Getting Started¶
This page will help you take your first steps with OpenSVC services setup.
It will guide you through the sequence of tasks to achieve a simple but working dual-node failover cluster.
Prerequisites¶
The demonstration environment is composed of:
- A pair of Centos7 servers named
node1andnode2, respectively acting as first and second cluster node - Both nodes are connected to the same network segment 192.168.121.0/24
- root access is mandatory
OpenSVC Installation¶
We will follow the steps described in Nodeware installation
Install the OpenSVC Agent on both cluster nodes.
On both nodes:
$ wget -O /tmp/opensvc.latest.rpm https://repo.opensvc.com/rpms/current
$ sudo yum -y install /tmp/opensvc.latest.rpm
$ sudo rpm -qa | grep opensvc
opensvc-1.9-906.noarch
$ sudo systemctl start opensvc-agent.service
$ sudo systemctl is-active opensvc-agent.service
active
We can also check for proper daemon behaviour:
$ sudo svcmon Threads node1 listener running 0.0.0.0:1214 monitor running scheduler running Nodes node1 15m | 0.1 state | Services node1
The Threads section is explained here Daemon
The OpenSVC agent is now operational.
SSH Keys Setup¶
Cluster members needs ssh mutual authentication to exchange some OpenSVC configuration files. Each node must trust its peer through key-based authentication to allow these communications.
- node1 will be able to connect to node2 as root.
- node2 will be able to connect to node1 as root.
Note
It is also possible for the agent to login on a peer cluster node using an unprivileged user, using the ruser node.conf parameter. In this case, the remote user needs sudo priviles to run the following commands as root: nodemgr, svcmgr and rsync.
On node1:
node1:/ # ssh-copy-id root@node2
On node2:
node2:/ # ssh-copy-id root@node1
On node1:
node1:/ # ssh node2 hostname
node2
On node2:
node2:/ # ssh node1 hostname
node1
Set Host Environment¶
As we are in a lab environment, we do not need to specify the host environment : "TST" is the default value, and is adequate.
For other purposes than testing, we would have defined on both nodes the relevant mode with the method described here Set Node Environment
Cluster Build¶
As our first setup consist in a dual node cluster, we have to follow the steps described here Cluster Configuration
On node1:
$ om cluster set --param hb#1.type --value unicast
$ om mon Threads node1 hb#1.rx running 0.0.0.0:10000 | / hb#1.tx running | / listener running 0.0.0.0:1214 monitor running scheduler running Nodes node1 15m | 0.1 state | Services node1
Service Creation¶
The OpenSVC service can be created using one of the following two methods:
- provisioning
- manual : build config file from templates (located in
<OSVCDOC>)
We will describe the second, manual option, for a better understanding of what happens.
Step 1 : Service creation¶
A simple command is needed to create an empty service named svc1:
$ om svc1 create
The expected file name is svc1.conf located in <OSVCETC>
At this time, the configuration file should be empty, except its unique id. You have to edit it in order to define your service.
We are going to define a service running on the primary node node node1, failing-over to node node2, using one IP address named svc1.opensvc.com (name to ip resolution is done by the OpenSVC agent), one LVM volume group vgsvc1 and two filesystems hosted in logical volumes /dev/mapper/vgsvc1-lvappsvc1 and /dev/mapper/vgsvc1-lvdatasvc1.
On node1 node:
$ om svc1 edit config
[DEFAULT]
app = MyApp
nodes = node1 node2
id = c450ecfa-2c02-4d4b-95a3-c543d4389ec0
[ip#0]
ipname = svc1.opensvc.com
ipdev = eth0
[disk#0]
type = vg
name = vgsvc1
pvs = /dev/loop0
[fs#app]
type = ext4
dev = /dev/mapper/vgsvc1-lvappsvc1
mnt = /svc1/app
[fs#data]
type = ext4
dev = /dev/mapper/vgsvc1-lvdatasvc1
mnt = /svc1/data
The DEFAULT section in the service file describes the service itself: human readable name, nodes where the service is expected to run on...
Every other section defines a ressource managed by the service.
Step 4 : Service configuration check¶
As a final check, we can list all entries that match our svc1 service
node1:/etc/opensvc # ls -lart | grep svc1
-rw-r--r--. 1 root root 287 janv. 2 15:15 svc1.conf
You should be able to see:
- the service configuration file (svc1.conf)
At this point, we have configured a single service with no application launcher on node node1.
Service Testing¶
Query service status¶
Our first service is now ready to use. We can query its status.
On node1:
$ om svc1 print status
svc1 down
`- instances
|- node2 undef daemon down
`- node1 warn warn, frozen, idle
|- ip#0 ...... down svc1.opensvc.com@eth0
|- disk#0 ...... up vg vgsvc1
|- fs#app ...... down ext4 /dev/mapper/vgsvc1-lvappsvc1@/svc1/app
|- fs#data ...... down ext4 /dev/mapper/vgsvc1-lvdatasvc1@/svc1/data
`- sync#i0 ..O./. n/a rsync svc config to drpnodes, nodes
info: paused, service not up
This command collects and displays status for each service ressource :
- overall status is
warndue to the fact that all ressources are not inupstatus - ressource
vg#0is up because the volume group is activated (which is the expected status after vgcreate) - all other ressources are
downor non availablen/a
Start service¶
The use of OpenSVC for your services management saves a lot of time and effort. Once the service is described on a node, you just need one command to start the overall application.
Let's start the service on the local node:
node1:/ # om svc1 start --local
node1.svc1.ip#0 checking 192.168.121.42 availability
node1.svc1.ip#0 ifconfig eth0:1 192.168.121.42 netmask 255.255.255.0 up
node1.svc1.ip#0 arping -U -c 1 -I eth0 -s 192.168.121.42 192.168.121.42
node1.svc1.disk#0 vgchange --addtag @node1 vgsvc1
node1.svc1.disk#0 output:
node1.svc1.disk#0 Volume group "vgsvc1" successfully changed
node1.svc1.disk#0
node1.svc1.disk#0 vg vgsvc1 is already up
node1.svc1.fs#app e2fsck -p /dev/mapper/vgsvc1-lvappsvc1
node1.svc1.fs#app output:
node1.svc1.fs#app /dev/mapper/vgsvc1-lvappsvc1: clean, 12/25688 files, 8898/102400 blocks
node1.svc1.fs#app
node1.svc1.fs#app mount -t ext4 /dev/mapper/vgsvc1-lvappsvc1 /svc1/app
node1.svc1.fs#data e2fsck -p /dev/mapper/vgsvc1-lvdatasvc1
node1.svc1.fs#data output:
node1.svc1.fs#data /dev/mapper/vgsvc1-lvdatasvc1: clean, 12/23616 files, 8637/94208 blocks
node1.svc1.fs#data
node1.svc1.fs#data mount -t ext4 /dev/mapper/vgsvc1-lvdatasvc1 /svc1/data
The startup sequence reads as:
- check if service IP address is not already used somewhere
- bring up service ip address
- volume group activation (if not already in the correct state)
- fsck + mount of each filesystem
Manual filesystem mount check:
node1:/ # mount | grep svc1
/dev/mapper/vgsvc1-lvappsvc1 on /svc1/app type ext4 (rw,relatime,seclabel,data=ordered)
/dev/mapper/vgsvc1-lvdatasvc1 on /svc1/data type ext4 (rw,relatime,seclabel,data=ordered)
Manual ip address plumbing check on eth0 (svc1.opensvc.com is 192.168.121.42):
node1:/ # ip addr list eth0
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
link/ether 52:54:00:a6:c3:d7 brd ff:ff:ff:ff:ff:ff
inet 192.168.121.249/24 brd 192.168.121.255 scope global dynamic eth0
valid_lft 2205sec preferred_lft 2205sec
inet 192.168.121.42/24 brd 192.168.121.255 scope global secondary eth0:1
valid_lft forever preferred_lft forever
We can confirm everything is OK with the service's print status command:
node1:/ # om svc1 print status
svc1 up
`- instances
|- node2 undef daemon down
`- node1 up frozen, idle,
| started
|- ip#0 ...... up 192.168.121.42@eth0
|- disk#0 ...... up vg vgsvc1
|- fs#app ...... up ext4 /dev/mapper/vgsvc1-lvappsvc1@/svc1/app
|- fs#data ...... up ext4 /dev/mapper/vgsvc1-lvdatasvc1@/svc1/data
`- sync#i0 ..O./. n/a rsync svc config to drpnodes, nodes
info: paused, service not up
At this point, we have a running service, configured to run on node1 node.
Application Integration¶
We have gone through the setup of a single service, but it does not start applications yet. Let's add an application to our service now.
We will use a very simple example : a tiny webserver with a single index.html file to serve
Application Binary¶
In the service directory structure, we put a standalone binary of the Mongoose web server (https://code.google.com/p/mongoose/)
node1:/ # cd /svc1/app
node1:/svc1/app # wget -O /svc1/app/webserver https://storage.googleapis.com/google-code-archive-downloads/v2/code.google.com/mongoose/mongoose-lua-sqlite-ssl-static-x86_64-5.1
--2018-01-02 15:56:28-- https://storage.googleapis.com/google-code-archive-downloads/v2/code.google.com/mongoose/mongoose-lua-sqlite-ssl-static-x86_64-5.1
Resolving storage.googleapis.com (storage.googleapis.com)... 216.58.204.112, 2a00:1450:4007:80a::2010
Connecting to storage.googleapis.com (storage.googleapis.com)|216.58.204.112|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: 2527016 (2,4M) [application/octet-stream]
Saving to: ‘/svc1/app/webserver’
100%[=====================================================================>] 2 527 016 8,96MB/s in 0,3s
2018-01-02 15:56:29 (8,96 MB/s) - ‘/svc1/app/webserver’ saved [2527016/2527016]
node1:/svc1/app # ls -l /svc1/app/webserver
-rwxr-xr-x 1 root root 1063420 Feb 1 18:11 /svc1/app/webserver
And create a dummy web page in /svc1/data/, to be served by our webserver:
node1:/svc1/app # cd /svc1/data/
node1:/svc1/data # cat index.html
<html><body>It Works !</body></html>
Applications launcher script¶
We have to create a management script for our web application. At minimum, this script must support the start argument.
As a best practice, the script should also support the additional arguments:
- stop
- status
- info
Of course, we will store our script named weblauncher in the directory previsouly created for this purpose:
node1:/ # cd /svc1/app/init.d
node1:/svc1/app/init.d # cat weblauncher
#!/bin/bash
SVCROOT=/svc1
APPROOT=${SVCROOT}/app
DAEMON=${APPROOT}/webserver
DAEMON_BASE=$(basename $DAEMON)
DAEMONOPTS="-document_root ${SVCROOT}/data -index_files index.html -listening_port 8080"
function status {
pgrep $DAEMON_BASE >/dev/null 2>&1
}
case $1 in
restart)
killall $DAEMON_BASE
$DAEMON
;;
start)
status && {
echo "already started"
exit 0
}
nohup $DAEMON $DAEMONOPTS >> /dev/null 2>&1 &
;;
stop)
killall $DAEMON_BASE
;;
info)
echo "Name: webserver"
;;
status)
status
exit $?
;;
*)
echo "unsupported action: $1" >&2
exit 1
;;
esac
Make sure the script is working fine outside of the OpenSVC context:
node1:/svc1/app # ./weblauncher status
node1:/svc1/app # echo $?
1
node1:/svc1/app # ./weblauncher start
node1:/svc1/app # ./weblauncher status
node1:/svc1/app # echo $?
0
node1:/svc1/app # ./weblauncher stop
node1:/svc1/app # ./weblauncher status
node1:/svc1/app # echo $?
1
Now we need to instruct OpenSVC to handle this script for service application management
# om svc1 edit config
(...)
[app#web]
script = weblauncher
start = 10
check = 10
stop = 90
This configuration tells OpenSVC to call the weblauncher script with :
startargument when OpenSVC service startsstopargument when OpenSVC service stopsstatusargument when OpenSVC service needs status on application
Now we can give a try to our launcher script, using OpenSVC commands:
node1:~ # om svc1 start --local
node1.svc1.ip#0 192.168.121.42 is already up on eth0
node1.svc1.disk#0 vg vgsvc1 is already up
node1.svc1.fs#app ext4 /dev/mapper/vgsvc1-lvappsvc1@/svc1/app is already mounted
node1.svc1.fs#data ext4 /dev/mapper/vgsvc1-lvdatasvc1@/svc1/data is already mounted
node1.svc1.app#web exec /svc1/app/init.d/weblauncher start as user root
node1.svc1.app#web start done in 0:00:00.009874 ret 0
We can see that OpenSVC is now calling our startup script after mounting filesystems.
Querying the service status, the app ressource is now reporting up:
node1:~ # om svc1 print status
svc1 up
`- instances
|- node2 undef daemon down
`- node1 up frozen, idle,
| started
|- ip#0 ...... up 192.168.121.42@eth0
|- disk#0 ...... up vg vgsvc1
|- fs#app ...... up ext4 /dev/mapper/vgsvc1-lvappsvc1@/svc1/app
|- fs#data ...... up ext4 /dev/mapper/vgsvc1-lvdatasvc1@/svc1/data
|- app#web ..../. up weblauncher
`- sync#i0 ..O./. n/a rsync svc config to drpnodes, nodes
info: paused, service not up
Let's check if that is really the case:
node1:/ # ps auxww | grep web
root 18643 0.0 0.0 2540 320 pts/0 S 16:13 0:00 /svc1/app/webserver -document_root /svc1/data -index_files index.html -listening_port 8080
node1:~ # wget -qO - http://svc1.opensvc.com:8080/
<html><body>It Works !</body></html>
Now we can stop our service:
node1:/ # om svc1 stop --local
node1.svc1.app#web exec /svc1/app/init.d/weblauncher stop as user root
node1.svc1.app#web stop done in 0:00:00.010940 ret 0
node1.svc1.fs#data umount /svc1/data
node1.svc1.fs#app umount /svc1/app
node1.svc1.disk#0 vgchange --deltag @node1 vgsvc1
node1.svc1.disk#0 output:
node1.svc1.disk#0 Volume group "vgsvc1" successfully changed
node1.svc1.disk#0
node1.svc1.disk#0 vgchange -a n vgsvc1
node1.svc1.disk#0 output:
node1.svc1.disk#0 0 logical volume(s) in volume group "vgsvc1" now active
node1.svc1.disk#0
node1.svc1.ip#0 ifconfig eth0:1 down
node1.svc1.ip#0 checking 192.168.121.42 availability
Once again, a single command:
- brings down the application
- unmounts filesystems
- deactivates the volume group
- disables the service ip address
The overall status is now reported as being down
node1:/ # om svc1 print status
svc1 down warn
`- instances
|- node2 undef daemon down
`- node1 down warn, frozen, idle
|- ip#0 ...... down 192.168.121.42@eth0
|- disk#0 ...... down vg vgsvc1
|- fs#app ...... down ext4 /dev/mapper/vgsvc1-lvappsvc1@/svc1/app
|- fs#data ...... down ext4 /dev/mapper/vgsvc1-lvdatasvc1@/svc1/data
|- app#web ..../. down weblauncher
`- sync#i0 ..O./. warn rsync svc config to drpnodes, nodes
warn: passive node needs update
Let's restart the service to continue this tutorial:
node1:/ # om svc1 start --local
At this point, we have a running service on node node1, with a webserver application embedded.
Service Failover¶
Our service is running fine, but what happens if the node1 node fails ? Our svc1 service will also fail.
That's why we want to extend the service configuration to declare node2 as a failover node for this service.
After this change, the service configuration needs replication to the node2 node.
First, we are going to add node2 in the same cluster than node1
On node1:
$ om cluster get --kw cluster.secret
7e801abaefc611e780a2525400a6c3d7
On node2:
$ om daemon join --secret 7e801abaefc611e780a2525400a6c3d7 --node node1
node2 freeze local node
node2 add heartbeat hb#1
node2 join node node1
node2 thaw local node
$ om mon
Threads node1 node2
hb#1.rx running 0.0.0.0:10000 | O /
hb#1.tx running | O /
listener running 0.0.0.0:1214
monitor running
scheduler running
Nodes node1 node2
15m | 0.1 0.1
state | *
Services node1 node2
svc1 up! failover | O!*
OpenSVC will synchronize configuration files for your service since this one should be able to run on node1 or node2.
In order to force it now, run on node1
# om svc1 sync nodes
The configuration replication will be possible if the following conditions are met:
- the new node is declared in the service configuration file
<OSVCETC>/svc1.conf(parameter "nodes" in the .conf file) - the node sending config files (node1) is trusted on the new node (node2) (as described in a previous chapter of this tutorial)
- the node sending config files (node1) must be running the service (the service availability status, apps excluded, is up).
- the previous synchronisation is older than the configured minimum delay, or the --force option is set to bypass the delay check.
On node1
We can now try to start the service on node2, after stopping it on node1:
node1:/ # om svc1 stop
On node2:
node2:~ # om svc1 start --local
Service svc1 is now running on node node2. Service relocation operational is easy as that.
Now, what happens if I try to start my service on node1 while already running on node2 ?
node1:/ # om svc1 start --local
node1.svc1.ip#0 checking 192.168.121.42 availability
node1.svc1 E start aborted due to resource ip#0 conflict
node1.svc1 skip rollback start: no resource activated
Fortunately, OpenSVC IP address check prevent the service from starting on node1.
Note
At this point, we have a 2-node failover cluster. Although this setup meets most needs, the failover is _manual_, so does not qualify as a high availability cluster.
High Availability¶
Now, we have to configure your service to be able to failover without any intervention.
You only have to change the orchestration mode to ha. For more information about orchestration : Orchestration
On the node currently running your service, add orchestrate = ha in the DEFAULT section:
# om svc1 edit config
[DEFAULT]
app = MyApp
nodes = node1 node2
orchestrate = ha
(...)
Once this setup is in place, OpenSVC will be able to failover your service.
The last needed step is to define some resources that will trigger relocation. Those resources have to be marked as monitor=True in the service configuration file.
For example:
# om svc1 edit config
(...)
[app#web]
monitor = True
script = weblauncher
start = 10
check = 10
stop = 90
Unfreeze your service to allow the daemon to orchestrate your service:
# om svc1 thaw
Now, if your webserver resource failed, OpenSVC will relocate the service on the other node without any human intervention.