VBD or PBD?

The code for that is at https://github.com/xenserver/xenadmin/blob/master/XenModel/Actions/SR/SrRepairAction.cs, but basically it’s: on each host, do PBD.create and/or PBD.plug as necessary.
--
Stephen Turner


From: xs-devel-***@lists.xenserver.org [mailto:xs-devel-***@lists.xenserver.org] On Behalf Of Tobias Kreidl
Sent: 18 February 2015 19:30
To: xs-***@lists.xenserver.org
Subject: Re: [xs-devel] Switchless shared iSCSI Network with /30 links

Hi, Dave:
Thank you for your feedback.

Is not the whole idea of a shared SR such that a unique PBD is created for each host that plugs in the same SR? When you add a new host to a XenServer with "conventional" SRs, that's what it does. For example, the command "xe sr-list uuid=(UUID-of-SR) params=PBDs" lists four unique PBDs for my pool of four hosts, as it should. So I am confused about the need to destroy the master PBD when a new host is added.

Back to the iSCSI SR creation. The fact that an "SR repair" operation fixes everything is a sign that there is a good mechanism built in that can handle this. Where it starts looking interesting is around line 178 where the SR is initially created as it states with "creates PDB [sic]
record for current host" and then as you pointed out, on line 209 is where it should loop through all hosts, which for some reason in this particular case, it doesn't seem to be doing when done via XenCenter. It's not clear at least to me where it makes available the iSCSI target address(es) available to pick up on all this.

What would be really helpful (to me, at least) I think would be a list of the sequence of events or entry points that an "SR repair" option from XenCenter initiates.

-=Tobias

On 2/18/2015 11:50 AM, Dave Scott wrote:



On 18 Feb 2015, at 18:03, Tobias Kreidl <***@nau.edu><mailto:***@nau.edu> wrote:



Vinícius:



Regarding Point 3) I believe what is meant is that you should test having more than one SR that you are connecting to using the same IP addresses for the target array. You know it works fine to create one SR, so can you add additional ones the same way and have them all live together in harmony? :-)



As to the sr-create command, the host-uuid is an optional parameter and hence does not need to be named for the pool master or any other. The only required parameters are the name-label and the SR type. Have you tried that to see if the behavior is any different compared to when you do supply a host name?



I believe the underlying Xapi data model can express what you want, but there are 1 or 2 places where Xapi will helpfully create PBDs for you by cloning the master, which you just need to be aware of.



For example you should be able to use something like



$ xe sr-create .. host-uuid=<any host> shared=false



Setting “shared=false” initially should avoid Xapi ‘helpfully’ pre-creating identical PBDs for every host with the same configuration[1]. You should end up with an SR attached to a single host.



If you then set the SR to shared=true you should be able to create and plug the exact PBDs you want:



$ xe sr-param-set uuid= shared=true



$ xe pbd-create sr-uuid= host-uuid=

$ xe pbd-plug ...

$ xe pbd-create sr-uuid= host-uuid=

$ xe pbd-plug ...



[ as an aside, it’s obviously not great that the PBDs you get depend on exactly when you declare the SR is shared. This has happened because the original design had all PBDs being distinct, and the notion of ‘copying the master’ was added relatively late ]



Whenever a new host is added to the pool, Xapi will clone the master’s PBD for you— you would have to destroy it and re-create it. I suppose cloning the master’s configuration is as good a guess as any in this situation :-)



Dave



[1] https://github.com/xapi-project/xen-api/blob/b6f28c52fd9726553968b410e6b8cced5401f385/ocaml/xapi/xapi_sr.ml#L209





-=Tobias



On 2/18/2015 10:47 AM, Vinícius Ferrão wrote:

Hello guys,



Answering about all the questions and issues. For those who aren't understanding the network topology, I've made a drawing of the solution. The image is here: https://www.dropbox.com/s/6zwerk6igcyqou3/UFRJ-IQ-VirtualPool.jpg?dl=0



In the drawing you can see the iSCSI Network made with point-to-point links. The IP's on the storage box are:

192.168.10.1

192.168.11.1

192.168.20.1

192.168.21.1



The convention to this numbering scheme was: 192.168.{XenServerNumber}{InterfaceNumber}.{Storage(1)/Host(2)}.



So on the host #1 I've two addresses and more two on host #2:

192.168.10.2 (XenServer #1 - Interface #0)

192.168.11.2 (XenServer #1 - Interface #1)

192.168.20.2 (XenServer #2 - Interface #0)

192.168.21.2 (XenServer #2 - Interface #1)



Hope this completely clarifies the architecture/topology of the iSCSI network.



Talking about the tests raised by Tim:



1. Already done this test. Tried three different tests:





Restarting both hosts on the same time. [OK]





Restarting the second host. [OK]





Restarting the pool master. [OK]



2. HA is working too. It fences only the damaged host. I even tried a VM Failover. HA happened without any problem and the lost VM has been restarted on other server. To do the HA test, I've power cycled the host, simulated a hardware crash scenario. A cool picture: https://www.dropbox.com/s/g7h7rljk8vh97rg/Screenshot%202015-02-18%2015.45.41.png?dl=0



3. I haven't understood this test. You are asking to create a new LUN and add a new Shared Repository? It's not clear what you're saying with "independent SR".



4. Storage XenMotion works too. I've moved a running VM from local storage (on the Host #2) to the iSCSI pool without any problem. The reverse process works too.



5. I will test this tomorrow, when I will got physical access to the servers (carnival holiday here in BR). But about this specific test, I can't see any problem with plain Xen Motion, since the data is copied over the management network and not the iSCSI network. But I can see a good point when dealing with Storage XenMotion.



Finally about the changes on XenCenter or XenServer/XAPI itself. One thing to prove this point is to create the SR via the CLI. If I would be able to do this, the problem should definitely be on XenCenter. As I said before, I've created a broken Software iSCSI SR via XenCenter and them mapped the iSCSI interfaces, enabled multipath and created the PBD over the CLI.



The iSCSI and Multipath should be done in the physical host. But the PBD creation can be done without any problem on the Pool Master.



To test this scenario I do require some help crafting the xe sr-create command, because I don't know exactly how this command is formed by XenCenter, and it requires some doubtful inputs:



[***@xenserver1 ~]# xe sr-create

content-type= host-uuid= physical-size= sm-config:

device-config: name-label= shared= type=



In this case sm-config and device-config are the problematic ones. Assuming that the host-uuid is always the pool master.



Thanks in advance,

Vinícius.



On Feb 18, 2015, at 2:36 PM, Tim Mackey <***@citrix.com><mailto:***@citrix.com> wrote:



I’ll add in a few more tests
.



1. Host restart. Does the normal PBD plug mechanism work with such a configuration

2. HA. While HA with two hosts isn’t a supported configuration, in this model it might work properly. If you remove the network cables for a single host, does it fence, or do both hosts fence?

3. Multiple SRs. If you have multiple LUNs on the FreeNAS exported and then used as independent SRs, does everything work as it should?

4. Storage XenMotion. With a vdi on one SR presented with the FreeNAS, copy it to any another storage option

5. Motion during path failure. With one path down on a given host, does XenMotion and Storage XenMotion still function correctly?



For those who are questioning the value of such a configuration, this is in essence a “cluster in a box” solution. These configurations were very popular 10-15 years ago as highly available compute infrastructure was quite expensive back then. Today we can accomplish the same things we did back then using virtualization, but “cluster in a box” can always be valuable for those with limited IT skills or for smaller organizations wanting least cost with fewest points of failure.



-tim



From: xs-devel-***@lists.xenserver.org<mailto:xs-devel-***@lists.xenserver.org> [mailto:xs-devel-***@lists.xenserver.org] On Behalf Of Vinícius Ferrão

Sent: Monday, February 16, 2015 7:24 PM

To: Tobias Kreidl

Cc: xs-***@lists.xenserver.org<mailto:xs-***@lists.xenserver.org>

Subject: Re: [xs-devel] Switchless shared iSCSI Network with /30 links



Tobias,



I've done more tests about the SR creation over XenCenter.



All the process definitely occurs only on the pool master. Even if the specified networks are not part of the networks of the host. The connection is tried on the default route.



I requested a new Software iSCSI SR with the following address:

192.168.10.1,192.168.11.1,192.168.20.1,192.168.21.1



The target IQN is discovered without any problem, since the iSCSI Storage reports the LUNs on any interface.



But when trying to discover the LUN, the process only is done on the pool master. During the discovery process, I left a watch command on both XS to with "netstat -an | grep 192.168" and the results are:



On the pool master, there's a lot of things going on:

tcp 0 0 10.7.0.101:443 192.168.172.1:58053 ESTABLISHED

tcp 0 0 192.168.11.2:53266 192.168.11.2:36365 ESTABLISHED

tcp 0 0 192.168.10.2:57930 192.168.10.2:36365 ESTABLISHED

tcp 0 0 10.7.0.101:443 192.168.172.1:58058 ESTABLISHED

tcp 0 0 192.168.10.2:55886 192.168.10.1:3260 TIME_WAIT

tcp 0 0 192.168.11.2:36365 192.168.11.2:53266 ESTABLISHED

tcp 0 0 192.168.10.2:36365 192.168.10.2:57930 ESTABLISHED

tcp 0 48 10.7.0.101:22 192.168.172.1:58064 ESTABLISHED

tcp 0 0 192.168.10.2:55870 192.168.10.1:3260 TIME_WAIT

tcp 0 0 192.168.11.2:52654 192.168.11.1:3260 TIME_WAIT

tcp 0 0 10.7.0.101:443 192.168.172.1:58055 ESTABLISHED

tcp 0 0 10.7.0.101:443 192.168.172.1:58054 ESTABLISHED

tcp 0 0 192.168.11.2:52656 192.168.11.1:3260 TIME_WAIT

tcp 0 0 192.168.10.2:55887 192.168.10.1:3260 TIME_WAIT

udp 0 0 192.168.10.2:123 0.0.0.0:*

udp 0 0 192.168.11.2:123 0.0.0.0:*



During the discovery, look at the 192.168.21.1 address being searched through the default route:

tcp 0 0 10.7.0.101:443 192.168.172.1:58053 ESTABLISHED

tcp 0 0 192.168.11.2:52686 192.168.11.1:3260 TIME_WAIT

tcp 0 0 192.168.11.2:53266 192.168.11.2:36365 ESTABLISHED

tcp 0 0 192.168.10.2:57930 192.168.10.2:36365 ESTABLISHED

tcp 0 0 10.7.0.101:443 192.168.172.1:58058 ESTABLISHED

tcp 0 0 192.168.10.2:55886 192.168.10.1:3260 TIME_WAIT

tcp 0 0 192.168.10.2:55900 192.168.10.1:3260 TIME_WAIT

tcp 0 0 192.168.11.2:52684 192.168.11.1:3260 TIME_WAIT

tcp 0 0 192.168.10.2:55892 192.168.10.1:3260 TIME_WAIT

tcp 0 0 192.168.11.2:52679 192.168.11.1:3260 TIME_WAIT

tcp 0 0 192.168.11.2:36365 192.168.11.2:53266 ESTABLISHED

tcp 0 0 192.168.10.2:36365 192.168.10.2:57930 ESTABLISHED

tcp 0 0 192.168.10.2:55893 192.168.10.1:3260 TIME_WAIT

tcp 0 48 10.7.0.101:22 192.168.172.1:58064 ESTABLISHED

******************

tcp 0 1 10.7.0.101:56481 192.168.21.1:3260 SYN_SENT

******************

tcp 0 0 10.7.0.101:443 192.168.172.1:58055 ESTABLISHED

tcp 0 0 10.7.0.101:443 192.168.172.1:58054 ESTABLISHED

tcp 0 0 192.168.10.2:55887 192.168.10.1:3260 TIME_WAIT

udp 0 0 192.168.10.2:123 0.0.0.0:*

udp 0 0 192.168.11.2:123 0.0.0.0:*



Even addresses that does not exist on the pool (since the IQN discovery process reports them):

tcp 0 0 10.7.0.101:443 192.168.172.1:58053 ESTABLISHED

tcp 0 0 192.168.11.2:52686 192.168.11.1:3260 TIME_WAIT

tcp 0 0 192.168.11.2:53266 192.168.11.2:36365 ESTABLISHED

tcp 0 0 192.168.10.2:57930 192.168.10.2:36365 ESTABLISHED

tcp 0 0 10.7.0.101:443 192.168.172.1:58058 ESTABLISHED

tcp 0 0 192.168.10.2:55886 192.168.10.1:3260 TIME_WAIT

tcp 0 0 192.168.10.2:55900 192.168.10.1:3260 TIME_WAIT

tcp 0 0 192.168.11.2:52684 192.168.11.1:3260 TIME_WAIT

tcp 0 0 192.168.10.2:55892 192.168.10.1:3260 TIME_WAIT

tcp 0 0 192.168.11.2:52679 192.168.11.1:3260 TIME_WAIT

tcp 0 0 192.168.11.2:36365 192.168.11.2:53266 ESTABLISHED

******************

tcp 0 1 10.7.0.101:52787 192.168.30.1:3260 SYN_SENT

******************

tcp 0 0 192.168.10.2:36365 192.168.10.2:57930 ESTABLISHED

tcp 0 0 192.168.10.2:55893 192.168.10.1:3260 TIME_WAIT

tcp 0 48 10.7.0.101:22 192.168.172.1:58064 ESTABLISHED

tcp 0 0 10.7.0.101:443 192.168.172.1:58055 ESTABLISHED

tcp 0 0 10.7.0.101:443 192.168.172.1:58054 ESTABLISHED

tcp 0 0 192.168.10.2:55887 192.168.10.1:3260 TIME_WAIT

udp 0 0 192.168.10.2:123 0.0.0.0:*

udp 0 0 192.168.11.2:123 0.0.0.0:*



If you're wondering the 192.168.30.1 is reported because in the future we will add another XS host to the pool. The point here is that XenCenter should not lookup for this network since it isn't specified during the Software iSCSI creation. On my understanding it should only lookup for the specified addresses.



And to finish the tests, the second XS host remains equally during all the SR creation phase:

[***@xenserver2 ~]# netstat -an | grep -i 192.168

tcp 0 48 10.7.0.102:22 192.168.172.1:58046 ESTABLISHED

udp 0 0 192.168.21.2:123 0.0.0.0:*

udp 0 0 192.168.20.2:123 0.0.0.0:*



As you said, perhaps propagating the initial connection through the host will solve the problem without modifying the XenCenter interface. A more sophisticated approach would be query the network-list over XAPI, retrieve the PIFs associated to those networks and them just check the IP addresses on the SR creation request and match them with the equivalent PIFs.



For example here is the output of the xe network-param-list to retrieve the associated PIF's and the xe pif-param-lst with the UUID's of the retrieved PIFs:



[***@xenserver1 ~]# xe network-param-list uuid=4dc936d7-e806-c69a-a292-78e0ed2d5faa

uuid ( RO) : 4dc936d7-e806-c69a-a292-78e0ed2d5faa

name-label ( RW): iSCSI #0

name-description ( RW):

VIF-uuids (SRO):

PIF-uuids (SRO): 3baa8436-feca-cd04-3173-5002d9ffc66b; 362d63cb-647a-465f-6b81-1b59cd3b1f5d

MTU ( RW): 9000

bridge ( RO): xenbr2

other-config (MRW): automatic: true

blobs ( RO):

tags (SRW):

default-locking-mode ( RW): unlocked





[***@xenserver1 ~]# xe pif-param-list uuid=3baa8436-feca-cd04-3173-5002d9ffc66b

uuid ( RO) : 3baa8436-feca-cd04-3173-5002d9ffc66b

device ( RO): eth2

MAC ( RO): 40:f2:e9:f3:5c:64

physical ( RO): true

managed ( RO): true

currently-attached ( RO): true

MTU ( RO): 9000

VLAN ( RO): -1

bond-master-of ( RO):

bond-slave-of ( RO): <not in database>

tunnel-access-PIF-of ( RO):

tunnel-transport-PIF-of ( RO):

management ( RO): false

network-uuid ( RO): 4dc936d7-e806-c69a-a292-78e0ed2d5faa

network-name-label ( RO): iSCSI #0

host-uuid ( RO): c2ce0cf6-4bdf-4ee7-b387-b8eb47db4f7e

host-name-label ( RO): xenserver2.local.iq.ufrj.br

IP-configuration-mode ( RO): Static

IP ( RO): 192.168.20.2

netmask ( RO): 255.255.255.252

gateway ( RO):

IPv6-configuration-mode ( RO): None

IPv6 ( RO):

IPv6-gateway ( RO):

primary-address-type ( RO): IPv4

DNS ( RO):

properties (MRO): gro: on

io_read_kbs ( RO): 0.000

io_write_kbs ( RO): 0.000

carrier ( RO): true

vendor-id ( RO): 8086

vendor-name ( RO): Intel Corporation

device-id ( RO): 1521

device-name ( RO): I350 Gigabit Network Connection

speed ( RO): 1000 Mbit/s

duplex ( RO): full

disallow-unplug ( RW): true

pci-bus-path ( RO): 0000:06:00.2

other-config (MRW): management_purpose: iSCSI MPIO #0





[***@xenserver1 ~]# xe pif-param-list uuid=362d63cb-647a-465f-6b81-1b59cd3b1f5d

uuid ( RO) : 362d63cb-647a-465f-6b81-1b59cd3b1f5d

device ( RO): eth2

MAC ( RO): 40:f2:e9:f3:5a:1c

physical ( RO): true

managed ( RO): true

currently-attached ( RO): true

MTU ( RO): 9000

VLAN ( RO): -1

bond-master-of ( RO):

bond-slave-of ( RO): <not in database>

tunnel-access-PIF-of ( RO):

tunnel-transport-PIF-of ( RO):

management ( RO): false

network-uuid ( RO): 4dc936d7-e806-c69a-a292-78e0ed2d5faa

network-name-label ( RO): iSCSI #0

host-uuid ( RO): c8927969-b7bf-4a0f-9725-035550381d9c

host-name-label ( RO): xenserver1.local.iq.ufrj.br

IP-configuration-mode ( RO): Static

IP ( RO): 192.168.10.2

netmask ( RO): 255.255.255.252

gateway ( RO):

IPv6-configuration-mode ( RO): None

IPv6 ( RO):

IPv6-gateway ( RO):

primary-address-type ( RO): IPv4

DNS ( RO):

properties (MRO): gro: on

io_read_kbs ( RO): 0.000

io_write_kbs ( RO): 0.000

carrier ( RO): true

vendor-id ( RO): 8086

vendor-name ( RO): Intel Corporation

device-id ( RO): 1521

device-name ( RO): I350 Gigabit Network Connection

speed ( RO): 1000 Mbit/s

duplex ( RO): full

disallow-unplug ( RW): true

pci-bus-path ( RO): 0000:06:00.2

other-config (MRW): management_purpose: iSCSI MPIO #0



So as you can see, we have the IP addresses and the network mask. Which is sufficient to an efficient and precise algorithm of SR creation.



I thinks this clarifies everything we discussed until now. A patch on XenCenter appears to be really viable.



Many thanks,

Vinicius.



On Feb 16, 2015, at 9:02 PM, Tobias Kreidl <***@nau.edu><mailto:***@nau.edu> wrote:



Yes, correct. The MD36xx looks like two separate controller units, each acting as a separate device. For a standalone server or some storage devices, that's right that you need a separate subnet for each connection.



Because a single connection isn't seeing the broadcast from the other connectors at the time of the initial connection from one host, the pool is unaware of the others. The "repair" operation causes this to be conducted from each host, and as I guessed, then fixes the SR connectivity for the entire pool. I am speculating that the request for a new connection of this type via XenCenter could perhaps be solved by propagating that initial connection process to the rest of the hosts in the pool and then rescan the SR.



-=Tobias



On 2/16/2015 2:20 PM, Vinícius Ferrão wrote:



Hi Tobias,



As for I know, the Dell MD36xx is a dual controller based storage. So it's basically "two computers". Considering this with the added knowledge that I've about TCP networking there's a golden rule that says: only one IP address on a given subnet on a single computer. So I can't use the same network on my case. That's why I use point-to-point links too.



Since I've only one machine acting as a storage server (It's a Supermicro Machine with 32 gigs of RAM running FreeNAS 9.3), I do need four separate networks. FreeNAS is FreeBSD based, and BSD enforces this rule by default. I can't have two IP addresses of the same subnet on same machine, even if I manually configure it.



If this wasn't bad TCP network practice, I would be able to configure the SR via XenCenter, since it will "find" the same network on the others hosts without problem.



About the XenCenter, it really appears to be only a missing function on the software. If I was a good programmer I would try to implement this. But this is beyond my knowledge... :(



Thanks once again,

Vinícius.





On Feb 16, 2015, at 6:53 PM, Tobias Kreidl <***@nau.edu><mailto:***@nau.edu> wrote:



No reason to necessarily use four separate subnets. You could have 192.168.10.1. and 20.1 on one iSCSI controller and 192.168.10.2 and 2.2 on the other controller (on, for example, an MD36xx that is standard). If however it is something like an MD32xx which recommends four separate subets, then of course, use four. One should follow the vendor's specifications.



I will respond in more detail later when I get a chance, Vinícius, but after a quick read, I agree with your findings from your other email. It would appear that the initial connection is indeed evidently a missing function in XenCenter and perhaps all that is needed to make this work "out of the box". As to the wildcard discovery, it's generally preferred as it allows the host to figure out the path on its own. The only reason I could see not using a wildcard discovery would be if there were any chance for overlaps and ambiguous connections.



Regards,

--Tobias





On 2/16/2015 1:38 PM, Vinícius Ferrão wrote:



Hello Dave,



In total I have four paths. Two in each host. I've made a drawning using ASCII characters, hope this can clarify the architecture:



+----------------+

| iSCSI Storage |

+--|1||2||3||4|--+

| | | |

| | | \--------------\ iSCSI Multipathed /30

| | \--------------\ | Network with two links

| | | |

+--|1||2|--------+ +--|1||2|--------+

| XenServer Host | | XenServer Host |

+----------------+ +----------------+



The Storage has four gigabit ethernet adapters with the following IP addresses:



192.168.10.1/30

192.168.11.1/30

192.168.20.1/30

192.168.21.1/30



On the first XenServer there are two interfaces with those IP's:



192.168.10.2/30

192.168.11.2/30



And on the second host the equivalent configuration:



192.168.20.2/30

192.168.21.2/30



That's why I'm using multipath. Because I do need MPIO to sum the two network interfaces per host.



To exemplify a little more heres a screenshot of the network configuration made on XenCenter:

https://www.dropbox.com/s/olfuxrh8d8nyheu/Screenshot%202015-02-16%2018.38.43.png?dl=0



Cheers,

Vinícius.





On Feb 15, 2015, at 12:22 PM, Dave Scott <***@citrix.com><mailto:***@citrix.com> wrote:



Hi,





On 15 Feb 2015, at 05:44, Vinícius Ferrão <***@ferrao.eti.br><mailto:***@ferrao.eti.br> wrote:



Hello Tobias,

Thanks for the reply, even to discourage me :)



I really can’t understand why it isn’t a good idea. VMware do it, they recommend, and they even sell a solution using DELL hardware with two machines and a shared storage running with 10GbE links. Point-ot-point networks, dual controllers on the storage side and two different network for iSCSI. They sell it at least here in Brazil. What I’m trying to do is achieve the same topology with XenServer and commodity hardware.



Why I want to do this? Because I do believe that XenServer is a better product than VMware vSphere.



Perhaps we aren’t agreeing at some points due to different markets. For example, I’ve used Fibre Channel only one time in my life. And, believe it or not, it was a switchless configuration. And it worked
 Wasn’t for VM workload but was in a GRID Cluster with TORQUE/OpenPBS software. I do have the pictures of the topology, but I need to search for it. At that time, I wasn’t the guy who created the solution, but I understood that it was a huge money saving, because the FC switches are a extremely expensive.



Leaving all those “political” points aside, let’s talk technically :)



I’ve managed to achieve what I want. A lot of PBD hacking was necessary in the CLI, but I was comfortable with this. The following steps were necessary to reproduce this: https://www.dropbox.com/s/laigs26ic49omqv/Screenshot%202015-02-15%2003.02.05.png?dl=0



I’m really excited because it worked. So let’s me explain what I’ve did.



First I started creating the SR via XenCenter, it failed as expected. But to bypass I just created the SR via XenCenter with the two Storage IP’s of the Pool Master. So the process went OK, but it started broken, since the second XS host cannot see the IP addresses.



Using the xe sr-list and xe sr-params-list commands, I got the SR UUID created by XenCenter and the referenced PBDs. According to what I know about XS, the PBD’s are the physical connect from separate XS hosts to the shared storage. So it’s not related to other hosts, it’s exclusively to the host machine that I’m using. Understood that, the ideia is to destroy the created PBD on the second XS host and recreate it with the proper settings and IP addresses.



That’s when things got interesting. To create the PBD, I do need the iSCSI working in the host, and consequently the multipath connection. So I done the process in the terminal with the following commands:



#Discovery of iSCSI Service

iscsiadm -m discovery -t sendtargets -p 192.168.20.1

iscsiadm -m discovery -t sendtargets -p 192.168.21.1



#Login in the iSCSI Targets

iscsiadm -m node --targetname iqn.2015-01.br.ufrj.iq.local.istgt:iscsi0target1 -p 192.168.20.1:3260 --login

iscsiadm -m node --targetname iqn.2015-01.br.ufrj.iq.local.istgt:iscsi0target1 -p 192.168.21.1:3260 --login



#Enable Multipath

multipath

multipath -ll



After all I was able to create the PBD with those new settings. The tricky part was to pass the required “device-config” values via the xe pbd-create command. I wasn’t aware of the method, but after 4 tries I understood the process and typed the following command:



#Create the appropriate PBD

xe pbd-create sr-uuid=4e8351f6-ef83-815d-b40d-1e332b47863f host-uuid=c2ce0cf6-4bdf-4ee7-b387-b8eb47db4f7e device-config:multiSession="192.168.20.1,3260,iqn.2015-01.br.ufrj.iq.local.istgt:iscsi0target1|192.168.21.1,3260,iqn.2015-01.br.ufrj.iq.local.istgt:iscsi0target1|" device-config:target=192.168.20.1,192.168.21.1 device-config:multihomelist=192.168.10.1:3260,192.168.30.1:3260,192.168.20.1:3260,192.168.21.1:3260,192.168.11.1:3260,192.168.31.1:3260 device-config:targetIQN=* device-config:SCSIid=1FreeBSD_iSCSI_Disk_002590946b34000 device-config:port=3260

I’d like to understand your configuration better— have you effectively enabled 2 storage paths for the SR, knowing that each host will only be able to use one path? Are your PBDs identical or are there differences?



Thanks,

Dave





Basically everything necessary is in there. The IP’s, the name, the multipath link, the LUN values, everything. After this, I just plugged the PDB via the CLI:



#Plug the PBD

xe pbd-plug uuid=029fbbf0-9f06-c1ee-ef83-a8b147d51342



And BOOM! It worked. As you can see in the screenshot.



To prove that’s everything is working fine, I’ve created a new VM, installed FreeBSD 10 on it, done a pkg install xe-guest-utilities and requested a XenMotion operation. Oh boy, it worked:



Vinicius-Ferraos-MacBook-Pro:~ ferrao$ ping 10.7.0.248

PING 10.7.0.248 (10.7.0.248): 56 data bytes

64 bytes from 10.7.0.248: icmp_seq=0 ttl=63 time=14.185 ms

64 bytes from 10.7.0.248: icmp_seq=1 ttl=63 time=12.771 ms

64 bytes from 10.7.0.248: icmp_seq=2 ttl=63 time=16.773 ms

64 bytes from 10.7.0.248: icmp_seq=3 ttl=63 time=13.328 ms

64 bytes from 10.7.0.248: icmp_seq=4 ttl=63 time=13.108 ms

64 bytes from 10.7.0.248: icmp_seq=5 ttl=63 time=14.775 ms

64 bytes from 10.7.0.248: icmp_seq=6 ttl=63 time=317.368 ms

64 bytes from 10.7.0.248: icmp_seq=7 ttl=63 time=14.362 ms

64 bytes from 10.7.0.248: icmp_seq=8 ttl=63 time=12.574 ms

64 bytes from 10.7.0.248: icmp_seq=9 ttl=63 time=16.565 ms

64 bytes from 10.7.0.248: icmp_seq=10 ttl=63 time=12.273 ms

64 bytes from 10.7.0.248: icmp_seq=11 ttl=63 time=18.787 ms

64 bytes from 10.7.0.248: icmp_seq=12 ttl=63 time=14.131 ms

64 bytes from 10.7.0.248: icmp_seq=13 ttl=63 time=11.731 ms

64 bytes from 10.7.0.248: icmp_seq=14 ttl=63 time=14.585 ms

64 bytes from 10.7.0.248: icmp_seq=15 ttl=63 time=12.206 ms

64 bytes from 10.7.0.248: icmp_seq=16 ttl=63 time=13.873 ms

64 bytes from 10.7.0.248: icmp_seq=17 ttl=63 time=13.692 ms

64 bytes from 10.7.0.248: icmp_seq=18 ttl=63 time=62.291 ms

64 bytes from 10.7.0.248: icmp_seq=19 ttl=63 time=11.968 ms

Request timeout for icmp_seq 20

Request timeout for icmp_seq 21

Request timeout for icmp_seq 22

Request timeout for icmp_seq 23

Request timeout for icmp_seq 24

Request timeout for icmp_seq 25

64 bytes from 10.7.0.248: icmp_seq=26 ttl=63 time=14.007 ms

64 bytes from 10.7.0.248: icmp_seq=27 ttl=63 time=17.851 ms

64 bytes from 10.7.0.248: icmp_seq=28 ttl=63 time=13.637 ms

64 bytes from 10.7.0.248: icmp_seq=29 ttl=63 time=12.817 ms

64 bytes from 10.7.0.248: icmp_seq=30 ttl=63 time=13.096 ms

64 bytes from 10.7.0.248: icmp_seq=31 ttl=63 time=13.136 ms

64 bytes from 10.7.0.248: icmp_seq=32 ttl=63 time=16.278 ms

64 bytes from 10.7.0.248: icmp_seq=33 ttl=63 time=12.930 ms

64 bytes from 10.7.0.248: icmp_seq=34 ttl=63 time=11.506 ms

64 bytes from 10.7.0.248: icmp_seq=35 ttl=63 time=16.592 ms

64 bytes from 10.7.0.248: icmp_seq=36 ttl=63 time=13.329 ms

^C

--- 10.7.0.248 ping statistics ---

37 packets transmitted, 31 packets received, 16.2% packet loss

round-trip min/avg/max/stddev = 11.506/25.372/317.368/54.017 ms



Pics: https://www.dropbox.com/s/auhv542t3ew3agq/Screenshot%202015-02-15%2003.38.45.png?dl=0



I thinks this is sufficient for now, to prove that the concept works and XenServer can create this kind of topology. It’s just not available on the GUI. If XenCenter supports this kind of SR on the next patches, it will be breakthrough.



What I ask now: a feedback, if possible.



Thanks in advance,

Vinícius.



PS: Sorry any english mistakes. It’s almost 4AM here, and I was really anxious to report this in the list.





On Feb 14, 2015, at 8:14 PM, Tobias Kreidl <***@nau.edu><mailto:***@nau.edu> wrote:



Frankly speaking, it doesn't seem that it's a good idea to try to try to squeeze something out of a technology that is not built-in or future-safe. Would you want to try to connect a fiber-channel storage device without a fiber channel switch (a very similar situation)? There are other alternatives, for example, to connect iSCSi storage to another, XenServer-independent server and then serve storage from it via NFS or use NFS in the first place and not make use at all of iSCSI technology. NFS has come a long way and in many cases, can be equivalent in I/O performance to iSCSI.



The intercommunications and ability to share SRs within a pool are a significant consideration and cannot be ignored as part of the storage support protocols within XenServer. XenServer provides a number of options for storage connectivity to cover a wide range of needs, preferences and costs. Often, trying to save money in the wrong area results in more headaches later on.



That all being said, it is possible to bypass the SR mechanism altogether (obviously, not a supported configuration) and connect at least Linux VMs directly to iSCSI storage using open iSCSI, but I have not explored this without still involving a network switch. As you indicated, it's also not clear if XenServer will remain 100% open iSCSI compatible or not in the future. It also takes aways some of the things an SR can offer, like VM cloning, storage migration, etc.



Finally, I am not sure I see where the lack of a switch factors in in improving performance. Networks switches are much more capable and much faster than any storage device or host in routing packets. The amount of overhead they add is tiny.



Regards,

-=Tobias



On 2/14/2015 2:26 PM, Vinícius Ferrão wrote:



Hello guys,



I was talking with Tim Mackey on Twitter about the viability of using a iSCSI SR without a Switch. The main goal is to reduce the TCO of the solution, get some extra performance removing the overhead that a managed switch puts on the network and reduce the complexity of the network.



At a first glance I thought that I will only achieve those kind of setup with a distributed switch, so DVSC should be an option. But as Tim said it’s only a interface to control some policies.



I’ve looked for help on ServerFault and FreeNAS Forums, since I’m running FreeNAS as iSCSI service. The discussion is going on those links:



http://serverfault.com/questions/667267/xenserver-6-5-iscsi-mpio-with-point-to-point-links-without-a-switch

https://forums.freenas.org/index.php?threads/iscsi-mpio-without-a-switch-30-links.27579/



It appears that XenServer cannot support switchless iSCSI storages without a switch, because XS needs the same network block on all the XS hosts to create a shared storage between the hosts. So the ideia of point-to-point networks doesn’t apply.



If I understood correctly the SR is created with the appropriate PBD’s. Perhaps one way to solve this issue is ignoring XenCenter on SR creation and try to create an SR with all the PBD’s from the XS hosts. But I was unable to test this setting due to lack of my knowledge when trying to create and manipulate the SR via the CLI.



Anyway, I’m opening the discussion here to get some feedback of the developers, to see if this method of building the iSCSI network is viable, since as Tim said, XS is not 100% open-iscsi upstream and if it could be integrated on next versions of XenServer via the XenCenter GUI. I think that’s a very common architecture and VMware is doing this on small pools! So let’s do it equally and of course surpass them. :)



Thanks in advance,

Vinicius.