SlideShare a Scribd company logo

Cluster pitfalls recommand

S
sprdd

This document discusses best practices and common pitfalls for Red Hat clustering. It covers topics like I/O fencing, 2-node clusters, quorum disks, multipath considerations, and the clustered file system GFS2. The key recommendations are to choose simple configurations when possible, test all failure scenarios, and ensure all storage paths are fenced for SAN configurations. Complex configurations increase failure risk, so the document emphasizes testing and avoiding unnecessary complexity.

Technology
1 of 56
Download to read offline
1 Red Hat Clustering: Best Practices & Pitfalls Lon Hohberger Principal Software Engineer Red Hat May 2013
2 Red Hat Clustering: Best Practices & Pitfalls ● Why Cluster? ● I/O Fencing and Your Cluster ● 2-Node Clusters and Why they are Special ● Quorum Disks ● Service Structure ● Multipath Considerations in a clustered environment ● GFS2 – Cluster File System
3 Why Cluster? ● Application/Service Failover ● Reduce MTTR ● Meet business needs and SLAs ● Protect against software and hardware faults ● Virtual machine management ● Allow for planned maintenance with minimal downtime ● Load Balancing ● Scale out workloads ● Improve application response times
4 Why not Cluster? ● Often requires additional hardware ● Increases total system complexity ● More possible parts that can fail ● More failure scenarios to evaluate ● Harder to configure ● Harder to debug problems
5 Component Overview ● corosync – Totem SRP/RRP-based membership, VS messaging, closed process groups ● cman – quorum, voting, quorum disk ● fenced – handles I/O fencing for joined members ● Fencing agents – carry out fencing operations ● DLM – distributed lock manager (kernel) ● clvmd – cluster logical volume manager ● gfs2 – cluster file system ● rgmanager – cold failover for applications ● Pacemaker (TP) – Next-generation CRM
6 Failure Recovery Overview ● corosync - Totem token is lost; Totem forms a new ring ● fenced enters recovery state – quorate partition initiates fencing of dead node(s) ● DLM enters recovery state – locks on dead node(s) are dropped ● clvmd, gfs2 enter recovery state – recover / replay journals ● rgmanager initiates cold failover of user applications
7 I/O Fencing ● An active countermeasure taken by a functioning host to isolate a misbehaving or presumed dead host from shared data ● Most critical part of a cluster utilizing SAN or other shared storage technology ● Despite this, not everyone uses it ● How much is your data worth? ● Required by gfs2, clvmd, and cold failover software shipped by Red Hat ● Utilized by RHEV, too – Fencing is not a cluster- specific technology
8 I/O Fencing ● Protects data in the event of planned or unplanned system downtime ● Kernel panic ● System freeze ● Live hang / recovery ● Enables nodes to safely assume control of shared resources when booted in a network partition situation
9 I/O Fencing ● SAN fabric and SCSI fencing are not fully recoverable ● Node must typically be rebooted manually ● Enables an autopsy of the node ● Sometimes does not require additional hardware ● Power fencing is usually fully recoverable ● Your system can reboot and rejoin the cluster - thereby restoring capacity - without administrator intervention ● This is a reduction in MTTR
10 I/O Fencing – Drawbacks ● Difficult to configure ● No automated way to “discover” fencing devices ● Fencing devices are all very different and have different permission schemes and requirements ● Typically requires additional hardware ● Additional cost often not considered when purchasing systems ● A given “approved” IHV may not sell the hardware you want to use
11 I/O Fencing – Best Practices ● Integrated power management ● Use servers with dual power supplies ● Use a backup fencing device ● IPMI over LAN fencing usually requires disabling acpid ● Single-rail switched PDUs ● Use 2 switched PDUs ● Use a PDU with two power rails ● Use a backup fencing device
12 Host Host Integrated Power Management Pitfall Fencing Device Net Fencing Device Net ● Host (and fencing device) lose power ● Safe to recover; host is off ● Host and Fencing Device lose network connectivity ● NEVER safe to recover! ● The two cases are indistinguishable ● A timeout does not ensure data integrity in this case ● Not all integrated power management devices suffer this problem
13 Single Rail Pitfall Host Host FencingDevice ● One power cord = Single Point of Failure Host Host FencingDevice
14 Best Practice: Dual Rail Fencing Device Host Host ● Dual power sources, two rails in the fencing device, two power supplies in the cluster nodes ● Fencing device electronics run off of either rail Rail B Rail A Fencing Device Cluster Interconnect
15 Best Practice: Dual Single Rail Fencing Devices Host Host ● Dual power sources, two fencing devices Device B Device A Cluster Interconnect
16 I/O Fencing – Pitfalls ● SAN fabric fencing ● Full recovery typically not automatic ● Unfencing in RHEL6 allows a host to turn on its ports after reboot ● SCSI-3 PR fencing ● Not all devices support it ● Quorum disk may not reside on a LUN managed by SCSI fencing due to quorum “chicken and egg” problem
17 I/O Fencing - Pitfalls ● SCSI-3 PR Fencing (cont.) ● Preempt-and-abort command is not required by SCSI-3 specification ● Not all SCSI-3 compliant devices support it ● LUN detection can be done by querying CLVM, looking for volume groups with the cluster tag set ● On RHEL6, watchdog script allows reboot after fencing
18 2-Node Clusters ● Most common use case in high availability / cold failover clusters ● Inexpensive to set up; several can fit in a single rack ● Red Hat has had two node failover clustering since 2002
19 Why 2-Node Clusters are Special ● Cluster operates using a simple majority quorum algorithm ● Best predictability with respect to node failure counts compared to other quorum algorithms (ex: Grid) ● There is never a majority with one node out of two ● Simple Solution: two_node=”1” mode ● When a node boots, it assumes quorum ● Services, gfs2, etc. are prevented from operating until fencing completes
20 2-Node Pitfalls: Fence Loops ● If two nodes become partitioned, a fence loop can occur ● Node A kills node B, who reboots and kills node A... etc. ● Solutions ● Correct network configuration ● Fencing devices on same network used for cluster communication ● Use fencing delays ● Use a quorum disk
21 Fence Loop Node 1 Node 2 Fencing Device Network Cluster Interconnect
22 Fence Loop Node 1 Node 2 Fencing Device Cluster Interconnect Cable pull or switch loses power Network
23 Fence Loop Node 1 Node 2 Fencing Device Fencing Request Fencing Request blocked; device allows only one user at a time Cluster Interconnect Network
24 Fence Loop Node 1 Node 2 Fencing Device Node 1 power cycled Network Cluster Interconnect
25 Fence Loop Node 1 Node 2 Fencing Device Node 1 boots Cluster Interconnect Network
26 Fence Loop Node 1 Node 2 Fencing Device Fencing Request Network Cluster Interconnect
27 Fence Loop Node 1 Node 2 Fencing Device Node 2 power cycled Network Cluster Interconnect
28 Fence Loop Node 1 Node 2 Fencing Device Node 2 boots Network Cluster Interconnect
29 Fence Loop Node 1 Node 2 Fencing Device Fencing Request Network Cluster Interconnect
30 Immune to Fence Loops ● On cable pull, node without connectivity can not fence ● If interconnect dies and comes back later, fencing device serializes access so that only one node is fencedNode 1 Node 2 Fencing Device Cluster Interconnect
31 2-Node Pitfalls: Fence Death ● A combined pitfall when using integrated power in two node clusters ● If a two node cluster becomes partitioned, a fence death can occur if fencing devices are still accessible ● Two nodes tell each other's fencing device to turn off the other node at the same time ● No one is alive to turn either host back on! ● Solutions ● Same as fence loops ● Use a switched PDU which serializes access
32 Fence Death Node 1 Node 2 Fencing Device Fencing Device Network Cluster Interconnect
33 Fence Death Node 1 Node 2 Fencing Device Fencing Device Network Cluster Interconnect Cluster interconnect is lost (cable pull, switch turned off, etc.)
34 Fence Death Node 1 Node 2 Fencing Device Fencing Device Fencing Request Fencing Request Network Cluster Interconnect Both nodes fence each other
35 Fence Death Node 1 Node 2 Fencing Device Fencing Device Network Cluster Interconnect No one is alive to turn the other back on.
36 Immune to Fence Death Node 1 Node 2 Fencing Device ● Single power fencing device serializes access ● Cable pull ensures one node “loses” Cluster Interconnect
37 2-Node Pitfalls: Crossover Cables ● Causes both nodes to lose link on cluster interconnect when only one link has failed ● Indeterminate state for quorum disk without very clever heuristics (use master_wins) ● Fencing can't be placed on the same network ● We don't test this
38 2-Node Clusters: Pitfall avoidance ● Network / fencing configuration evaluation ● Use a quorum disk ● Create a 3 node cluster :) ● Simple to configure, increased working capacity, etc.
39 Quorum Disk - Benefits ● Prevents fence-loop and fence death situations ● Existing cluster member retains quorum until it fails or cluster connectivity is restored ● Heuristics ensure that administrator-defined “best-fit” node continues operation in a network partition ● Provides all-but-one or last-man-standing failure mode ● Examples: ● 4 node cluster, and 3 nodes fail ● 4 node cluster and 3 nodes lose access to a critical network path as decided by the administrator ● Note: Ensure capacity of remaining node is adequate for all cluster operations before trying this
40 Quorum Disk - Drawbacks ● Used to be complex to configure, but RHEL 6.3 fixes most of this ● Heuristics need to be written by administrators for their particular environments ● Incorrect configuration can reduce availability ● Algorithm used is non-traditional ● Backup membership algorithm vs. ownership algorithm or simple “tie-breaker”
41 Quorum Disk Timing Pitfall (RHEL5)
42 Quorum Disk Made “Simple” (RHEL5) ● Quorum disk failure recovery should be a bit less than half of CMAN's failure time ● This allows for the quorum disk arbitration node to fail over before CMAN times out ● Quorum disk failure recovery should be approximately 30% longer than a multipath failover. Example [1]: ● x = multipath failover ● x * 1.3 = quorum disk failover ● x * 2.7 = CMAN failover [1] http://kbase.redhat.com/faq/docs/DOC-2882
43 Quorum Disk Best Practices ● Don't use it if you don't need it ● Fencing delays can usually provide adequate decision- making ● If required, use heuristics for your environment ● Prefer master_wins over heuristics ● I/O Scheduling ● deadline scheduler ● cfq scheduler with realtime prio ● ionice -c 1 -n 0 -p `pidof qdiskd`
44 Clustered Services – Best Practices ● Service structure should be as flat as possible ● Improves readability / maintainability ● Reduces configuration file footprint ● Rgmanager fixes most common ordering mistakes ● The resources block is not required ● Virtual machines should not exceed memory limits of a host after a failover for best predictability
45 ● With SCSI-3 PR Fencing, multipath works, but only when using device-mapper ● When using multiple paths and SAN fencing, you must ensure all paths to all storage is fenced for a given host ● When using multipath with a quorum disk, you must not use no_path_retry = queue. ● When using multipath with GFS2, you should not use no_path_retry = queue. On Multipath
46 On Multipath ● Do not place /var on a multipath device without relocating the bindings file to the root partition ● Not all SAN fabrics behave the same way in the same failure scenarios ● Test all failure scenarios you expect to have the cluster handle ● Use device-mapper multipath rather than vendor supplied versions for the best support from Red Hat
47 GFS2 – Shared Disk Cluster File System ● Provide uniform views of a file system in a cluster ● POSIX compliant (as much as Linux is, anyway) ● Allow easy management of things like virtual machine images ● Good for getting lots of data to several nodes quickly
48 GFS2 Considerations ● Journal count (cluster size) ● One journal per node ● File system size ● Online extend supported ● Shrinking is not supported ● Workload requirements & planned usage
49 GFS2 Pitfalls ● Making a file system with lock_nolock as the locking protocol ● Failure to allocate enough journals at file system creation time and adding nodes to the cluster (GFS only) ● NFS lock failover does not work! ● Never use a cluster file system on top of an md-raid device ● Use of local file systems on md-raid for failover is also not supported
50 Other Topics ● Stretch clustering – multiple buildings on the same campus in the same cluster ● Minimal support for this ● Geographic clustering / disaster tolerance – longer- distance ● Evaluated typically on a case-by-case basis; requires site to site storage replication and a backup cluster ● Active/active clustering across sites is not supported
51 Troubleshooting corosync & CMAN ● corosync does not have an easy tool to assist troubleshooting; check system logs (it is very verbose if problems occur) ● Most common problem w/ corosync is incorrect multicast configuration on the switch ● UDPU (6.2+) more reliable ● cman_tool status ● Shows cluster states (incl. votes) ● cman_tool nodes ● Show cluster node states
52 Troubleshooting Fencing ● group_tool ls – The fence group should be in NONE (or “run” depending on version) ● If it is in another state (FAIL_STOP_WAIT, FAIL_START_WAIT), check logs on the low node ID ● cman_tool nodes -f – Show nodes and the last time each were fenced (if ever) ● fence_ack_manual -e -n <node> - emergency fencing override. Use if you are sure the host is dead and the fencing device is inaccessible (or if fencing is incorrectly configured) to allow the cluster to recover.
53 Summary ● Choose a fencing configuration which works in the failure cases you expect ● Test all failure cases you expect the cluster to recover from ● The more complex the system, the more likely a single component will fail ● Use the simplest configuration whenever possible ● When using clustered file systems, tune according to your workload
54 References ● https://access.redhat.com/knowledge/solutions/17784 ● https://access.redhat.com/knowledge/node/28603 ● https://access.redhat.com/knowledge/node/29440 ● https://access.redhat.com/knowledge/articles/40051 ● http://people.redhat.com/lhh/ClusterPitfalls.pdf
55 Complex NSPF Cluster Host Host ● Any single failure in the system either allows recovery or continued operation ● Bordering on insane Rail B Rail A Fencing Device NetQuorum Cluster Net
56 Simpler NSPF configuration Host Host Rail B Rail A Fencing Device Host Switch1 Switch2 ISL

Recommended

Kernel Recipes 2015 - The Dronecode Project – A step in open source drones
Kernel Recipes 2015 - The Dronecode Project – A step in open source dronesKernel Recipes 2015 - The Dronecode Project – A step in open source drones
Kernel Recipes 2015 - The Dronecode Project – A step in open source dronesAnne Nicolas
 
Kernel Recipes 2015: Kernel packet capture technologies
Kernel Recipes 2015: Kernel packet capture technologiesKernel Recipes 2015: Kernel packet capture technologies
Kernel Recipes 2015: Kernel packet capture technologiesAnne Nicolas
 
Kernel Recipes 2015: Greybus
Kernel Recipes 2015: GreybusKernel Recipes 2015: Greybus
Kernel Recipes 2015: GreybusAnne Nicolas
 
libreCMC : The Libre Embedded GNU/Linux Distro
libreCMC : The Libre Embedded GNU/Linux DistrolibreCMC : The Libre Embedded GNU/Linux Distro
libreCMC : The Libre Embedded GNU/Linux DistroAll Things Open
 
ARM Architecture and Meltdown/Spectre
ARM Architecture and Meltdown/SpectreARM Architecture and Meltdown/Spectre
ARM Architecture and Meltdown/SpectreGlobalLogic Ukraine
 
U-boot and Android Verified Boot 2.0
U-boot and Android Verified Boot 2.0U-boot and Android Verified Boot 2.0
U-boot and Android Verified Boot 2.0GlobalLogic Ukraine
 
Linux Interrupts
Linux InterruptsLinux Interrupts
Linux InterruptsKernel TLV
 
Intel DPDK Step by Step instructions
Intel DPDK Step by Step instructionsIntel DPDK Step by Step instructions
Intel DPDK Step by Step instructionsHisaki Ohara
 

Recommended

Kernel Recipes 2015 - The Dronecode Project – A step in open source drones
Kernel Recipes 2015 - The Dronecode Project – A step in open source dronesKernel Recipes 2015 - The Dronecode Project – A step in open source drones
Kernel Recipes 2015 - The Dronecode Project – A step in open source dronesAnne Nicolas
 
Kernel Recipes 2015: Kernel packet capture technologies
Kernel Recipes 2015: Kernel packet capture technologiesKernel Recipes 2015: Kernel packet capture technologies
Kernel Recipes 2015: Kernel packet capture technologiesAnne Nicolas
 
Kernel Recipes 2015: Greybus
Kernel Recipes 2015: GreybusKernel Recipes 2015: Greybus
Kernel Recipes 2015: GreybusAnne Nicolas
 
libreCMC : The Libre Embedded GNU/Linux Distro
libreCMC : The Libre Embedded GNU/Linux DistrolibreCMC : The Libre Embedded GNU/Linux Distro
libreCMC : The Libre Embedded GNU/Linux DistroAll Things Open
 
ARM Architecture and Meltdown/Spectre
ARM Architecture and Meltdown/SpectreARM Architecture and Meltdown/Spectre
ARM Architecture and Meltdown/SpectreGlobalLogic Ukraine
 
U-boot and Android Verified Boot 2.0
U-boot and Android Verified Boot 2.0U-boot and Android Verified Boot 2.0
U-boot and Android Verified Boot 2.0GlobalLogic Ukraine
 
Linux Interrupts
Linux InterruptsLinux Interrupts
Linux InterruptsKernel TLV
 
Intel DPDK Step by Step instructions
Intel DPDK Step by Step instructionsIntel DPDK Step by Step instructions
Intel DPDK Step by Step instructionsHisaki Ohara
 
Maxwell siuc hpc_description_tutorial
Maxwell siuc hpc_description_tutorialMaxwell siuc hpc_description_tutorial
Maxwell siuc hpc_description_tutorialmadhuinturi
 
Kernel Recipes 2015: Speed up your kernel development cycle with QEMU
Kernel Recipes 2015: Speed up your kernel development cycle with QEMUKernel Recipes 2015: Speed up your kernel development cycle with QEMU
Kernel Recipes 2015: Speed up your kernel development cycle with QEMUAnne Nicolas
 
LAS16-403: GDB Linux Kernel Awareness
LAS16-403: GDB Linux Kernel AwarenessLAS16-403: GDB Linux Kernel Awareness
LAS16-403: GDB Linux Kernel AwarenessLinaro
 
Destroying Router Security - NNC5ed
Destroying Router Security - NNC5edDestroying Router Security - NNC5ed
Destroying Router Security - NNC5edJose Antonio Rodriguez Garcia
 
Vx works RTOS
Vx works RTOSVx works RTOS
Vx works RTOSSai Malleswar
 
The Linux Block Layer - Built for Fast Storage
The Linux Block Layer - Built for Fast StorageThe Linux Block Layer - Built for Fast Storage
The Linux Block Layer - Built for Fast StorageKernel TLV
 
Project ACRN hypervisor introduction
Project ACRN hypervisor introduction Project ACRN hypervisor introduction
Project ACRN hypervisor introduction Project ACRN
 
Best practices for catalyst 4500 4000, 5500-5000, and 6500-6000 series switch...
Best practices for catalyst 4500 4000, 5500-5000, and 6500-6000 series switch...Best practices for catalyst 4500 4000, 5500-5000, and 6500-6000 series switch...
Best practices for catalyst 4500 4000, 5500-5000, and 6500-6000 series switch...abdenour boussioud
 
Crear vlan
Crear vlanCrear vlan
Crear vlan1 2d
 
Tuning systemd for embedded
Tuning systemd for embeddedTuning systemd for embedded
Tuning systemd for embeddedAlison Chaiken
 
AOS Lab 6: Scheduling
AOS Lab 6: SchedulingAOS Lab 6: Scheduling
AOS Lab 6: SchedulingZubair Nabi
 
Project ACRN I2C mediator introduction
Project ACRN I2C mediator introductionProject ACRN I2C mediator introduction
Project ACRN I2C mediator introductionProject ACRN
 
High Availability in 37 Easy Steps
High Availability in 37 Easy StepsHigh Availability in 37 Easy Steps
High Availability in 37 Easy StepsTim Serong
 
Spectre meltdown performance_tests - v0.3
Spectre meltdown performance_tests - v0.3Spectre meltdown performance_tests - v0.3
Spectre meltdown performance_tests - v0.3David Pasek
 
Creating ethernet vla ns on catalyst switches
Creating ethernet vla ns on catalyst switchesCreating ethernet vla ns on catalyst switches
Creating ethernet vla ns on catalyst switchesabeforu
 
Cellular technology with Embedded Linux - COSCUP 2016
Cellular technology with Embedded Linux - COSCUP 2016Cellular technology with Embedded Linux - COSCUP 2016
Cellular technology with Embedded Linux - COSCUP 2016SZ Lin
 
Лекц 9
Лекц 9Лекц 9
Лекц 9Muuluu
 
vSAN Performance and Resiliency at Scale
vSAN Performance and Resiliency at ScalevSAN Performance and Resiliency at Scale
vSAN Performance and Resiliency at ScaleSumit Lahiri
 
Considerations when implementing_ha_in_dmf
Considerations when implementing_ha_in_dmfConsiderations when implementing_ha_in_dmf
Considerations when implementing_ha_in_dmfhik_lhz
 
Android 5.0 Lollipop platform change investigation report
Android 5.0 Lollipop platform change investigation reportAndroid 5.0 Lollipop platform change investigation report
Android 5.0 Lollipop platform change investigation reporthidenorly
 
Totem协议(SRP/RRP)讲解
Totem协议(SRP/RRP)讲解Totem协议(SRP/RRP)讲解
Totem协议(SRP/RRP)讲解chinainvent
 
Linux Cluster next generation
Linux Cluster next generationLinux Cluster next generation
Linux Cluster next generationsamsolutionsby
 

More Related Content

What's hot

Maxwell siuc hpc_description_tutorial
Maxwell siuc hpc_description_tutorialMaxwell siuc hpc_description_tutorial
Maxwell siuc hpc_description_tutorialmadhuinturi
 
Kernel Recipes 2015: Speed up your kernel development cycle with QEMU
Kernel Recipes 2015: Speed up your kernel development cycle with QEMUKernel Recipes 2015: Speed up your kernel development cycle with QEMU
Kernel Recipes 2015: Speed up your kernel development cycle with QEMUAnne Nicolas
 
LAS16-403: GDB Linux Kernel Awareness
LAS16-403: GDB Linux Kernel AwarenessLAS16-403: GDB Linux Kernel Awareness
LAS16-403: GDB Linux Kernel AwarenessLinaro
 
The Linux Block Layer - Built for Fast Storage
The Linux Block Layer - Built for Fast StorageThe Linux Block Layer - Built for Fast Storage
The Linux Block Layer - Built for Fast StorageKernel TLV
 
Project ACRN hypervisor introduction
Project ACRN hypervisor introduction Project ACRN hypervisor introduction
Project ACRN hypervisor introduction Project ACRN
 
Best practices for catalyst 4500 4000, 5500-5000, and 6500-6000 series switch...
Best practices for catalyst 4500 4000, 5500-5000, and 6500-6000 series switch...Best practices for catalyst 4500 4000, 5500-5000, and 6500-6000 series switch...
Best practices for catalyst 4500 4000, 5500-5000, and 6500-6000 series switch...abdenour boussioud
 
Crear vlan
Crear vlanCrear vlan
Crear vlan1 2d
 
Tuning systemd for embedded
Tuning systemd for embeddedTuning systemd for embedded
Tuning systemd for embeddedAlison Chaiken
 
AOS Lab 6: Scheduling
AOS Lab 6: SchedulingAOS Lab 6: Scheduling
AOS Lab 6: SchedulingZubair Nabi
 
Project ACRN I2C mediator introduction
Project ACRN I2C mediator introductionProject ACRN I2C mediator introduction
Project ACRN I2C mediator introductionProject ACRN
 
High Availability in 37 Easy Steps
High Availability in 37 Easy StepsHigh Availability in 37 Easy Steps
High Availability in 37 Easy StepsTim Serong
 
Spectre meltdown performance_tests - v0.3
Spectre meltdown performance_tests - v0.3Spectre meltdown performance_tests - v0.3
Spectre meltdown performance_tests - v0.3David Pasek
 
Creating ethernet vla ns on catalyst switches
Creating ethernet vla ns on catalyst switchesCreating ethernet vla ns on catalyst switches
Creating ethernet vla ns on catalyst switchesabeforu
 
Cellular technology with Embedded Linux - COSCUP 2016
Cellular technology with Embedded Linux - COSCUP 2016Cellular technology with Embedded Linux - COSCUP 2016
Cellular technology with Embedded Linux - COSCUP 2016SZ Lin
 
Лекц 9
Лекц 9Лекц 9
Лекц 9Muuluu
 
vSAN Performance and Resiliency at Scale
vSAN Performance and Resiliency at ScalevSAN Performance and Resiliency at Scale
vSAN Performance and Resiliency at ScaleSumit Lahiri
 
Considerations when implementing_ha_in_dmf
Considerations when implementing_ha_in_dmfConsiderations when implementing_ha_in_dmf
Considerations when implementing_ha_in_dmfhik_lhz
 
Android 5.0 Lollipop platform change investigation report
Android 5.0 Lollipop platform change investigation reportAndroid 5.0 Lollipop platform change investigation report
Android 5.0 Lollipop platform change investigation reporthidenorly
 

What's hot (20)

Maxwell siuc hpc_description_tutorial
Maxwell siuc hpc_description_tutorialMaxwell siuc hpc_description_tutorial
Maxwell siuc hpc_description_tutorial
 
Kernel Recipes 2015: Speed up your kernel development cycle with QEMU
Kernel Recipes 2015: Speed up your kernel development cycle with QEMUKernel Recipes 2015: Speed up your kernel development cycle with QEMU
Kernel Recipes 2015: Speed up your kernel development cycle with QEMU
 
LAS16-403: GDB Linux Kernel Awareness
LAS16-403: GDB Linux Kernel AwarenessLAS16-403: GDB Linux Kernel Awareness
LAS16-403: GDB Linux Kernel Awareness
 
Destroying Router Security - NNC5ed
Destroying Router Security - NNC5edDestroying Router Security - NNC5ed
Destroying Router Security - NNC5ed
 
Vx works RTOS
Vx works RTOSVx works RTOS
Vx works RTOS
 
The Linux Block Layer - Built for Fast Storage
The Linux Block Layer - Built for Fast StorageThe Linux Block Layer - Built for Fast Storage
The Linux Block Layer - Built for Fast Storage
 
Project ACRN hypervisor introduction
Project ACRN hypervisor introduction Project ACRN hypervisor introduction
Project ACRN hypervisor introduction
 
Best practices for catalyst 4500 4000, 5500-5000, and 6500-6000 series switch...
Best practices for catalyst 4500 4000, 5500-5000, and 6500-6000 series switch...Best practices for catalyst 4500 4000, 5500-5000, and 6500-6000 series switch...
Best practices for catalyst 4500 4000, 5500-5000, and 6500-6000 series switch...
 
Crear vlan
Crear vlanCrear vlan
Crear vlan
 
Tuning systemd for embedded
Tuning systemd for embeddedTuning systemd for embedded
Tuning systemd for embedded
 
AOS Lab 6: Scheduling
AOS Lab 6: SchedulingAOS Lab 6: Scheduling
AOS Lab 6: Scheduling
 
Project ACRN I2C mediator introduction
Project ACRN I2C mediator introductionProject ACRN I2C mediator introduction
Project ACRN I2C mediator introduction
 
High Availability in 37 Easy Steps
High Availability in 37 Easy StepsHigh Availability in 37 Easy Steps
High Availability in 37 Easy Steps
 
Spectre meltdown performance_tests - v0.3
Spectre meltdown performance_tests - v0.3Spectre meltdown performance_tests - v0.3
Spectre meltdown performance_tests - v0.3
 
Creating ethernet vla ns on catalyst switches
Creating ethernet vla ns on catalyst switchesCreating ethernet vla ns on catalyst switches
Creating ethernet vla ns on catalyst switches
 
Cellular technology with Embedded Linux - COSCUP 2016
Cellular technology with Embedded Linux - COSCUP 2016Cellular technology with Embedded Linux - COSCUP 2016
Cellular technology with Embedded Linux - COSCUP 2016
 
Лекц 9
Лекц 9Лекц 9
Лекц 9
 
vSAN Performance and Resiliency at Scale
vSAN Performance and Resiliency at ScalevSAN Performance and Resiliency at Scale
vSAN Performance and Resiliency at Scale
 
Considerations when implementing_ha_in_dmf
Considerations when implementing_ha_in_dmfConsiderations when implementing_ha_in_dmf
Considerations when implementing_ha_in_dmf
 
Android 5.0 Lollipop platform change investigation report
Android 5.0 Lollipop platform change investigation reportAndroid 5.0 Lollipop platform change investigation report
Android 5.0 Lollipop platform change investigation report
 

Viewers also liked

Totem协议(SRP/RRP)讲解
Totem协议(SRP/RRP)讲解Totem协议(SRP/RRP)讲解
Totem协议(SRP/RRP)讲解chinainvent
 
Linux Cluster next generation
Linux Cluster next generationLinux Cluster next generation
Linux Cluster next generationsamsolutionsby
 
Corosync and Pacemaker
Corosync and PacemakerCorosync and Pacemaker
Corosync and PacemakerMarian Marinov
 
Open stack HA - Theory to Reality
Open stack HA - Theory to RealityOpen stack HA - Theory to Reality
Open stack HA - Theory to RealitySriram Subramanian
 
오픈스택데이 오픈소스PaaS 솔루션 - openshift 소개
오픈스택데이 오픈소스PaaS 솔루션 - openshift 소개오픈스택데이 오픈소스PaaS 솔루션 - openshift 소개
오픈스택데이 오픈소스PaaS 솔루션 - openshift 소개Hojoong Kim
 
Open technet openstack
Open technet openstackOpen technet openstack
Open technet openstackNalee Jang
 
오픈스택 커뮤니티 소개 및 기술 동향
오픈스택 커뮤니티 소개 및 기술 동향오픈스택 커뮤니티 소개 및 기술 동향
오픈스택 커뮤니티 소개 및 기술 동향Nalee Jang
 

Viewers also liked (8)

Totem协议(SRP/RRP)讲解
Totem协议(SRP/RRP)讲解Totem协议(SRP/RRP)讲解
Totem协议(SRP/RRP)讲解
 
Linux Cluster next generation
Linux Cluster next generationLinux Cluster next generation
Linux Cluster next generation
 
Corosync and Pacemaker
Corosync and PacemakerCorosync and Pacemaker
Corosync and Pacemaker
 
Totem
TotemTotem
Totem
 
Open stack HA - Theory to Reality
Open stack HA - Theory to RealityOpen stack HA - Theory to Reality
Open stack HA - Theory to Reality
 
오픈스택데이 오픈소스PaaS 솔루션 - openshift 소개
오픈스택데이 오픈소스PaaS 솔루션 - openshift 소개오픈스택데이 오픈소스PaaS 솔루션 - openshift 소개
오픈스택데이 오픈소스PaaS 솔루션 - openshift 소개
 
Open technet openstack
Open technet openstackOpen technet openstack
Open technet openstack
 
오픈스택 커뮤니티 소개 및 기술 동향
오픈스택 커뮤니티 소개 및 기술 동향오픈스택 커뮤니티 소개 및 기술 동향
오픈스택 커뮤니티 소개 및 기술 동향
 

Similar to Cluster pitfalls recommand

CISSP Week 7
CISSP Week 7CISSP Week 7
CISSP Week 7jemtallon
 
Lcu14 101- coresight overview
Lcu14 101- coresight overviewLcu14 101- coresight overview
Lcu14 101- coresight overviewLinaro
 
High available energy management system
High available energy management systemHigh available energy management system
High available energy management systemJo Ee Liew
 
Training Slides: Basics 104: Simple Tungsten Clustering Deployments
Training Slides: Basics 104: Simple Tungsten Clustering DeploymentsTraining Slides: Basics 104: Simple Tungsten Clustering Deployments
Training Slides: Basics 104: Simple Tungsten Clustering DeploymentsContinuent
 
Shall we play a game
Shall we play a gameShall we play a game
Shall we play a gamejackpot201
 
Secure lustre on openstack
Secure lustre on openstackSecure lustre on openstack
Secure lustre on openstackJames Beal
 
Security issues in FPGA based systems.
Security issues in FPGA based systems.Security issues in FPGA based systems.
Security issues in FPGA based systems.Rajeev Verma
 
Network LACP/Bonding/Teaming with Mikrotik
Network LACP/Bonding/Teaming with MikrotikNetwork LACP/Bonding/Teaming with Mikrotik
Network LACP/Bonding/Teaming with MikrotikGLC Networks
 
Cassandra @ Netflix: Monitoring C* at Scale, Gossip and Tickler & Python
Cassandra @ Netflix: Monitoring C* at Scale, Gossip and Tickler & PythonCassandra @ Netflix: Monitoring C* at Scale, Gossip and Tickler & Python
Cassandra @ Netflix: Monitoring C* at Scale, Gossip and Tickler & PythonDataStax Academy
 
UWE Linux Boot Camp 2007: Hacking embedded Linux on the cheap
UWE Linux Boot Camp 2007: Hacking embedded Linux on the cheapUWE Linux Boot Camp 2007: Hacking embedded Linux on the cheap
UWE Linux Boot Camp 2007: Hacking embedded Linux on the cheapedlangley
 
Python on Rails - Victory Levy
Python on Rails - Victory LevyPython on Rails - Victory Levy
Python on Rails - Victory LevyHakka Labs
 
We shall play a game....
We shall play a game....We shall play a game....
We shall play a game....Sadia Textile
 
SUSE Expert Days Paris 2018 - SUSE HA Cluster Multi-Device
SUSE Expert Days Paris 2018 - SUSE HA Cluster Multi-DeviceSUSE Expert Days Paris 2018 - SUSE HA Cluster Multi-Device
SUSE Expert Days Paris 2018 - SUSE HA Cluster Multi-DeviceSUSE
 
Network Topologies, L1-L2 Basics, Networking Devices
Network Topologies, L1-L2 Basics, Networking DevicesNetwork Topologies, L1-L2 Basics, Networking Devices
Network Topologies, L1-L2 Basics, Networking DevicesAalok Shah
 
Webinar Slides: Tungsten Connector / Proxy – The Secret Sauce Behind Zero-Dow...
Webinar Slides: Tungsten Connector / Proxy – The Secret Sauce Behind Zero-Dow...Webinar Slides: Tungsten Connector / Proxy – The Secret Sauce Behind Zero-Dow...
Webinar Slides: Tungsten Connector / Proxy – The Secret Sauce Behind Zero-Dow...Continuent
 
Checkpoint and Restore In Userspace
Checkpoint and Restore In UserspaceCheckpoint and Restore In Userspace
Checkpoint and Restore In UserspaceOpenVZ
 
Open WG Talk #2 Everything you wanted to know about CRIU (but were afraid to ...
Open WG Talk #2 Everything you wanted to know about CRIU (but were afraid to ...Open WG Talk #2 Everything you wanted to know about CRIU (but were afraid to ...
Open WG Talk #2 Everything you wanted to know about CRIU (but were afraid to ...OpenVZ
 

Similar to Cluster pitfalls recommand (20)

CISSP Week 7
CISSP Week 7CISSP Week 7
CISSP Week 7
 
Lcu14 101- coresight overview
Lcu14 101- coresight overviewLcu14 101- coresight overview
Lcu14 101- coresight overview
 
High available energy management system
High available energy management systemHigh available energy management system
High available energy management system
 
Cat @ scale
Cat @ scaleCat @ scale
Cat @ scale
 
Training Slides: Basics 104: Simple Tungsten Clustering Deployments
Training Slides: Basics 104: Simple Tungsten Clustering DeploymentsTraining Slides: Basics 104: Simple Tungsten Clustering Deployments
Training Slides: Basics 104: Simple Tungsten Clustering Deployments
 
Shall we play a game?
Shall we play a game?Shall we play a game?
Shall we play a game?
 
0507 057 01 98 * Adana Klima Servisleri
0507 057 01 98 * Adana Klima Servisleri0507 057 01 98 * Adana Klima Servisleri
0507 057 01 98 * Adana Klima Servisleri
 
Shall we play a game
Shall we play a gameShall we play a game
Shall we play a game
 
Secure lustre on openstack
Secure lustre on openstackSecure lustre on openstack
Secure lustre on openstack
 
Security issues in FPGA based systems.
Security issues in FPGA based systems.Security issues in FPGA based systems.
Security issues in FPGA based systems.
 
Network LACP/Bonding/Teaming with Mikrotik
Network LACP/Bonding/Teaming with MikrotikNetwork LACP/Bonding/Teaming with Mikrotik
Network LACP/Bonding/Teaming with Mikrotik
 
Cassandra @ Netflix: Monitoring C* at Scale, Gossip and Tickler & Python
Cassandra @ Netflix: Monitoring C* at Scale, Gossip and Tickler & PythonCassandra @ Netflix: Monitoring C* at Scale, Gossip and Tickler & Python
Cassandra @ Netflix: Monitoring C* at Scale, Gossip and Tickler & Python
 
UWE Linux Boot Camp 2007: Hacking embedded Linux on the cheap
UWE Linux Boot Camp 2007: Hacking embedded Linux on the cheapUWE Linux Boot Camp 2007: Hacking embedded Linux on the cheap
UWE Linux Boot Camp 2007: Hacking embedded Linux on the cheap
 
Python on Rails - Victory Levy
Python on Rails - Victory LevyPython on Rails - Victory Levy
Python on Rails - Victory Levy
 
We shall play a game....
We shall play a game....We shall play a game....
We shall play a game....
 
SUSE Expert Days Paris 2018 - SUSE HA Cluster Multi-Device
SUSE Expert Days Paris 2018 - SUSE HA Cluster Multi-DeviceSUSE Expert Days Paris 2018 - SUSE HA Cluster Multi-Device
SUSE Expert Days Paris 2018 - SUSE HA Cluster Multi-Device
 
Network Topologies, L1-L2 Basics, Networking Devices
Network Topologies, L1-L2 Basics, Networking DevicesNetwork Topologies, L1-L2 Basics, Networking Devices
Network Topologies, L1-L2 Basics, Networking Devices
 
Webinar Slides: Tungsten Connector / Proxy – The Secret Sauce Behind Zero-Dow...
Webinar Slides: Tungsten Connector / Proxy – The Secret Sauce Behind Zero-Dow...Webinar Slides: Tungsten Connector / Proxy – The Secret Sauce Behind Zero-Dow...
Webinar Slides: Tungsten Connector / Proxy – The Secret Sauce Behind Zero-Dow...
 
Checkpoint and Restore In Userspace
Checkpoint and Restore In UserspaceCheckpoint and Restore In Userspace
Checkpoint and Restore In Userspace
 
Open WG Talk #2 Everything you wanted to know about CRIU (but were afraid to ...
Open WG Talk #2 Everything you wanted to know about CRIU (but were afraid to ...Open WG Talk #2 Everything you wanted to know about CRIU (but were afraid to ...
Open WG Talk #2 Everything you wanted to know about CRIU (but were afraid to ...
 

More from sprdd

Linux con europe_2014_full_system_rollback_btrfs_snapper_0
Linux con europe_2014_full_system_rollback_btrfs_snapper_0Linux con europe_2014_full_system_rollback_btrfs_snapper_0
Linux con europe_2014_full_system_rollback_btrfs_snapper_0sprdd
 
Linux con europe_2014_f
Linux con europe_2014_fLinux con europe_2014_f
Linux con europe_2014_fsprdd
 
Openstack v4 0
Openstack v4 0Openstack v4 0
Openstack v4 0sprdd
 
Hardware accelerated virtio networking for nfv linux con
Hardware accelerated virtio networking for nfv linux conHardware accelerated virtio networking for nfv linux con
Hardware accelerated virtio networking for nfv linux consprdd
 
난공불락세미나 Ldap
난공불락세미나 Ldap난공불락세미나 Ldap
난공불락세미나 Ldapsprdd
 
Lkda facebook seminar_140419
Lkda facebook seminar_140419Lkda facebook seminar_140419
Lkda facebook seminar_140419sprdd
 
Glusterfs 소개 v1.0_난공불락세미나
Glusterfs 소개 v1.0_난공불락세미나Glusterfs 소개 v1.0_난공불락세미나
Glusterfs 소개 v1.0_난공불락세미나sprdd
 
Zinst 패키지 기반의-리눅스_중앙관리시스템_20140415
Zinst 패키지 기반의-리눅스_중앙관리시스템_20140415Zinst 패키지 기반의-리눅스_중앙관리시스템_20140415
Zinst 패키지 기반의-리눅스_중앙관리시스템_20140415sprdd
 
Summit2014 riel chegu_w_0340_automatic_numa_balancing_0
Summit2014 riel chegu_w_0340_automatic_numa_balancing_0Summit2014 riel chegu_w_0340_automatic_numa_balancing_0
Summit2014 riel chegu_w_0340_automatic_numa_balancing_0sprdd
 
오픈소스컨설팅 클러스터제안 V1.0
오픈소스컨설팅 클러스터제안 V1.0오픈소스컨설팅 클러스터제안 V1.0
오픈소스컨설팅 클러스터제안 V1.0sprdd
 
HP NMI WATCHDOG
HP NMI WATCHDOGHP NMI WATCHDOG
HP NMI WATCHDOGsprdd
 
H2890 emc-clariion-asymm-active-wp
H2890 emc-clariion-asymm-active-wpH2890 emc-clariion-asymm-active-wp
H2890 emc-clariion-asymm-active-wpsprdd
 
Wheeler w 0450_linux_file_systems1
Wheeler w 0450_linux_file_systems1Wheeler w 0450_linux_file_systems1
Wheeler w 0450_linux_file_systems1sprdd
 
Wheeler w 0450_linux_file_systems1
Wheeler w 0450_linux_file_systems1Wheeler w 0450_linux_file_systems1
Wheeler w 0450_linux_file_systems1sprdd
 
2013fooscoverpageimage 130417105210-phpapp01
2013fooscoverpageimage 130417105210-phpapp012013fooscoverpageimage 130417105210-phpapp01
2013fooscoverpageimage 130417105210-phpapp01sprdd
 
Openstackinsideoutv10 140222065532-phpapp01
Openstackinsideoutv10 140222065532-phpapp01Openstackinsideoutv10 140222065532-phpapp01
Openstackinsideoutv10 140222065532-phpapp01sprdd
 
Rhel cluster gfs_improveperformance
Rhel cluster gfs_improveperformanceRhel cluster gfs_improveperformance
Rhel cluster gfs_improveperformancesprdd
 
Doldoggi bisiri
Doldoggi bisiriDoldoggi bisiri
Doldoggi bisirisprdd
 
유닉스 리눅스 마이그레이션_이호성_v1.0
유닉스 리눅스 마이그레이션_이호성_v1.0유닉스 리눅스 마이그레이션_이호성_v1.0
유닉스 리눅스 마이그레이션_이호성_v1.0sprdd
 
세미나설문
세미나설문세미나설문
세미나설문sprdd
 

More from sprdd (20)

Linux con europe_2014_full_system_rollback_btrfs_snapper_0
Linux con europe_2014_full_system_rollback_btrfs_snapper_0Linux con europe_2014_full_system_rollback_btrfs_snapper_0
Linux con europe_2014_full_system_rollback_btrfs_snapper_0
 
Linux con europe_2014_f
Linux con europe_2014_fLinux con europe_2014_f
Linux con europe_2014_f
 
Openstack v4 0
Openstack v4 0Openstack v4 0
Openstack v4 0
 
Hardware accelerated virtio networking for nfv linux con
Hardware accelerated virtio networking for nfv linux conHardware accelerated virtio networking for nfv linux con
Hardware accelerated virtio networking for nfv linux con
 
난공불락세미나 Ldap
난공불락세미나 Ldap난공불락세미나 Ldap
난공불락세미나 Ldap
 
Lkda facebook seminar_140419
Lkda facebook seminar_140419Lkda facebook seminar_140419
Lkda facebook seminar_140419
 
Glusterfs 소개 v1.0_난공불락세미나
Glusterfs 소개 v1.0_난공불락세미나Glusterfs 소개 v1.0_난공불락세미나
Glusterfs 소개 v1.0_난공불락세미나
 
Zinst 패키지 기반의-리눅스_중앙관리시스템_20140415
Zinst 패키지 기반의-리눅스_중앙관리시스템_20140415Zinst 패키지 기반의-리눅스_중앙관리시스템_20140415
Zinst 패키지 기반의-리눅스_중앙관리시스템_20140415
 
Summit2014 riel chegu_w_0340_automatic_numa_balancing_0
Summit2014 riel chegu_w_0340_automatic_numa_balancing_0Summit2014 riel chegu_w_0340_automatic_numa_balancing_0
Summit2014 riel chegu_w_0340_automatic_numa_balancing_0
 
오픈소스컨설팅 클러스터제안 V1.0
오픈소스컨설팅 클러스터제안 V1.0오픈소스컨설팅 클러스터제안 V1.0
오픈소스컨설팅 클러스터제안 V1.0
 
HP NMI WATCHDOG
HP NMI WATCHDOGHP NMI WATCHDOG
HP NMI WATCHDOG
 
H2890 emc-clariion-asymm-active-wp
H2890 emc-clariion-asymm-active-wpH2890 emc-clariion-asymm-active-wp
H2890 emc-clariion-asymm-active-wp
 
Wheeler w 0450_linux_file_systems1
Wheeler w 0450_linux_file_systems1Wheeler w 0450_linux_file_systems1
Wheeler w 0450_linux_file_systems1
 
Wheeler w 0450_linux_file_systems1
Wheeler w 0450_linux_file_systems1Wheeler w 0450_linux_file_systems1
Wheeler w 0450_linux_file_systems1
 
2013fooscoverpageimage 130417105210-phpapp01
2013fooscoverpageimage 130417105210-phpapp012013fooscoverpageimage 130417105210-phpapp01
2013fooscoverpageimage 130417105210-phpapp01
 
Openstackinsideoutv10 140222065532-phpapp01
Openstackinsideoutv10 140222065532-phpapp01Openstackinsideoutv10 140222065532-phpapp01
Openstackinsideoutv10 140222065532-phpapp01
 
Rhel cluster gfs_improveperformance
Rhel cluster gfs_improveperformanceRhel cluster gfs_improveperformance
Rhel cluster gfs_improveperformance
 
Doldoggi bisiri
Doldoggi bisiriDoldoggi bisiri
Doldoggi bisiri
 
유닉스 리눅스 마이그레이션_이호성_v1.0
유닉스 리눅스 마이그레이션_이호성_v1.0유닉스 리눅스 마이그레이션_이호성_v1.0
유닉스 리눅스 마이그레이션_이호성_v1.0
 
세미나설문
세미나설문세미나설문
세미나설문
 

Recently uploaded

Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxLoriGlavin3
 
QCon London: Mastering long-running processes in modern architectures
QCon London: Mastering long-running processes in modern architecturesQCon London: Mastering long-running processes in modern architectures
QCon London: Mastering long-running processes in modern architecturesBernd Ruecker
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesKari Kakkonen
 
Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024Hiroshi SHIBATA
 
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterMydbops
 
A Framework for Development in the AI Age
A Framework for Development in the AI AgeA Framework for Development in the AI Age
A Framework for Development in the AI AgeCprime
 
UiPath Community: Communication Mining from Zero to Hero
UiPath Community: Communication Mining from Zero to HeroUiPath Community: Communication Mining from Zero to Hero
UiPath Community: Communication Mining from Zero to HeroUiPathCommunity
 
Design pattern talk by Kaya Weers - 2024 (v2)
Design pattern talk by Kaya Weers - 2024 (v2)Design pattern talk by Kaya Weers - 2024 (v2)
Design pattern talk by Kaya Weers - 2024 (v2)Kaya Weers
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024BookNet Canada
 
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesHow to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesThousandEyes
 
Moving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfMoving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfLoriGlavin3
 
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...itnewsafrica
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.Curtis Poe
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsPixlogix Infotech
 
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24Mark Goldstein
 
Top 10 Hubspot Development Companies in 2024
Top 10 Hubspot Development Companies in 2024Top 10 Hubspot Development Companies in 2024
Top 10 Hubspot Development Companies in 2024TopCSSGallery
 
Zeshan Sattar- Assessing the skill requirements and industry expectations for...
Zeshan Sattar- Assessing the skill requirements and industry expectations for...Zeshan Sattar- Assessing the skill requirements and industry expectations for...
Zeshan Sattar- Assessing the skill requirements and industry expectations for...itnewsafrica
 
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxDigital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxLoriGlavin3
 
Varsha Sewlal- Cyber Attacks on Critical Critical Infrastructure
Varsha Sewlal- Cyber Attacks on Critical Critical InfrastructureVarsha Sewlal- Cyber Attacks on Critical Critical Infrastructure
Varsha Sewlal- Cyber Attacks on Critical Critical Infrastructureitnewsafrica
 

Recently uploaded (20)

Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
 
QCon London: Mastering long-running processes in modern architectures
QCon London: Mastering long-running processes in modern architecturesQCon London: Mastering long-running processes in modern architectures
QCon London: Mastering long-running processes in modern architectures
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examples
 
Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024
 
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL Router
 
A Framework for Development in the AI Age
A Framework for Development in the AI AgeA Framework for Development in the AI Age
A Framework for Development in the AI Age
 
UiPath Community: Communication Mining from Zero to Hero
UiPath Community: Communication Mining from Zero to HeroUiPath Community: Communication Mining from Zero to Hero
UiPath Community: Communication Mining from Zero to Hero
 
Design pattern talk by Kaya Weers - 2024 (v2)
Design pattern talk by Kaya Weers - 2024 (v2)Design pattern talk by Kaya Weers - 2024 (v2)
Design pattern talk by Kaya Weers - 2024 (v2)
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
 
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesHow to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
 
Moving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfMoving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdf
 
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and Cons
 
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
 
Top 10 Hubspot Development Companies in 2024
Top 10 Hubspot Development Companies in 2024Top 10 Hubspot Development Companies in 2024
Top 10 Hubspot Development Companies in 2024
 
Zeshan Sattar- Assessing the skill requirements and industry expectations for...
Zeshan Sattar- Assessing the skill requirements and industry expectations for...Zeshan Sattar- Assessing the skill requirements and industry expectations for...
Zeshan Sattar- Assessing the skill requirements and industry expectations for...
 
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxDigital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
 
Varsha Sewlal- Cyber Attacks on Critical Critical Infrastructure
Varsha Sewlal- Cyber Attacks on Critical Critical InfrastructureVarsha Sewlal- Cyber Attacks on Critical Critical Infrastructure
Varsha Sewlal- Cyber Attacks on Critical Critical Infrastructure
 

Cluster pitfalls recommand

  • 1. 1 Red Hat Clustering: Best Practices & Pitfalls Lon Hohberger Principal Software Engineer Red Hat May 2013
  • 2. 2 Red Hat Clustering: Best Practices & Pitfalls ● Why Cluster? ● I/O Fencing and Your Cluster ● 2-Node Clusters and Why they are Special ● Quorum Disks ● Service Structure ● Multipath Considerations in a clustered environment ● GFS2 – Cluster File System
  • 3. 3 Why Cluster? ● Application/Service Failover ● Reduce MTTR ● Meet business needs and SLAs ● Protect against software and hardware faults ● Virtual machine management ● Allow for planned maintenance with minimal downtime ● Load Balancing ● Scale out workloads ● Improve application response times
  • 4. 4 Why not Cluster? ● Often requires additional hardware ● Increases total system complexity ● More possible parts that can fail ● More failure scenarios to evaluate ● Harder to configure ● Harder to debug problems
  • 5. 5 Component Overview ● corosync – Totem SRP/RRP-based membership, VS messaging, closed process groups ● cman – quorum, voting, quorum disk ● fenced – handles I/O fencing for joined members ● Fencing agents – carry out fencing operations ● DLM – distributed lock manager (kernel) ● clvmd – cluster logical volume manager ● gfs2 – cluster file system ● rgmanager – cold failover for applications ● Pacemaker (TP) – Next-generation CRM
  • 6. 6 Failure Recovery Overview ● corosync - Totem token is lost; Totem forms a new ring ● fenced enters recovery state – quorate partition initiates fencing of dead node(s) ● DLM enters recovery state – locks on dead node(s) are dropped ● clvmd, gfs2 enter recovery state – recover / replay journals ● rgmanager initiates cold failover of user applications
  • 7. 7 I/O Fencing ● An active countermeasure taken by a functioning host to isolate a misbehaving or presumed dead host from shared data ● Most critical part of a cluster utilizing SAN or other shared storage technology ● Despite this, not everyone uses it ● How much is your data worth? ● Required by gfs2, clvmd, and cold failover software shipped by Red Hat ● Utilized by RHEV, too – Fencing is not a cluster- specific technology
  • 8. 8 I/O Fencing ● Protects data in the event of planned or unplanned system downtime ● Kernel panic ● System freeze ● Live hang / recovery ● Enables nodes to safely assume control of shared resources when booted in a network partition situation
  • 9. 9 I/O Fencing ● SAN fabric and SCSI fencing are not fully recoverable ● Node must typically be rebooted manually ● Enables an autopsy of the node ● Sometimes does not require additional hardware ● Power fencing is usually fully recoverable ● Your system can reboot and rejoin the cluster - thereby restoring capacity - without administrator intervention ● This is a reduction in MTTR
  • 10. 10 I/O Fencing – Drawbacks ● Difficult to configure ● No automated way to “discover” fencing devices ● Fencing devices are all very different and have different permission schemes and requirements ● Typically requires additional hardware ● Additional cost often not considered when purchasing systems ● A given “approved” IHV may not sell the hardware you want to use
  • 11. 11 I/O Fencing – Best Practices ● Integrated power management ● Use servers with dual power supplies ● Use a backup fencing device ● IPMI over LAN fencing usually requires disabling acpid ● Single-rail switched PDUs ● Use 2 switched PDUs ● Use a PDU with two power rails ● Use a backup fencing device
  • 12. 12 Host Host Integrated Power Management Pitfall Fencing Device Net Fencing Device Net ● Host (and fencing device) lose power ● Safe to recover; host is off ● Host and Fencing Device lose network connectivity ● NEVER safe to recover! ● The two cases are indistinguishable ● A timeout does not ensure data integrity in this case ● Not all integrated power management devices suffer this problem
  • 13. 13 Single Rail Pitfall Host Host FencingDevice ● One power cord = Single Point of Failure Host Host FencingDevice
  • 14. 14 Best Practice: Dual Rail Fencing Device Host Host ● Dual power sources, two rails in the fencing device, two power supplies in the cluster nodes ● Fencing device electronics run off of either rail Rail B Rail A Fencing Device Cluster Interconnect
  • 15. 15 Best Practice: Dual Single Rail Fencing Devices Host Host ● Dual power sources, two fencing devices Device B Device A Cluster Interconnect
  • 16. 16 I/O Fencing – Pitfalls ● SAN fabric fencing ● Full recovery typically not automatic ● Unfencing in RHEL6 allows a host to turn on its ports after reboot ● SCSI-3 PR fencing ● Not all devices support it ● Quorum disk may not reside on a LUN managed by SCSI fencing due to quorum “chicken and egg” problem
  • 17. 17 I/O Fencing - Pitfalls ● SCSI-3 PR Fencing (cont.) ● Preempt-and-abort command is not required by SCSI-3 specification ● Not all SCSI-3 compliant devices support it ● LUN detection can be done by querying CLVM, looking for volume groups with the cluster tag set ● On RHEL6, watchdog script allows reboot after fencing
  • 18. 18 2-Node Clusters ● Most common use case in high availability / cold failover clusters ● Inexpensive to set up; several can fit in a single rack ● Red Hat has had two node failover clustering since 2002
  • 19. 19 Why 2-Node Clusters are Special ● Cluster operates using a simple majority quorum algorithm ● Best predictability with respect to node failure counts compared to other quorum algorithms (ex: Grid) ● There is never a majority with one node out of two ● Simple Solution: two_node=”1” mode ● When a node boots, it assumes quorum ● Services, gfs2, etc. are prevented from operating until fencing completes
  • 20. 20 2-Node Pitfalls: Fence Loops ● If two nodes become partitioned, a fence loop can occur ● Node A kills node B, who reboots and kills node A... etc. ● Solutions ● Correct network configuration ● Fencing devices on same network used for cluster communication ● Use fencing delays ● Use a quorum disk
  • 21. 21 Fence Loop Node 1 Node 2 Fencing Device Network Cluster Interconnect
  • 22. 22 Fence Loop Node 1 Node 2 Fencing Device Cluster Interconnect Cable pull or switch loses power Network
  • 23. 23 Fence Loop Node 1 Node 2 Fencing Device Fencing Request Fencing Request blocked; device allows only one user at a time Cluster Interconnect Network
  • 24. 24 Fence Loop Node 1 Node 2 Fencing Device Node 1 power cycled Network Cluster Interconnect
  • 25. 25 Fence Loop Node 1 Node 2 Fencing Device Node 1 boots Cluster Interconnect Network
  • 26. 26 Fence Loop Node 1 Node 2 Fencing Device Fencing Request Network Cluster Interconnect
  • 27. 27 Fence Loop Node 1 Node 2 Fencing Device Node 2 power cycled Network Cluster Interconnect
  • 28. 28 Fence Loop Node 1 Node 2 Fencing Device Node 2 boots Network Cluster Interconnect
  • 29. 29 Fence Loop Node 1 Node 2 Fencing Device Fencing Request Network Cluster Interconnect
  • 30. 30 Immune to Fence Loops ● On cable pull, node without connectivity can not fence ● If interconnect dies and comes back later, fencing device serializes access so that only one node is fencedNode 1 Node 2 Fencing Device Cluster Interconnect
  • 31. 31 2-Node Pitfalls: Fence Death ● A combined pitfall when using integrated power in two node clusters ● If a two node cluster becomes partitioned, a fence death can occur if fencing devices are still accessible ● Two nodes tell each other's fencing device to turn off the other node at the same time ● No one is alive to turn either host back on! ● Solutions ● Same as fence loops ● Use a switched PDU which serializes access
  • 32. 32 Fence Death Node 1 Node 2 Fencing Device Fencing Device Network Cluster Interconnect
  • 33. 33 Fence Death Node 1 Node 2 Fencing Device Fencing Device Network Cluster Interconnect Cluster interconnect is lost (cable pull, switch turned off, etc.)
  • 34. 34 Fence Death Node 1 Node 2 Fencing Device Fencing Device Fencing Request Fencing Request Network Cluster Interconnect Both nodes fence each other
  • 35. 35 Fence Death Node 1 Node 2 Fencing Device Fencing Device Network Cluster Interconnect No one is alive to turn the other back on.
  • 36. 36 Immune to Fence Death Node 1 Node 2 Fencing Device ● Single power fencing device serializes access ● Cable pull ensures one node “loses” Cluster Interconnect
  • 37. 37 2-Node Pitfalls: Crossover Cables ● Causes both nodes to lose link on cluster interconnect when only one link has failed ● Indeterminate state for quorum disk without very clever heuristics (use master_wins) ● Fencing can't be placed on the same network ● We don't test this
  • 38. 38 2-Node Clusters: Pitfall avoidance ● Network / fencing configuration evaluation ● Use a quorum disk ● Create a 3 node cluster :) ● Simple to configure, increased working capacity, etc.
  • 39. 39 Quorum Disk - Benefits ● Prevents fence-loop and fence death situations ● Existing cluster member retains quorum until it fails or cluster connectivity is restored ● Heuristics ensure that administrator-defined “best-fit” node continues operation in a network partition ● Provides all-but-one or last-man-standing failure mode ● Examples: ● 4 node cluster, and 3 nodes fail ● 4 node cluster and 3 nodes lose access to a critical network path as decided by the administrator ● Note: Ensure capacity of remaining node is adequate for all cluster operations before trying this
  • 40. 40 Quorum Disk - Drawbacks ● Used to be complex to configure, but RHEL 6.3 fixes most of this ● Heuristics need to be written by administrators for their particular environments ● Incorrect configuration can reduce availability ● Algorithm used is non-traditional ● Backup membership algorithm vs. ownership algorithm or simple “tie-breaker”
  • 41. 41 Quorum Disk Timing Pitfall (RHEL5)
  • 42. 42 Quorum Disk Made “Simple” (RHEL5) ● Quorum disk failure recovery should be a bit less than half of CMAN's failure time ● This allows for the quorum disk arbitration node to fail over before CMAN times out ● Quorum disk failure recovery should be approximately 30% longer than a multipath failover. Example [1]: ● x = multipath failover ● x * 1.3 = quorum disk failover ● x * 2.7 = CMAN failover [1] http://kbase.redhat.com/faq/docs/DOC-2882
  • 43. 43 Quorum Disk Best Practices ● Don't use it if you don't need it ● Fencing delays can usually provide adequate decision- making ● If required, use heuristics for your environment ● Prefer master_wins over heuristics ● I/O Scheduling ● deadline scheduler ● cfq scheduler with realtime prio ● ionice -c 1 -n 0 -p `pidof qdiskd`
  • 44. 44 Clustered Services – Best Practices ● Service structure should be as flat as possible ● Improves readability / maintainability ● Reduces configuration file footprint ● Rgmanager fixes most common ordering mistakes ● The resources block is not required ● Virtual machines should not exceed memory limits of a host after a failover for best predictability
  • 45. 45 ● With SCSI-3 PR Fencing, multipath works, but only when using device-mapper ● When using multiple paths and SAN fencing, you must ensure all paths to all storage is fenced for a given host ● When using multipath with a quorum disk, you must not use no_path_retry = queue. ● When using multipath with GFS2, you should not use no_path_retry = queue. On Multipath
  • 46. 46 On Multipath ● Do not place /var on a multipath device without relocating the bindings file to the root partition ● Not all SAN fabrics behave the same way in the same failure scenarios ● Test all failure scenarios you expect to have the cluster handle ● Use device-mapper multipath rather than vendor supplied versions for the best support from Red Hat
  • 47. 47 GFS2 – Shared Disk Cluster File System ● Provide uniform views of a file system in a cluster ● POSIX compliant (as much as Linux is, anyway) ● Allow easy management of things like virtual machine images ● Good for getting lots of data to several nodes quickly
  • 48. 48 GFS2 Considerations ● Journal count (cluster size) ● One journal per node ● File system size ● Online extend supported ● Shrinking is not supported ● Workload requirements & planned usage
  • 49. 49 GFS2 Pitfalls ● Making a file system with lock_nolock as the locking protocol ● Failure to allocate enough journals at file system creation time and adding nodes to the cluster (GFS only) ● NFS lock failover does not work! ● Never use a cluster file system on top of an md-raid device ● Use of local file systems on md-raid for failover is also not supported
  • 50. 50 Other Topics ● Stretch clustering – multiple buildings on the same campus in the same cluster ● Minimal support for this ● Geographic clustering / disaster tolerance – longer- distance ● Evaluated typically on a case-by-case basis; requires site to site storage replication and a backup cluster ● Active/active clustering across sites is not supported
  • 51. 51 Troubleshooting corosync & CMAN ● corosync does not have an easy tool to assist troubleshooting; check system logs (it is very verbose if problems occur) ● Most common problem w/ corosync is incorrect multicast configuration on the switch ● UDPU (6.2+) more reliable ● cman_tool status ● Shows cluster states (incl. votes) ● cman_tool nodes ● Show cluster node states
  • 52. 52 Troubleshooting Fencing ● group_tool ls – The fence group should be in NONE (or “run” depending on version) ● If it is in another state (FAIL_STOP_WAIT, FAIL_START_WAIT), check logs on the low node ID ● cman_tool nodes -f – Show nodes and the last time each were fenced (if ever) ● fence_ack_manual -e -n <node> - emergency fencing override. Use if you are sure the host is dead and the fencing device is inaccessible (or if fencing is incorrectly configured) to allow the cluster to recover.
  • 53. 53 Summary ● Choose a fencing configuration which works in the failure cases you expect ● Test all failure cases you expect the cluster to recover from ● The more complex the system, the more likely a single component will fail ● Use the simplest configuration whenever possible ● When using clustered file systems, tune according to your workload
  • 54. 54 References ● https://access.redhat.com/knowledge/solutions/17784 ● https://access.redhat.com/knowledge/node/28603 ● https://access.redhat.com/knowledge/node/29440 ● https://access.redhat.com/knowledge/articles/40051 ● http://people.redhat.com/lhh/ClusterPitfalls.pdf
  • 55. 55 Complex NSPF Cluster Host Host ● Any single failure in the system either allows recovery or continued operation ● Bordering on insane Rail B Rail A Fencing Device NetQuorum Cluster Net
  • 56. 56 Simpler NSPF configuration Host Host Rail B Rail A Fencing Device Host Switch1 Switch2 ISL