NetApp Cloud Volumes Service for AWS documentation Flashcards
What is CVS for AWS?
NetApp Cloud Volumes Service for AWS is a cloud native file service that provides NAS volumes over NFS and SMB with all-flash performance. This service enables any workload, including legacy applications, to run in the AWS cloud.
Benefits of using Cloud Volumes Service for AWS
Consistent high performance
Data protection without performance impacts
Instant cloning to support operations, development, and test workflows
Support for NFSv3 and SMB 2.1, 3.0, and 3.1.1 NAS protocols
Secure access to Linux and Windows Elastic Container Service (ECS) instances, with support including the following:
Amazon Linux 2, Red Hat Enterprise Linux 7.5, SLES 12 SP3, and Ubuntu 16.04 LTS
Windows Server 2008 R2, Windows Server 2012 R2, and Windows Server 2016
Fully managed service, therefore no need to configure or manage storage devices
Choice of bundled and pay-as-you-go pricing
Selecting the region?
Cloud Volumes Service is available in many AWS regions. You must specify the region where you want to use the service before you create a cloud volume.
Steps
Navigate to the NetApp Cloud Orchestrator site, and then log in with the email address that you provided during your subscription.
You should bookmark this URL. You will need to return to it later.
From the Available regions drop-down menu in the top panel, select the region that you want to work in.
This selection process is similar to how you change regions in the AWS console.
Selecting the region
Repeat the above step for each additional region when you want to create a cloud volume.
Note: The regions displayed in the Cloud Volumes user interface may use a different format than the region you selected in the AWS user interface. For example us-east-1 in the Cloud Volumes UI corresponds to the N.Virginia region selected in the AWS console. See Regions and Availability Zones for a mapping of the region names to make sure you select the same region in both interfaces.
What’s new August 2018
Ability to select data encryption for SMB shares
Ability to select the security styles of NTFS or UNIX for shares exported via both NFS and SMB
Display for NFS and SMB mount instructions for shares exported via both NFS and SMB
Support for multiple Active Directory servers
Support in the following AWS regions: us-east-1 (N. Virginia), us-west-1 (N. California), and us-west-2 (Oregon)
What’s new September 2018?
RESTful API support and online examples: Cloud Volumes APIs
Support in the following AWS regions: eu-central-1 (Frankfurt) and eu-west-1 (Ireland)
What’s new November 2018?
Support for SMB 2.1 protocol
Support in the following AWS regions: ap-northeast-1 (Tokyo), ap-southeast-2 (Sydney), and eu-west-2 (London)
What’s new December 2018?
NetApp Cloud Sync support is now available from the Cloud Volumes Service user interface in all supported regions
What’s new January 2019?
NetApp Cloud Volumes Service is now publicly available on the AWS Marketplace
Access from on-prem clients is now supported via AWS Direct Connect and Virtual Private Gateways
A service status webpage is now available at https://status.services.cloud.netapp.com/ so you can verify availability of the CVS service in each supported region
What’s new February 2019?
Beta release of Cloud Backup Service for US-WEST-2: Managing backups using Cloud Backup Service (beta for US-WEST-2)
What’s new March 2019?
Added support for Microsoft Active Directory in the AWS Cloud (AWS Managed Microsoft AD) for SMB cloud volumes.
The control plane for us-east-1 and us-west-1 now have their own UI URL and API endpoint. Previously these regions shared the same control plane.
Sample Python scripts have been added for RESTful API support: Cloud Volumes APIs
What’s new July 2019?
Creating a volume from a snapshot is now rapid, and the volume is available within seconds regardless of the amount of data in the parent volume.
The user interface now displays the used capacity per volume.
The API has been updated to report used capacity, and total inodes and used inodes.
The API has been updated to use the same service levels names as the user interface (Standard, Premium, and Extreme).
The sample Python scripts have been updated to match the updated APIs.
What’s new August 2019?
Added sample Python scripts for Active Directory functions (Cloud Volumes APIs).
What are the prerequisites for Cloud Volumes Service for AWS?
You must have subscribed to Cloud Volumes Service for AWS before you can perform the Cloud Volumes tasks that are described in this documentation. The subscription process includes the initial setup and configuration that are required for using the service.
What do you need setup to create a CVS Volume?
You create cloud volumes from the NetApp Cloud Orchestrator site.
Your AWS environment must meet certain requirements before you can create your first cloud volume. For each AWS region where you plan to deploy cloud volumes, you must have a:
Virtual Private Cloud (VPC)
Virtual Private Gateway (VGW) that is connected to your VPC
Subnet for the VPC
Routes defined that include the network on which cloud volumes will run
Optionally, a Direct Connect Gateway
You must have the following information available when creating your first cloud volume in a region:
AWS account ID: A 12-digit Amazon account identifier with no dashes.
Classless Inter-Domain Routing (CIDR) Block: An unused IPv4 CIDR block. The network must be a /28, and it must also fall within the ranges reserved for private networks (RFC 1918). Do not choose a network that overlaps your VPC CIDR allocations.
Autonomous System Number (ASN): When using a Virtual Private Gateway, use that ASN. When using a Direct Connect Gateway, use that ASN.
You must have selected the correct region where you want to use the service. See Selecting the region.
If you have not configured the required AWS networking components, see the NetApp Cloud Volumes Service for AWS Account Setup guide for details.
Note: When planning to create an SMB volume, you must have a Windows Active Directory server available to which you can connect. You will enter this information when creating the volume. Also, make sure that the Admin user is able to create a machine account in the Organizational unit (OU) path specified.
Creating a volume: Enter volume details
Complete the fields at the top of the Create Volume page to define the volume name, size, service level, and more.
After you have logged in to the NetApp Cloud Orchestrator site with the email address that you provided during your subscription, and you have selected the region, click the Create new volume button.
Create Volume page
From the Create Volume page, select NFS, SMB, or Dual-protocol as the protocol for the volume you want to create.
In the Name field, specify the name you want to use for the volume.
In the Region field, select the AWS region where you want to create the volume. This region must match the region you configured on AWS.
In the Timezone field, select your time zone.
In the Volume path field, specify the path you want to use or accept the automatically generated path.
(Optional) In the Create from snapshot field, select the name of an existing snapshot that will be used to create a volume.
In the Service level field, select the level of performance for the volume: Standard, Premium, or Extreme.
See Selecting the appropriate service level and allocated capacity for details.
In the Allocated capacity field, select the size of the volume.
Selecting the appropriate service level and allocated capacity
If you selected Dual-protocol, you can select the security style in the Security style field by selecting NTFS or UNIX from the drop-down menu.
Security styles affect the file permission type used and how permissions can be modified.
UNIX uses NFSv3 mode bits, and only NFS clients can modify permissions.
NTFS uses NTFS ACLs, and only SMB clients can modify permissions.
Creating a volume: Enter network details (one-time setting per AWS region)
If this is the first time you have created a cloud volume in this AWS region, the Network section is displayed so you can connect your Cloud Volumes account to your AWS account:
In the CIDR (IPv4) field, enter the desired IPv4 range for the region. The network must be a /28. The network must also fall within the ranges reserved for private networks (RFC 1918). Do not choose a network that overlaps your VPC CIDR allocations.
In the Autonomous System Number (ASN) field, enter the ASN. When using a VGW in your AWS configuration, use that ASN. When using a Direct Connect Gateway, use that ASN.
In the AWS account ID field, enter your 12-digit Amazon account identifier with no dashes.
Configure network settings
Creating a volume: Enter export policy rules (optional)
If you selected NFS or Dual-protocol, you can create an export policy in the Export policy section to identify the clients that can access the volume:
In the Allowed clients field, specify the allowed clients by using an IP address or Classless Inter-Domain Routing (CIDR).
In the Access field, select Read & Write or Read only.
Add export policy rule
Click + Add export policy rule if you want to define additional export policy rules.
Creating a volume: Enable data encryption (optional)
If you selected SMB or Dual-protocol, you can enable SMB session encryption by checking the box for the Enable SMB3 Protocol Encryption field.
Note: Do not enable encryption if SMB 2.1 clients need to mount the volume.