In this section, you will create a FSx for Lustre file system and expose it as a resource in Kubernetes to be used by your application pods.
To begin, you will deploy The FSx for Lustre Container Storage Interface (CSI) driver. It provides a CSI interface that allows Amazon EKS clusters to manage the lifecycle of FSx for Lustre file systems.
Then, you will create a Kubernetes StorageClass for FSx for Lustre. A Kubernetes StorageClass is a Kubernetes storage mechanism that lets you provision persistent volumes (PV) in a Kubernetes cluster and allows pods to dynamically request the specific type of storage they need.
To finish, you will create a persistent volume claim (PVC) using the StorageClass created previously, which will dynamically provision an FSx for Lustre persistent volume (PV). A PVC is a claim of storage capacity from a persistent volume and is a resource that can be mounted into pods.
The following command deploys the FSx Container Storage Interface driver to your cluster:
kubectl apply -k "github.com/kubernetes-sigs/aws-fsx-csi-driver/deploy/kubernetes/overlays/stable/?ref=release-0.8"
Create a security group that allows TCP traffic on port 988 for FSx
SECURITY_GROUP_ID=`aws eks describe-cluster --name ${EKS_CLUSTER_NAME} --query cluster.resourcesVpcConfig.clusterSecurityGroupId --region ${AWS_REGION}`
echo $SECURITY_GROUP_ID
SUBNET_ID=`aws eks describe-nodegroup --cluster-name ${EKS_CLUSTER_NAME} --nodegroup-name "hpc" --query nodegroup.subnets --region ${AWS_REGION} --output text`
echo $SUBNET_ID
Execute the following snippet to generate the storage class manifest (fsx-storage-class.yaml) and then apply it to the cluster
cat > ~/environment/fsx-storage-class.yaml << EOF
kind: StorageClass
apiVersion: storage.k8s.io/v1
metadata:
name: fsx-sc
provisioner: fsx.csi.aws.com
parameters:
subnetId: ${SUBNET_ID}
securityGroupIds: ${SECURITY_GROUP_ID}
deploymentType: SCRATCH_2
storageType: SSD
EOF
kubectl apply -f ~/environment/fsx-storage-class.yaml
To verify that the storage class is created successfully, execute:
kubectl get storageclass
You should see a list, similar to the following:
NAME PROVISIONER RECLAIMPOLICY VOLUMEBINDINGMODE ALLOWVOLUMEEXPANSION AGE
fsx-sc fsx.csi.aws.com Delete Immediate false 9s
gp2 (default) kubernetes.io/aws-ebs Delete WaitForFirstConsumer false 16h
Copy and paste the code below to create a persistent volume claim manifest into a file named fsx-pvc.yaml:
cat > ~/environment/fsx-pvc.yaml << EOF
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: fsx-pvc
namespace: gromacs
spec:
accessModes:
- ReadWriteMany
storageClassName: fsx-sc
resources:
requests:
storage: 1200Gi
EOF
Create a namespace gromacs in your cluster and a persistent volume claim fsx-pvc in this namespace, using the fsx-sc storage class. This dynamically creates an FSx for Lustre persistent volume. Creation of the volume is expected to take 6-8 minutes.
kubectl create namespace gromacs
kubectl apply -f ~/environment/fsx-pvc.yaml
Select the persistent volume claim to check its status
kubectl -n gromacs get pvc fsx-pvc
While the persistent volume is provisioning, you should see output like the following:
NAME STATUS VOLUME CAPACITY ACCESS MODES STORAGECLASS AGE
fsx-pvc Pending fsx-sc 2m39s
Describe the FSx file systems in your account to see the current status
aws fsx describe-file-systems --region ${AWS_REGION}
You should see output like the following:
{
"FileSystems": [
{
"VpcId": "vpc-09e19ec07fd43d433",
"LustreConfiguration": {
"CopyTagsToBackups": false,
"WeeklyMaintenanceStartTime": "7:07:30",
"DataCompressionType": "NONE",
"MountName": "fsx",
"DeploymentType": "SCRATCH_2"
},
"Tags": [
{
"Value": "pvc-159049a3-d25d-465f-ad7e-3e0799756fce",
"Key": "CSIVolumeName"
}
],
"StorageType": "SSD",
"SubnetIds": [
"subnet-07a7858f836ad4bb4"
],
"FileSystemType": "LUSTRE",
"CreationTime": 1664481419.438,
"ResourceARN": "arn:aws:fsx:us-east-2:111122223333:file-system/fs-0a983bda1fd46d2f7",
"StorageCapacity": 1200,
"NetworkInterfaceIds": [
"eni-04b75f9deb999568f",
"eni-0c4695b00d3033f2c"
],
"FileSystemId": "fs-0a983bda1fd46d2f7",
"DNSName": "fs-0a983bda1fd46d2f7.fsx.us-east-2.amazonaws.com",
"OwnerId": "944270628268",
"Lifecycle": "CREATING"
}
]
}
The Lifecycle field indicates the current status. It is expected that the status will be CREATING for about 7 minutes. When the provisioning is complete, the status will change to AVAILABLE.
To save time, you can proceed with the next three steps of the tutorial as they do not require the FSx volume to be available. Please come back to this step and execute the command below to ensure the persistent volume claim is bound to the persistent volume before you run the Gromacs MPI job.
When the FSx volume becomes available, the status of the persistent volume claim in Kubernetes will change to Bound
kubectl -n gromacs get pvc fsx-pvc
Output:
NAME STATUS VOLUME CAPACITY ACCESS MODES STORAGECLASS AGE
fsx-pvc Bound pvc-159049a3-d25d-465f-ad7e-3e0799756fce 1200Gi RWX fsx-sc 7m45s
The Bound status indicates that the persistent volume claim is successfully bound to the persistent FSx for Lustre volume and is ready to be mounted by pods.