[Gluster-users] how to restrict client connection to server to only one IP address

Łukasz Zygmański vins at umk.pl
Tue Oct 21 09:04:33 UTC 2014 

W dniu 20.10.2014 22:50, Jeff Darcy pisze:
>> 1. If it is using gluster-fuse, what you are trying to do is futile, because
>> the connections are not as you think.  The data does not flow from client1 ->
>> gluster1 -> gluster2.  The way it really works is that client1 connects
>> directly to both gluster1 and gluster2, and sends the data to both of them at
>> the same time.  The only time any volume of data transfers directly from
>> gluster1 to gluster2 is during a heal operation.  Unfortunately, gluster does
>> not understand the concept of a separate "storage network" that the servers
>> use to talk to each other.  It only has one address, and that address is the
>> one that the clients connect to.
> Very well put.  :)  Better multi-network support is something we're thinking
> about for GlusterFS 4.0; separate "front end" and "back end" networks is an
> almost trivial subset of that.

Are there any schedules when the GlusterFS 4.0 should become available?

>
> To be just a bit more precise, GlusterFS is limited to a concept of one
> *name* for a server.  However, that name can resolve to to different addresses
> in different contexts.  If the servers and clients use different name servers
> or have different /etc/hosts files, then it is possible to split user and
> internal traffic in some useful ways.  There are also ways to achieve the
> same thing with explicit routing, or with iptables rules.  It's pretty easy
> to get yourself all messed up this way, which is why it's not generally
> recommended or supported, but it is at least *possible*.

If someone is looking how to "fool" the servers and clients there is a 
solution here (using /etc/hosts): 
http://andreas-lehr.com/blog/archives/612-glusterfs-in-multi-home-environments.html

-- 
Łukasz Zygmański

Uczelniane Centrum               Information & Communication
Informatyczne                    Technology Centre
Uniwersytet Mikolaja Kopernika   Nicolaus Copernicus University
Coll. Maximum, pl. Rapackiego 1, 87-100 Torun, Poland
tel.: +48 56 611 27 36  fax: +48 56-622-18-50
email: Lukasz.Zygmanski at umk.pl


-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3390 bytes
Desc: Kryptograficzna sygnatura S/MIME
URL: <http://supercolony.gluster.org/pipermail/gluster-users/attachments/20141021/cd4080a5/attachment.p7s>

More information about the Gluster-users mailing list