Managed disks are the recommended way to provision disks inside Azure. In this walkthrough, we will use Managed Disks to persist data inside Pods
Typically in Kubernetes, you use a Persistent Volume Claim (PVC) to request a data disk and then create a Persistent Volume (PV) from the PVC to mount a the container.
One key difference between managing via Azure Files and Azure Managed Disks is that with Azure Files, you can mount to multiple VM's simultaneously. This comes at a sacrifice of IO throughput.
In this exercise, we will:
- Create the Persistent Volume Claim for that Storage Class
- Create the Deployment with 1 Pod using 2 containers that share the PVC
- Cordon the node the pods are running
- Kill the Pod and watch the Node started on a new node and the PV migrate to the new node
The Storage Class is how Kubernetes knows how to request storage from the underlying infrastructure. In this case, we are creating a storage class for our cluster to use Azure Managed Disks using LRS redundancy.
Additional details: https://kubernetes.io/docs/concepts/storage/persistent-volumes/#new-azure-disk-storage-class-starting-from-v172
kubectl apply -f https://github.com/lastcoolnameleft/workshops/blob/master/kubernetes/yaml/storage/azure-disk-managed-pvc/storage-class.yaml?raw=1
kubectl get storageclassPersistent Volumes is how we persist data (via Volumes) that we want to exist beyond the lifespand of a Pod. A Persistent Volume Claim is how we request Persistent Volumes from the underlying infrastructure.
Additional details: https://kubernetes.io/docs/concepts/storage/persistent-volumes/#persistentvolumeclaims
kubectl apply -f https://github.com/lastcoolnameleft/workshops/blob/master/kubernetes/yaml/storage/azure-disk-managed-pvc/pvc.yaml?raw=1
kubectl get pvcSee https://kubernetes.io/docs/concepts/storage/persistent-volumes/#claims-as-volumes for more details
We will now create a Deployment because we want to showcase creating a new Pod that writes to the volume, delete that Pod, watch the ReplicaSet re-create the pod on a new node and then watch the Volume mounted inside the new Pod.
The Deployment has a Pod with 2 containers (backend-writer and frontend-webserver) and Service that exposes a public endpoint.
The backend writer container writes a new line to a file in the Persistent Volume every second with the date/time + the Pod's hostname. The frontend webserver container reads that file and serves it via Apache.
kubectl apply -f https://github.com/lastcoolnameleft/workshops/blob/master/kubernetes/yaml/storage/azure-disk-managed-pvc/deployment.yaml?raw=1
kubectl get pod,deploy,serviceIt may take ~3 minutes for the Azure Load Balancer + Public IP to resolve
IP=`kubectl get svc/azure-managed-hdd -o json | jq '.status.loadBalancer.ingress[0].ip' -r`
curl $IPOnce the service is verified to be up, reverse the contents of the file and only show the last 20 lines.
Run this command in a separate window to watch the volume migrate to a different host.
watch "curl -s $IP | tail -r | head -20"Now that we have verified the service is up and appending to the logs, let's kill the pod and have a new one start on a new node.
An Azure Managed Disk can only be attached to one node at a time. So, we want to see how the Deployment reacts if that node goes down.
First, disable scheduling on the existing node. This prevents any new pods being started on this host. Then kill the pod to have the Deployment restart a Pod on a different node.
NODE=`kubectl get pods -l app=azure-managed-hdd -o json | jq '.items[0].spec.nodeName' -r`
kubectl cordon $NODE
POD_NAME=`kubectl get pods -l app=azure-managed-hdd -o json | jq '.items[0].metadata.name' -r`
kubectl delete po/$POD_NAMENow we should see the pod start up on a new node. Go back to your curl window to watch the service become unavailable and then available again with the writes to a new node.
kubectl get podIn this step, we've created a Storage Class, Persistent Volume Claim, and a Deployment with a Pod with 2 containers using the Persistent Volume. We verified that one container in the Pod could write to the volume and another container in the Pod could read from it. We then cordon'ed the node to prevent scheduling on it and killed that pod, which had it start on a new node and verified that the service was still available
This walkthrough was inspired by these articles:
https://blogs.technet.microsoft.com/livedevopsinjapan/2017/05/16/azure-disk-tips-for-kubernetes/