Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
G
gitlab-ce
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
1
Merge Requests
1
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
nexedi
gitlab-ce
Commits
f991babe
Commit
f991babe
authored
Dec 15, 2017
by
Ernst van Nierop
Committed by
Nick Thomas
Dec 15, 2017
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Simplify database replication instructions and make dryer
parent
8e70838c
Changes
2
Hide whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
108 additions
and
187 deletions
+108
-187
doc/gitlab-geo/database.md
doc/gitlab-geo/database.md
+71
-91
doc/gitlab-geo/database_source.md
doc/gitlab-geo/database_source.md
+37
-96
No files found.
doc/gitlab-geo/database.md
View file @
f991babe
...
@@ -6,76 +6,77 @@ from source, follow the
...
@@ -6,76 +6,77 @@ from source, follow the
[
**database replication for installations from source**
](
database_source.md
)
guide.
[
**database replication for installations from source**
](
database_source.md
)
guide.
>**Note:**
>**Note:**
Stages of the setup process must be completed in the documented order.
If your GitLab installation uses external PostgreSQL, the Omnibus roles
will not be able to perform all necessary configuration steps. Refer to the
section on
[
External PostreSQL
][
external postgresql
]
for additional instructions.
>**Note:**
The stages of the setup process must be completed in the documented order.
Before attempting the steps in this stage,
[
complete all prior stages
][
toc
]
.
Before attempting the steps in this stage,
[
complete all prior stages
][
toc
]
.
This document describes the minimal steps you have to take in order to
This document describes the minimal steps you have to take in order to
replicate your
GitLab database into another server. You may have to change
replicate your
primary GitLab database to a secondary node's database. You may
some values according to your database setup, how big it is, etc.
have to change
some values according to your database setup, how big it is, etc.
You are encouraged to first read through all the steps before executing them
You are encouraged to first read through all the steps before executing them
in your testing/production environment.
in your testing/production environment.
## PostgreSQL replication
## PostgreSQL replication
The GitLab primary node where the write operations happen will connect to
The GitLab primary node where the write operations happen will connect to
primary database server, and the secondary on
es which are read-only will
the primary database server, and the secondary nod
es which are read-only will
connect to
secondary database servers (which are read-only too
).
connect to
the secondary database servers (which are also read-only
).
>**Note:**
>**Note:**
In
many databases documentation you will
see "primary" being referenced as "master"
In
database documentation you may
see "primary" being referenced as "master"
and "secondary" as either "slave" or "standby" server (read-only).
and "secondary" as either "slave" or "standby" server (read-only).
We recommend using
[
PostgreSQL replication
We recommend using
[
PostgreSQL replication
slots
](
https://medium.com/@tk512/replication-slots-in-postgresql-b4b03d277c75
)
slots
](
https://medium.com/@tk512/replication-slots-in-postgresql-b4b03d277c75
)
to ensure the primary retains all the data necessary for the secondaries to
to ensure th
at th
e primary retains all the data necessary for the secondaries to
recover. See below for more details.
recover. See below for more details.
### Prerequisites
The following guide assumes that:
The following guide assumes that:
-
You are using PostgreSQL 9.6 or later which includes the
-
You are using Omnibus and therefore you are using PostgreSQL 9.6 or later
[
`pg_basebackup` tool
][
pgback
]
. If you are using Omnibus it includes the required
which includes the
[
`pg_basebackup` tool
][
pgback
]
.
PostgreSQL version for Geo.
-
You have a primary node already set up (the GitLab server you are
-
You have a primary server already set up (the GitLab server you are
replicating from), running Omnibus' PostgreSQL (or equivalent version), and
replicating from), running Omnibus' PostgreSQL (or equivalent version), and you
you have a new secondary server set up with the same versions of the OS,
have a new secondary server set up on the same OS and PostgreSQL version. Also
PostgreSQL, and GitLab on all nodes.
make sure the GitLab version is the same on all nodes.
-
The IP of the primary server for our examples will be
`1.2.3.4`
, whereas the
-
The IP of the primary server for our examples will be
`1.2.3.4`
, whereas the
secondary's IP will be
`5.6.7.8`
. Note that the primary and secondary servers
secondary's IP will be
`5.6.7.8`
. Note that the primary and secondary servers
**must**
be able to communicate over these addresses.
These IP addresses can
**must**
be able to communicate over these addresses.
More on this in the
either be public or private
.
guide below
.
If your GitLab installation is using external PostgreSQL, the Omnibus roles
will not be able to perform all necessary configuration steps. Refer to
[
External PostreSQL
][
external postgresql
]
for additional instructions.
### Step 1. Configure the primary server
### Step 1. Configure the primary server
1.
SSH into your GitLab
**primary**
server and login as root:
1.
SSH into your GitLab
**primary**
server and login as root:
```
```
bash
sudo -i
sudo -i
```
```
1.
Execute the command below to define the node as primary Geo node:
1.
Execute the command below to define the node as primary Geo node:
```
```
bash
gitlab-ctl set-geo-primary-node
gitlab-ctl set-geo-primary-node
```
```
This command will use your defined `external_url` in `/etc/gitlab/gitlab.rb`.
This command will use your defined `external_url` in `/etc/gitlab/gitlab.rb`.
1.
Omnibus GitLab already has a
replication user called
`gitlab_replicator`
.
1.
Omnibus GitLab already has a
[
replication user
](
https://wiki.postgresql.org/wiki/Streaming_Replication
)
You must set its password manually. You will be prompted to enter a
called
`gitlab_replicator`
. You must set the password for this user manually.
password:
You will be prompted to enter a
password:
```bash
```bash
gitlab-ctl set-replication-password
gitlab-ctl set-replication-password
```
```
This command will also read `postgresql['sql_replication_user']` Omnibus
This command will also read
the
`postgresql['sql_replication_user']` Omnibus
setting in case you have changed `gitlab_replicator` username to something
setting in case you have changed `gitlab_replicator` username to something
else.
else.
...
@@ -84,11 +85,11 @@ will not be able to perform all necessary configuration steps. Refer to
...
@@ -84,11 +85,11 @@ will not be able to perform all necessary configuration steps. Refer to
For security reasons, PostgreSQL does not listen on any network interfaces
For security reasons, PostgreSQL does not listen on any network interfaces
by default. However, GitLab Geo requires the secondary to be able to
by default. However, GitLab Geo requires the secondary to be able to
connect to the primary's database. For this reason, we need the address of
connect to the primary's database. For this reason, we need the address of
each node.
each node.
Note: For external PostgreSQL instances, see [additional instructions][external postgresql].
If you are using a cloud provider, you can lookup the addresses for each
If you are using a cloud provider, you can lookup the addresses for each
Geo node through
their management console. A table of terminology is
Geo node through
your cloud provider's management console. A table of common
provided below because terminology
varies between vendors.
terminology is provided below as it
varies between vendors.
| GitLab Terminology | Amazon Web Services | Google Cloud Platform |
| GitLab Terminology | Amazon Web Services | Google Cloud Platform |
|-----|-----|-----|-----|
|-----|-----|-----|-----|
...
@@ -126,7 +127,7 @@ will not be able to perform all necessary configuration steps. Refer to
...
@@ -126,7 +127,7 @@ will not be able to perform all necessary configuration steps. Refer to
Depending on your network configuration, the suggested addresses may not
Depending on your network configuration, the suggested addresses may not
be correct. If your primary and secondary connect over a local
be correct. If your primary and secondary connect over a local
area network, or a virtual network connecting availability zones like
area network, or a virtual network connecting availability zones like
Amazon's [VPC](https://aws.amazon.com/vpc/) of Google's [
VPC](https://cloud.google.com/vpc/)
[Amazon's VPC](https://aws.amazon.com/vpc/) or [Google's
VPC](https://cloud.google.com/vpc/)
you should use the secondary's private address for `postgresql['md5_auth_cidr_addresses']`.
you should use the secondary's private address for `postgresql['md5_auth_cidr_addresses']`.
Edit `/etc/gitlab/gitlab.rb` and add the following, replacing the IP
Edit `/etc/gitlab/gitlab.rb` and add the following, replacing the IP
...
@@ -163,8 +164,6 @@ will not be able to perform all necessary configuration steps. Refer to
...
@@ -163,8 +164,6 @@ will not be able to perform all necessary configuration steps. Refer to
gitlab_rails['auto_migrate'] = false
gitlab_rails['auto_migrate'] = false
```
```
For external PostgreSQL instances, [see additional instructions][external postgresql].
1.
Optional: If you want to add another secondary, the relevant setting would look like:
1.
Optional: If you want to add another secondary, the relevant setting would look like:
```ruby
```ruby
...
@@ -208,16 +207,13 @@ will not be able to perform all necessary configuration steps. Refer to
...
@@ -208,16 +207,13 @@ will not be able to perform all necessary configuration steps. Refer to
`netstat -plnt`
to make sure that PostgreSQL is listening on port
`5432`
to
`netstat -plnt`
to make sure that PostgreSQL is listening on port
`5432`
to
the primary server's private address.
the primary server's private address.
1.
Make a copy of the PostgreSQL
`server.crt`
file.
1.
A certificate was automatically generated when GitLab was reconfigured. This
will be used automatically to protect your PostgreSQL traffic from
A certificate was automatically generated when GitLab was reconfigured. This
eavesdroppers, but to protect against active ("man-in-the-middle") attackers,
will be used automatically to protect your PostgreSQL traffic from
the secondary needs a copy of the certificate. Make a copy of the PostgreSQL
eavesdroppers, but to protect against active ("man-in-the-middle") attackers,
`server.crt`
file on the primary node by running this command:
the secondary needs a copy of the certificate.
Run this command:
```
```
bash
cat ~gitlab-psql/data/server.crt
cat ~gitlab-psql/data/server.crt
```
```
...
@@ -233,7 +229,7 @@ will not be able to perform all necessary configuration steps. Refer to
...
@@ -233,7 +229,7 @@ will not be able to perform all necessary configuration steps. Refer to
zone, but when the respective times are converted to UTC time, the clocks
zone, but when the respective times are converted to UTC time, the clocks
must be synchronized to within 60 seconds of each other.
must be synchronized to within 60 seconds of each other.
If you are using Ubuntu, verify NTP sync is enabled
:
Verify NTP sync is enabled using
:
```bash
```bash
timedatectl status | grep 'NTP synchronized'
timedatectl status | grep 'NTP synchronized'
...
@@ -244,8 +240,8 @@ will not be able to perform all necessary configuration steps. Refer to
...
@@ -244,8 +240,8 @@ will not be able to perform all necessary configuration steps. Refer to
### Step 2. Add the secondary GitLab node
### Step 2. Add the secondary GitLab node
To prevent the secondary geo node trying to act as the primary once the
To prevent the secondary geo node
from
trying to act as the primary once the
database is replicated, the secondary geo node must be
configur
ed on the
database is replicated, the secondary geo node must be
add
ed on the
primary before the database is replicated.
primary before the database is replicated.
1.
Visit the
**primary**
node's
**Admin Area ➔ Geo Nodes**
1.
Visit the
**primary**
node's
**Admin Area ➔ Geo Nodes**
...
@@ -310,29 +306,23 @@ because we have not yet configured the secondary server. This is the next step.
...
@@ -310,29 +306,23 @@ because we have not yet configured the secondary server. This is the next step.
For external PostgreSQL instances, [see additional instructions][external postgresql].
For external PostgreSQL instances, [see additional instructions][external postgresql].
1.
[
Reconfigure GitLab
][]
for the changes to take effect.
1.
Reconfigure GitLab for the changes to take effect:
1.
Verify that clock synchronization is enabled.
```bash
gitlab-ctl reconfigure
>**Important:**
```
For Geo to work correctly, all nodes must have their clocks
synchronized. It is not required for all nodes to be set to the same time
zone, but when the respective times are converted to UTC time, the clocks
must be synchronized to within 60 seconds of each other.
If you are using Ubuntu, verify NTP sync is enabled
:
1.
Verify that clock synchronization is enabled, using
:
```bash
```bash
timedatectl status | grep 'NTP synchronized'
timedatectl status | grep 'NTP synchronized'
```
```
Refer to your Linux distribution documentation to setup clock
synchronization. This can easily be done using any NTP-compatible daemon.
### Step 4. Initiate the replication process
### Step 4. Initiate the replication process
Below we provide a script that connects to the primary server, replicates the
Below we provide a script that connects the database on the secondary node to
database and creates the needed files for replication.
the database on the primary node, replicates the database, and creates the
needed files for streaming replication.
The directories used are the defaults that are set up in Omnibus. If you have
The directories used are the defaults that are set up in Omnibus. If you have
changed any defaults or are using a source installation, configure it as you
changed any defaults or are using a source installation, configure it as you
...
@@ -353,46 +343,36 @@ data before running `pg_basebackup`.
...
@@ -353,46 +343,36 @@ data before running `pg_basebackup`.
`secondary.geo.example.com`
, you may use
`secondary_example`
as the slot
`secondary.geo.example.com`
, you may use
`secondary_example`
as the slot
name as shown in the commands below.
name as shown in the commands below.
1.
Execute the command below to start a backup/restore and begin the replication:
1.
Execute the command below to start a backup/restore and begin the replication
(various options that can be added to these commands are listed below):
```
```
bash
gitlab-ctl replicate-geo-database --slot-name=secondary_example --host=1.2.3.4
gitlab-ctl replicate-geo-database --slot-name=secondary_example --host=1.2.3.4
```
```
If PostgreSQL is listening on a non-standard port, add `--port=` as well.
If your database is too large to be transferred in 30 minutes, you will need
to increase the timeout, e.g., `--backup-timeout=3600` if you expect the
initial replication to take under an hour.
Pass `--sslmode=disable` to skip PostgreSQL TLS authentication altogether
(e.g., you know the network path is secure, or you are using a site-to-site
VPN). This is **not** safe over the public Internet!
You can read more details about each `sslmode` in the
[PostgreSQL documentation](https://www.postgresql.org/docs/9.6/static/libpq-ssl.html#LIBPQ-SSL-PROTECTION);
the instructions above are carefully written to ensure protection against
both passive eavesdroppers and active "man-in-the-middle" attackers.
When prompted, enter the password you set up for the `gitlab_replicator`
When prompted, enter the password you set up for the `gitlab_replicator`
user in the first step.
user in the first step.
New for 9.4: Change the `--slot-name` to the name of the replication slot
to be used on the primary database. The script will attempt to create the
replication slot automatically if it does not exist.
This command also takes a number of additional options. You can use `--help`
This command also takes a number of additional options. You can use `--help`
to list them all, but here are a couple of tips:
to list them all, but here are a couple of tips:
- If PostgreSQL is listening on a non-standard port, add `--port=` as well.
If you're setting up replication on a brand-new secondary that has no data,
- If your database is too large to be transferred in 30 minutes, you will need
you may want to pass `--no-wait --skip-backup` to speed up the process - but
to increase the timeout, e.g., `--backup-timeout=3600` if you expect the
be **certain** that you're running it against the right GitLab installation
initial replication to take under an hour.
first! It **will** cause data loss otherwise.
- Pass `--sslmode=disable` to skip PostgreSQL TLS authentication altogether
(e.g., you know the network path is secure, or you are using a site-to-site
If you're repurposing an old server into a Geo secondary, you'll need to
VPN). This is **not** safe over the public Internet!
add `--force` to the command line.
- You can read more details about each `sslmode` in the
[PostgreSQL documentation](https://www.postgresql.org/docs/9.6/static/libpq-ssl.html#LIBPQ-SSL-PROTECTION);
The replication process is now over.
the instructions above are carefully written to ensure protection against
both passive eavesdroppers and active "man-in-the-middle" attackers.
- Change the `--slot-name` to the name of the replication slot
to be used on the primary database. The script will attempt to create the
replication slot automatically if it does not exist.
- If you're repurposing an old server into a Geo secondary, you'll need to
add `--force` to the command line.
The replication process is now complete.
### External PostgreSQL instances
### External PostgreSQL instances
...
@@ -446,7 +426,7 @@ instructions for [enabling tracking database on the secondary server][tracking].
...
@@ -446,7 +426,7 @@ instructions for [enabling tracking database on the secondary server][tracking].
## MySQL replication
## MySQL replication
We don't support MySQL replication
for GitLab Geo.
MySQL replication is not supported
for GitLab Geo.
## Troubleshooting
## Troubleshooting
...
...
doc/gitlab-geo/database_source.md
View file @
f991babe
...
@@ -6,12 +6,12 @@ using the Omnibus GitLab packages, follow the
...
@@ -6,12 +6,12 @@ using the Omnibus GitLab packages, follow the
[
**database replication for Omnibus GitLab**
](
database.md
)
guide.
[
**database replication for Omnibus GitLab**
](
database.md
)
guide.
>**Note:**
>**Note:**
S
tages of the setup process must be completed in the documented order.
The s
tages of the setup process must be completed in the documented order.
Before attempting the steps in this stage,
[
complete all prior stages
][
toc
]
.
Before attempting the steps in this stage,
[
complete all prior stages
][
toc
]
.
This document describes the minimal steps you have to take in order to
This document describes the minimal steps you have to take in order to
replicate your
GitLab database into another server. You may have to change
replicate your
primary GitLab database to a secondary node's database. You may
some values according to your database setup, how big it is, etc.
have to change
some values according to your database setup, how big it is, etc.
You are encouraged to first read through all the steps before executing them
You are encouraged to first read through all the steps before executing them
in your testing/production environment.
in your testing/production environment.
...
@@ -26,19 +26,19 @@ connect to secondary database servers (which are read-only too).
...
@@ -26,19 +26,19 @@ connect to secondary database servers (which are read-only too).
In many databases documentation you will see "primary" being referenced as "master"
In many databases documentation you will see "primary" being referenced as "master"
and "secondary" as either "slave" or "standby" server (read-only).
and "secondary" as either "slave" or "standby" server (read-only).
Since GitLab 9.4:
We recommend using
[
PostgreSQL replication
We recommend using
[
PostgreSQL replication
slots
](
https://medium.com/@tk512/replication-slots-in-postgresql-b4b03d277c75
)
slots
](
https://medium.com/@tk512/replication-slots-in-postgresql-b4b03d277c75
)
to ensure the primary retains all the data necessary for the secondaries to
to ensure the primary retains all the data necessary for the secondaries to
recover. See below for more details.
recover. See below for more details.
### Prerequisites
The following guide assumes that:
The following guide assumes that:
-
You are using PostgreSQL 9.6 or later which includes the
[
`pg_basebackup` tool
][
pgback
]
.
-
You are using PostgreSQL 9.6 or later
-
You have a primary server already set up (the GitLab server you are
which includes the
[
`pg_basebackup` tool
][
pgback
]
.
replicating from), and you have a new secondary server set up on the same OS
-
You have a primary node already set up (the GitLab server you are
and PostgreSQL version. Also make sure the GitLab version is the same on all nodes.
replicating from), running PostgreSQL 9.6 or later, and
you have a new secondary server set up with the same versions of the OS,
PostgreSQL, and GitLab on all nodes.
-
The IP of the primary server for our examples will be
`1.2.3.4`
, whereas the
-
The IP of the primary server for our examples will be
`1.2.3.4`
, whereas the
secondary's IP will be
`5.6.7.8`
. Note that the primary and secondary servers
secondary's IP will be
`5.6.7.8`
. Note that the primary and secondary servers
**must**
be able to communicate over these addresses. These IP addresses can either
**must**
be able to communicate over these addresses. These IP addresses can either
...
@@ -48,7 +48,7 @@ The following guide assumes that:
...
@@ -48,7 +48,7 @@ The following guide assumes that:
1.
SSH into your GitLab
**primary**
server and login as root:
1.
SSH into your GitLab
**primary**
server and login as root:
```
```
bash
sudo -i
sudo -i
```
```
...
@@ -58,13 +58,14 @@ The following guide assumes that:
...
@@ -58,13 +58,14 @@ The following guide assumes that:
bundle exec rake geo:set_primary_node
bundle exec rake geo:set_primary_node
```
```
1.
Create a
replication user
named
`gitlab_replicator`
:
1.
Create a
[
replication user
](
https://wiki.postgresql.org/wiki/Streaming_Replication
)
named
`gitlab_replicator`
:
```bash
```bash
sudo -u postgres psql -c "CREATE USER gitlab_replicator REPLICATION ENCRYPTED PASSWORD 'thepassword';"
sudo -u postgres psql -c "CREATE USER gitlab_replicator REPLICATION ENCRYPTED PASSWORD 'thepassword';"
```
```
1.
Set up TLS support for the PostgreSQL primary server
1.
Set up TLS support for the PostgreSQL primary server
> **Warning**: Only skip this step if you **know** that PostgreSQL traffic
> **Warning**: Only skip this step if you **know** that PostgreSQL traffic
> between the primary and secondary will be secured through some other
> between the primary and secondary will be secured through some other
> means, e.g., a known-safe physical network path or a site-to-site VPN that
> means, e.g., a known-safe physical network path or a site-to-site VPN that
...
@@ -185,7 +186,7 @@ The following guide assumes that:
...
@@ -185,7 +186,7 @@ The following guide assumes that:
zone, but when the respective times are converted to UTC time, the clocks
zone, but when the respective times are converted to UTC time, the clocks
must be synchronized to within 60 seconds of each other.
must be synchronized to within 60 seconds of each other.
If you are using Ubuntu, verify NTP sync is enabled
:
Verify NTP sync is enabled, using
:
```bash
```bash
timedatectl status | grep 'NTP synchronized'
timedatectl status | grep 'NTP synchronized'
...
@@ -196,57 +197,15 @@ The following guide assumes that:
...
@@ -196,57 +197,15 @@ The following guide assumes that:
### Step 2. Add the secondary GitLab node
### Step 2. Add the secondary GitLab node
To prevent the secondary geo node trying to act as the primary once the
Follow the steps in
[
"add the secondary GitLab node"
](
database.md#step-2-add-the-secondary-gitlab-node
)
.
database is replicated, the secondary geo node must be configured on the
primary before the database is replicated.
1.
Visit the
**primary**
node's
**Admin Area ➔ Geo Nodes**
(
`/admin/geo_nodes`
) in your browser.
1.
Add the secondary node by providing its full URL.
**Do NOT**
check the box
'This is a primary node'.
1.
Optionally, choose which namespaces should be replicated by the
secondary node. Leave blank to replicate all. Read more in
[
selective replication
](
#selective-replication
)
.
1.
Click the
**Add node**
button.
The new secondary geo node will have the status
**Unhealthy**
. This is expected
because we have not yet configured the secondary server. This is the next step.
### Step 3. Configure the secondary server
### Step 3. Configure the secondary server
1.
SSH into your GitLab
**secondary**
server and login as root:
Follow the first steps in
[
"configure the secondary server"
](
database.md#step-3-configure-the-secondary-server
)
,
but note that since you are installing from source, the username and
```
group listed as
`gitlab-psql`
in those steps should be replaced by
`postgres`
sudo -i
instead. After completing the "Test that the remote connection to the
```
primary server works" step, continue here:
1.
Set up PostgreSQL TLS verification on the secondary
Copy the generated `server.crt` file onto the secondary server from the
primary, then install it in the right place:
```bash
install -D -o postgres -g postgres -m 0400 -T server.crt ~postgres/.postgresql/root.crt
```
PostgreSQL will now only recognize that exact certificate when verifying TLS
connections. The certificate can only be replicated by someone with access
to the private key, which is **only** present on the primary node.
1.
Test that the remote connection to the primary server works:
```
sudo -u postgres psql --list -U gitlab_replicator -d "dbname=gitlabhq_production sslmode=verify-ca" -W -h 1.2.3.4
```
When prompted enter the password you set in the first step for the
`gitlab_replicator` user. If all worked correctly, you should see the
database prompt.
A failure to connect here indicates that the TLS or networking configuration
is incorrect. Ensure that you've used the correct certificates and IP
addresses throughout. If you have a firewall, ensure that the secondary is
permitted to access the primary on port 5432.
1.
Edit
`postgresql.conf`
to configure the secondary for streaming replication
1.
Edit
`postgresql.conf`
to configure the secondary for streaming replication
(for Debian/Ubuntu that would be
`/etc/postgresql/9.*/main/postgresql.conf`
):
(for Debian/Ubuntu that would be
`/etc/postgresql/9.*/main/postgresql.conf`
):
...
@@ -261,45 +220,26 @@ because we have not yet configured the secondary server. This is the next step.
...
@@ -261,45 +220,26 @@ because we have not yet configured the secondary server. This is the next step.
1.
Restart PostgreSQL for the changes to take effect.
1.
Restart PostgreSQL for the changes to take effect.
1.
Optional since GitLab 9.1, and required for GitLab 10.0 or higher:
1.
Verify that clock synchronization is enabled, using:
[
Enable tracking database on the secondary server
](
#enable-tracking-database-on-the-secondary-server
)
1.
Otherwise, continue to
[
initiate the replication process
](
#step-3-initiate-the-replication-process
)
.
```bash
timedatectl status | grep 'NTP synchronized'
```
#### Enable tracking database on the secondary server
#### Enable tracking database on the secondary server
Geo secondary nodes use a tracking database to keep track of replication status
Geo secondary nodes use a tracking database to keep track of replication status
and recover automatically from some replication issues.
and recover automatically from some replication issues. Follow the steps below to create
the tracking database.
It is added in GitLab 9.1, and since GitLab 10.0 it is required.
1.
Verify that clock synchronization is enabled.
>**Important:**
For Geo to work correctly, all nodes must have their clocks
synchronized. It is not required for all nodes to be set to the same time
zone, but when the respective times are converted to UTC time, the clocks
must be synchronized to within 60 seconds of each other.
If you are using Ubuntu, verify NTP sync is enabled:
1.
On the secondary node, run the following command to create
`database_geo.yml`
with the
information of your secondary PostgreSQL instance:
```bash
```bash
timedatectl status | grep 'NTP synchronized'
```
Refer to your Linux distribution documentation to setup clock
synchronization. This can easily be done using any NTP-compatible daemon.
1.
Create
`database_geo.yml`
with the information of your secondary PostgreSQL
database. Note that GitLab will set up another database instance separate
from the primary, since this is where the secondary will track its internal
state:
```
sudo cp /home/git/gitlab/config/database_geo.yml.postgresql /home/git/gitlab/config/database_geo.yml
sudo cp /home/git/gitlab/config/database_geo.yml.postgresql /home/git/gitlab/config/database_geo.yml
```
```
1.
Edit the content of
`database_geo.yml`
in
`production:`
like
the example below:
1.
Edit the content of
`database_geo.yml`
in
`production:`
as in
the example below:
```yaml
```yaml
#
#
...
@@ -315,19 +255,20 @@ It is added in GitLab 9.1, and since GitLab 10.0 it is required.
...
@@ -315,19 +255,20 @@ It is added in GitLab 9.1, and since GitLab 10.0 it is required.
host: /var/opt/gitlab/geo-postgresql
host: /var/opt/gitlab/geo-postgresql
```
```
1.
Create the database
`gitlabhq_geo_production`
in that PostgreSQL
1.
Create the database
`gitlabhq_geo_production`
on the PostgreSQL instance of the secondary
instanc
e.
nod
e.
1.
Set up the Geo tracking database:
1.
Set up the Geo tracking database:
```
```
bash
bundle exec rake geo:db:migrate
bundle exec rake geo:db:migrate
```
```
### Step 4. Initiate the replication process
### Step 4. Initiate the replication process
Below we provide a script that connects to the primary server, replicates the
Below we provide a script that connects the database on the secondary node to
database and creates the needed files for replication.
the database on the primary node, replicates the database, and creates the
needed files for streaming replication.
The directories used are the defaults for Debian/Ubuntu. If you have changed
The directories used are the defaults for Debian/Ubuntu. If you have changed
any defaults, configure it as you see fit replacing the directories and paths.
any defaults, configure it as you see fit replacing the directories and paths.
...
@@ -397,7 +338,7 @@ data before running `pg_basebackup`.
...
@@ -397,7 +338,7 @@ data before running `pg_basebackup`.
```
```
When prompted, enter the IP/FQDN of the primary, and the password you set up
When prompted, enter the IP/FQDN of the primary, and the password you set up
for the `gitlab_replicator` user in the first step.
for the `gitlab_replicator` user in the first step.
You should use `verify-ca` for the `sslmode`. You can use `disable` if you
You should use `verify-ca` for the `sslmode`. You can use `disable` if you
are happy to skip PostgreSQL TLS authentication altogether (e.g., you know
are happy to skip PostgreSQL TLS authentication altogether (e.g., you know
...
@@ -413,7 +354,7 @@ The replication process is now over.
...
@@ -413,7 +354,7 @@ The replication process is now over.
## MySQL replication
## MySQL replication
We don't support MySQL replication
for GitLab Geo.
MySQL replication is not supported
for GitLab Geo.
## Troubleshooting
## Troubleshooting
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment