in 1985Originally designed for diskless client-server architecture

  • IncludingMounting ProtocolMount ServerDaemons that coordinate basic file serviceDiagnostic utilities

  • NFS (RFC1094)NFSv2 (RFC1094, March 1989)Synchronous writeV2 NFS server must commit each modified block to disk before replying to NFS clientCause long delay when there is a NFS write operationNFSv3 (RFC1813, June 1995)Asynchronous writeProvide increase performance and better support for large filesNFSv4 (RFC3530, April 2003)Stateful protocol

  • Suns ONC distributed computing standardsNFS client RPC Transport Layer Transport LayerUDP: Lack congestion controlTCP: become more suitable

  • NFS ServerExport sharing filesystemSystem dependentWaiting for mount requestmountd (rpc.mountd) daemonWaiting for file access requestnfsd (rpc.nfsd) daemon

  • Exporting filesystemEdit export configuration fileEach line is what to export and howReload related daemons

    SystemExports info fileHow to reloadFreeBSD/etc/exports/etc/rc.d/mountd reloadLinux/etc/exports/usr/sbin/exportfs -aSolaris/etc/dfs/dfstab/usr/sbin/shareallSunOS/etc/exports/usr/sbin/exportfs -a

  • Exporting filesystem/etc/exportsWhite-space separatedFormat: directory-list options-list client-list

    OptionDescription-roExports read-only, default is (read-write)-alldirsAllow any subdirectory to be mounted-maproot=userMaps root to the specified user.-mapall=userMaps all UIDs to the specified user.

    ClientDescriptionhostnameHost name (ex: mailgate ccserv)netgroupNIS netgroups -network -mask-network 140.113.235.0 -mask 255.255.255.0

  • Example of /etc/exports

    Reload daemons# /etc/rc.d/mountd reload/raid-alldirs maproot=root csmailgate backup/raid -alldirs maproot=nobody network 140.113.235 mask 255.255.255.0/home-ro -mapall=nobody network 140.113.235.0 mask 255.255.255.0/usr/src/usr/obj maproot=0 bsd_cc_cs

  • Exporting filesystem/etc/exportsFormat: directory client-list-with-option Ex: /home1 bsd5(ro)

    ClientDescriptionhostnameHost name (ex: mailgate ccserv)@netgroupNIS netgroups ipaddr/maskCIDR-style specification (ex: 140.113.235.2/24)Wild cards * ?FQND with wild cards (ex: bsd*.cs.nctu.edu.tw)

  • OptionDescriptionro,rwRead-only, Read-write (default)rw=listHosts in the list can do rw, others ro onlyroot_squashMaps UID 0 and GID 0 to the value of anonuid and anongid (default)no_root_squashAllow root accessall_squashMaps all UID and GID to anonymous onesubtree_checkCheck that the accessed file is in the appropriate filesystem and in the exported tree.no_subtree_checkDisables subtree checkinganonuid=xxxRelated to root_squashanongid=xxxRelated to root_squashsecureRequire remote access from privileged portinsecureAllow remote access from any portnoaccessPrevent access to this dir and its subdir

  • Example of /etc/exports

    Run /usr/sbin/exportfs# /usr/sbin/exportfs aMaintain /var/lib/nfs/xtab table which is read by mountd/home1sun*.cs.nctu.eud.tw(rw)/home2@sun_cc_cs(ro) dragon(rw,no_root_squash)/homecspc1(rw,all_squash,anonuid=150,anongid=100)/ftp/pub(ro,insecure,all_squash)/users*.xor.com(rw)/users/evi(noaccess)

  • Exporting filesystem/etc/dfs/dfstabEach line will execute share command to export one NFS[format] share F nfs o option-list directoryEx: share F nfs o rw=ccbsd5.csie.nctu.edu.tw /home2Run shareall command% /usr/sbin/shareall

    ClientDescriptionhostnameHost name (ex: mailgate ccserv)netgroupNIS netgroups IP networks@CIDR-style specification (ex: @140.113.235.2/24)DNS domains.xxx.yyy any host within the domain (ex: .nctu.edu.tw)

  • OptionDescriptionro,rwRead-only to all, Read-write to allro=list, rw=listHosts in the list can do ro/rwroot=listLists hosts permitted to access this filesystem as root. Otherwise, root access from a client is equivalent to by nobodyanon=xxxSpecify the UID to which root is remapped. Default is nobodyanongid=xxxRelated to root_squashnosubForbids clients to mount subdirectoriesnosuidPrevents setuid and setgid from being created

  • nfsd daemonHandle NFS file access request from NFS clientsNumber of nfsd is importantToo small, some NFS request may be not servedToo large, load will be highIn FreeBSDSpecify nfsd options in /etc/rc.confnfs_server_enable="YES"nfs_server_flags="-u t n 4"nfsd(8), nfsiod(8)

  • NFS ClientMount NFS filesystem firstAccess file under NFS filesystemmount command[format]mount [-o options] host:directory mount-pointEx:% mount t nfs ccbsd4:/home/www /home/nfs/www/etc/fstab (/etc/vfstab in Solaris)% mount -a -t nfs (FreeBSD, Linux)% mount -a -F nfs (Solaris)# Device MountpointFStype Options Dump Pass#dragon:/usr/man /usr/mannfsro,bg,soft 0 0ccserv:/spool/mail /var/mailnfsrw,bg,intr 0 0

  • NFS mount flagsmount_nfs(8)

    FlagSystemsDescriptionro or rwS,L,FMount the NFS as ro or rwbgS,L,FIf failed, keep trying in backgroundhardS,LIf server down, access will keep trying until server comes backsoftS,L,FIf server down, let access fail and return error intr, nointrS,L,FAllow/Disallow user to interrupt blocked accessretrans=nS,L,F# of times to repeat a request before error returntimeo=nS,L,FTimeout period of requests (tens of seconds)rsize=nS,L,FSet read buffer size to n byteswsize=nS,L,FSet write buffer size to n bytesvers=nSSelects NFS v2 or v3nfsv3,nfsv2FSelects NFS v2 or v3proto=protStcp or udptcpL,FSelect TCP. UDP is default

  • Client side daemons that enhance performancebiod (block I/O daemon, or called nfsiod)Perform read-ahead and write-behind caching

  • nfsstatDisplay NFS statistics% nfsstat s (display statistics of NFS server)% nfsstat c (display statistics of NFS client)cshome:~ -lwhsu- nfsstat -s

    Server Info: Getattr Setattr Lookup Readlink Read Write Create Remove122903379 44946452 236493933 86636 207570824 123929056 4639946 4706741 Rename Link Symlink Mkdir Rmdir Readdir RdirPlus Access 1452831 851435 14512 474270 400621 1551728 763208 349261427 Mknod Fsstat Fsinfo PathConf Commit 40152 27594331 33528 257 87440831Server Ret-Failed 125315642Server Faults 0Server Cache Stats: Inprog Idem Non-idem Misses 0 319 0 4343904Server Write Gathering: WriteOps WriteRPC Opsaved123928555 123929056 501

  • showmount% showmount e cchomeshow the hostss export list% showmount a List all mount pointsbsd4:~ -lwhsu- showmount -e csdisk0Exports list on csdisk0:/disk0/distfiles 140.113.235.0/255.255.255.0/disk0/alpha 140.113.235.0/255.255.255.0/disk0/ISO 140.113.235.0/255.255.255.0showcsdisk0 [~] -lwhsu- showmount -aAll mount points on csdisk0:140.113.168.126:/disk0/alpha140.113.17.0/255.255.255.0:/disk0/linuxhome140.113.17.41:/disk0/linuxhome140.113.17.41:/disk0/linuxhome/packages140.113.209.0/255.255.255.0:/disk0140.113.209.63:/disk0/WWW140.113.23.0/255.255.255.0:/disk0/ISO140.113.23.20:/disk0/ISO140.113.235.0/255.255.255.0,140.113.235.102:/disk0/alpha...

  • NFS serverEdit /etc/rc.conf

    NFS clientnfs_server_enable="YES"nfs_server_flags="-u t n 4"nfs_client_enable="YES"

  • Problems of /etc/fstabMaintenance of /etc/fstab in large networkCrashed NFS server will make operation blockedCrashed NFS server will make other local partitions unavailableautomount daemonMount filesystems when they are referenced and unmount them when they are no longer neededSupply a list of replicated filesystems to replace important but crashed NFS serversTransparent to usersProductsautomount (from SUN Micro), simple and conciseamd (from Jan-Simon Pendry), complicated but more powerful

  • Three kinds of configuration files (map)Direct mapIndirect mapMaster mapList which direct and indirect maps that automount should pay attention to Difference between direct and indirectAll mount points in indirect map has common directory defined in master mapProvide information about filesystemsthat are to be automounted

  • Example of automount mapsMaster

    Indirect

    direct/net auto.net-rw, intr/-auto.direct-ro, intrWWW-rw,soft,nosuid,vers=2vega:/home/wwwmail-rw,soft,nosuid,quotaccserv:/spool/mailftp-ro,soft,nosuid ftp:/home/ftp/vlsi/vlsi1-rw,soft,nosuidscorpio:/vlsi1/vlsi/vlsi2-rw,soft,nosuidscorpio:/vlsi2

  • Master map/etc/auto.master(Linux)/etc/auto_master(Solaris)Restart automounter when you change the maps/etc/init.d/autofs {start|stop}(Solairs)/etc/init.d/autofs {start|stop|reload|status}(Linux)

  • Replicated filesystemThere are several identical NFS and I would like to mount anyone of themConstrainRead-onlyThese replicated filesystem should be truly identicalAutomounter will choose a server based on its own idea of which one is the best/usr/man-rochimchim:/usr/man band:/usr/man/www/data-roccbsd4,altair:/www/data

  • Advantages over automountSends keep alive queries to remote servers at regular intervals and maintains a list of servers that are accessibleReturn an operation would block rather than hangingNot proprietary source codeOffer another mount types that are not supported by automountMap syntax is more genericProvide a query-and-manipulation tool, amq

  • Flexible map syntaxOne map used by many machinesContain conditions that control which parts of map entry are activateSelector variable/defaultstype:=nfs;fs:=${autodir}/${key};opts:=nfsv3,rw, \grpid,quota,intr,soft,nodev,nosuid,resvport, \timeo=10,retrans=5,nqnfsmailrhost:=ccserv;rfs:=/spool/mailftprhost:=ftp;rfs:=/home/ftpraid1host==cchome;type:=ufs;dev:=/dev/da0s1e\host!=cchome;type:=nfs;rhost:=cchome;rfs:=/${key};\opts:=nfsv3,rw,grpid,soft,nodev,nosuid,resvportdrongohost==magpie;type:=link;fs:=/${key} \host!=magpie;type:=nfs;rhost:=magpie;rfs:=/${key}

  • SelectorDescriptionarchArchitecture of the current machineautodirDefault directory under which to mount filesystemsdomainLocal NIS domain namehostLocal hostnamekeyVolume name being resolvedmapName of mount map being usedosOperating System

    OptionDescriptionrhostRemote host on which the volume livesrfsRemote filesystem nametypeType of mount, nfs or ufs (local disk)fsLocal mount pointoptsMount optionsremoptsOptions to use if server is nonlocal

  • Starting amd# amd -a /tmp_mnt -l syslog -x fatal, error, user /net auto.home/etc/rc.conf:amd_enable="YES"/etc/rc.d/amd startStopping amd# kill -15 /etc/rc.d/amd stop

    optionsDescription-xSets run-time logging options, such as fatal, error, user, warn, info, -rRestart existing mounts-lLog file name or syslog-aSpecify alternative location for mount points/netSets the automount directoryauto.homeThe map files

  • Remount without kill amdUnmount such mounted partition# umount /amd/magpieDelete such virtual /net/DIR# rm /net/magpiecd /net/DIR# cd /net/magpieamd in FreeBSD/etc/rc.conf

    amd_enable="YES"amd_flags="-a /amd -c 1800 -d cs.nctu.edu.tw -l /var/log/amd.log -x all /net auto.home"


Cakes Recipes

Cakes Recipes

Chapter 23

Chapter 23

The Last Carnival I Ever Saw

The Last Carnival I Ever Saw

Star Wars Prequel Trilogy Trivia (Episodes I-III)

Star Wars Prequel Trilogy Trivia (Episodes I-III)

Bodybuilding - The Rock Hard Challenge (Month 1 Training)

Bodybuilding - The Rock Hard Challenge (Month 1 Training)

Heidegger Kritik

Heidegger Kritik

xCDC14a

xCDC14a

The Best American Humorous Short Stories

The Best American Humorous Short Stories

Effective Parenting: Establishing Boundaries

Effective Parenting: Establishing Boundaries

Fortran

Fortran

Physical Modelling Synthesis Overview

Physical Modelling Synthesis Overview

Introduction to Six Sigma

Introduction to Six Sigma

Jan Van Eyck and the Man In A Red Turban

Jan Van Eyck and the Man In A Red Turban

Compressing And Decompressing Folders

Compressing And Decompressing Folders

Who Killed God

Who Killed God

Star Wars Trivia!

Star Wars Trivia!

Star Wars Original Trilogy Trivia (Episodes IV-VI)

Star Wars Original Trilogy Trivia (Episodes IV-VI)

Acetone Peroxide

Acetone Peroxide

Keyboard Shortcuts for the Opera Browser for Mac OS X

Keyboard Shortcuts for the Opera Browser for Mac OS X

One Flew Over the Cuckoo's Nest

One Flew Over the Cuckoo's Nest