Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
cloudappliance/appladmin [2020_06_25 13:51] – jim | cloudappliance:appladmin [2021_09_27 17:55] – external edit 127.0.0.1 | ||
---|---|---|---|
Line 6: | Line 6: | ||
- | The File Fabric is built using open Internet technologies. The base operating system used s hardened Linux CentOS. HTTPD Apache Server is used for serving http requests and for temporary caching memcached is used. File Metadata is stored using a MySQL database. | + | The File Fabric is built using open Internet technologies. The base operating system used is hardened Linux CentOS. HTTPD Apache Server is used for serving http requests and for temporary caching memcached is used. File Metadata is stored using a MySQL database. |
The web interface is written in PHP / HTML / Ajax, and protocol adapters are written using Perl / Python. | The web interface is written in PHP / HTML / Ajax, and protocol adapters are written using Perl / Python. | ||
Line 14: | Line 14: | ||
A standard firewall friendly secure protocol, HTTPS, is used for communicating with clients. | A standard firewall friendly secure protocol, HTTPS, is used for communicating with clients. | ||
- | The basic premises | + | The basic premise |
The Apache server is stateless and can run on a separate host from the MySQL DB Server. This allows flexibility in deployment topologies for scalability and high availability using proven deployment configurations supported by Apache web server (e.g. multiple web servers behind a load balancer) and MySQL DB (replication, | The Apache server is stateless and can run on a separate host from the MySQL DB Server. This allows flexibility in deployment topologies for scalability and high availability using proven deployment configurations supported by Apache web server (e.g. multiple web servers behind a load balancer) and MySQL DB (replication, | ||
Line 44: | Line 44: | ||
**Provider Sync Engine** | **Provider Sync Engine** | ||
- | The provider Sync Engine | + | The provider Sync Engine |
* Real-time: new data is checked every time a storage provider is accessed by and end-user. For optimum performance only relevant subset of data is checked for new data. | * Real-time: new data is checked every time a storage provider is accessed by and end-user. For optimum performance only relevant subset of data is checked for new data. | ||
Line 64: | Line 64: | ||
**Encryption Engine** | **Encryption Engine** | ||
- | The Encryption engine s used to encrypt data before sending to a remote cloud provider. It uses 256 bit encryption to encrypt data at rest. Further details on how this works and security can be referenced in the File Fabric Security white paper. | + | The Encryption engine s used to encrypt data before sending to a remote cloud provider. It uses [[https:// |
**Payment Gateway** | **Payment Gateway** | ||
Line 74: | Line 74: | ||
**Storage Connectors** | **Storage Connectors** | ||
- | The File Fabric supports more that 60 cloud storage providers including Amazon S3, S3 compatible storage, OpenStack, MS Azure, Google Storage, WebDav and FTP. | + | The File Fabric supports more that 60 cloud storage providers including Amazon S3, S3 compatible storage, OpenStack, MS Azure, Google Storage, SMB / NAS / SAN, WebDav and FTP/SFTP. |
Additional storage providers can be easily developed using a storage providers native API | Additional storage providers can be easily developed using a storage providers native API | ||
Line 216: | Line 216: | ||
**Application Log Location** | **Application Log Location** | ||
| | ||
- | The SME appliacation | + | The File Fabric application |
| | ||
/ | / | ||
Line 228: | Line 228: | ||
- | ## 4 Monitoring | + | ## Appliance |
- | + | See [[[cloudappliance/monitoring|]]. | |
- | {{:/ | + | |
- | + | ||
- | You can use any tool that support monitoring CentOS 7. | + | |
- | + | ||
- | We recommend monitoring the following parameters | + | |
- | + | ||
- | **Base OS** | + | |
- | + | ||
- | vmstat | + | |
- | Procs | + | |
- | r: The number of processes waiting for run time. | + | |
- | b: The number of processes in uninterruptible sleep. | + | |
- | Memory | + | |
- | swpd: the amount of virtual memory used. | + | |
- | free: the amount of idle memory. | + | |
- | active: the amount of active memory. | + | |
- | Swap | + | |
- | si: Amount of memory swapped in from disk (/s). | + | |
- | so: Amount of memory swapped to disk (/s). | + | |
- | IO | + | |
- | bi: Blocks received from a block device (blocks/s). | + | |
- | bo: Blocks sent to a block device (blocks/s). | + | |
- | CPU | + | |
- | us: Time spent running non-kernel code. (user time, including nice time) | + | |
- | sy: Time spent running kernel code. (system time) | + | |
- | id: Time spent idle. | + | |
- | st: Time stolen from a virtual machine.%%'' | + | |
- | + | ||
- | **Disk Space** | + | |
- | + | ||
- | df -k | + | |
- | Filesystem | + | |
- | 101086 | + | |
- | 512468 | + | |
- | + | ||
- | **MySQL** | + | |
- | + | ||
- | **Number of connections** | + | |
- | + | ||
- | SHOW STATUS LIKE " | + | |
- | + | ||
- | **Network Usage** | + | |
- | + | ||
- | Monitor the network traffic using your monitoring system. Or you can get the information from | + | |
- | + | ||
- | cat / | + | |
- | + | ||
- | **Total Number of Processes** | + | |
- | + | ||
- | ps -e|sed 1d|wc -l | + | |
- | + | ||
- | **Recipes** | + | |
- | + | ||
- | **Increasing Disk Space** | + | |
- | + | ||
- | To increase the disk space please follow the instructions at the following | + | |
- | + | ||
- | **Attaching a new Disk to The Appliance** | + | |
- | + | ||
- | To add a new disk to the appliance please follow the instructions at the following | + | |
- | + | ||
- | **Using a New Disk as Local Storage** | + | |
- | + | ||
- | The appliance is already configured with an FTP server listening on ip address 127.0.0.1 and port 2001. | + | |
- | + | ||
- | * Add a new user with user home directory located on the newly attached disk mounted at _newdisk_ | + | |
- | + | ||
- | adduser -b /newdisk -s / | + | |
- | + | ||
- | passwd localstorage | + | |
- | + | ||
- | * Set home directory context for /// | + | |
- | + | ||
- | chcon -R -t user_home_dir_t / | + | |
- | + | ||
- | * Now you can add the a FTP provider to your SME account using the credentials | + | |
- | - account login: | + | |
- | - account password: the password you entered for localstorage user | + | |
- | - server host: | + | |
- | - server port:2001 | + | |
- | - server home directory:/ | + | |
- | + | ||
- | + | ||
- | **Production CheckList** | + | |
- | + | ||
- | * [ ] SSL certificate Installed | + | |
- | * [ ]Once you have installed SSL certificates enable https only in the configuration | + | |
- | * [ ] Only have inbound port **443** open. If you are using CloudFTP then also open port **21** and **990** | + | |
- | * [ ] Permanent IP address Configured | + | |
- | * [ ] DNS Names Configured. Make sure webdav DNS is configured as webdav< | + | |
- | * [ ] Passwords changed for default users | + | |
- | * [ ] The date and time is set correctly in the appliance and not drifting. | + | |