NFS

10.1. NFS#

NFS server will export a local FS over the network, while NFS clients will mount this FS so users/softwares can access data.

10.1.1. Node profile#

You need to specify node profile. By default, nothing will be done on the target nodes if no profile is speficied.

Depending on the target profile, stack actions will be the following:

  • Server part will install needed packages, configure exports, and start services.

  • Client part will install needed packages, create needed folders, and mount exported FS from network.

The nfs_profile list allows to specify if a node should be a server, a client, or both.

If target node is expected to be a server, add server value into nfs_profile list:

nfs_profile:
  - server

If node is expected to be a client, add client only into the list:

nfs_profile:
  - client

If node is expected to be both server and client, which can happen, add both in the list:

nfs_profile:
  - server
  - client

You can set value either in the inventory or in a playbook. For example, if you wish to set the value in a custom playbook:

---
- name: managements playbook
  hosts: "mg_managements"
  roles:
    - role: bluebanquise.infrastructure.nfs
      tags: nfs
      vars:
        nfs_profile:
          - server

10.1.2. Exported resources#

Storage resources exported on the network are defined as a list under nfs_shares variable.

For each export, the following parameters can be set:

  • export (mandatory): Path to be exported from server and mounted from on client.

  • server (mandatory): NFS server hostname or ip. On server side, used to detect if current host should export this path. On client side, used to identify server to mount from. Note that in case of PCS based HA, user should rely on native exportfs heartbeat resource, not /etc/exports file.

  • mount (mandatory): Path on which mount the FS on local client.

  • clients_groups (mandatory): Hosts groups that will mount this FS. Used to detect which client should mount which FS.

  • network: Network used to share this storage space. If not provided, server will export to all (*) and clients will mount using server value, not binding to any network.

  • export_options: Arguments for the server (export). If no specified, will be rw,sync,root_squash.

  • mount_options: Arguments for the client (mount). If no specified, will be rw,fsc,nfsvers=3,bg,nosuid,nodev.

  • server_group: Group whose members will configure NFS as server. Useful for when using server parameter as virtual IP.

  • subnet: Force a specific subnet to be used instead of the one defined in the associated network. For example: 10.10.0.0/24.

For example:

nfs_shares:
  - export: /software
    server: storage1
    mount: /software
    clients_groups:
      - mg_compute
      - mg_login
      - custom_group
    network: net-admin
    export_options: ro,async
    mount_options: ro,nfsvers=3,bg
  - export: /data/home
    server: nfs2
    mount: /home
    clients_groups:
      - mg_compute
    network: interconnect-1
    export_options: rw,sync,root_squash
    mount_options: rw,nfsvers=3,bg,nosuid,nodev

Please refer to https://linux.die.net/man/5/nfs for detail on export and mount parameters available.

Also read and refer to https://www.admin-magazine.com/HPC/Articles/Useful-NFS-Options-for-Tuning-and-Management for fine tuning.

Finally, note that paths that should be mounted will be automatically created by this role if they do not exist.

10.1.3. Server tuning#

By default, server configuration provided by the OS should be enough. But for some high demanding clusters, some specific tunings might be needed.

The stacj can fine tune NFS server and client, based on https://man7.org/linux/man-pages/man5/nfs.conf.5.html file parameters. Note that only recent Linux distributions can take advantage of this feature (Ubuntu 22.04+, RHEL 7.9+, 8, 9, Debian 13+, etc.).

To do so, add into your inventory NFS file (the same where you already defined nfs_shares) the nfs_server_tuning dict:

nfs_server_tuning:
  nfsd:
    threads: 8

This will result for example to the following configuration:

[nfsd]
threads=8

To get all available parameters, simple cat your local /etc/nfs.conf file, and use https://man7.org/linux/man-pages/man5/nfs.conf.5.html as a documentation.

It is for example higly recommended to increase threads value to an higher value in case of large number of clients. 32 threads is a good start, but if server is strong, you can easily go to 64, 128 or even 256 threads if cluster is large.

10.1.4. Mounts state#

It is possible to manipulate mount state using nfs_client_directories_state``variable. Default is ``mounted. Refer to mount module documentation to get other possible values. This value can be important if using role in chroot environment.

10.1.5. SELinux#

By default, on SELinux capable and activated systems, the role will enable 2 sebooleans, one for /home support and one for httpd support. To change this behavior, simply update nfs_client_sebooleans variable which is a list of sebooleans to activate.

Default is:

nfs_client_sebooleans:
  - use_nfs_home_dirs
  - httpd_use_nfs
Contents