| ansible server prepping | Ansible Vault | arm k8s on prem | backup server - Part IV | backup solution | Cluster on a Pi | debian server setup | DNS on Ubuntu ARM | Docker Hub | Docker Swarm | downgrade k3s | GEO-blocking | HomeBrew | How to backup | install Docker Swarm | k3s | k3s cluster setup | k3s HA | K8s Dashboard | K8s Load Balancer | kube-vip | KVM-hypervisor | Mail setup on Pi | MetalLB | Mosquitto brocker on Swarm | Mosquitto container deployment | New Pi setup | new server setup | NFS-Share (shared storage) | Nginx reverse proxy | OPNsense ProtonVPN setup | Persisten Volume - Pi K8s | Portainer (Swarm) | Rancher HA on K3s | Raspbian 64bit | rclone backup - part 2 | Rclone continued III | Rclone GUI | rclone - part 1 | RPi backup solution | ssh-copy-id | SSH key exchange | ssh-keygen | sudo with no password | Swarm commands | sysadmin purpose | sysadmin skills | tmux | Traefik + cert-manager | Traefik + Consul + ssl/tls Letsencrypt | Traefik - oAuth and Letsencrypt | ubuntu webserver | upgrade k3s | Wazuh single node Swarm | webserver setup | what is a sysadmin

The Hotel Hero

Notes by a Sysadmin

Cluster | Philosophy | Stack

K8s Persistent Volume

 March 8, 2021 | Cluster

Persisten Volume (Local)

There is a lot of different types of volume mounting, mainly because of the fact that Kubernetes (K8s) is often used for the purpose of high availabillity. So, the whole concept of storage on one node, is kind of opposed to that therminology. But, to try and make things simple here, we will use the local storage type. Another solution that is often used in the development/pi area is the NFS type (network file storage).

When working with local storage, K8s needs to have a binding class setup to control the access to the volume. So, first we need to make a storageClass.yml (or what ever you call it):

kind: StorageClass
apiVersion: storage.k8s.io/v1
metadata:
  name: pi3-storage-class
provisioner: kubernetes.io/no-provisioner
volumeBindingMode: WaitForFirstConsumer

kubectl create -f storageClass.yaml

and then we can setup our persistent volume.

apiVersion: v1
kind: PersistentVolume
metadata:
  name: pi3-pv
spec:
  capacity:
    storage: 28Gi
  volumeMode: Filesystem
  accessModes:
  - ReadWriteOnce
  persistentVolumeReclaimPolicy: Delete
  storageClassName: pi3-storage-class
  local:
    path: /mnt/storage
  nodeAffinity:
    required:
      nodeSelectorTerms:
      - matchExpressions:
        - key: kubernetes.io/hostname
          operator: In
          values:
          - pi3

kubectl create -f persistenVolume.yml

If everything went well thus far, you would be able to se your persisten volume:

kubectl get pv

Next thing is to make the claim on some of the storage (pi3PVC.yml):

kind: PersistentVolumeClaim
apiVersion: v1
metadata:
  name: pi3-test-claim
spec:
  accessModes:
  - ReadWriteOnce
  storageClassName: pi3-storage-class
  resources:
    requests:
      storage: 5Mi

and kubectl create -f pi3PVC.yml 

Worth noting here is that the claim is only connected to the storage class and not directly to the volume we created.

Let's create a simpel Nginx pod (http-pod.yml):

apiVersion: v1
kind: Pod
metadata:
  name: www
  labels:
    name: www
spec:
  containers:
  - name: www
    image: nginx:alpine
    ports:
      - containerPort: 80
        name: www
    volumeMounts:
      - name: www-persistent-storage
        mountPath: /usr/share/nginx/html
  volumes:
    - name: www-persistent-storage
      persistentVolumeClaim:
        claimName: pi3-test-claim

kubectl create -f http-pod.yml

Create an index.html file in the storage (pi3:/mnt/storage)

pi3# echo "Hello World!" > /mnt/storage/index.html

Now, the pv will be bound and serving to the pod.

To find the pod IP use the following line:

kubectl get pod -o wide

try to call the pod and get a response:

curl [pod IP]

 If everything went fine you would get a "Hello World!" response back.

Delete pod

Lets delete the pod and make a deployment

kubectl delete pod www

NFS share

If you plan to use an SD-card for nfs-share follow the following instructions, for preparation and setup of the NFS-Share first.

Copy the following three yaml files:

wget https://github.com/kubernetes-sigs/nfs-subdir-external-provisioner/raw/master/deploy/rbac.yaml
wget https://github.com/kubernetes-sigs/nfs-subdir-external-provisioner/raw/master/deploy/class.yaml
wget https://github.com/kubernetes-sigs/nfs-subdir-external-provisioner/raw/master/deploy/deployment.yaml

and edit "deployment.yaml": the "values" of NFS_SERVER, NFS_PATH and "server:" and "path:" under "nfs:". All in the bottom of the file. And also "mountPath:" under "containers:" it has to point to a valid directory on the client.

and create the content of the files:

sudo kubectl create -f rbac.yaml
sudo kubectl create -f deployment-arm.yaml
sudo kubectl create -f class.yaml

The storageclass and role based access and provisioner pod have all been deployed. There may have been some Googleing and debugging on the way. But, hopefully everything went well.

The PVC 

The volume claim(s) just have to be made now. Something like the following and you should be ready to go.

apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  name: my-pv-claim
  annotations:
    volume.beta.kubernetes.io/storage-class: "managed-nfs-storage"
  labels:
    app: blog
spec:
  accessModes:
    - ReadWriteMany
  resources:
    requests:
      storage: 3Gi

 

Search

About

I'm a Sysadmin, network manager and cyber security entusiast. The main purpose of this public "notebook" is for referencing repetitive tasks, but it might as well come in handy to others. Windows can not be supported! But all other OS compliant with the POSIX-standard can (with minor adjustments) apply the configs on the site. It is Mac OSX, RHEL and all the Fedora based distros and Debian based (several 100's of OS's), all the BSD distros, Solaris, AIX and HP-UX.

Links