Cloud, Native, Container and Data
In this paper, Simon uses the Pure Docker Volume Plugin to create persistent storage for CockroachDB. That is all well and good if you want to play with CockroachDB, but also shows the foundation for you to use the plugin to create persistent data for your app.
What applications are you using with containers that require persistent (and reliable) data storage? I would be very interested in seeing how this works for everyone else with their own apps.
There IS an Official Whitepaper!
While I was writing this post the awesome Simon Dodsley was writing a great whitepaper on Persistent storage with Pure. As you can see there is some very different ways to deploy CockroachDB but the main goal is to keep your important data persistent no matter what happens to the containers as the scale, live and die.
I know most everyone loved seeing the demo of the most mission critical app in my house. I also want to show a few quick ways to leverage the Pure plugin to provide persistent data to a database. I am posting my files I used to create the demo here https://github.com/2vcps/crdb-demo-pure
First note
I started with the instructions provided here by Cockroach Labs.
This is an insecure installation for demo purposes. They do provide the instructions for a more Prod ready version. This is good enough for now.
Second note
The loadbalancer I used was created for my environment using the intructions to output the HAProxy file found here on the Cockroach Labs website:
https://www.cockroachlabs.com/docs/stable/generate-cockroachdb-resources.html
My yaml file refers to a docker image I built for the HAproxy loadbalancer. If it works for you cool! If not please follow the instructions above to create your own. If you really need to know more I can write another post showing how to take the Dockerfile and copy the CFG generated by CRDB into a new image just for you.
I have three VMware VM’s running Ubuntu 16.04. With Docker CE and the Pure plugin already installed. Read more here if you want to install the plugin.
https://github.com/2vcps/crdb-demo-pure/blob/master/3node-cockroachdb-pure.yml
version: '3.1'
services:
db1:
image: cockroachdb/cockroach:v1.0.2
deploy:
mode: replicated
replicas: 1
ports:
- 8888:8080
command: start --advertise-host=cockroach_db1 --logtostderr --insecure
networks:
- cockroachdb
volumes:
- cockroachdb-1:/cockroach/cockroach-data
db2:
image: cockroachdb/cockroach:v1.0.2
deploy:
mode: replicated
replicas: 1
command: start --advertise-host=cockroach_db2 --join=cockroach_db1:26257 --logtostderr --insecure
networks:
- cockroachdb
volumes:
- cockroachdb-2:/cockroach/cockroach-data
db3:
image: cockroachdb/cockroach:v1.0.2
deploy:
mode: replicated
replicas: 1
command: start --advertise-host=cockroach_db3 --join=cockroach_db1:26257 --logtostderr --insecure
networks:
- cockroachdb
volumes:
- cockroachdb-3:/cockroach/cockroach-data
crdb-proxy:
image: jowings/crdb-proxy:v1
deploy:
mode: replicated
replicas: 1
ports:
- 26257:26257
networks:
- cockroachdb
networks:
cockroachdb:
external: true
volumes:
cockroachdb-1:
driver: pure
cockroachdb-2:
driver: pure
cockroachdb-3:
driver: pure
#docker stack deploy -c 3node-cockroachdb-pure.yml cockroachLike it shows in the compose file This command deploys 4 services. 3 database nodes and 1 HAproxy. Each database node gets a brand new volume attached directly to the path by the Pure Docker Volume Plugin.
Each new volume created and attached to the host via iSCSI and mounted into the container.
Other than being no data do you notice something else?
First lets generate some data.
I run this from a client machine but you can attach to one of the DB containers and run this command to generate some sample data.
cockroach gen example-data | cockroach sql --insecure --host [any host ip of your docker swam]
I am also going to create a “bank” database and use a few containers to start inserting data over and over.
cockroach sql --insecure --host 10.21.84.7
# Welcome to the cockroach SQL interface.
# All statements must be terminated by a semicolon.
# To exit: CTRL + D.
[email protected]:26257/> CREATE database bank;
CREATE DATABASE
[email protected]:26257/> set database = bank;
SET
[email protected]:26257/bank> create table accounts (
-> id INT PRIMARY KEY,
-> balance DECIMAL
-> );
CREATE TABLE
[email protected]:26257/bank> ^DI created a program in golang to insert some data into the database just to make the charts interesting. This container starts, inserts a few thousand rows then exits. I run it as a service with 12 replicas so it is constantly going, I call it gogogo because I am funny.
You can see the data slowly going into the volumes.
Each node remains balanced (roughly) as cockroachdb stores that data.
Lets make this one go away.
We kill it.
Swarm starts a new one. The Docker engine uses the Pure plugin and remounts the volume. The CRDB cluster keeps on going.
New container ID but the data is the same.
So you want to update the image to the latest version of Cockroach? Did you notice this in our first screenshot?
Also our database is getting a lot of hits, (not really but lets pretend), so we need to scale it out. What do we do now?
https://github.com/2vcps/crdb-demo-pure/blob/master/6node-cockroachdb-pure.yml
version: '3.1'
services:
db1:
image: cockroachdb/cockroach:v1.0.3
deploy:
mode: replicated
replicas: 1
ports:
- 8888:8080
command: start --advertise-host=cockroach_db1 --logtostderr --insecure
networks:
- cockroachdb
volumes:
- cockroachdb-1:/cockroach/cockroach-data
db2:
image: cockroachdb/cockroach:v1.0.3
deploy:
mode: replicated
replicas: 1
command: start --advertise-host=cockroach_db2 --join=cockroach_db1:26257 --logtostderr --insecure
networks:
- cockroachdb
volumes:
- cockroachdb-2:/cockroach/cockroach-data
db3:
image: cockroachdb/cockroach:v1.0.3
deploy:
mode: replicated
replicas: 1
command: start --advertise-host=cockroach_db3 --join=cockroach_db1:26257 --logtostderr --insecure
networks:
- cockroachdb
volumes:
- cockroachdb-3:/cockroach/cockroach-data
crdb-proxy:
image: jowings/crdb-haproxy:v2
deploy:
mode: replicated
replicas: 1
ports:
- 26257:26257
networks:
- cockroachdb
db4:
image: cockroachdb/cockroach:v1.0.3
deploy:
mode: replicated
replicas: 1
command: start --advertise-host=cockroach_db4 --join=cockroach_db1:26257 --logtostderr --insecure
networks:
- cockroachdb
volumes:
- cockroachdb-4:/cockroach/cockroach-data
db5:
image: cockroachdb/cockroach:v1.0.3
deploy:
mode: replicated
replicas: 1
command: start --advertise-host=cockroach_db5 --join=cockroach_db1:26257 --logtostderr --insecure
networks:
- cockroachdb
volumes:
- cockroachdb-5:/cockroach/cockroach-data
db6:
image: cockroachdb/cockroach:v1.0.3
deploy:
mode: replicated
replicas: 1
command: start --advertise-host=cockroach_db6 --join=cockroach_db1:26257 --logtostderr --insecure
networks:
- cockroachdb
volumes:
- cockroachdb-6:/cockroach/cockroach-data
networks:
cockroachdb:
external: true
volumes:
cockroachdb-1:
driver: pure
cockroachdb-2:
driver: pure
cockroachdb-3:
driver: pure
cockroachdb-4:
driver: pure
cockroachdb-5:
driver: pure
cockroachdb-6:
driver: pure$docker stack deploy -c 6node-cockroachdb-pure.yml cockroach(important to provide the name of the stack you already used, or else errors)
We are going to update the services with the new images.
This is kind of the shotgun approach in this non-prod demo environment. If you want no downtime upgrades to containers I suggest reading more on blue-green deployments. I will show how to make the application upgrade with no downtime and use blue-green in another post.
If you notice the gap in the queries it is becuase I updated every node all at once. A better way would be to do one at a time and make sure each node is back up while they “roll” through the upgrade to the new image. Not prod remember?
Application says you are using 771MiB of your 192GB. While the FlashArray is using just maybe 105MB across these volumes.
Now we are mostly balanced with replicas in each db node.
Conclusion
This is just scratching the surface and running highly scalable data applications in containers with persistent data on a FlashArray. Are you a Pure customer or potential Pure customer about to run stateful/persistent apps on Docker/Kubernetes/DCOS? I want to hear from you. Leave a comment or send me a message on Twitter @jon_2vcps.
If you are a developer and have no clue what your infrastructure team does or is doing I am here to help make everyone’s life better. No more weekend long deployments or upgrades. Get out of doing storage performance troubleshooting.
Go to more of your kids soccer games.
Remember the prerequisites. Check the official README for the latest information. Official README
Operating Systems Supported:
Environments Supported :
Other software dependencies:
Review: To install the plugin –
docker plugin install store/purestorage/docker-plugin:1.0 --alias pure
OR if you are annoyed by having to hit Y for the permissions the plugin requests.
docker plugin install store/purestorage/docker-plugin:1.0 --alias pure --grant-all-permissions
The installation process is the same as a standalone docker host except you must specify your clusterid. This is a unique string you assign to your swarm nodes.
docker plugin disable pure
docker plugin set pure PURE_DOCKER_NAMESPACE=<clusterid>
docker plugin enable pure
When you first install the Pure Volume Plugin the plugin is enabled. Docker will not allow you to modify the namespace while the plugin is in use. So we need to disable the plugin before making changes. This also means it is best to do this before creating and using any volumes.
Remember to put your API token and array management IP in the pure.json file under /etc/pure-docker-plugin/ – for each host.
This is a quick guide and how to install the Pure plugin for docker 1.13 and above. For full details check out Pure Volume Plugin on Store.docker.com.
Operating Systems Supported
CentOS Linux 7.3
CoreOS (Ladybug 1298.6.0 and above)
Ubuntu (Trusty 14.04 LTS, Xenial 16.04.2 LTS)
Environments Supported
Docker 1.13+ I am on 17.03-ce
Swarm
Mesos 1.8 and above
Other dependencies
Latest iSCSI initiator SW
Latest Multipath package (This made a difference for me on Ubuntu remember to update!)
Here I am just listing the Pure hosts on my array before I install the plugin.
Also listing out my volumes, these are all pre-existing.
edit the file pure.json in /etc/pure-docker-plugin and add your array and API token
to get a token from the Pure CLI – (or go to the GUI of the array and copy the API token for your user).
pureeadmin create –api-token [user]
pureadmin list –api-token [user] –expose
docker plugin install store/purestorage/docker-plugin:1.0 –alias pure
Grant the plugins to the directories it requests.
Done. Easy.
Setting the PURE_DOCKER_NAMESPACE variable can be done with the command:
docker plugin set pure PURE_DOCKER_NAMESPACE=<clusterid>
My next blog post will dive more into setting up the plugin with Docker Swarm. The clusterid is just a unique string. Keep it simple.
$docker volume create -d pure -o size=200GiB Demo
Remember if you want to create the volume with other units the information is in the README but here it is for now:<Units can be specified as xB, xiB, or x. If no units are specified MiB is assumed.
Now that I created a volume on the array the host docker01 is now added to the list of hosts. The plugin automates adding the iSCSI IQN and creating the host.
You also see the docker01-Demo is listed and sized to my requested 200GiB The PURE_DOCKER_NAMESPACE will prepend the volume name you create. The default will use the docker hostname. In a Mesos and Swarm environment the namespace setting mentioned above is used. This is only identified this way on the array.
Now the volume can be mounted to a container using
#docker run –volume Demo:/data [image] [command]
You could also create a new volume and mount it to a container all in the same line with:
#docker run –volume-driver pure –volume myvolume:/data [image] [command]
Wrapping up my very first DockerCon. I learned great new things, was introduced to new tech and reconnected with some old friends.
This was my first convention in a very long time where I actually just attended the show and went to sessions. It was really nice. While people would usually read my blog looking for tips and tricks on how to do technical things and not my philosophic rambling. So I won’t try to be a pundit on announcements and competition and all that. Some cool things I learned:
More to follow as I pull my notes together and find links to the sessions.
Experimenting with Kubernetes to orchestrate and manage containers? If you are like me and already have a lot invested in vSphere (time, infra, knowledge) you might be exctied to use Kubernetes Anywhere to deploy it quickly. I won’t re-write the instruction found here:
https://github.com/kubernetes/kubernetes-anywhere
It works with
The vSphere option uses the Photon OS ova to spin up the container hosts and managers. So you can try it out easily with very little background in containers. That is dangerous as you will find yourself neck deep in new things to learn.
If you are like me and *skim* instructions you could be in for hours of “Why do all my nodes have the same IP?” When you power on the Photon OS template the startup sequence generates a machine ID (and mac address). So even though I powered it back off, the cloning processes was producing identical VM’s for my kubernetes cluster. Those not hip to networking this is bad for communication.
Also, don’t try to be a good VMware Admin cad convert that VM to a VM Template. The Kubernetes Anywhere script won’t find it.
IF you do like me and skip a few lines reading (happens right) make sure to check this documenation out on Photon OS. It will help get you on the right track.
This is clearly marked in the documentation now.
I had an issue with the Docker Swarm subnet automatically generated when I do:
$docker swarm init
Basically it was choosing the subnet my VPN connection was using to assign an IP to my machine on the internal network. Obviously this wreaked havoc on me being able to connect to the docker hosts I was working with in our lab.
I decided it would be worth it to create the docker_gwbridge network and assign the CIDR subnet for the network that would not overlap with the VPN.
$docker network create –subnet 192.168.249.0/24 docker_gwbridge
I did this before I created the swarm cluster. So far everything is working fine in the lab and I am able to SSH to the Docker Host and connect to the services I am testing on those machines. There may be other issues and I will report back as I find them.
Look for a post about going to In-n-Out some time soon, it is my tradition.
Be sure to check out what we will be doing at VMworld at the end of the month. Click the banner below once you are done being mesmerized by Chappy. Sign up for a 1:1 demo or meeting, I’ll be there are would love to meed with you. See how focused a demo I give.
Sessions to be sure to see featuring the Amazing Cody Hosterman
VMware vCenter is no longer meant to be the end-user interface for requesting and managing virtual machines and related resources. Storage is no exception. Join Cody Hosterman as he discusses how vRealize Automation Anything-as-a-Service (Xaas) provides the ability to easily import vRealize Orchestrator workflows to control, manage and provision storage via the self-service catalog offering vRealize Automation.
Wednesday, Aug 31, 2:00 PM – 3:00 PM
As All-Flash Data Reduction arrays are becoming common place in VMware environments due to their performance, flexibility and ease-of-use, it is important to understand how to best implement and manage them with EXXi. Data-reduction and flash changes how an administrator should think about various configuration options within VMware and those will be discussed in detail. VAAI, Space Reclamation, virtual disks, SIOC, SDRS Queue depths, Multipathing and other points will be highlighted.
Monday, Aug 29, 2:30 PM – 3:30 PM
So lets say the power goes out and half of the vm’s on your “lab storage that uses local disks” go into an infinite BSOD loop. I was lucky as one of the servers that still worked was a AD Domain Controller with DNS. Since I usually don’t try to fight BSOD’s and just rebuild. I did so. One very helpful page to move the AD roles was this article on seizing the roles. Which I had to do since the server holding the roles was DOA.
https://technet.microsoft.com/en-us/library/cc816779(v=ws.10).aspx
Enjoy and file this under Good to Know
You may or may not have heard about Pure Storage and Cisco partnering to provide solutions together to help our current and prospective customers using UCS, Pure Storage, and VMware. These predesigned and tested architectures provide a full solution for compute, network and storage. Read more here:
https://www.purestorage.com/company/technology-partners/cisco.html
http://blogs.cisco.com/datacenter/accelerate-vdi-success-with-cisco-ucs-and-pure-storage
This results in CVD’s (Cisco Validated Designs)
http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/UCS_CVDs/ucs_flashstack_view62_5k.html
There are more coming for SQL, Exchange, SAP and general Virtual Machines (I call it JBOVMs, Just a Bunch of VM’s).
Know how much and what to purchase when it comes to compute, network and storage as we have worked with Cisco to validate with actual real workloads. Many times mixed workloads because who runs just SQL or just Active Directory. It is proven and works. Up in running in a couple of days. If a couple of months was not good (legacy way), and then 2-4 weeks (newer way with legacy HW) wasn’t good enough, how about 1-2 days? For reals next generation datacenter. Also, scale compute, network and storage independently. Why buy extra hypervisor licenses when you just need 5 TB of space?
I don’t think as many people know this as they should, but Rob Barker “Barkz” is awesome. He worked hard to prove out the ability to use Pure FlashArray with Azure compute. Great read and more details here:
Announcing: Pure Storage All-Flash Cloud for Microsoft Azure
Official Pure information here:
https://www.purestorage.com/resources/type-a/pure-storage-all-flash-cloud-azure-deployment-guide.html
Azure is ready now and AWS is in the works.
No secret here we are working hard to integrate with backup software vendors. Some have been slow and others have been willing to work with our API to make seamless backup and snapshot management integration with Pure and amazing thing.
Just one example of how Commvault is enabling backup to Azure:
http://www.commvault.com/resource-library/55fc5ff8991435a6ce000c9c/backup-to-azure-with-commvault.pdf
IntelliSnap and Pure Storage
https://documentation.commvault.com/commvault/v10/article?p=features/snap_backup/pure/overview.htm
Check how easy it is to setup the Commvault and Pure Storage.
If I have ever talked to you about Pure Storage and I didn’t say how simple it is to use or mention my own customers that are not “Storage Peeps” that manage it quite easily then I failed. Take away my Orange sunglasses.
If you are looking at FlashStack or just now finding out how easy it is now. Remember no Storage Ph.D. required. We even have nearly everything you need to be built into our free vSphere Plugin. Info from my here Cody Hosterman here.
Here is a demo if you want to see how it works. This is a little older but I know he is working on some new stuff.
Even better if you would like to automate end to end and tie the Pure Storage provisioning with UCS Director that is possible too! See here: