| title | Configure multiple-subnet availability group & FCI (Linux) |
|---|---|
| description | Learn to configure multiple-subnet Always On availability groups and failover cluster instances (FCI) for SQL Server on Linux. |
| ms.custom | seo-lt-2019 |
| author | MikeRayMSFT |
| ms.author | mikeray |
| ms.reviewer | VanMSFT |
| ms.date | 07/28/2020 |
| ms.topic | conceptual |
| ms.prod | sql |
| ms.technology | linux |
[!INCLUDE SQL Server - Linux]
When an Always On Availability Group (AG) or failover cluster instance (FCI) spans more than one site, each site usually has its own networking. This often means that each site has its own IP addressing. For example, Site A's addresses start with 192.168.1.x and Site B's addresses start with 192.168.2.x, where x is the part of the IP address that is unique to the server. Without some sort of routing in place at the networking layer, these servers will not be able to communicate with each other. There are two ways to handle this scenario: set up a network that bridges the two different subnets, known as a VLAN, or configure routing between the subnets.
Prerequisite: For a VLAN-based solution, each server participating in an AG or FCI needs two network cards (NICs) for proper availability (a dual port NIC would be a single point of failure on a physical server), so that it can be assigned IP addresses on its native subnet as well as one on the VLAN. This is in addition to any other network needs, such as iSCSI, which also needs its own network.
The IP address creation for the AG or FCI is done on the VLAN. In the following example, the VLAN has a subnet of 192.168.3.x, so the IP address created for the AG or FCI is 192.168.3.104. Nothing additional needs to be configured, since there is a single IP address assigned to the AG or FCI.
In the Windows world, a Windows Server Failover Cluster (WSFC) natively supports multiple subnets and handles multiple IP addresses via an OR dependency on the IP address. On Linux, there is no OR dependency, but there is a way to achieve a proper multi-subnet natively with Pacemaker, as shown by the following. You cannot do this by simply using the normal Pacemaker command line to modify a resource. You need to modify the cluster information base (CIB). The CIB is an XML file with the Pacemaker configuration.
-
Export the CIB.
Red Hat Enterprise Linux (RHEL) and Ubuntu
sudo pcs cluster cib <filename>
SUSE Linux Enterprise Server (SLES)
sudo cibadmin -Q > <filename>
Where filename is the name you want to call the CIB.
-
Edit the file that was generated. Look for the
<resources>section. You will see the various resources that were created for the AG or FCI. Find the one associated with the IP address. Add a<instance attributes>section with the information for the second IP address either above or below the existing one, but before<operations>. It is similar to the following syntax:<instance attributes id="<NameForAttribute>"> <nvpair id="<NameForIP>" name="ip" value="<IPAddress>"/> </instance attributes>
where NameForAttribute is the unique name for this attribute, NameForIP is the name associated with the IP address, IPAddress is the IP address for the second subnet.
The following shows an example.
<instance attributes id="virtualip-instance_attributes"> <nvpair id="virtualip-instance_attributes-ip" name="ip" value="192.168.1.102"/> </instance attributes>
By default, there is only one <instance/> in the CIB XML file exported. Let's say there are two subnets, you need to have two <instance/> entries. Here is an example of entries for two subnets
<instance attributes id="virtualip-instance_attributes1"> <rule id="Subnet1-IP" score="INFINITY" boolean-op="or"> <expression id="Subnet1-Node1" attribute="#uname" operation="eq" value="Node1" /> <expression id="Subnet1-Node2" attribute="#uname" operation="eq" value="Node2" /> </rule> <nvpair id="IP-In-Subnet1" name="ip" value="192.168.1.102"/> </instance attributes> <instance attributes id="virtualip-instance_attributes2"> <rule id="Subnet2-IP" score="INFINITY"> <expression id="Subnet2-Node1" attribute="#uname" operation="eq" value="Node3" /> </rule> <nvpair id="IP-In-Subnet2" name="ip" value="192.168.2.102"/> </instance attributes>
The 'boolean-op="or"' is used when the subnet has more than one server.
-
Import the modified CIB and reconfigure Pacemaker.
RHEL/Ubuntu
sudo pcs cluster cib-push <filename>
SLES
sudo cibadmin -R -x <filename>
where filename is the name of the CIB file with the modified IP address information.
-
After the CIB is successfully applied with the updated configuration, ping the DNS name associated with the IP address resource in Pacemaker. It should reflect the IP address associated with the subnet currently hosting the AG or FCI.
-
Fail the AG or FCI to the other subnet.
-
After the AG or FCI is fully online, ping the DNS name associated with the IP address. It should reflect the IP address in the second subnet.
-
If desired, fail the AG or FCI back to the original subnet.
Here is a CSS post showing how to configure the CIB for three subnets, please review for detail: Configure multiple-subnet AlwaysOn Availability Group by modifying CIB.