This is heavily lifted from work by Virag Trapathi. I just took his work and added docker-compose and volumes. He did the hard parts!! for more detail and additional content see: https://github.com/viragtripathi/redis-enterprise-docker
Docker compatible OS and Docker installed.
- (I have it setup on my MacBook Pro but you can run it on any OS with Docker as long as you tweak the script based on runtime requirements.) Update Docker resources with 4 CPUs and 6-10GB RAM as shown here, Docker Preferences...
- Change directory to cluster3node
cd cluster3node- Execute create_redis_enterprise_3_node_cluster.sh to create a 3 node(server) Redis Enterprise cluster. If this fails with a 503 error, increase the wait time in the script.
./create_redis_enterprise_3_node_cluster.sh- execute create_demodb.sh to create a database
./create_demodb.sh- verify database works. Login to node 1 and run rladmin
docker exec -it re-node1 bash -c "rladmin status"-
Execute cleanup.sh to kill and remove the 3 docker containers. [OPTIONAL]
-
Execute destroy.sh to remove the containers and also delete the redislabs/redis images. [OPTIONAL]
-
Execute remove_volumes.sh to remove the redis volumes for the containers
-
Change directory to crdb2node
-
Execute script to create a 3 separate one node clusters
./create_clusters.sh- Execute script to create a CRDB clustered database on two clusters
./crdcreate.sh - test writing in each cluster and seeing result in other cluster. Note, run each of these commands indivually not all four together
docker exec -it re-node1 bash -c "echo 'set hello1 setfrom1' | redis-cli -p 14555"
docker exec -it re-node2 bash -c "echo 'set hello2 setfrom2' | redis-cli -p 14555"
docker exec -it re-node1 bash -c "echo 'get hello2' | redis-cli -p 14555"
docker exec -it re-node2 bash -c "echo 'get hello1' | redis-cli -p 14555"- test simultaneous increment and decrement (use 2 separate terminal sessions) start increment on cluster1
./testincr.shstart decrement on cluster2
./testdecr.sh- take node 1 out of the network using
docker network disconnect crdb2node_default re-node1- test writing and see that values don't update (run each separately)
docker exec -it re-node1 bash -c "echo 'set nogo1 on1' | redis-cli -p 14555"
docker exec -it re-node2 bash -c "echo 'set nogo2 on2' | redis-cli -p 14555"
docker exec -it re-node1 bash -c "echo 'get nogo1' | redis-cli -p 14555"
docker exec -it re-node1 bash -c "echo 'get nogo2' | redis-cli -p 14555"
docker exec -it re-node2 bash -c "echo 'get nogo1' | redis-cli -p 14555"
docker exec -it re-node2 bash -c "echo 'get nogo2' | redis-cli -p 14555"- restore the network and the entries will come back (rerun the get commands)
docker network connect crdb2node_default re-node1- test connection on the database using python code
docker exec -it jupyter bash -c "pip install -r src/requirements.txt"
docker exec -it jupyter bash -c "python src/simple_connect.py"- add instance to the third cluster (first use list to get CRDB GUID
./crdlist.sh
./crdadd.sh 40d72999-24b1-4684-8ef0-4b0aa28c521e- verify data is on third cluster
docker exec -it re-node3 bash -c "echo 'get nogo1' | redis-cli -p 14555"
docker exec -it re-node3 bash -c "echo 'get nogo2' | redis-cli -p 14555"- delete database by doing a list. Then, use returned crdb-guid as parameter to delete
./crdlist.sh
./crddelete.sh 569c5693-2e7b-4744-ac0c-ea58f24ea9a6This uses steps documented at this web page http://tgrall.github.io/blog/2020/01/02/how-to-use-ssl-slash-tls-with-redis-enterprise/
./createCRDBTLS.shdocker exec -it re-node1 bash -c "redis-cli -p 12000 -a secretdb01 info server"
docker exec -it re-node2 bash -c "redis-cli -p 12000 -a secretdb01 info server"get cluster proxy certificate from all three nodes
mkdir src/certificates
docker cp re-node1:/etc/opt/redislabs/proxy_cert.pem src/certificates/proxy_cert1.pem
docker cp re-node2:/etc/opt/redislabs/proxy_cert.pem src/certificates/proxy_cert2.pem
docker cp re-node3:/etc/opt/redislabs/proxy_cert.pem src/certificates/proxy_cert3.pemgenerate keys
docker exec -it jupyter bash
cd src
./generatekeys.sh (just hit return do not enter anything)
exitpbcopy < src/certificates/client_cert_app_001.pem- click on crdb-encrypt database
- click on configuration
- scroll to bottom and click edit
- on TLS, change radio selection to "Require TLS for all Communications"
- click "+" to add the key
- Paste the key in the box and click the blue ok button
- test connection on the database using python code
docker exec -it jupyter bash -c "cd src;python connect.py"- write data to the database using python code
docker exec -it jupyter bash -c "cd src;python addData.py"- cleanup
./cleanup.sh- Change directory to dnscluster
- To bring up cluster
./reset_north_cluster.sh- Can shutdown all resources
./shutdown_all.shA variety of tests and explorations of Redis Enterprise can be taken with this setup. Some of these tests will be documented below
- Validate running containers and note port mappings
docker ps- get the IP for any node Use provided scripts to get the IP address for any node.
./getip.sh n1Can also get the IP address by referencing docker-compose.yml as IPs are hardcoded in the yaml 3. User name and password will be admin@redislabs-training.org / admin
- Create north 3 node cluster
./create_north_cluster.sh- Use browser to Go to Managemnent UI for node https://localhost:21443 login to browser using: admin@redislabs-training.org / admin
- Click next to create a redis database
- Provide the database name, set the memory limit and click “Activate”. Can use: name=training memory limit = 1GB Note the endpoint name and port number as those will be needed to connect Without entering port on creation, it will be generated. Below is example
redis-10590.north.redislabs-training.org:10590- Confirm database configuration matches using rladmin from node 3
docker exec -it n3 bash
rladmin status- Confirm database configuration matches using REST API (still running from the n3 bash) Make sure to verify the database name as this is likely different than below
curl -k -u "admin@redislabs-training.org:admin" -H 'Content-type: application/json' -X GET https://redis-10590.north.redislabs-training.org:9443/v1/bdbs/1Output should resemble this:
7. Can delete the database using the API. verify database ID with rladmin output. This example is assuming the ID is "1"
curl -k -u "admin@redislabs-training.org:admin" -H 'Content-type: application/json' -X DELETE https://redis-10590.north.redislabs-training.org:9443/v1/bdbs/1- Create JSON file with database config (still from n3 bash)
echo { \"name\": \"demo-db\", \"memory_size\": 1073741824, \"port\": 12000 } > /tmp/create_db.json- Create database using the REST API (from n3 bash)
curl -k -u "admin@redislabs-training.org:admin" -H 'Content-type: application/json' -d @/tmp/create_db.json -X POST https://north.redislabs-training.org:9443/v1/bdbs- Confirm the database was created using rladmin
rladmin status- Add data to the database Note: first exit leaves redis-cli and then second exit leaves n3 bash shell
redis-cli -h redis-12000.north.redislabs-training.org -p 12000
set hello world
exit
exit - Simulate Node Failure with Standalone Shard (there is no slave shard so database will fail)
docker stop n1- Verify database is down
docker exec -it n3 bash -c "rladmin status"- Database is down and node 2 is now in master role. . Now start n1 and check again
docker start n1
docker exec -it n3 bash
rladmin status- Can see that database is back up. Check do see if data still exists (spoiler alert: it is gone!) this exit leaves the redis-cli so in n3 bash
redis-cli -h redis-12000.north.redislabs-training.org -p 12000
keys *
exit- Can delete the database using the API. verify database ID with rladmin output. This example is assuming the is is "2". Also, verify the database was deleted by running rladmin status again
curl -k -u "admin@redislabs-training.org:admin" -H 'Content-type: application/json' -X DELETE https://redis-12000.north.redislabs-training.org:9443/v1/bdbs/2
rladmin status- Create new database with AOF using https://localhost:21443
Provide a database name=persistence-demo, change memory limit=1GB, choose AOF (fsynch every write) data persistence, set
Endpoint port number to 12000 and click on “Activate”
- Test status of databse and add data to database
docker exec -it n3 bash
rladmin status
redis-cli -h redis-12000.north.redislabs-training.org -p 12000
set hello world
exit- Verify persistence of data with node failure and restart
docker stop n1
docker exec -it n3 bash -c "rladmin status"
docker start n1
docker exec -it n3 bash
rladmin status
redis-cli -h redis-12000.north.redislabs-training.org -p 12000
keys *
exit- Delete persistence database
curl -k -u "admin@redislabs-training.org:admin" -H 'Content-type: application/json' -X DELETE https://redis-12000.north.redislabs-training.org:9443/v1/bdbs/2
rladmin status- Create new database with replication using https://localhost:21443, verify, and add data
Provide a database name=ha-demo, change memory limit=1GB, choose AOF persistent replication, set
Endpoint port number to 12000 and click on Activate
docker exec -it n3 bash
rladmin status
redis-cli -h redis-12000.north.redislabs-training.org -p 12000
set hello world
exit- Check ping resolution of database
ping redis-12000.north.redislabs-training.org- Simulate node failure, verify failure over to replica and zero data loss The ping will show database is now on node 2 IP instead of node 1 However, notice that slave on node 1 does not come up
docker stop n1
docker exec -it n3 bash
rladmin status
redis-cli -h redis-12000.north.redislabs-training.org -p 12000
keys *
exit
ping redis-12000.north.redislabs-training.org- Verify slave HA is disabled by default (note the "slave_ha: disabled")
docker exec -it n3 bash
rladmin info cluster- Enable Slave High Availability, verify "slave_ha: enabled", see slave come back on-line
rladmin tune cluster slave_ha enabled
rladmin tune cluster slave_ha_grace_period 0
rladmin tune cluster slave_ha_cooldown_period 0
rladmin tune cluster slave_ha_bdb_cooldown_period 0
rladmin info cluster
rladmin status- Test client connectivity during failover. Install python setup
docker exec -it jupyter bash -c "python -r python_src/requirements.txt"
docker exec -it jupyter bash -c "python python_src/connect.py"Active-Active - not enough resources on my machine so I stopped on this part. Better to do this on by crbd directory above
same problem with doing replica-of here
- this is file to create both but not tested... ./create_north_and_south_cluster.sh
more information Redis, Prometheus, Grafana integration
- Create JSON file with database config (still from n3 bash)
docker exec -it n3 bash
echo { \"name\": \"metrics-db\", \"memory_size\": 1073741824, \"port\": 12000 } > /tmp/create_metrics_db.json- Create database using the REST API (from n3 bash)
curl -k -u "admin@redislabs-training.org:admin" -H 'Content-type: application/json' -d @/tmp/create_metrics_db.json -X POST https://north.redislabs-training.org:9443/v1/bdbs
rladmin status- Generate Data with memtier_benchmark
memtier_benchmark -s redis-12000.north.redislabs-training.org -p 12000 --ratio=1:4 --test-time=600 -d 100 -t 3 -c 20 --pipeline=25 --key-pattern=S:S -x 10 --hide-histogram- View Metrics using the REST API
curl -k https://north.redislabs-training.org:8070/metrics- Access the Prometheus UI and execute a query
http://localhost:9090/graph
Choose a metric from the dropdown labeled “insert metric at cursor” then click “Execute”
- Set up Grafana Data Source
http://localhost:3000/
use admin and P@ssword for username and password
In the Grafana configuration menu, select Data Sources.
Add the new datasource:
- Name: redis-enterprise
- Type: Prometheus
- URL: http://prom:9090
- "Skip TLS Verify"
To be able to debug dns issues, need dnsutils.
- Install dnsutils on n3
docker exec -it --user root n3 bash
apt-get update
apt-get install dnsutils -y- Verify can resolve cluster name (must create cluster first)
dig dig north.redislabs-training.org NSoutput
; <<>> DiG 9.11.3-1ubuntu1.12-Ubuntu <<>> north.redislabs-training.org NS
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8603
;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
; COOKIE: a8793b5e01113adc0dd13dc95ecfce82566396cc8f3e19f0 (good)
;; QUESTION SECTION:
;north.redislabs-training.org. IN NS
;; ANSWER SECTION:
north.redislabs-training.org. 3600 IN NS ns2.north.redislabs-training.org.
north.redislabs-training.org. 3600 IN NS ns3.north.redislabs-training.org.
north.redislabs-training.org. 3600 IN NS ns1.north.redislabs-training.org.
;; Query time: 178 msec
;; SERVER: 172.21.1.4#53(172.21.1.4)
;; WHEN: Thu May 28 14:45:22 UTC 2020
;; MSG SIZE rcvd: 139- Verify can resolve database name (example dependent on port) (must create database before this works)
dig redis-18959.north.redislabs-training.org NSoutput
- opcode: QUERY, status: NOERROR, id: 44648
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
; COOKIE: 185ef1ef6e7a841dbab8a04c5df24ae8112dc67705fecbab (good)
;; QUESTION SECTION:
;redis-18959.north.redislabs-training.org. IN A
;; ANSWER SECTION:
redis-18959.north.redislabs-training.org. 5 IN A 172.21.1.1
;; AUTHORITY SECTION:
north.redislabs-training.org. 38400 IN NS n3.north.redislabs-training.org.
north.redislabs-training.org. 38400 IN NS n2.north.redislabs-training.org.
north.redislabs-training.org. 38400 IN NS n1.north.redislabs-training.org.
;; Query time: 18 msec
;; SERVER: 172.21.1.4#53(172.21.1.4)
;; WHEN: Thu Dec 12 14:12:56 UTC 2019
;; MSG SIZE rcvd: 164- To access dns server from browser (only getting this to work on firefox)
https://localhost:10000- Some Debug commands
This is my port 8443:
root@jph-vu-olathe1:/var/opt/redislabs/log# nc -v localhost 8443
Connection to localhost 8443 port [tcp/*] succeeded!
^C
This is my port 9443
root@jph-vu-olathe1:/var/opt/redislabs/log# nc -v localhost 9443
Connection to localhost 9443 port [tcp/*] succeeded!
^C
I have nothing here so this should not work (it doesn't)
root@jph-vu-olathe1:/var/opt/redislabs/log# nc -v localhost 9448
nc: connect to localhost port 9448 (tcp) failed: Connection refused
root@jph-vu-olathe1:/var/opt/redislabs/log# ^C
This is a database that I have so it works
root@jph-vu-olathe1:/var/opt/redislabs/log# nc -v redis-17204.jphcluster.demo.redislabs.com 17204
Connection to redis-17204.jphcluster.demo.redislabs.com 17204 port [tcp/*] succeeded!
^C
I have no database here so it does not work
root@jph-vu-olathe1:/var/opt/redislabs/log# nc -v redis-17204.jphcluster.demo.redislabs.com 17208
nc: connect to redis-17204.jphcluster.demo.redislabs.com port 17208 (tcp) failed: Connection refused- DNS database is included. This is setup
- user name and password is root/password
- Delete all existing DNS zones
- Add a new master zone with domain name redislabs-training.org using ns.redislabs-training.org
- address records
- add address record for ns.redislabs-training.org with 172.21.1.4 for address
- add address record for n1.north.redislabs-training.org with 172.21.1.1
- add address record for n2.north.redislabs-training.org with 172.21.1.2
- add address record for n3.north.redislabs-training.org with 172.21.1.3
- namespace records
- add NS record for north.redislabs-training.org with n1.north.redislabs-training.org
- add NS record for north.redislabs-training.org with n2.north.redislabs-training.org
- add NS record for north.redislabs-training.org with n3.north.redislabs-training.org
- Continue for the south cluster
- from within the dns server browser click on "Edit Zone Records File" and see that it matches content here