5. Format each of the logical volumes with xfs (do NOT use xfs if you’re planning on shrinking volumes later!):
# mkfs.xfs /dev/tecmint_vg/vol01_docs # mkfs.xfs /dev/tecmint_vg/vol02_logs # mkfs.xfs /dev/tecmint_vg/vol03_homes
6. Finally, mount them:
# mount /dev/tecmint_vg/vol01_docs /mnt/docs # mount /dev/tecmint_vg/vol02_logs /mnt/logs # mount /dev/tecmint_vg/vol03_homes /mnt/homes
Removing Logical Volumes, Volume Group and Physical Volumes
7. Now we will reverse the LVM implementation and remove the LVs, the VG, and the PVs:
# lvremove /dev/tecmint_vg/vol01_docs
# lvremove /dev/tecmint_vg/vol02_logs
# lvremove /dev/tecmint_vg/vol03_homes
# vgremove /dev/tecmint_vg
# pvremove /dev/sd{b,c}1
8. Now let’s install SSM and we will see how to perform the above in ONLY 1 STEP!
# yum update && yum install system-storage-manager
We will use the same names and sizes as before:
# ssm create -s 3G -n vol01_docs -p tecmint_vg --fstype ext4 /mnt/docs /dev/sd{b,c}1
# ssm create -s 1G -n vol02_logs -p tecmint_vg --fstype ext4 /mnt/logs /dev/sd{b,c}1
# ssm create -n vol03_homes -p tecmint_vg --fstype ext4 /mnt/homes /dev/sd{b,c}1
Yes! SSM will let you:
- initialize block devices as physical volumes
- create a volume group
- create logical volumes
- format LVs, and
- mount them using only one command
9. We can now display the information about PVs, VGs, or LVs, respectively, as follows:
# ssm list dev # ssm list pool # ssm list vol
10. As we already know, one of the distinguishing features of LVM is the possibility to resize (expand or decrease) logical volumes without downtime.
Say we are running out of space in vol02_logs but have plenty of space in vol03_homes. We will resize vol03_homes to 4 GB and expand vol02_logs to use the remaining space:
# ssm resize -s 4G /dev/tecmint_vg/vol03_homes
Run ssm list pool again and take note of the free space in tecmint_vg:
Then do:
# ssm resize -s+1.99 /dev/tecmint_vg/vol02_logs
Note: that the plus sign after the -s flag indicates that the specified value should be added to the present value.
11. Removing logical volumes and volume groups is much easier with ssm as well. A simple,
# ssm remove tecmint_vg
will return a prompt asking you to confirm the deletion of the VG and the LVs it contains:
Managing Encrypted Volumes
SSM also provides system administrators with the capability of managing encryption for new or existing volumes. You will need the cryptsetup package installed first:
# yum update && yum install cryptsetup
Then issue the following command to create an encrypted volume. You will be prompted to enter a passphrase to maximize security:
# ssm create -s 3G -n vol01_docs -p tecmint_vg --fstype ext4 --encrypt luks /mnt/docs /dev/sd{b,c}1
# ssm create -s 1G -n vol02_logs -p tecmint_vg --fstype ext4 --encrypt luks /mnt/logs /dev/sd{b,c}1
# ssm create -n vol03_homes -p tecmint_vg --fstype ext4 --encrypt luks /mnt/homes /dev/sd{b,c}1
Our next task consists in adding the corresponding entries in /etc/fstab in order for those logical volumes to be available on boot. Rather than using the device identifier (/dev/something).
We will use each LV’s UUID (so that our devices will still be uniquely identified should we add other logical volumes or devices), which we can find out with the blkid utility:
# blkid -o value UUID /dev/tecmint_vg/vol01_docs # blkid -o value UUID /dev/tecmint_vg/vol02_logs # blkid -o value UUID /dev/tecmint_vg/vol03_homes
In our case:
Next, create the /etc/crypttab file with the following contents (change the UUIDs for the ones that apply to your setup):
docs UUID=ba77d113-f849-4ddf-8048-13860399fca8 none logs UUID=58f89c5a-f694-4443-83d6-2e83878e30e4 none homes UUID=92245af6-3f38-4e07-8dd8-787f4690d7ac none
And insert the following entries in /etc/fstab. Note that device_name (/dev/mapper/device_name) is the mapper identifier that appears in the first column of /etc/crypttab.
# Logical volume vol01_docs: /dev/mapper/docs /mnt/docs ext4 defaults 0 2 # Logical volume vol02_logs /dev/mapper/logs /mnt/logs ext4 defaults 0 2 # Logical volume vol03_homes /dev/mapper/homes /mnt/homes ext4 defaults 0 2
Now reboot (systemctl reboot) and you will be prompted to enter the passphrase for each LV. Afterwards you can confirm that the mount operation was successful by checking the corresponding mount points:
Conclusion
In this tutorial we have started to explore how to set up and configure system storage using classic volume management tools and SSM, which also integrates filesystem and encryption capabilities in one package. This makes SSM an invaluable tool for any sysadmin.
Let us know if you have any questions or comments – feel free to use the form below to get in touch with us!
Wow thanks a lot for making this tutorial, it is very help.
I have created encrypted LVM using ssm
ssm create -s 3G -n vol01_docs -p tecmint_vg –encrypt luks –fstype ext4 /mnt/docs /dev/sdb
updated /etc/crypttab file with UUID and after that made entry in fstab. When i reboot its not booting up going to maintenance mode
give root password for maintenance
type Control-D to continue).
fstab entry:
/dev/mapper/vol01_docs /mnt/docs ext4 defaults 0 2
Could you please let share you thoughts on the same issue. thanks in advance :)
@suresh,
Try using the UUID or device LABEL instead of the path to the logical volume. Do that in a regular mount command, and if it works change that in your /etc/fstab.
@Gabriel Cánepa
Thanks for your update, I used UUID and LABEL too but getting same problem ext4 file system is not found and went to maintenance mode..
why we don’t use fdisk or gdisk? why should use parted? is it because the curriculum of the exam?
@Rizal,
Feel free to use whatever tool you like :). I used parted because it seems to be the default tool suggested in the RHEL 7 documentation.
@Humayun,
Thank you for your kind words about this series! I am the author, and apologize for the delay in publishing the next article. But it should be online in a day or two. Please stay tuned and make sure you subscribe to Tecmint and you’ll receive a notice each time a new guide is published :).
I am following your tutorial and it is very helpful. I can see only until part-6 and it was on 7th April. Am I missing something (some form of subscription) or the next parts are delayed?