Shared Filesystem
Shared filesystems in the 1.5.4 release are currently in Technology Preview, and are only available using the CSI driver. This experimental feature is not yet intended for production use.
Shared Filesystem support allows volumes to be mounted for read & write access
by multiple containers simultaneously, even from different nodes. In
Kubernetes, shared filesystems are referred to as ReadWriteMany
or RWX
volumes.
See the architecture for more information about the Shared Filesystem components.
How to provision ReadWriteMany Volumes
RWX Volumes are dynamically provisioned by Ondat when using a Ondat
Kubernetes StorageClass. To create an RWX volume set the AccessMode
for the PVC to ReadWriteMany
.
An example of a RWX PersistentVolumeClaim is shown below:
kind: PersistentVolumeClaim
apiVersion: v1
metadata:
name: shared-vol
labels:
storageos.com/replicas: "1" # Enable features using Labels
# You can enable replication in the
# StorageClass params to set defaults
spec:
storageClassName: "fast" # Ondat StorageClass
accessModes:
- ReadWriteMany # AccessMode that triggers creation of an NFS based Ondat Volume
resources:
requests:
storage: 20Gi
The following Deployment example shows how multiple Nginx Pods can mount the same shared filesystem PVC.
apiVersion: apps/v1
kind: Deployment
metadata:
name: nginx
labels:
app: nginx
spec:
replicas: 3
selector:
matchLabels:
app: nginx
template:
metadata:
labels:
app: nginx
spec:
containers:
- name: nginx
image: nginx:1.7.9
ports:
- containerPort: 80
volumeMounts:
- name: docroot
mountPath: /usr/share/nginx/html
volumes:
- name: docroot
persistentVolumeClaim:
claimName: shared-vol
Only installations of Ondat using CSI support RWX Volumes.
Volume Deletion
Shared volumes can be deleted through standard Kubernetes PVC deletion. When
a RWX PVC is deleted, Ondat acts differently according to the
ReclaimPolicy
of the PVC. For more information about the ReclaimPolicy
field see the Kubernetes
Documentation.
Reclaim Policy
The default reclaim policy for a PVC, PV pair is defined in the StorageClass.
All PVs created by a StorageClass inherit the reclaimPolicy
set
in the StorageClass.
apiVersion: storage.k8s.io/v1
kind: StorageClass
metadata:
labels:
app: storageos
name: storageos
parameters:
csi.storage.k8s.io/fstype: ext4
pool: default
provisioner: storageos
reclaimPolicy: Delete # <----- Default reclaim policy
-
Delete (default)
If the RWX PVC is deleted then the RWX PV is deleted along with the NFS server StatefulSet and its underlying RWO volume. As such data written to the RWX volume is non-recoverable after deletion.
-
Retain
The RWX PVC is deleted but the PV remains available. The NFS server StatefulSet remains untouched along with its associated RWO PVC. Hence, it is possible to reuse the volume and have access to data written to the RWX volume after the RWX PVC has been deleted.
In order to reuse the NFS server to serve a different RWX PVC, it is is necessary to “unlock” the PV, which only Kubernetes administrators with privileges can do. The PV is “unlocked” by deleteing the
spec.claimRef
field from the PV.For instance given a RWX PVC,
pvc-1
was bound to the PVpv-1
, beforepvc-1
was deleted. Then in order to reusepv-1
edit the PV, i.ekubectl edit pv pv-1
and delete thespec.claimRef
attribute.Deletion of the
spec.claimRef
field makes the PV available for any new PVC whose requirements are met by the PV. Therefore creating a new RWX volume with the previously used; StorageClass, capacity, access type and filesystem will make the PVC bind to the previously used RWX PV, even if the new PVC is provisioned in a different namespace.