ZFS over iSCSI high-availability solution

storage zfs freebsd iscsi

Solution 1:

It's not a direct answer to your question, but a more traditional architecture for this sort of thing would be to use HAST and CARP to take care of the storage redundancy.

A basic outline (see the linked documentation for better details):

Machine A ("Master")

  • Configure the HAST daemon & create an appropriate resource for each pool-member device.
  • Create your ZFS mirrored device as you would on any single system, using the HAST devices.

Machine B ("Slave")

  • Configure the HAST daemon similarly to what you did on Master, but bring it up as a secondary/slave node.
    (HAST will mirror all the data from the Master to the Slave for you)

Both Machines

  • Configure CARP as described in the FreeBSD Handbook's HAST documentation.
    All the failover magic will be handled for you.

The big caveat here is that HAST only works on a Master/Slave level, so you need pairs of machines for each LUN/set of LUNs you want to export.

Another thing to be aware of is that your storage architecture won't be as flexible as it would be with the design you proposed:
With HAST you're limited to the number of disks you can put in a pair of machines.
With the ISCSI mesh-like structure you proposed you can theoretically add more machines exporting more LUNs and grow as much as you'd like (to the limit of your network).

That tradeoff in flexibility buys you a tested, proven, documented solution that any FreeBSD admin will understand out of the box (or be able to read the handbook and figure out) -- to me it's a worthwhile trade-off :-)

Solution 2:

"zpool status -x" will output whether all pools are healthy or output the status of ones that are not. If a iSCSI LUN vdev goes offline a cron job running a script based around that command should give you a way to have cron alerts on a regular basis.

"zpool import" should be able to import the existing zpool from the iSCSI LUNs vdevs. You may have to force the import if the pool was not exported cleanly but internal metadata should keep the data in a consistent state even if writes were interrupted by the database node failing.

Related

Daemon doesn't start at boot - how can I debug this?
Upload everything with Knife
Vim SCP parameter with private public key pair
Current State of Active Directory (Server 2012)?
The best nagios plugin for SMART? [closed]
Wildcard SSL behaves inconsistently across browsers / OS's / computers
On the go - can it refer to something being consumed?
Difference in meaning between gerund and infinitive [duplicate]
Should we superscript ordinal numbers? [closed]
Can I juxtapose two clauses that share one object?
Is "we will connect to you" grammatically correct? [closed]
When does a fused-head NP require a definite determiner?