Commit 9e0cf1bd authored by James Ramsay's avatar James Ramsay Committed by Achilleas Pipinellis

Improve geo docs based on Sid demo

parent 7fb38825
...@@ -144,7 +144,7 @@ If you installed GitLab using the Omnibus packages (highly recommended): ...@@ -144,7 +144,7 @@ If you installed GitLab using the Omnibus packages (highly recommended):
1. [Install GitLab Enterprise Edition][install-ee] on the server that will serve 1. [Install GitLab Enterprise Edition][install-ee] on the server that will serve
as the **secondary** Geo node. Do not login or set up anything else in the as the **secondary** Geo node. Do not login or set up anything else in the
secondary node for the moment. secondary node for the moment.
1. [Upload the GitLab License](../user/admin_area/license.md) to the **primary** Geo Node to unlock GitLab Geo. 1. [Upload the GitLab License](../user/admin_area/license.md) on the **primary** Geo Node to unlock GitLab Geo.
1. [Setup the database replication](database.md) (`primary (read-write) <-> secondary (read-only)` topology). 1. [Setup the database replication](database.md) (`primary (read-write) <-> secondary (read-only)` topology).
1. [Configure SSH authorizations to use the database](ssh.md) 1. [Configure SSH authorizations to use the database](ssh.md)
1. [Configure GitLab](configuration.md) to set the primary and secondary nodes. 1. [Configure GitLab](configuration.md) to set the primary and secondary nodes.
...@@ -160,7 +160,7 @@ If you installed GitLab from source: ...@@ -160,7 +160,7 @@ If you installed GitLab from source:
1. [Install GitLab Enterprise Edition][install-ee-source] on the server that 1. [Install GitLab Enterprise Edition][install-ee-source] on the server that
will serve as the **secondary** Geo node. Do not login or set up anything will serve as the **secondary** Geo node. Do not login or set up anything
else in the secondary node for the moment. else in the secondary node for the moment.
1. [Upload the GitLab License](../user/admin_area/license.md) you purchased for GitLab Enterprise Edition to unlock GitLab Geo. 1. [Upload the GitLab License](../user/admin_area/license.md) on the **primary** Geo Node to unlock GitLab Geo.
1. [Setup the database replication](database_source.md) (`primary (read-write) <-> secondary (read-only)` topology). 1. [Setup the database replication](database_source.md) (`primary (read-write) <-> secondary (read-only)` topology).
1. [Configure SSH authorizations to use the database](ssh.md) 1. [Configure SSH authorizations to use the database](ssh.md)
1. [Configure GitLab](configuration_source.md) to set the primary and secondary 1. [Configure GitLab](configuration_source.md) to set the primary and secondary
......
...@@ -7,19 +7,7 @@ from source**](configuration_source.md) guide. ...@@ -7,19 +7,7 @@ from source**](configuration_source.md) guide.
>**Note:** >**Note:**
Stages of the setup process must be completed in the documented order. Stages of the setup process must be completed in the documented order.
Before attempting the steps in this stage, complete all prior stages. Before attempting the steps in this stage, [complete all prior stages][toc].
1. [Install GitLab Enterprise Edition][install-ee] on the server that will serve
as the **secondary** Geo node. Do not login or set up anything else in the
secondary node for the moment.
1. [Upload the GitLab License](../user/admin_area/license.md) to the **primary** Geo Node to unlock GitLab Geo.
1. [Setup the database replication](database.md) (`primary (read-write) <-> secondary (read-only)` topology).
1. [Configure SSH authorizations to use the database](ssh.md)
1. **Configure GitLab to set the primary and secondary nodes.**
1. Optional: [Configure a secondary LDAP server](../administration/auth/ldap.md) for the secondary.
1. [Follow the after setup steps](after_setup.md).
[install-ee]: https://about.gitlab.com/downloads-ee/ "GitLab Enterprise Edition Omnibus packages downloads page"
This is the final step you need to follow in order to setup a Geo node. This is the final step you need to follow in order to setup a Geo node.
...@@ -80,11 +68,11 @@ sensitive data in the database. Any secondary node must have the ...@@ -80,11 +68,11 @@ sensitive data in the database. Any secondary node must have the
sudo -i sudo -i
``` ```
1. Add the following to /etc/gitlab/gitlab.rb, replacing `encryption-key` with the output 1. Add the following to `/etc/gitlab/gitlab.rb`, replacing `encryption-key` with the output
of the previous command: of the previous command:
```ruby ```ruby
gitlab_rails['db_key_base'] = "encryption-key" gitlab_rails['db_key_base'] = 'encryption-key'
``` ```
1. Reconfigure the secondary node for the change to take effect: 1. Reconfigure the secondary node for the change to take effect:
...@@ -221,3 +209,5 @@ See the [updating the Geo nodes document](updating_the_geo_nodes.md). ...@@ -221,3 +209,5 @@ See the [updating the Geo nodes document](updating_the_geo_nodes.md).
## Troubleshooting ## Troubleshooting
See the [troubleshooting document](troubleshooting.md). See the [troubleshooting document](troubleshooting.md).
[toc]: README.md#using-omnibus-gitlab
...@@ -7,18 +7,7 @@ using the Omnibus GitLab packages, follow the ...@@ -7,18 +7,7 @@ using the Omnibus GitLab packages, follow the
>**Note:** >**Note:**
Stages of the setup process must be completed in the documented order. Stages of the setup process must be completed in the documented order.
Before attempting the steps in this stage, complete all prior stages. Before attempting the steps in this stage, [complete all prior stages][toc].
1. [Install GitLab Enterprise Edition][install-ee-source] on the server that
will serve as the **secondary** Geo node. Do not login or set up anything
else in the secondary node for the moment.
1. [Upload the GitLab License](../user/admin_area/license.md) you purchased for GitLab Enterprise Edition to unlock GitLab Geo.
1. [Setup the database replication](database_source.md) (`primary (read-write) <-> secondary (read-only)` topology).
1. [Configure SSH authorizations to use the database](ssh.md)
1. **Configure GitLab to set the primary and secondary nodes.**
1. [Follow the after setup steps](after_setup.md).
[install-ee-source]: https://docs.gitlab.com/ee/install/installation.html "GitLab Enterprise Edition installation from source"
This is the final step you need to follow in order to setup a Geo node. This is the final step you need to follow in order to setup a Geo node.
...@@ -187,3 +176,5 @@ Read [Replicating wikis and repositories over SSH](configuration.md#replicating- ...@@ -187,3 +176,5 @@ Read [Replicating wikis and repositories over SSH](configuration.md#replicating-
## Troubleshooting ## Troubleshooting
Read the [troubleshooting document](troubleshooting.md). Read the [troubleshooting document](troubleshooting.md).
[toc]: README.md#using-gitlab-installed-from-source
...@@ -7,19 +7,7 @@ from source, follow the ...@@ -7,19 +7,7 @@ from source, follow the
>**Note:** >**Note:**
Stages of the setup process must be completed in the documented order. Stages of the setup process must be completed in the documented order.
Before attempting the steps in this stage, complete all prior stages. Before attempting the steps in this stage, [complete all prior stages][toc].
1. [Install GitLab Enterprise Edition][install-ee] on the server that will serve
as the **secondary** Geo node. Do not login or set up anything else in the
secondary node for the moment.
1. [Upload the GitLab License](../user/admin_area/license.md) to the **primary** Geo Node to unlock GitLab Geo.
1. **Setup the database replication** (`primary (read-write) <-> secondary (read-only)` topology).
1. [Configure SSH authorizations to use the database](ssh.md)
1. [Configure GitLab](configuration.md) to set the primary and secondary nodes.
1. Optional: [Configure a secondary LDAP server](../administration/auth/ldap.md) for the secondary. See [notes on LDAP](#ldap).
1. [Follow the after setup steps](after_setup.md).
[install-ee]: https://about.gitlab.com/downloads-ee/ "GitLab Enterprise Edition Omnibus packages downloads page"
This document describes the minimal steps you have to take in order to This document describes the minimal steps you have to take in order to
replicate your GitLab database into another server. You may have to change replicate your GitLab database into another server. You may have to change
...@@ -79,7 +67,7 @@ will not be able to perform all necessary configuration steps. Refer to ...@@ -79,7 +67,7 @@ will not be able to perform all necessary configuration steps. Refer to
This command will use your defined `external_url` in `/etc/gitlab/gitlab.rb`. This command will use your defined `external_url` in `/etc/gitlab/gitlab.rb`.
1. Omnibus GitLab has already a replication user called `gitlab_replicator`. 1. Omnibus GitLab already has a replication user called `gitlab_replicator`.
You must set its password manually. You will be prompted to enter a You must set its password manually. You will be prompted to enter a
password: password:
...@@ -165,7 +153,7 @@ will not be able to perform all necessary configuration steps. Refer to ...@@ -165,7 +153,7 @@ will not be able to perform all necessary configuration steps. Refer to
```ruby ```ruby
geo_primary_role['enable'] = true geo_primary_role['enable'] = true
postgresql['listen_address'] = "1.2.3.4" postgresql['listen_address'] = '1.2.3.4'
postgresql['trust_auth_cidr_addresses'] = ['127.0.0.1/32','1.2.3.4/32'] postgresql['trust_auth_cidr_addresses'] = ['127.0.0.1/32','1.2.3.4/32']
postgresql['md5_auth_cidr_addresses'] = ['5.6.7.8/32'] postgresql['md5_auth_cidr_addresses'] = ['5.6.7.8/32']
# New for 9.4: Set this to be the number of Geo secondary nodes you have # New for 9.4: Set this to be the number of Geo secondary nodes you have
...@@ -214,7 +202,7 @@ will not be able to perform all necessary configuration steps. Refer to ...@@ -214,7 +202,7 @@ will not be able to perform all necessary configuration steps. Refer to
```ruby ```ruby
# Example configuration using internal IPs for a cloud configuration # Example configuration using internal IPs for a cloud configuration
geo_primary_role['enable'] = true geo_primary_role['enable'] = true
postgresql['listen_address'] = "10.1.5.3" postgresql['listen_address'] = '10.1.5.3'
postgresql['trust_auth_cidr_addresses'] = ['127.0.0.1/32','10.1.5.3/32'] postgresql['trust_auth_cidr_addresses'] = ['127.0.0.1/32','10.1.5.3/32']
postgresql['md5_auth_cidr_addresses'] = ['10.1.10.5/32'] postgresql['md5_auth_cidr_addresses'] = ['10.1.10.5/32']
postgresql['max_replication_slots'] = 1 # Number of Geo secondary nodes postgresql['max_replication_slots'] = 1 # Number of Geo secondary nodes
...@@ -237,16 +225,46 @@ will not be able to perform all necessary configuration steps. Refer to ...@@ -237,16 +225,46 @@ will not be able to perform all necessary configuration steps. Refer to
1. Check to make sure your firewall rules are set so that the secondary nodes 1. Check to make sure your firewall rules are set so that the secondary nodes
can access port `5432` on the primary node. can access port `5432` on the primary node.
1. Save the file and [reconfigure GitLab][] for the DB listen changes to take effect.
This will fail and is expected. 1. Save the file and [reconfigure GitLab][] for the database listen changes to
1. You will need to manually restart postgres `gitlab-ctl restart postgresql` until [Omnibus#2797](https://gitlab.com/gitlab-org/omnibus-gitlab/issues/2797) gets fixed. take effect.
1. You should now reconfigure again, and it should complete cleanly.
1. New for 9.4: Restart your primary PostgreSQL server to ensure the replication slot changes **This step will fail.** This is caused by
take effect (`sudo gitlab-ctl restart postgresql` for Omnibus-provided PostgreSQL). [Omnibus#2797](https://gitlab.com/gitlab-org/omnibus-gitlab/issues/2797).
Restart PostgreSQL:
```bash
gitlab-ctl restart postgresql
```
[Reconfigure GitLab][reconfigure GitLab] again. It should complete cleanly.
1. New for 9.4: Restart your primary PostgreSQL server to ensure the
replication slot changes take effect (`sudo gitlab-ctl restart postgresql`
for Omnibus-provided PostgreSQL).
1. Now that the PostgreSQL server is set up to accept remote connections, run 1. Now that the PostgreSQL server is set up to accept remote connections, run
`netstat -plnt` to make sure that PostgreSQL is listening on port `5432` to `netstat -plnt` to make sure that PostgreSQL is listening on port `5432` to
the server's public IP. the server's public IP.
1. Verify that clock synchronization is enabled.
>**Important:**
For Geo to work correctly, all nodes must have their clocks
synchronized. It is not required for all nodes to be set to the same time
zone, but when the respective times are converted to UTC time, the clocks
must be synchronized to within 60 seconds of each other.
If you are using Ubuntu, verify NTP sync is enabled:
```bash
timedatectl status | grep 'NTP synchronized'
```
Refer to your Linux distribution documentation to setup clock
synchronization. This can easily be done using any NTP-compatible daemon.
### Step 2. Add the secondary GitLab node ### Step 2. Add the secondary GitLab node
To prevent the secondary geo node trying to act as the primary once the To prevent the secondary geo node trying to act as the primary once the
...@@ -329,14 +347,22 @@ primary before the database is replicated. ...@@ -329,14 +347,22 @@ primary before the database is replicated.
1. [Reconfigure GitLab][] for the changes to take effect. 1. [Reconfigure GitLab][] for the changes to take effect.
1. Setup clock synchronization service in your Linux distro. 1. Verify that clock synchronization is enabled.
This can easily be done via any NTP-compatible daemon. For example,
here are [instructions for setting up NTP with Ubuntu](https://help.ubuntu.com/lts/serverguide/NTP.html). >**Important:**
For Geo to work correctly, all nodes must have their clocks
synchronized. It is not required for all nodes to be set to the same time
zone, but when the respective times are converted to UTC time, the clocks
must be synchronized to within 60 seconds of each other.
If you are using Ubuntu, verify NTP sync is enabled:
```bash
timedatectl status | grep 'NTP synchronized'
```
**IMPORTANT:** For Geo to work correctly, all nodes must be with their Refer to your Linux distribution documentation to setup clock
clocks synchronized. It is not required for all nodes to be set to the synchronization. This can easily be done using any NTP-compatible daemon.
same time zone, but when the respective times are converted to UTC time,
the clocks must be synchronized to within 60 seconds of each other.
### Step 4. Initiate the replication process ### Step 4. Initiate the replication process
...@@ -357,19 +383,19 @@ data before running `pg_basebackup`. ...@@ -357,19 +383,19 @@ data before running `pg_basebackup`.
sudo -i sudo -i
``` ```
1. New for 9.4: Choose a database-friendly name to use for your secondary to use as the 1. New for 9.4: Choose a database-friendly name to use for your secondary to
replication slot name. For example, if your domain is use as the replication slot name. For example, if your domain is
`geo-secondary.mydomain.com`, you may use `geo_secondary_my_domain_com` as `secondary.geo.example.com`, you may use `secondary_example` as the slot
the slot name. name.
1. Execute the command below to start a backup/restore and begin the replication: 1. Execute the command below to start a backup/restore and begin the replication:
``` ```
# Certificate and key currently used by GitLab # Certificate and key currently used by GitLab
gitlab-ctl replicate-geo-database --host=geo.primary.my.domain.com --slot-name=geo_secondary_my_domain_com gitlab-ctl replicate-geo-database --host=primary.geo.example.com --slot-name=secondary_example
# Self-signed certificate and key # Self-signed certificate and key
gitlab-ctl replicate-geo-database --host=1.2.3.4 --slot-name=geo_secondary_my_domain_com --sslmode=verify-ca gitlab-ctl replicate-geo-database --host=1.2.3.4 --slot-name=secondary_example --sslmode=verify-ca
``` ```
If PostgreSQL is listening on a non-standard port, add `--port=` as well. If PostgreSQL is listening on a non-standard port, add `--port=` as well.
...@@ -472,3 +498,4 @@ Read the [troubleshooting document](troubleshooting.md). ...@@ -472,3 +498,4 @@ Read the [troubleshooting document](troubleshooting.md).
[reconfigure GitLab]: ../administration/restart_gitlab.md#omnibus-gitlab-reconfigure [reconfigure GitLab]: ../administration/restart_gitlab.md#omnibus-gitlab-reconfigure
[external postgresql]: #external-postgresql-instances [external postgresql]: #external-postgresql-instances
[tracking]: database_source.md#enable-tracking-database-on-the-secondary-server [tracking]: database_source.md#enable-tracking-database-on-the-secondary-server
[toc]: README.md#using-omnibus-gitlab
...@@ -7,19 +7,7 @@ using the Omnibus GitLab packages, follow the ...@@ -7,19 +7,7 @@ using the Omnibus GitLab packages, follow the
>**Note:** >**Note:**
Stages of the setup process must be completed in the documented order. Stages of the setup process must be completed in the documented order.
Before attempting the steps in this stage, complete all prior stages. Before attempting the steps in this stage, [complete all prior stages][toc].
1. [Install GitLab Enterprise Edition][install-ee-source] on the server that
will serve as the **secondary** Geo node. Do not login or set up anything
else in the secondary node for the moment.
1. [Upload the GitLab License](../user/admin_area/license.md) you purchased for GitLab Enterprise Edition to unlock GitLab Geo.
1. **Setup the database replication topology** (`primary (read-write) <-> secondary (read-only)`)
1. [Configure SSH authorizations to use the database](ssh.md)
1. [Configure GitLab](configuration_source.md) to set the primary and secondary
nodes.
1. [Follow the after setup steps](after_setup.md).
[install-ee-source]: https://docs.gitlab.com/ee/install/installation.html "GitLab Enterprise Edition installation from source"
This document describes the minimal steps you have to take in order to This document describes the minimal steps you have to take in order to
replicate your GitLab database into another server. You may have to change replicate your GitLab database into another server. You may have to change
...@@ -197,16 +185,16 @@ The following guide assumes that: ...@@ -197,16 +185,16 @@ The following guide assumes that:
1. Choose a database-friendly name to use for your secondary to use as the 1. Choose a database-friendly name to use for your secondary to use as the
replication slot name. For example, if your domain is replication slot name. For example, if your domain is
`geo-secondary.mydomain.com`, you may use `geo_secondary_my_domain_com` as `secondary.geo.example.com`, you may use `secondary_example` as the slot
the slot name. name.
1. Create the replication slot on the primary: 1. Create the replication slot on the primary:
``` ```
$ sudo -u postgres psql -c "SELECT * FROM pg_create_physical_replication_slot('geo_secondary_my_domain');" $ sudo -u postgres psql -c "SELECT * FROM pg_create_physical_replication_slot('secondary_example');"
slot_name | xlog_position slot_name | xlog_position
-------------------------+--------------- ------------------+---------------
geo_secondary_my_domain | secondary_example |
(1 row) (1 row)
``` ```
...@@ -214,6 +202,23 @@ The following guide assumes that: ...@@ -214,6 +202,23 @@ The following guide assumes that:
`netstat -plnt` to make sure that PostgreSQL is listening to the server's `netstat -plnt` to make sure that PostgreSQL is listening to the server's
public IP. public IP.
1. Verify that clock synchronization is enabled.
>**Important:**
For Geo to work correctly, all nodes must have their clocks
synchronized. It is not required for all nodes to be set to the same time
zone, but when the respective times are converted to UTC time, the clocks
must be synchronized to within 60 seconds of each other.
If you are using Ubuntu, verify NTP sync is enabled:
```bash
timedatectl status | grep 'NTP synchronized'
```
Refer to your Linux distribution documentation to setup clock
synchronization. This can easily be done using any NTP-compatible daemon.
### Step 2. Add the secondary GitLab node ### Step 2. Add the secondary GitLab node
To prevent the secondary geo node trying to act as the primary once the To prevent the secondary geo node trying to act as the primary once the
...@@ -307,19 +312,27 @@ primary before the database is replicated. ...@@ -307,19 +312,27 @@ primary before the database is replicated.
#### Enable tracking database on the secondary server #### Enable tracking database on the secondary server
Geo secondary nodes use a tracking database to keep track of replication status and recover Geo secondary nodes use a tracking database to keep track of replication status
automatically from some replication issues. and recover automatically from some replication issues.
It is added in GitLab 9.1, and since GitLab 10.0 it is required. It is added in GitLab 9.1, and since GitLab 10.0 it is required.
> **IMPORTANT:** For this feature to work correctly, all nodes must be 1. Verify that clock synchronization is enabled.
with their clocks synchronized. It is not required for all nodes to be set to
the same time zone, but when the respective times are converted to UTC time, >**Important:**
the clocks must be synchronized to within 60 seconds of each other. For Geo to work correctly, all nodes must have their clocks
synchronized. It is not required for all nodes to be set to the same time
zone, but when the respective times are converted to UTC time, the clocks
must be synchronized to within 60 seconds of each other.
If you are using Ubuntu, verify NTP sync is enabled:
```bash
timedatectl status | grep 'NTP synchronized'
```
1. Setup clock synchronization service in your Linux distro. Refer to your Linux distribution documentation to setup clock
This can easily be done via any NTP-compatible daemon. For example, synchronization. This can easily be done using any NTP-compatible daemon.
here are [instructions for setting up NTP with Ubuntu](https://help.ubuntu.com/lts/serverguide/NTP.html).
1. Create `database_geo.yml` with the information of your secondary PostgreSQL 1. Create `database_geo.yml` with the information of your secondary PostgreSQL
database. Note that GitLab will set up another database instance separate database. Note that GitLab will set up another database instance separate
...@@ -466,3 +479,4 @@ Read the [troubleshooting document](troubleshooting.md). ...@@ -466,3 +479,4 @@ Read the [troubleshooting document](troubleshooting.md).
[pgback]: http://www.postgresql.org/docs/9.6/static/app-pgbasebackup.html [pgback]: http://www.postgresql.org/docs/9.6/static/app-pgbasebackup.html
[reconfigure GitLab]: ../administration/restart_gitlab.md#omnibus-gitlab-reconfigure [reconfigure GitLab]: ../administration/restart_gitlab.md#omnibus-gitlab-reconfigure
[toc]: README.md#using-gitlab-installed-from-source
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment