Cluster Setup Guide
Building a high-availability and load-balancing cluster involves setting up several components:
This guide is about the technical configuration of a high-availability and load-balancing cluster. You may also read more general information about clustering.
Providing a redundant storage
A high-availability and load-balancing cluster requires to have the same storage path for the user folders to be mounted on every PowerFolder Server node, because every node needs to be able to provide all folders to the users at any time, in case an other node goes down as a result of a crash or maintenance works. Therefore it is recommended to choose a highly-available storage solution as a storage server for the PowerFolder Server cluster.
To provide the PowerFolder Server cluster with storage there are different methods:
- Create a storage space on the storage system, export it via NFS (
Recommended and tested) and mount it into the operating system under the same path on every PowerFolder Server node. - Create a storage space on the storage system, format it with a cluster filesystem (e.g. GFS, GlusterFS,...) and mount it into the operating system under the same path on every PowerFolder Server node.
When mounting the storage into the operating system, please make sure you grant access permissions on the share to the same dedicated user, which you used on the other nodes.
Providing a redundant web load-balancer
Users of the PowerFolder Server cluster will not only use desktop clients to access their folders, but also mobile apps or simply the web interface. The web interface (which is also used for the mobile apps) has a unique URL under which it is provided to the users (e.g. https://cloud.example.com), therefore incoming requests on that URL need to be equally distributed to each PowerFolder Server node, except if a node isn't available at that time.
To provide a redundant web load-balancer, you can use one of the three possibilities below:
- Apache: Module mod_proxy_balancer ( Recommended)
- Nginx: Module ngx_http_upstream_module
- Hardware appliance which supports reverse proxy functionality and SSL certificates
Please note: A request from a client needs to stick to the same backend server for at least 5 minutes. This is the time frame within the session cookie will be written to the database, so the user doesn't need to login again as soon as the request will be forwarded and served by another node.
There are two ports which need to be forwarded to the PowerFolder Server nodes and their web port (by default 8080):
- 443 TCP - for direct web access
- 80 TCP - for HTTP tunneling in case communication via a desktop client on the data port isn't available (e.g. if the client resides in a network protected by a firewall)
To provide redundancy to the web load-balancer you can use common techniques like DNS round-robin between or Heartbeat to have at least two machines running an identical Apache or Nginx configuration.
Example configuration for Apache
The following example will show how to create a web load-balancer based on the Apache mod_proxy_balancer and lbmethod_byrequests module. Both modules need to be installed on the server.
To get a full picture on how the final virtual host configuration should look like, please review our documentation on using Apache with mod_proxy and mod_ssl. The only part which needs to be exchanged is the reverse proxy part.
ProxyPass /rpc balancer://pfcluster/rpc nocanon ProxyPassReverse /rpc balancer://pfcluster/rpc ProxyPass /rpc ! nocanon ProxyPass / balancer://pfcluster/ nocanon ProxyPassReverse / balancer://pfcluster/ <Proxy balancer://pfcluster> BalancerMember http://10.0.0.1:8080 route=<node_id> BalancerMember http://10.0.0.2:8080 route=<node_id> ProxySet stickysession=rpcid|JSESSIONID|jsessionid scolonpathdelim=On </Proxy>
Replace <node_id> with the one from the matching backend server, which can be found in the Server Configuration File.
Example configuration for Nginx
The following example will show how to create a web load-balancer based on the Nginx ngx_http_upstream_module.
To get a full picture on how the final virtual host configuration should look like, please review our documentation on using Nginx. The only part which needs to be exchanged is the reverse proxy part.
upstream pfcluster {
ip_hash;
server 10.0.0.1:8080;
server 10.0.0.2:8080;
keepalive 100;
}
server {
...
location / {
proxy_pass http://pfcluster;
proxy_http_version 1.1;
proxy_set_header Connection "";
}
}
Providing a MySQL database cluster
Since all PowerFolder Server nodes need to read and write the same database, there should be a highly-available database cluster as well. There are two (and maybe more) ways how to provide high-availability using MySQL:
- Galera Cluster (Recommended and tested)
- Microsoft SQL Server Cluster (Recommended and tested)
- NDB Cluster
The Galera cluster implementation can be done using the Galera Cluster from Codership, however we made a good experience with the Percona XtraDB Cluster in connection with Percona XtraBackup (as a method for state snapshot transfers instead of mysqldump or rsync).
For automatic fail over in case a MySQL cluster node goes down (and you are not using a load-balancer in front of the MySQL cluster nodes), you can use the following line when configuring MySQL support in each PowerFolder Server node:
database.url=jdbc:mysql://sqlnode1.example.com:3306,sqlnode2.example.com:3306/powerfolder?failOverReadOnly=false&connectTimeout=30000&socketTimeout=30000&autoReconnect=true&autoReconnectForPools=true
Configuring and starting the PowerFolder Server cluster
Installation and configuration of the first node
The most simple way to configure a PowerFolder Server cluster is to start with the installation and configuration of the first node.
After the installation and configuration:
- Stop PowerFolder Server.
Add the following entries to the Server Configuration File:
folders.mount.dynamic=true folder.watcher.enabled=false provider.url.httptunnel=http://cloud.example.com/rpc web.base.url=https://cloud.example.com
Replace cloud.example.comwith the URL to the web interface, which configured as a part of the web load-balancer configuration.- Start PowerFolder Server.
Installation and configuration of further nodes
After the installation and configuration of the second and further nodes:
- Install another node on a different server.
Don't start it yet! - Copy the Server Configuration File from the first node and put it into the same location on the second node.
- Replace the values of the following entries in the Server Configuration File with the correct values matching the second node: hostname, nick
- Delete the following entry in the Server Configuration File on the second node: nodeid
Add the following entry to the Server Configuration File on the second node:
folders.mount.dynamic=true folder.watcher.enabled=false provider.url.httptunnel=http://cloud.example.com/rpc web.base.url=https://cloud.example.com
Replacecloud.example.comwith the URL to the web interface, which configured as a part of the web load-balancer configuration.- Start PowerFolder Server.
- Check if every server has its own server_maintenance folder path.
Repeat the process for all further PowerFolder Server nodes you are going to install.
Synchronization of server settings to all cluster nodes
If you change settings via the web interface as an admin, the settings will be synced across all server nodes. Some settings however will not be synchronized, since they are node-specific.
Settings which will not be synchronized to keep the functionality of the cluster:
- ajp.port
- config.url
- hostname
- net.bindaddress
- nick
- nodeid
- plugin.webinterface.port
- port
- ssl.port
Settings which will not be synchronized, because they might be different depending on the usage scenario:
- database.url
- database.username
- database.password
- downloadlimit
- foldersbase
- landownloadlimit
- lanuploadlimit
- license.email
- license.key
- provider.url.httptunnel
- uploadlimit
Most of the settings and their respective names in the web interface are explained in the article about the Server Configuration File.
Please note that the activation of a new license requires activation on each individual server node. The login information to the licensing service however will be synchronized across all server nodes, so they automatically grab the new license, if it will be renewed.