Create Sharedv4 PVCs
This document describes how to use Portworx sharedv4 (ReadWriteMany) volumes in your cluster.
Portworx provides two types of sharedv4 features:
- Sharedv4 volumes
- Sharedv4 service volumes
Prerequisites
- Sharedv4 volumes must be enabled on your cluster. Portworx sharedv4 volumes are enabled by default.
- NFS ports must be open
- The rpcbindservice must be enabled and running on each node in the cluster. Portworx Sharedv4 volumes use the NFS protocol, which requires therpcbindservice. This service helps NFS clients locate and connect to NFS services that provide Sharedv4 volumes.
Provision a sharedv4 Volume
Sharedv4 volumes are useful when you want multiple PODs to access the same PVC (volume) at the same time. They can use the same volume even if they are running on different hosts. They provide a global namespace and the semantics are POSIX compliant.
To increase fault tolerance, you can enable sharedv4 service volumes by setting a value for sharedv4_svc_type. With this feature enabled, every sharedv4 volume has a Kubernetes service associated with it. Sharedv4 service volumes expose the volume via a Kubernetes service IP. If the sharedv4 (NFS) server goes offline for a sharedv4 service volume and the volume requires a failover, only application pods that were running on the 2 nodes involved in failover need to be restarted.
Notes about sharedv4 and sharedv4 service volumes:
- A sharedv4 volume is created if and only if the PVC access mode is ReadWriteManyorReadOnlyMany. The "sharedv4" setting in the storageClass does not matter. In other words, if an app expects a sharedv4 volume while using a ReadWriteOnce PVC, some of the pods may fail to start. The PVC will have to be modified to use ReadWriteMany or ReadOnlyMany access mode.
- Sharedv4 service volumes are intended for use within your cluster where the volume resides.
- Sharedv4 service volumes default to using NFSv version 4.0.
- Sharedv4 (non-service) volumes default to using NFS version 3.
- Sharedv4 service volumes are not supported on Portworx clusters using Metro DR.
- On failover, applications may receive an error for non idempotent requests. For example, if an mkdircall is issued prior to failover, the client can resend it to the new server, which returns anEEXISTerror if the directory was created by the first call.
Step 1: Create a StorageClass
- Kubernetes
- Openshift
- 
Create the following portworx-sharedv4-sc.yamlStorageClass, specifying your own values for the following fields:- 
metadata.name: Specify a name for your StorageClass.
- 
parameters.repl: Specify the replication factor you'd like to set.
- 
sharedv4: Set the value totrue.
- 
(Optional) sharedv4_svc_type: Set the value to"ClusterIP"if you want to enable the sharedv4 service feature
- 
(Optional) stork.libopenstorage.org/preferRemoteNodeOnly: Set the value to"true"if you want to strictly enforce pod anti-hyperconvergence with respect to volume replica.
- 
(Optional) stork.libopenstorage.org/preferRemoteNode: Set the value to"false"if you want hyperconvergence with respect to volume replica. See for Sharedv4 service volume hyperconvergence for more information.
- 
(Optional) sharedv4_failover_strategy: Set the value tonormaloraggressive(shorter failover grace period)noteThe default value for sharedv4_failover_strategyin sharedv4 volumes isnormal, and the default value forsharedv4_failover_strategyin sharedv4 service volumes isaggressive.
 apiVersion: storage.k8s.io/v1
 kind: StorageClass
 metadata:
 name: portworx-rwx-rep2
 provisioner: pxd.portworx.com
 parameters:
 repl: "2"
 sharedv4: "true"
 sharedv4_svc_type: "ClusterIP"
 reclaimPolicy: Retain
 allowVolumeExpansion: true
- 
- 
Apply the StorageClass you created by running the following command: kubectl apply -f portworx-sharedv4-sc.yaml
- 
Verify that the StorageClass is created: kubectl describe storageclass portworx-rwx-rep2Name: portworx-rwx-rep2
 IsDefaultClass: No
 Annotations: kubectl.kubernetes.io/last-applied-configuration={"allowVolumeExpansion":true,"apiVersion":"storage.k8s.io/v1","kind":"StorageClass","metadata":{"annotations":{},"name":"portworx-rwx-rep2"},"parameters":{"disable_io_profile_protection":"1","io_profile":"auto","priority_io":"high","repl":"2","sharedv4":"true","sharedv4_svc_type":"ClusterIP"},"provisioner":"pxd.portworx.com","reclaimPolicy":"Retain"}
 Provisioner: pxd.portworx.com
 Parameters: disable_io_profile_protection=1,io_profile=auto,priority_io=high,repl=2,sharedv4=true,sharedv4_svc_type=ClusterIP
 AllowVolumeExpansion: True
 MountOptions: <none>
 ReclaimPolicy: Retain
 VolumeBindingMode: Immediate
 Events: <none>
- 
Create the following portworx-sharedv4-sc.yamlStorageClass, specifying your own values for the following fields:- 
metadata.name: Specify a name for your StorageClass.
- 
parameters.repl: Specify the replication factor you'd like to set.
- 
sharedv4: Set the value totrue.
- 
(Optional) sharedv4_svc_type: Set the value to"ClusterIP"if you want to enable the sharedv4 service feature
- 
(Optional) stork.libopenstorage.org/preferRemoteNodeOnly: Set the value to"true"if you want to strictly enforce pod anti-hyperconvergence with respect to volume replica.
- 
(Optional) stork.libopenstorage.org/preferRemoteNode: Set the value to"false"if you want hyperconvergence with respect to volume replica. See for Sharedv4 service volume hyperconvergence for more information.
- 
(Optional) sharedv4_failover_strategy: Set the value tonormaloraggressive(shorter failover grace period)noteThe default value for sharedv4_failover_strategyin sharedv4 volumes isnormal, and the default value forsharedv4_failover_strategyin sharedv4 service volumes isaggressive.
 apiVersion: storage.k8s.io/v1
 kind: StorageClass
 metadata:
 name: portworx-rwx-rep2
 provisioner: pxd.portworx.com
 parameters:
 repl: "2"
 sharedv4: "true"
 sharedv4_svc_type: "ClusterIP"
 reclaimPolicy: Retain
 allowVolumeExpansion: true
- 
- 
Apply the StorageClass you created by running the following command: oc apply -f portworx-sharedv4-sc.yaml
- 
Verify that the StorageClass is created: oc describe storageclass portworx-rwx-rep2Name: portworx-rwx-rep2
 IsDefaultClass: No
 Annotations: kubectl.kubernetes.io/last-applied-configuration={"allowVolumeExpansion":true,"apiVersion":"storage.k8s.io/v1","kind":"StorageClass","metadata":{"annotations":{},"name":"portworx-rwx-rep2"},"parameters":{"disable_io_profile_protection":"1","io_profile":"auto","priority_io":"high","repl":"2","sharedv4":"true","sharedv4_svc_type":"ClusterIP"},"provisioner":"pxd.portworx.com","reclaimPolicy":"Retain"}
 Provisioner: pxd.portworx.com
 Parameters: disable_io_profile_protection=1,io_profile=auto,priority_io=high,repl=2,sharedv4=true,sharedv4_svc_type=ClusterIP
 AllowVolumeExpansion: True
 MountOptions: <none>
 ReclaimPolicy: Retain
 VolumeBindingMode: Immediate
 Events: <none>
Step 2: Create a persistent volume claim
- Kubernetes
- Openshift
- 
Create a ReadWriteMany persistent volume claim. Save the following content into a file: kind: PersistentVolumeClaim
 apiVersion: v1
 metadata:
 name: px-sharedv4-pvc
 annotations:
 volume.beta.kubernetes.io/storage-class: portworx-rwx-rep2
 spec:
 accessModes:
 - ReadWriteMany
 resources:
 requests:
 storage: 10Gi
- 
Apply the spec: kubectl create -f px-sharedv4-pvc.yamlNote that accessModesfor this PVC is set toReadWriteMany(RWX) so Kubernetes allows mounting this PVC on multiple pods.
- 
Verify that the persistent volume claim is created: kubectl get pvcNAME STATUS VOLUME CAPACITY ACCESS MODES STORAGECLASS AGE
 px-sharedv4-pvc Bound pvc-xxxxxxxx-xxxx-xxxx-xxxx-78dbc2ef7aeb 10Gi RWX portworx-rwx-rep2 46s
- 
Create a ReadWriteMany persistent volume claim. Save the following content into a file: kind: PersistentVolumeClaim
 apiVersion: v1
 metadata:
 name: px-sharedv4-pvc
 annotations:
 volume.beta.kubernetes.io/storage-class: portworx-rwx-rep2
 spec:
 accessModes:
 - ReadWriteMany
 resources:
 requests:
 storage: 10Gi
- 
Apply the spec: oc create -f px-sharedv4-pvc.yamlNote that accessModesfor this PVC is set toReadWriteMany(RWX) so Kubernetes on OCP allows mounting this PVC on multiple pods.
- 
Verify that the persistent volume claim is created: oc get pvcNAME STATUS VOLUME CAPACITY ACCESS MODES STORAGECLASS AGE
 px-sharedv4-pvc Bound pvc-xxxxxxxx-xxxx-xxxx-xxxx-78dbc2ef7aeb 10Gi RWX portworx-rwx-rep2 46s
Step 3: Create pods which use the persistent volume claim
- Kubernetes
- Openshift
We will start two pods which use the same shared volume.
- 
Save the next two blocks into files pod1.yaml and pod2.yaml; use kubectl apply -f pod1.yamlandkubectl apply -f pod2.yamlapiVersion: v1
 kind: Pod
 metadata:
 name: pod1
 spec:
 containers:
 - name: test-container
 image: gcr.io/google_containers/test-webserver
 volumeMounts:
 - name: test-volume
 mountPath: /test-portworx-volume
 volumes:
 - name: test-volume
 persistentVolumeClaim:
 claimName: px-sharedv4-pvcapiVersion: v1
 kind: Pod
 metadata:
 name: pod2
 spec:
 containers:
 - name: test-container
 image: gcr.io/google_containers/test-webserver
 volumeMounts:
 - name: test-volume
 mountPath: /test-portworx-volume
 volumes:
 - name: test-volume
 persistentVolumeClaim:
 claimName: px-sharedv4-pvc
- 
Verify that the pods are running: kubectl get podsNAME READY STATUS RESTARTS AGE
 pod1 1/1 Running 0 2m
 pod2 1/1 Running 0 1m
We will start two pods which use the same shared volume.
- 
Save the next two blocks into files pod1.yaml and pod2.yaml; use oc apply -f pod1.yamlandoc apply -f pod2.yamlapiVersion: v1
 kind: Pod
 metadata:
 name: pod1
 spec:
 containers:
 - name: test-container
 image: gcr.io/google_containers/test-webserver
 volumeMounts:
 - name: test-volume
 mountPath: /test-portworx-volume
 volumes:
 - name: test-volume
 persistentVolumeClaim:
 claimName: px-sharedv4-pvcapiVersion: v1
 kind: Pod
 metadata:
 name: pod2
 spec:
 containers:
 - name: test-container
 image: gcr.io/google_containers/test-webserver
 volumeMounts:
 - name: test-volume
 mountPath: /test-portworx-volume
 volumes:
 - name: test-volume
 persistentVolumeClaim:
 claimName: px-sharedv4-pvc
- 
Verify that the pods are running: oc get podsNAME READY STATUS RESTARTS AGE
 pod1 1/1 Running 0 2m
 pod2 1/1 Running 0 1m
Convert a sharedv4 volume to a sharedv4 service volume
Perform the following steps to convert a sharedv4 volume to use the new sharedv4 service feature:
- Detach the volume by scaling the application pods down to 0.
- Run the following pxctlcommand:
pxctl volume update --sharedv4_service_type=ClusterIP <volume>
- Scale the deployment back up to start the application.
Convert a sharedv4 service volume to a sharedv4 volume
Perform the following steps to convert a sharedv4 service volume to a sharedv4 volume:
- Detach the volume by scaling the application pods down to 0.
- Run the following pxctl command:
pxctl volume update --sharedv4_service_type="" <volume>
- Scale the deployment back up to start the application.
Convert an existing sharedv4 service volume to prefer remote nodes only
- 
Scale down the application pods. 
- 
Run the following command to convert the volume to use preferRemoteNodeOnly:pxctl volume update --label stork.libopenstorage.org/preferRemoteNodeOnly="true" <volume>
- 
Scale the pods back up to start the application. 
Convert an existing sharedv4 service volume to prefer local nodes
- 
Scale down the application pods. 
- 
Run the following pxctl command to convert the volume to use preferRemoteNode:pxctl volume update --label stork.libopenstorage.org/preferRemoteNode="false" <volume>
- 
Scale the pods back up to start the application. 
Update a legacy shared volume to a sharedv4 volume
You can convert an existing shared volume (deprecated) to a sharedv4 volume. Run the following command to update the volume setting:
pxctl volume update --sharedv4=on <volume>
To access PV/PVCs with a non-root user, refer here.