RHCE 共享文件系统
9.1 共享文件系统
概述: 共享文件系统通常有两种方式:
基于文件共享,一种直接共享文件夹给client端,常见的技术有NFS(Network File System )和 SMB (Server Message Block)
基于block共享,即共享服务器端分配的磁盘给client端使用。
--------------------------------------------------------------------------------------------------------
测试环境
--------------------------------------------------------------------------------------------------------
9.1.1 基于文件共享
NFS 配置
服务端设置
安装包
libnfsidmap-0.25-9.el7.x86_64
nfs-utils-1.3.0-0.el7.x86_64
服务名: nfs
防火墙:
1. 安装包检查及安装
rpm -qa | grep -i nfs
yum install nfs-utils-*
2. 启动服务nfs-server
systemctl restart nfs-server
systemctl enable nfs-server
systemctl status nfs-serve
3. 开启防火墙
rhel 7
firewall-cmd --permanent --add-service=nfs
firewall-cmd --reload
4. 配置分享的文件
4.1. 创建分享的文件系统
mkdir /nfs
如果分享的用户有写权限,需要设置other 对共享文件夹有写权限
4.2. 配置共享文件
/etc/exports /nfs desktop0(rw)
保存退出后,使用命令检测是否成功
exportfs -r
客户端设置
配置/etc/fstab
192.168.56.12:/nfs /sharednfs nfs defaults 0 0
执行挂载
mount -a
df -h
mount 192.168.56.12:nfs /sharednfs
SMB (Server Message Block)
安装包
samba
samba-client
服务 :smb
防火墙:
服务端设置
1. 安装包
yum install samba*
2. 启动服务
systemctl restart smb
systemctl enable smb
systemctl status smb
3. 开启防火墙
firewall-cmd --permanent --add-service=samba
firewall-cmd --reload
4. 创建共享文件目录,及用户需求
mkdir /samba
5. 设置共享文件
5.1 添加共享配置
/etc/samba/smb.conf [samba_s0]
path=/samba
valid users=user0
write list=user1,user2
hosts allow=192.168.56.1
writable=no
5.2 执行命令testparm 检查配置是否存在语法错误
[root@localhost ~]# testparm
Load smb config files from /etc/samba/smb.conf
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
Processing section "[homes]"
Processing section "[printers]"
Processing section "[samba_s0]"
Loaded services file OK.
“Loaded services file OK.” 表示everything is ok
5.3 将用户升级为samba用户,需要设置对应用户的登录密码
smbpasswd -a user0
[root@localhost ~]# smbpasswd -a user0
New SMB password:
Retype new SMB password:
Added user user0.
客户端设置
安装包
samba-client-3.6.23-45.el6_9.x86_64
cifs-utils-4.8.1-20.el6.x86_64 服务:N/A
1. 安装安装包
yum install samba-client
yum install cifs*
2. 测试是否能够访问成功
2.1 测试是否mount 成功
[root@dpf01 ~]# mount -ousername=user0 //192.168.56.12/samba_s0 /samba
Password:
2.2 测试是否有读权限
[root@dpf01 ~]# cd /samba
[root@dpf01 samba]# ls
ls: reading directory .: Permission denied
原因分析及解决方法
临时关闭 selinux, 测试成功
setenforce 0
接下来我们 fix ,在 server 端做如下操作
方法一:
[root@localhost ~]# semanage fcontext -a -t samba_share_t "/samba(/.*)?"
[root@localhost ~]# restorecon -R -v /samba
restorecon reset /samba context unconfined_u:object_r:default_t:s0->unconfined_u:object_r:samba_share_t:s0
[root@localhost ~]# ls -dZ /samba
drwxr-xr-x. root root unconfined_u:object_r:samba_share_t:s0 /samba 方法二: 通过查看配置文件 /etc/samba/smb.conf
# Security-Enhanced Linux (SELinux) Notes:
#
# Turn the samba_domain_controller Boolean on to allow Samba to use the useradd
# and groupadd family of binaries. Run the following command as the root user to
# turn this Boolean on:
# setsebool -P samba_domain_controller on
#
# Turn the samba_enable_home_dirs Boolean on if you want to share home
# directories via Samba. Run the following command as the root user to turn this
# Boolean on:
# setsebool -P samba_enable_home_dirs on
#
# If you create a new directory, such as a new top-level directory, label it
# with samba_share_t so that SELinux allows Samba to read and write to it. Do
# not label system directories, such as /etc/ and /home/, with samba_share_t, as
# such directories should already have an SELinux label.
#
# Run the "ls -ldZ /path/to/directory" command to view the current SELinux
# label for a given directory.
#
# Set SELinux labels only on files and directories you have created. Use the
# chcon command to temporarily change a label:
# chcon -t samba_share_t /path/to/directory
#
# Changes made via chcon are lost when the file system is relabeled or commands
# such as restorecon are run.
#
# Use the samba_export_all_ro or samba_export_all_rw Boolean to share system
# directories. To share such directories and only allow read-only permissions:
# setsebool -P samba_export_all_ro on
# To share such directories and allow read and write permissions:
# setsebool -P samba_export_all_rw on
9.1.2 基于 block 共享
ISSCI
1. 安装必要的安装包
2. 创建共享的磁盘
3. 配置ISSCI 服务端
服务端设置
要求的安装包
target
服务:target
防火墙:
1. 安装包
yum install target*
2. 启动服务
systemctl restart target
systemctl enable target
systemctl status target
3. 配置共享磁盘
targetcli [root@localhost RHEL-7.0 Server.x86_64]# targetcli
Warning: Could not load preferences file /root/.targetcli/prefs.bin.
targetcli shell version 2.1.fb34
Copyright 2011-2013 by Datera, Inc and others.
For help on commands, type 'help'. /> ls
o- / ..................................................................................................................... [...]
o- backstores .......................................................................................................... [...]
| o- block .............................................................................................. [Storage Objects: 0]
| o- fileio ............................................................................................. [Storage Objects: 0]
| o- pscsi .............................................................................................. [Storage Objects: 0]
| o- ramdisk ............................................................................................ [Storage Objects: 0]
o- iscsi ........................................................................................................ [Targets: 0]
o- loopback ..................................................................................................... [Targets: 0]
/> /backstores> block/ create block0 /dev/sda5
Created block storage object block0 using /dev/sda5.
cd ..
/> ls
o- / ..................................................................................................................... [...]
o- backstores .......................................................................................................... [...]
| o- block .............................................................................................. [Storage Objects: 1]
| | o- block0 .................................................................. [/dev/sda5 (200.0MiB) write-thru deactivated]
| o- fileio ............................................................................................. [Storage Objects: 0]
| o- pscsi .............................................................................................. [Storage Objects: 0]
| o- ramdisk ............................................................................................ [Storage Objects: 0]
o- iscsi ........................................................................................................ [Targets: 0]
o- loopback ..................................................................................................... [Targets: 0]
/> iscsi/ create iqn.2017-11.com.example:remotedisk1
cd iscsi/iqn.2017-11.com.example:remotedisk1/tpg1/
acls/ create iqn.2017-11.com.example:192.168.56.1
luns/ create
portals/ create 192.168.56.12 /> ls
o- / ......................................................................................................................... [...]
o- backstores .............................................................................................................. [...]
| o- block .................................................................................................. [Storage Objects: 1]
| | o- block0 ........................................................................ [/dev/sda5 (200.0MiB) write-thru activated]
| o- fileio ................................................................................................. [Storage Objects: 0]
| o- pscsi .................................................................................................. [Storage Objects: 0]
| o- ramdisk ................................................................................................ [Storage Objects: 0]
o- iscsi ............................................................................................................ [Targets: 1]
| o- iqn.2017-11.com.example:remotedisk1 ............................................................................... [TPGs: 1]
| o- tpg1 ............................................................................................... [no-gen-acls, no-auth]
| o- acls .......................................................................................................... [ACLs: 1]
| | o- iqn.2017-11.com.example:192.168.56.1 ................................................................. [Mapped LUNs: 1]
| | o- mapped_lun0 ................................................................................ [lun0 block/block0 (rw)]
| o- luns .......................................................................................................... [LUNs: 1]
| | o- lun0 ....................................................................................... [block/block0 (/dev/sda5)]
| o- portals .................................................................................................... [Portals: 1]
| o- 192.168.56.12:3260 ............................................................................................... [OK]
o- loopback ......................................................................................................... [Targets: 0]
/>
4. 防火墙设置
[root@localhost ~]# firewall-cmd --permanent --add-port=3260/tcp
success
[root@localhost ~]# firewall-cmd --reload
success
客户端设置
1. 安装包
iscsi-initiator-utils
2. 启动服务
systemctl restart iscsid
systemctl enable iscsid
systemctl status iscsid
2. 设置配置文件
/etc/iscsi/initiatorname.iscsi
nitiatorName=iqn.2017-11.com.example:192.168.56.1
3. 发现共享 node
iscsiadm --mode discoverydb --type sendtargets --portal 192.168.56.12 --discover
[root@dpf01 ~]# iscsiadm --mode discoverydb --type sendtargets --portal 192.168.56.12 --discover
Starting iscsid: [ OK ]
192.168.56.12:3260,1 iqn.2017-11.com.example:remotedisk1
4. login node
iscsiadm --mode node --targetname iqn.2017-11.com.example:remotedisk1 --portal 192.168.56.12:3260 --login
iscsiadm --mode node --targetname iqn.2001-05.com.doe:test --portal 192.168.1.1:3260 --logout
5. 配置/etc/fstab
RHCE 共享文件系统的更多相关文章
- 基于 Azure 托管磁盘配置高可用共享文件系统
背景介绍 在当下,共享这个概念融入到了人们的生活中,共享单车,共享宝马,共享床铺等等.其实在 IT 界,共享这个概念很早就出现了,通过 SMB 协议的 Windows 共享目录,NFS 协议的网络文件 ...
- Linux安装配置Samba共享文件系统
Samba共享文件系统搭建与配置: 1.Samba服务端:yum install samba samba-client cifs-utilscd /etc/samba/cp smb.conf smb. ...
- Openmpi 编译安装+集群配置 + Ubuntu14.04 + SSH无密码连接 + NFS共享文件系统
来源 http://www.open-mpi.org/ 网络连接 SSH连接,保证各台机器之间可以无密码登陆,此处不展开 hosts文件如下 #/etc/hosts 192.168.0.190 mas ...
- NFS网络共享文件系统
1.nfs服务端配置操作 1.1 创建所需的共享目录--源 mkdir /data/rw #rw代表同步的数据可读可写 1.2 对共享目录进行授权 chown -R nfsnobody.nfsno ...
- NFS,两台linux设置网络共享文件系统
NFS,MOUNT,UMOUNT 简介 NFS是Network File System的简写,网络文件系统.通过使用NFS,用户和程序可以像访问本地文件一样访问远端系统上的文件,根据权限的控制可以对N ...
- exportfs - 管理NFS共享文件系统列表
概述 (SYNOPSIS) /usr/sbin/exportfs [-avi] [-o options,..] [client:/path ..] /usr/sbin/exportfs -r [-v] ...
- nfs共享文件系统
NFS服务简介 NFS 就是 Network FileSystem 的缩写,最早之前是由sun 这家公司所发展出来的. 它最大的功能就是可以透过网络,让不同的机器.不同的操作系统.可以彼此分享个别的档 ...
- NFS共享文件系统部署
1. 概述 本篇博客主要是介绍如何安装和使用NFS服务. 2. 安装软件包 首先确认系统是否已经安装相应的软件包,执行命:rpm -qa | egrep "rpcbind|nfs-utils ...
- SharedFile System Master Slave(共享文件系统)做ActiveMQ集群
WINDOWS环境下:http://www.apache.org/dyn/closer.cgi?path=/activemq/apache-activemq/5.9.0/apache-activemq ...
随机推荐
- myeclispe2014启动后报错 Subclipse talks to Subversion via a Java API that requires access to native libraries.
解决方案: Window -> Preferences -> Team -> SVN, 将SVN接口的Client修改为如图所示
- Uploadify多文件上传插件.NET使用案例+PHP使用案例
ploadify是一个非常好用的多文件上传插件 插件下载:http://www.uploadify.com 下载后需要用到的文件: 接下来就是直接添加代码: Default.aspx代码 <%@ ...
- iOS7修改UISearchBar的Cancel按钮的颜色和文字
两行代码搞定: [[UIBarButtonItem appearanceWhenContainedIn: [UISearchBar class], nil] setTintColor:[UIColor ...
- 【javascript】点击复制内容的实现
各种站点有很多类似的代码,不过都是拿来即用,连个解释也没有.大概看了一下,现在主要使用的有两种办法: 1.documen.execCommand("Copy")或者window.c ...
- ActiveX 控件重绘无效问题,用CClientDC 而不是CPaintDC
ActiveX 控件重绘子控件时,用Invalid()会出现无效的情况即不会更新界面. OnPaint 方法里,是用的 CPaintDC,经测试无效,后换CClientDC,发现可以,百度查他们的区别 ...
- 浅谈由管理者角色引出的B端产品设计思考点
本文来自网易云社区 作者:任琼瑶 最近一直都在持续跟进云课堂B端的交互设计,在此期间,多多少少遇到了一些不曾遇到过的问题,虽然同是做产品设计,但B端和C端产品的确存在很多不同之处. 首先,当我们在做C ...
- python 杂谈
python 当前文件导入自定义模块的时候,会默认执行一遍 python使用的变量必须是已经定义或者声明过的.
- “全栈2019”Java多线程第十五章:当后台线程遇到finally
难度 初级 学习时间 10分钟 适合人群 零基础 开发语言 Java 开发环境 JDK v11 IntelliJ IDEA v2018.3 文章原文链接 "全栈2019"Java多 ...
- Elasticsearch(八)【NEST高级客户端--分析器】
分析 分析是将文本(如任何电子邮件的正文)转换为添加到反向索引中进行搜索的tokens或terms的过程. 分析由analyzer执行,分析器可以是内置分析器或每个索引定义的定制分析器. 书写分析器测 ...
- [ActionScript3.0] AS3利用ExternalInterface与js通信
AS3代码,可做文档类; package { import flash.display.Sprite; import flash.events.*; import flash.external.Ext ...