DFS Namespaces. Virtualization for Remote File Systems. Dan Lovinger DFSN Development Lead Microsoft

Similar documents
Module 11. Configuring and Managing Distributed File System. Contents:

Caching SMB Data for Offline Access and an Improved Online Experience

Active Directory. By: Kishor Datar 10/25/2007

Introducing FedFS On Linux Chuck Lever Oracle Corporation

Centralized Mac Home Directories On Windows Servers: Using Windows To Serve The Mac

Forests, trees, and domains

Active Directory Monitoring With PATROL

The Win32 Network Management APIs

Configuring Windows Server Clusters

Configuring Advanced Windows Server 2012 Services

Configuring Windows Server 2008 Network Infrastructure

Websense Support Webinar: Questions and Answers

Deploying Remote Desktop Connection Broker with High Availability Step-by-Step Guide

DFS Configuration and Best Practices Nasuni Corporation Natick, MA

MOC 6435A Designing a Windows Server 2008 Network Infrastructure

Active Directory Compatibility with ExtremeZ-IP. A Technical Best Practices Whitepaper

Quick Start - NetApp File Archiver

In this chapter, we will introduce works related to our research. First, we will

Novell Distributed File Services Administration Guide

Planning and Implementing Windows Server 2008

System Center Configuration Manager

Agency Pre Migration Tasks

Deploying System Center 2012 R2 Configuration Manager

Microsoft Windows Storage Server 2003 R2

Configuring Sites and Understanding AD replication. Dante Villarroel Saavedra

StorageX 7.5 Case Study

Module 2. Configuring and Troubleshooting DNS. Contents:

WINDOWS 2000 Training Division, NIC

ITKwebcollege.ADMIN-Basics Fundamentals of Microsoft Windows Server

Build Your Knowledge!

9. Which is the command used to remove active directory from a domain controller? Answer: Dcpromo /forceremoval

Chapter 3: Building Your Active Directory Structure Objectives

Deploying Windows Server 2008

SyncLockStatus Evaluator s Guide

IT SYSTEMS ADMINISTRATOR PROGRAM

70-417: Upgrading Your Skills to MCSA Windows Server 2012

Deploying Exchange Server 2007 SP1 on Windows Server 2008

The Native AFS Client on Windows The Road to a Functional Design. Jeffrey Altman, President Your File System Inc.

MCSA Instructor-led Live Online Training Program. Course Outline MCSA Deploying and Managing Windows Server 2012

Configuring Advanced Windows Server 2012 Services 5 Days

Designing a Windows Server 2008 Network Infrastructure

Active Directory. Learning Objective. Active Directory

GlobalSCAPE DMZ Gateway, v1. User Guide

Dell Active Administrator 8.0

Course Outline: Course Configuring Advanced Windows Server 2012 Services

Module 1: Overview of Network Infrastructure Design This module describes the key components of network infrastructure design.

Troubleshooting BlackBerry Enterprise Service 10 version Instructor Manual

Windows Server 2003 default services

Microsoft System Center Virtual Application Server

the client omits the BranchCache identifier from the request message.

Training Name Installing and Configuring Windows Server 2012

LEARNING SOLUTIONS website milner.com/learning phone

Active Directory Restructuring Recommendations

Designing and Implementing a Server Infrastructure

LearnKey's Windows Server 2003 Active Directory Infrastructure with Dale Brice-Nash

Outline. Definition. Name spaces Name resolution Example: The Domain Name System Example: X.500, LDAP. Names, Identifiers and Addresses

Active Directory Compatibility with ExtremeZ-IP

WHITE PAPER. Infoblox IPAM Integration with Microsoft AD Sites and Local Services

Microsoft Windows Server 2008: MS-6435 Designing Network and Applications Infrastructure MCITP 6435

Foglight for Active Directory User and Reference Guide

Buffalo Technology: Migrating your data to Windows Storage Server 2012 R2

Course 6425C: Configuring and Troubleshooting Windows Server 2008 Active Directory Domain Services

R3: Windows Server 2008 Administration. Course Overview. Course Outline. Course Length: 4 Day

CONFIGURING ACTIVE DIRECTORY IN LIFELINE

Best Practices: Integrating Mac OS X with Active Directory. Technical White Paper April 2009

Lesson Plans LabSim for Microsoft s Implementing a Server 2003 Active Directory Infrastructure

Network System Management. Creating an Active Directory Domain

5 Configuring a DNS Infrastructure

DirectAccess in Windows 7 and Windows Server 2008 R2. Aydin Aslaner Senior Support Escalation Engineer Microsoft MEA Networking Team

Optimization in a Secure Windows Environment

Disaster Recovery White Paper

Contents. Platform Compatibility. Directory Connector SonicWALL Directory Services Connector 3.1.7

You need to recommend a monitoring solution to ensure that an administrator can review the availability information of Service1. What should you do?

How To Manage Storage With Novell Storage Manager 3.X For Active Directory

Hypertable Architecture Overview

AV-006: Installing, Administering and Configuring Windows Server 2012

A Technical Best Practices White Paper

SINGLE COURSE. 136 Total Hours. After completing this course, students will be able to:

Step-By-Step Guide to Deploying Lync Server 2010 Enterprise Edition

Architecting User Identification (User-ID) Deployments

Windows 7 Core Services: Application Experience. Application Information. Background Intelligent Transfer. Base Filtering Engine.

SKV PROPOSAL TO CLT FOR ACTIVE DIRECTORY AND DNS IMPLEMENTATION

Deploying and Managing Microsoft Exchange Server 2013

Getting Started Guide

Windows Server. Introduction to Windows Server 2008 and Windows Server 2008 R2

MOC 5047B: Intro to Installing & Managing Microsoft Exchange Server 2007 SP1

Dell Enterprise Reporter 2.5. Configuration Manager User Guide

Joe Davies. Principal Writer Windows Server Information Experience. Presented at: Seattle Windows Networking User Group June 1, 2011

Configuring Advanced Windows Server 2012 Services Course# 20412D

MS 6419 Configuring, Managing and Maintaining Windows Server 2008-based Servers

istorage Server: High-Availability iscsi SAN for Windows Server 2008 & Hyper-V Clustering

70-413: Designing and Implementing a Server Infrastructure

Double-Take Application Manager User s Guide

Course Active Directory Services with Windows Server

"Charting the Course... MOC D Configuring Advanced Windows Server 2012 Services Course Summary

SharePoint 2013 Logical Architecture

20410: Installing and Configuring Windows Server 2012

Configuring Advanced Windows Server 2012 Services

Windows Server 2003 Service Pack 1 (SP1) or later service packs Enhanced version of Ntdsutil.exe

Networking with Windows Server vb. Day(s): 5. Version: Overview

Transcription:

DFS Namespaces Dan Lovinger DFSN Development Lead Microsoft Virtualization for Remote File Systems

Agenda Overview of DFS Namespaces Terminology General Architecture Geo-Awareness Operation and Protocol Domain Metadata Store Examples

DFSN Basics DFSN is part of Windows native SMB/CIFS protocol Provides a service which lets clients access a file space on local and geographically distributed file servers through a single, consistent, locally available folder structure without user knowledge of the remote servers with availability against namespace and storage failure while being directed to optimal targets Value Proposition: enables deployment of large numbers of servers (or clusters) while providing availability and the benefits of a single namespace

DFSN Basics DFSN has four component buckets a client extension to the SMB redirector a server-side service attached to the SMB server a domain controller role for locating DFSN service API/CLI/GUI management and diagnostic tools As of Windows 2008, the DFSN service is an optional role service for the File Server role

DFSN Is Not A few common DFSN misperceptions replication in Windows, that comes from the DFSR technology any replicator can be plugged under DFSN a union system that merges two shares into one view \\server1\share \\server2\share... a clustered file system with integration between the replicas

Common Scenarios Simplified and persistent presentation of storage: user types \\contoso\public on their local machine and gets to the nearest server for all content underneath. The 100 s of servers may change or move but user s and tool s paths can remain the same. Publication: users publish corporate data on \\contoso\marketing\announce. The announce folder is hosted on multiple servers around the globe. Data and folder information is replicated and made available globally. Transparent consolidation: \\oldserver is decommissioned and its file service relocated to a new server infrastructure using DFSN consolidation namespaces. Clients continue to access data using the old pathnames.

Key Elements of the DFSN Service DFSN s service is a database of namespaces and their links and targets Functions at both the server and domain level on the server, responsible for local namespaces at the domain, responsible for locating domain namespaces, operating as a proxy for the DS store also responsible for providing clients with a local domain list for domain identification. DFSN s databases are accessed by a simple query protocol the referral. Each comes with a refresh TTL. On the namespace server, intercepts client access DFSN attaches to the SMB server for each namespace share DFSN handles opens which cross links, notifying the client via a distinguished error. This initiates the referral process.

Breaking down the Path Domain Namespaces \\domain \root\...\link \...\finance.xlsx Standalone/Consolidated Namespaces \\server \root\...\link \...\finance.xlsx Note: UNC paths do not differentiate domain and normal server paths DFSN identifies domains based on the client s home domain s relationships to its peer domains

DFSN Domain Identification DFSN provides a domain identification and location service, reusing access algorithms in the client Identification all local forest domains domains in peer forests with a transitive trust relationship Location enumeration of registered domain controllers of each identified domain Protocol is more general than implementation www.storage-developer.org

DFSN Terminology Summarizing the terminology ROOT SMB share that hosts a set of LINKS Two base types, defined by how it is located DOMAIN located through Directory Services \\domain\root\... \\contoso.com\release, \\snia.org\files STANDALONE - located on a single server or cluster \\server\root\... \\groupserver\users, \\teamcluster\builds

DFSN Terminology (cont.) LINK path on a root pointing to TARGETS TARGET any UNC path SMB, NFS or DAV shares, other roots Roots also have targets Domain servers which host the root shares Standalone itself, as a means of self identification INTERLINK link whose target is a ROOT NAMESPACE one or more roots linked together to form a virtualized share spanning them and their link targets

Referral Terminology DFSN database query REFERRAL a REQUEST (query) to DFS resulting in a RESPONSE with its targets request: \\contoso\release response: \\contoso\release \\cosrv1\release Four basic types \\cosrv2\release Link: link path link targets Root: root path root targets DC: domain DCs of a domain Domain: <null> known domains Domain/DC form the domain identification and location service for DFSN clients

Referral Access DFSN clients process referrals as ordered lists try the first, second nth target until success on success, use the given target for subsequent IO failover criteria is error condition one expected not to be replicated to all other targets? File not found v. Connection failed Ordered referral access allows the server to direct clients through targets in geo-aware order and fail back to local targets later designate site or global targets of last resort provide a low cost load leveling for targets

DFSN Geo-Awareness Active Directory defines sites as a set of IP subnets, along with a graph of site to site costs. Sites are usually geographic. DFSN uses the costs to direct WAN aware access client IP address site target IP addresses sites compute site to site costs for each client/target pair, sort Also provides optional policy to restrict clients to targets within their local site (insite) DFSN Protocol support site cost boundary information in referrals (V4/2003 SP1) (optional) periodic target failback checks key: ordered referral access

Elements of a Root Recall that a root is hosted on an SMB share DFSN creates directory trees for each link with NTFS reparse points at the tips if \\srv\root\d\link is a link, DFSN creates the directory d and a reparse point inside of it, link DFSN uses the reparse point for low-cost notification when an access crosses a link, triggering the referral sequence Of note: Root There is nothing special about having a link somewhere below the root directory of the share A root can link to another root; however, there is no such thing as a link inside of a link Content can be placed anywhere in the root. d link SRV Root DFS

Key Elements of DFSN Access A DFSN client uses the DFSN service s database to crack opens Given \\a\b\c\..., DFSN identifies if a is a domain name domain referral Resolve the Namespace First component is domain: e.g. \\domain\b\c\... Locate domain services for domain DC referral Query its DFSN domain services for the location of b root referral if not fail First component is non-domain: e.g. \\server\b\c\... Query DFSN on the server as to whether b is a namespace root referral if not pass it over for normal resolution (plain SMB, DAV, NFS, etc.) Resolve the Rest Tries to connect On success, done! On reaching a link, queries for the next servers link referral repeat Let s visualize the protocol

Domain Bootstrap At bootstrap, a DFSN client initializes against the DFSN domain services discover a home domain DC query the list of known domains this forms the list of \\domain path prefixes it will recognize Client DC Locator Domain Referral Request null Domain Referral Response Domain1 Domain2 Domain3 DS DC DFS

Discovering Domain Roots Now find \\domain1\root DC Locator DS DC referral get DCs for Domain1 Choose a DC DC1 Domain root referral get list of root targets for \\domain1\root Client Domain Referral Request Domain Referral Response Domain1 Domain2 DC Referral Request Domain3 domain1 DC Referral Response DC1 DC2 DC3Domain Root Referral Request \\domain1\root Domain Root Referral Response \\r1\root \\r2\root \\r3\root DC DFS DC1 DFS

Domain Root (cont.) Now complete opening \\domain1\root\...\link\...\finance.xlsx Choose a root target R1 Issue open request DC Locator Domain Referral Request Domain Referral Response DC Referral Request DC Referral Response DS DC DFS Issue link referral request Choose a link target T1 Issue open request Success Client Domain Root Referral Request Domain Root Referral Response \\r1\root \\r2\root \\r3\root Open Request \\r1\root\...\link\...\finance.xlsx STATUS_PATH_NOT_COVERED Link Referral Request \\r1\root\...\link\...\finance.xlsx Link Referral Response \\t1\share \\t2\share \\t3\share Open Request \\t1\share\...\finance.xlsx STATUS_SUCCESS DC1 DFS R1 Root DFS T1 Share

Discovering Standalone Roots For non-domain opens, the client first asks if it is DFS Get a root referral Confirmed - a DFS root Issue open request Issue link referral request Choose a link target T1 Client Root Referral Request \\srv\root Root Referral Response \\srv\root Open Request \\srv\root\...\link\...\finance.xlsx STATUS_PATH_NOT_COVERED Link Referral Request \\srv\root\...\link\...\finance.xlsx Link Referral Response \\t1\share \\t2\share \\t3\share Open Request \\t1\share\...\finance.xlsx STATUS_SUCCESS SRV Root DFS T1 Share Issue open request Success

Discovering Consolidation Roots The fact DFSN clients query for standalone roots and use the response is the basis of consolidation A consolidation root is a special namespace that DFSN uses to simulate a retired server, here OLD OLD will be consolidated in 4 steps share is transferred to NEW DNS record re-pointed to CON, the DFSN consolidation server root created on CON - #OLD links are created in \\con\#old that map each share which used to exist on OLD to their new locations, like this: \\con\#old\share \\new\share Client OLD Share CON #OLD DFS NEW

Consolidation Root (cont.) Now complete opening \\old\share\...\finance.xlsx Get a root referral DFS recognizes OLD is consolidated, and uses \\con\#old to determine where \\old\share should be redirected. Note that \\new\share is returned Issue open request Success NEW can host the shares of many retired servers Shares of a retired server can be spread among any number of servers Client OLD Root Referral Request \\old\share Root Referral Response \\new\share Open Request \\new\share\...\finance.xlsx STATUS_SUCCESS CON #O DFS NEW Share

DFS Client Caches Simplest way to visualize how your client is traversing namespaces too Three caches Home DC Domain Cache Referral Cache Home DC is refreshed on a 15 minute timer from the WorkStation Service triggers domain list refresh Caches can be seen via DFSUTIL dfsutil cache referral dfsutil cache domain.. and the explorer property page (DFS tab) Client Home DC Domain1 Domain2 Domain3 Client Domain Cache? DC1, DC2, DC3,?? Referral Cache \\domain1\root \\domain1\root\...\link \\srv\root \\srv\root\...\link \\o\share DC \\r1\root \\t1\share \\srv\root \\t1\share \\n\share

DFSN s Databases DFSN has had three database stores Standalone key/value tree in the registry Domain 2000 mode database marshaled as a binary blob attribute on an object in AD via LDAP Domain 2008 mode object tree in AD via LDAP Standalone is the original store Scales to 50,000 links per namespace HKLM\Software\Microsoft\Dfs\Roots\Standalone Domain Container CN=Dfs-Configuration,CN=System,DC=

Domain 2000 Mode Simple design Marshaled an image of what a standalone namespace would place in the registry Limited in scale AD caps blob attributes at 10MB results in about a 5MB/5000 link limit for these roots, for safety Updates rewrite the blob, leading to O(n 2 ) traffic on bulk operations Compounded with multiple root targets Led to a tension in the system design Standalone namespaces scale Domain namespaces are distributable Couldn t do both at the same time Deprecated with Windows 2008 CN=Namespace pkt attribute Link1 Link2 Link3

Domain 2008 mode Namespace root container is split into a generic anchor container a version-specific container holding root targets and namespace properties Links broken down into objects operations take constant time updates are incremental and search-based based on AD object USNs metadata is visualized in the schema Windows release infrastructure was updating 2,000 links/day with ~60,000 live around Windows 2008 RTM at full localization, the Windows build produces ~1000 chunks, each of which translates to an individual share/link DFSN is used to re-integrate the build into a single view 2008 functional level domain required Anchor Container CN=Namespace Root Container CN=Namespace CN=Link1 CN=Link2 CN=Link3

Internal Microsoft Examples \\products\public clustered standalone root hosts application installation images for the worldwide corporate network \\products\public\products\applications redirects to 34 replicas \\ntdev.corp.microsoft.com\release domain root distribution point for all Windows builds ~100 servers and low 100,000 s of physical shares in interlinked namespaces Many previous-generation Microsoft IT hosted file servers have been consolidated using DFSN s consolidation namespaces

Resources / Q & A http://www.microsoft.com/dfs http://www.microsoft.com/protocols [MS-DFSC] client access protocol [MS-DFSNM] server API and domain store Windows 2008: DFSN installs through the Server Manager, along with the admin console Vista SP1: Remote Server Administration Tools (RSAT) mailto: DanLo (at) microsoft.com Q & A

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information