Re: [Libvir] Concepts in storage management
On Tue, Oct 16, 2007 at 04:19:29PM +0100, Daniel P. Berrange wrote:
Storage attributes
==================
- Local vs network (ext3 vs NFS, SCSI vs iSCSI)
- Private vs shared (IDE vs FibreChannel)
- Pool vs volume (LVM VG vs LV, Directory vs File, Disk vs Partition)
- Container vs guest (OpenVZ vs Xen)
- Attributes
- Compressed
- Encrypted
- Auto-extend
- Snapshots
- RO
- RW
- Partition table
- MBR
- GPT
- UUID
- 16 hex digits
- Unique string
- SCSI WWID (world wide ID)
- Local Path(s) (/dev/sda, /var/lib/xen/images/foo.img)
- Server Hostname
- Server Identifier (export path/target)
- MAC security label (SELinux)
- Redundancy
- Mirrored
- Striped
- Multipath
- Pool operation
- RO
- RW
It was mentioned offlist that I didn't include security/authorization
in this mail. I had it in my offline notes...
- NFS
- server side ACL based on client IP ranges
- Kerberos GSSAPI. Client credentials taken from /etc/krb5.tab
- iSCSI
- server side ACL based on client IP ranges
- CHAP username+password supplied when attaching target to client
- Spec for Kerberos. Not GSSAPI based. Not implemented in Linux client
or server. Frowned upon by IETF kerberos experts since it isn't GSSAPI
- QCow
- passphrase needed by process (eg QEMU) accessing the file
- dm-crypt
- passphrase needed when activating the volume
Dan.
--
|=- Red Hat, Engineering, Emerging Technologies, Boston. +1 978 392 2496 -=|
|=- Perl modules: http://search.cpan.org/~danberr/ -=|
|=- Projects: http://freshmeat.net/~danielpb/ -=|
|=- GnuPG: 7D3B9505 F3C9 553F A1DA 4AC2 5648 23C1 B3DF F742 7D3B 9505 -=|