Aureum 4.0 Installation Guide - Peaxy · PDF fileIntroduction | 6 How Aureum Works Peaxy designed Aureum for flexibility, accessibility, scalability and ease of use. Here's how it

Aureum 40 Installation Guide

IG4016053101

Contents | 3

Contents

Introduction 5How Aureum Works 6

Install Aureum 9Resource Requirements10Aureum Configuration Settings 11Port Requirements and Firewall Settings12Prepare Aureum Installation Resources (Linux) 12Prepare Aureum Installation Resources (Windows) 14Install the Software15Continue the Installation16Create an Admin Account17Import an Aureum License18Provide Aureum Information18Add Resources 19Create a Default Storage Class20Define Outgoing Mail Settings 21Create a Client Registration User22Configure Security 22Connect22

Linux Client-Aureum Registration23Security Levels 23Create an Export 23Install a Linux-based Aureum Client 24Windows Configuration26

POSIX Compliance29Information and Resources 31

Introduction

In this section

bull How Aureum Works

Peaxyreg Aureumtrade installs on your own off-the-shelf hardware tocreate aggregate Peaxy ldquonodesrdquo The Peaxy software uses thesededicated nodes to create Aureum a highly extendable dataaccess and management platform that is managed as a single entitywithin a single namespace

The result is a system with unique capabilities and nodes basedon namespace and data space stores The namespace spans allAureum nodes Aureum responds to changing requirements usinguser-defined variables such as storage class use and data policies

ReliabilityAureum can replicate data so that a single loss does not disruptaccess Built-in redundancy with or without RAID ensures thataccess to your data is uninterrupted The Aureum platform lets youdefine a replication factor for each storage class A storage classis a group of like disks or servers that have the same attributesreplication and performance Choose to have up to four copiesmaintained in parallel Optimize performance redundancy andcost factors in classes of storage within your single namespace

AccessibilityThe unified namespace and a single management IP address(called the Aureum IP address) makes data accessible fromanywhere Because the namespace is unified it doesnt matterwhere on Aureum that data resides Data is easily accessed withoutknowing where the data is stored Even if data is moved to anotherlocation within Aureum the pathname doesnt change Regardlessof changes in networks computers data locations or other factorsAureum gives you one container one access path forever

ScalabilityAdd resources easily without any down time requirementAdding resources adds capacity and performance When you addresources both the additional capacity and the CPU power becomepart of Aureum

Introduction | 6

How Aureum WorksPeaxy designed Aureum for flexibility accessibility scalability and ease of use Heres how it works

Aureum sits on top of your own industry-standard hardware resources Based on your Aureumconfiguration the Peaxy software creates a number of Peaxy-specific nodes to use when building thesystem Peaxy nodes cannot be used for any other purpose This makes expansion as easy as addingnew resources (servers) to an existing environment

You dont need to manually create the individual nodes Peaxy software creates the container layerbased on the way you configure Aureum

Resources that are included in Aureum but not used immediately become spares which are availableon an as-needed basis This allows all Aureum software components to recover from most failurescenarios without manual intervention as long as there are enough spare resources to allow self-healing It also allows you to expand the capacity of a storage class

The following terms explain the abstraction and components of the Aureum architecture

bull Aureum A Peaxy storage and data access facility that manages all of its components within asingle namespace allowing total data access without bottlenecks

bull Hyperserver Either a namespace server or a data space server that manages between one andfour Aureum node members The Aureum namespace enables single disk IO access and allowsthe entire namespace to be persistently contained in RAM for better performance although thenamespace also resides on disk Subsequent directory lookups are done without touching the diskThe Aureum architecture accelerates file access by an order of magnitudeNamespace Hyperserver

A namespace hyperserver contains the path name and system metadata Namespacehyperservers run the namespace service (NS) The namespace is partitioned across allhyperserver members Each namespace hyperserver within Aureum contains a portion of thenamespace information

Data Space HyperserverA data space hyperserver contains actual user data Data space hyperservers run the dataservice (DS) All of the data in Aureum is distributed across all of the data hyperserversconfigured for data use under the rules of the data policy and assigned storage class withbetween zero and three copies stored

bull Hypervisor A hypervisor manages multiple nodes on one host In most cases the termshypervisor server and host are interchangeable Note however that a hypervisor is not the sameas a hyperserver

bull Analytics Service The analytics service (AS) manages the system analytics providing a clear wayunderstand how Aureum is managing data The analytics service is the force behind the analysisviews The analytics service is managed by the analytics node

bull Search Service The search service provides advanced search capabilities and powers Peaxy Findmaking it possible to find data across Aureum Searches are performed using a search query onan index or alias (group of indexes) that administrators create The search service is based onApache Lucene project Solr and SolrCloud SolrCloud provides the ability to set up a cluster ofSolr servers that combines fault tolerance and high availability enabling distributed indexing andsearch Administrators configure servers to support either data access or the search service duringinstallation

bull Storage Class The storage class is the abstraction that specifies performance redundancy andavailability characteristics of all the data hyperservers of the class User-defined data placementpolicies govern the data stored on each storage class

bull Data Class Data classes provide a way to perform storage management and access control basedon a directory structure This allows you to manage your storage based on a logical structure suchas teams and projects complementing the hardware-oriented resource management capabilitiesoffered by storage classes

bull Data Policy The data policies you create provide Aureum with the instructions about where data isstored as well as when and how data will be moved

bull Node Peaxy virtualization node created in containers Peaxy software creates the entire filesystem from virtual constructs Nodes that are members of a hyperserver store copies of the same

Introduction | 7

data or metadata Aureum sets the number of copies during the initial configuration and based onthe attributes of the storage class Aureum creates these nodes solely for its own use

bull Aureum Management Service Aureum management service (AMS) allows you to create and useAureum from physical resources

Overview of Aureum Building BlocksEach part of the Aureum architecture builds on the next To build an Aureum system

1 Rack and cable any physical servers and ensure the resources are accessible on the network2 Provision your resources and configure your physical storage Hardware provisioning is the task of

Admin users and cannot be delegated3 Install the Peaxy software Installation is described in the this guide

The Aureum manager (AMS) uses the configuration settings you define when Aureum creates thenodes It groups them into the appropriate types of hyperservers Aureum uses your configurationsettings to determine the optimal ratio of namespace hyperservers to data space hyperservers

4 Create storage classes and ingest policies for your environment

All of the resourced hyperservers aggregate and become a fully functioning Aureum systemconnected to your network

5 Create data classes to manage storage and access control based on the logical organization ofyour teams and projects

6 Begin ingesting data into Aureum

After the basic setup is complete you can add storage classes and data policies as well as optionalreplication partners When planned correctly these let you automate most data management andadministrative tasks

Aureum provides the Peaxy Management Tool (PMT) a powerful and intuitive browser-based UI formanagement Access data through a Linux-based client or a Windows domain share Peaxy providesseveral roles and allows the creation of others to ensure that the right access level is granted to usersand groups

Install Aureum

In this section

bull Resource Requirementsbull Aureum Configuration Settingsbull Port Requirements and

Firewall Settingsbull Prepare Aureum Installation

Resources (Linux)bull Prepare Aureum Installation

Resources (Windows)bull Install the Softwarebull Continue the Installationbull Create an Admin Accountbull Import an Aureum Licensebull Provide Aureum Informationbull Add Resourcesbull Create a Default Storage

Classbull Define Outgoing Mail Settingsbull Create a Client Registration

Userbull Configure Securitybull Connect

Make sure you have sufficient resources for the Aureum system youare creating After the hardware is racked and accessible to thenetwork use the Aureum manager to create the system

Install Aureum | 10

Resource RequirementsThe requirements for the hardware are minimal and depend on the Aureum configuration you define

The software installation image is self-contained and does not have outside software requirements

Minimum Hardware Requirementsbull Three or more servers compatible with Red Hat Enterprise Linux version 7 64-bit 1

bull Each server should have a minimum of 24 GB RAM and one core per physical device (diskLUN)bull One or more 1 or 10 Gigabit Ethernet connectionsbull One 2 GB USB stick per serverbull One available USB port on each server

Important If you are planning replication you can replicate across only same-sized drives Forexample replication must be between multiple 1 TB drives or between multiple 2 TB drivesand so on

Aureum SolrCloudCompute Node Requirementsbull 4 or more CPU coresbull 64 GB RAMbull 1 TB local storage

Aureum FUSE Client RequirementsAureum clients may be run on either physical or virtual machines and can use either 1 Gigabit or 10Gigabit Ethernet connections

Additionally the client requires

bull 1 or more CPU coresbull 2 GB RAMbull Red Hat Enterprise Linux version 5 6 or 7 64-bit or CentOS 5 6 or 7 64-bit or laterbull FUSE (the Linux File System in User Space)

Aureum Windows Client RequirementsAureum clients may be run on either physical or virtual machines and can use either 1 Gigabit or 10Gigabit Ethernet connections

Additionally the client requires

bull 1 or more CPU coresbull 2 GB RAMbull a supported operating system

2008 SP2 x86 and 64-bit

2008 R2 64-bit

2012 64-bit

Windows Server

2012 R2 64-bit

Vista x86 and 64-bit

Windows 7 x86 and 64-bit

Windows 8 x86 and 64-bit

Windows

Windows 81 x86 and 64-bit

1 The complete list of compatible hardware is available at httpshardwareredhatcom

Install Aureum | 11

Windows 10 x86 and 64-bit

Aureum Configuration SettingsConfiguration settings are needed to install and configure Aureum There can be additional optionalsettings

Table 1 General and Network Settings

Item Description Example

Aureum name Names can be up to 14 alphanumeric characters and cancontain dashes (-) and underscores (_)

Aureum_One

Aureum IPaddress

This is a floating IP address that is used for communicationto and from Aureum Communication can be donethrough the Aureum IP address Peaxy recommendsthat organizations create a DNS entry for Aureum that ismapped to the IP address allowing you to refer to Aureumby a more meaningful name

10213119

IP addresses A list of IP addresses or one or more ranges of IPaddresses that the configuration wizard can use to assignIP addresses to discovered hypervisors If you includemultiple ranges the Aureum manager will use all availableIP addresses in the first range before moving to thesecond

151145011715114520 - 94

Gateway Aureum needs to be assigned a default gateway addressThe gateway is used by each hypervisor and node thatcomprises Aureum

1721601

Subnet mask All hypervisors making up Aureum must reside in the samesubnet This is defined by the subnet mask

25525500

DNS domainsuffix

Working with the DNS server the domain suffix identifiesthe server within a smaller network (like a computer lab)

peaxynet

DNS server list A list of up to three DNS servers to use 55219208672222228888

Time zone The time zone to use (UTC-800) Pacific

NTP server The IP address of the network time protocol (NTP)server that Aureum should use to coordinate time acrossthe entire namespace even if the servers within thenamespace are in disparate locations This can be criticalwhen Aureum needs to compare timestamps

0poolntporg1poolntporg

Averageexpected file size

The selection here is used by the system to determine themost efficient ratio of namespace hyperservers to datahyperservers

bull Small files (less than 1MB)bull Medium files (less than 20MB)bull Large files (greater than 20MB)bull A mixture of file sizes

Large files (greaterthan 20MB)

Replication factor The number of replicas created for data when the filesare assigned to a particular storage class Setting thereplication factor to 2 indicates that the original and one

2

Install Aureum | 12

Item Description Exampleadditional replica of the data are saved providing higheravailability Valid options are 2 3 and 4

Use the appropriate replication factor for each storageclass to implement the best level of protection for criticaldata and to limit wasted consumption for sandboxes andother nonessential data For data that is not critical or forsandboxes you can choose a lower replication factor Usea high replication factor for data that is critical or accessedoften

Table 2 Emailer Settings

Item Description Example

Email server The name of the email server This is usually an SMTPserver

smtpgmailcom

Server port By default port 587 is used Only change this if corporateor security requirements demand it

587

Email serveraccount

Enter a valid email account Aureum uses this account tosend email notifications and replacement passwords

memycompanycom

Password The password that is associated with the valid emailaccount

Send from Only change this if your SMTP server allows it and yourcorporate requirements demand it Normally only serversusing TLS require this entry

memycompanycom

Port Requirements and Firewall SettingsBecause Aureum uses the network for traffic specific ports must be available

The following table describes the ports that must be open for Aureum traffic and client connections

Port Type Used for

53 DNS DNS

443 TCP Encrypted traffic

514 UDP Log Server

3033 TCP Statistic collection

8001 TCP Analytics server

8080 HTTP Windows client

8443 TCP Encrypted traffic

10011 UDP LinuxFUSE client

Prepare Aureum Installation Resources (Linux)The software is installed on each server resource that will become part of Aureum Aureum ishardware agnostic but there must be adequate resources to complete the installation Each serveruses a USB stick to install the software

Make sure that you have the required basic resources described in Resource Requirements Downloadthe software files from wwwpeaxynetsupport A login is required

Install Aureum | 13

1 Download the software installation files

bull Release-ltreleasenumbergtimg is the image to be copied to a USB stick that will initializethe hardware

bull Release-ltreleasenumbergtmd5 is the checksum file that validates the validity of the imagebull samsp-ltreleasenumbergtzip is a compressed file that contains the utilities to move the

image to the USB stick and for the initial configuration of Aureumbull The Aureum client file

bull hfclient-fuse-ltreleasenumbergttargz - the Aureum Linux client installation file2 From a command prompt on your workstation uncompress the installation files Type

sudo unzip samsp-ltreleasenumbergtzip -d tmp

3 As root launch the image copier Double click img-copiersh and click Run on the dialog thatappears

4 Browse to the software image you downloaded (the img file) and select this file

5 Type a label for the USB sticks

The label is used to identify the system during the initial installation and becomes the name of theserver on which it is installed If you use the same label on different sticks the software will add anumeric suffix when creating the host name for example HOST-01 HOST-02 and so on Labelscannot exceed 16 charactersYou can provide a different label for each USB stick but to do so you must copy the image file toeach stick individually

6 Insert the USB sticks into a port on your workstation or a hub connected to your workstation andthen click REFRESH to make them visible to the image copier tool Select the sticks you want fromthose displayed in the destination drives list The USB stick must be at least 2 GB

7 Leave Verify copy operation enabled Peaxy strongly recommends that you do not skip this step

Install Aureum | 14

Depending on the speed on the USB sticks it can take several minutes to complete theverification

8 Enable hypervisor protection if requiredEnable hypervisor protection if the underlying storage consists of non-redundant JBOD (acollection of hard disks that have not been configured to act as a RAID) This creates a softwareRAID 5 configuration for the container store used by AureumYou can disable hypervisor protection if you have a hardware RAID under the disk volumes Thisallows Aureum to use a higher-performing RAID 0 configuration instead

9 Click START10After the copy is complete click EXIT and remove the USB sticks from the workstation or USB hub

The USB stick now contains a bootable image of the Aureum installation software

Prepare Aureum Installation Resources (Windows)The software is installed on each server resource that will become part of Aureum Aureum ishardware agnostic but there must be adequate resources to complete the installation Each serveruses a USB stick to install the software

You must have administrator permissions to install the Aureum software

Your workstation must be running the Java Runtime Environment (JRE) 17 or higher installed in orderto run the image copier

Make sure that you have the required basic resources described in Resource Requirements Downloadthe software files from wwwpeaxynetsupport A login is required

1 Download the software installation files

bull Release-ltreleasenumbergtimg is the image to be copied to a USB stick that will initializethe hardware

bull Release-ltreleasenumbergtmd5 is the checksum file that validates the validity of the imagebull samsp-ltreleasenumbergtzip is a compressed file that contains the utilities to move the

image to the USB stick and for the initial configuration of Aureumbull The Aureum client file

bull hfclient-fuse-ltreleasenumbergttargz - the Aureum Linux client installation file2 On your Windows workstation move to the location of the zip file and unzip the file using any

uncompression program3 Move to the location of the uncompressed file and double-click the executable to start the

installation4 With administrator privileges launch the image copier Double-click img-copierbat

Install Aureum | 15

If the image copier does not launch properly you might need to add javaw to your path Refer toyour Windows Operating System help for instructions

5 Browse to the software image you downloaded (the img file) and select this file then click Run6 Type a label for the USB sticks

The label is used to identify the system during the initial installation and becomes the name of theserver on which it is installed If you use the same label on different USB sticks the software willadd a numeric suffix when creating the host name for example HOST-01 HOST-02 and so onLabels cannot exceed 16 charactersYou can provide a different label for each USB stick but to do so you must copy the image file toeach stick individually

7 Insert the USB sticks into a port on your workstation or a hub connected to your workstation andthen click REFRESH to make them visible to the image copier tool Select the sticks you want fromthose displayed in the destination drives list The USB stick must be at least 2 GB

8 Leave Verify copy operation enabled Peaxy strongly recommends that you do not skip this stepDepending on the speed on the USB sticks it can take several minutes to complete theverification

9 Enable hypervisor protection if requiredEnable hypervisor protection if the underlying storage consists of non-redundant JBOD (acollection of hard disks that have not been configured to act as a RAID) This creates a softwareRAID 5 configuration for the container store used by AureumYou can disable hypervisor protection if you have a hardware RAID under the disk volumes Thisallows Aureum to use a higher-performing RAID 0 configuration instead

10Click START11After the copy is complete click EXIT and remove the USB sticks from the workstation or USB hub

The USB stick now contains a bootable image of the installation software

Install the SoftwareThe installation software on the USB stick installs the Peaxy software and lets you create Aureum

1 Insert one prepared USB stick into each server Servers must have a console attached or beaccessible via an IPMI management tool

Install Aureum | 16

2 Apply power to the servers either individually or with a few seconds in between to complete the

next steps

Note If you have already configured your server to boot from USB skip steps 3 4 and 5

3 Enter the server BIOS and instruct the server to boot from the USB stickThe method used to enter the BIOS depends on the server

4 Ensure that the virtualization setting is enabled in the BIOS5 Save the BIOS changes and reboot the server from the USB stick

After the server has booted from the USB stick and launched the installation software you will seea message at the bottom of the screen telling you that the server is being prepared for installationThis boot process has placed the servers in a discoverable state this plays a role in the nextphase of the installation process

Continue the InstallationAfter the servers have been prepared and the software has been installed begin the configuration

1 On your workstation disable the firewall

On Red Hat Enterprise LinuxCentOS 7 systems use the following commands

systemctl stop firewalld

systemctl disable firewalld

On other Linux-based operating systems use the following commands

service iptables stop

service ip6tables stop

chkconfig ip6tables off only include this command if you want to permanently turn thefirewall off

chkconfig iptables off only include this command if you want to permanently turn thefirewall off

2 On your workstation disable SElinuxYou can check the status of SElinux with sestatus The result should appear as SELinuxstatus disabledIf you do not see disabled

1 Edit etcselinuxconfig and set the SELINUX variable to disabled2 Reboot your client workstation

3 On the workstation launch the Aureum installation management tool Type

sudo tmpsamsp-400ltversiongtsamspsh

Install Aureum | 17

You should see something similar to the following

Launching Management Server Platform version 400rootOpen your browser and enter the URL httpslocalhost to continueDo not terminate samsp it is required to complete cluster configurationYou can view tmpsamsp-40010872logmsplog for detailed progress activity

Important Do not terminate samsp because it is needed to complete clusterconfiguration

4 Open a browser and type

httpslocalhost If you are running the browser on the same workstation running the stand alone MSP orhttpsltip addressgt IP address of the workstation running the standalone MSP

This launches the Peaxy Management Tool If prompted accept the self-signed Peaxy certificate

After the initial setup is complete the IP address changes in the browser address bar This isexpected and correct behavior Now the installation portion of the AMS exits and the integratedAureum manager becomes active

In the next step the Aureum manager guides you through the initial configuration process

Create an Admin AccountThe first step in configuring a new Aureum system is to supply the details for the Admin account Afterthe installation process is complete and Aureum is up and running the Admin account is used to loginto the Aureum web UI (PMT) to perform additional administration tasks such as creating other useraccounts and a client registration password

Important The Admin account has access to critical areas of Aureum Ensure that the Adminaccount is secure

1 Type an email address for the accountThe AMS verifies that the email address is formatted correctly but does not check the validity ofthe email address itself This is the email address to which emails are sent

Note When setting the outgoing mailer settings the use of a customized email addressis highly dependent on the mail server While it might be possible to use a custom emailSEND FROM address many mail servers (such as Gmail) do not allow sending email usinganything other than the registered user account name

2 Type a user name for the accountThe user name must be between 3 and 32 characters and can contain letters numbers dots ()and at signs ()

3 Type a password to be associated with the user name in the previous stepPasswords are case sensitive and should be secure Best practice shows that you should changepasswords regularly

4 Confirm the password by retyping the password exactly as you entered it aboveWhen all of the fields are complete and have the correct format the SUBMIT button turns fromgray to blue

5 Click SUBMIT

The user account information is now created and stored

Important Set up the outgoing emailer settings as soon as possible after completinginstallation of Aureum If you forget or lose your password Aureum cannot send you a newone until the outgoing email is configured

Install Aureum | 18

The next step is to import the Aureum license

Import an Aureum LicenseImporting the license for an Aureum instance activates the Peaxy software License types are assignedto the Admin account that you created at the beginning of the installation

Before you create an Aureum system make sure that you have received your license from Peaxy andthat the license details are correct

Each time you create an Aureum instance you must import a license

1 Select the license to import or drag it onto the files areaThe license is a bdl file that contains all of the files needed to install the license

2 Click IMPORT3 The system installs the license and continues to the next step

Provide Aureum InformationDefining a few basic configuration items is the first step in setting up Aureum

During the first steps of the initial configuration you provide the basic information needed to createAureum its components and the namespace details

1 Enter the Network settingsa) Enter the gateway addressb) Enter the subnet maskc) Enter the primary DNS domain suffix and up to three DNS server addresses

DNS servers must be entered as IP addresses Each DNS server is on a separate line2 Enter the General settings

a) Enter a name for this Aureum instanceNames can be up to 14 characters and can contain letters numbers dashes and underscores

b) Optional Enter a location for the Aureum system for example ldquodatacenterrdquo or ldquoPhoenixofficerdquo

c) Enter the Aureum IP addressd) Optional Enter up to three NTP servers

Including an NTP server ensures that the time stamp for Aureum is always correcte) Select the time zone to use from the drop-down menu

This ensures that all nodes in Aureum use the same time zone3 Define the Namespace settings

Install Aureum | 19

a) Select the average file size that you expect Aureum to containYour expected average file size selection is used by Aureum to determine the most efficientdistribution of hyperservers Aureum uses the selection you make here to determine theestimated ratio of namespace hyperservers to data hyperservers

b) Set the default namespace replication factor from 2 to 4The namespace replication factor is the number of replicas that Aureum creates for thenamespace

4 Click CONTINUE

Add resources to Aureum You can also click CANCEL to cancel the installation

Add ResourcesResources refer to the physical servers that will make up Aureum These can be any commodity serversuch as a 1U or 2U server with any number and size of disks These resources are used to build thenamespace and data hyperservers that form the heart of a running Aureum system

Note After a resource has been added Aureum claims the complete resource Unusedportions of a resource are designated as spares and are used in case of a failure or expansion

1 The system locates all physical servers that have been booted using USB sticks and are currently indiscovery stateYou will see a list of the servers available for inclusion Use the filter to narrow your search by servername

2 Select the servers to add to Aureum

Servers scheduled for selection have a check mark to the left Select the box beside SERVER NAMEto select all servers in the list

3 Enter the required number of IP addresses or an IP range The number of IP addresses neededappears above the IP ADDRESSES entry box

The system determines the number of IP addresses needed to ensure that all Aureum componentscan communicate receiving requests and returning responses Addresses can be individual IPaddresses (xxxxxxxxxxxx) an IP address range (xxxxxxxxx - xxx) or an IP address with a wildcard(xxxxxxxxx) Separate the IP addresses with a space comma or newline