Configuring and managing high availability clusters
Making open source more inclusive
Providing feedback on Red Hat documentation
1. High Availability Add-On overview
Expand section "1. High Availability Add-On overview" Collapse section "1. High Availability Add-On overview"
1. 1.1. High Availability Add-On components
2. 1.2. High Availability Add-On concepts
  Expand section "1.2. High Availability Add-On concepts" Collapse section "1.2. High Availability Add-On concepts"
3. 1.3. Pacemaker overview
  Expand section "1.3. Pacemaker overview" Collapse section "1.3. Pacemaker overview"
4. 1.4. LVM logical volumes in a Red Hat high availability cluster
  Expand section "1.4. LVM logical volumes in a Red Hat high availability cluster" Collapse section "1.4. LVM logical volumes in a Red Hat high availability cluster"
  1. 1.4.1. Choosing HA-LVM or shared volumes
  2. 1.4.2. Configuring LVM volumes in a cluster
2. Getting started with Pacemaker
Expand section "2. Getting started with Pacemaker" Collapse section "2. Getting started with Pacemaker"
1. 2.1. Learning to use Pacemaker
2. 2.2. Learning to configure failover
3. The pcs command line interface
Expand section "3. The pcs command line interface" Collapse section "3. The pcs command line interface"
4. Creating a Red Hat High-Availability cluster with Pacemaker
Expand section "4. Creating a Red Hat High-Availability cluster with Pacemaker" Collapse section "4. Creating a Red Hat High-Availability cluster with Pacemaker"
5. Configuring an active/passive Apache HTTP server in a Red Hat High Availability cluster
Expand section "5. Configuring an active/passive Apache HTTP server in a Red Hat High Availability cluster" Collapse section "5. Configuring an active/passive Apache HTTP server in a Red Hat High Availability cluster"
6. Configuring an active/passive NFS server in a Red Hat High Availability cluster
Expand section "6. Configuring an active/passive NFS server in a Red Hat High Availability cluster" Collapse section "6. Configuring an active/passive NFS server in a Red Hat High Availability cluster"
1. 6.1. Configuring an LVM volume with an ext4 file system in a Pacemaker cluster
2. 6.2. Ensuring a volume group is not activated on multiple cluster nodes (RHEL 8.4 and earlier)
3. 6.3. Configuring an NFS share
4. 6.4. Configuring the resources and resource group for an NFS server in a cluster
5. 6.5. Testing the NFS resource configuration
  Expand section "6.5. Testing the NFS resource configuration" Collapse section "6.5. Testing the NFS resource configuration"
  1. 6.5.1. Testing the NFS export
  2. 6.5.2. Testing for failover
7. GFS2 file systems in a cluster
Expand section "7. GFS2 file systems in a cluster" Collapse section "7. GFS2 file systems in a cluster"
1. 7.1. Configuring a GFS2 file system in a cluster
2. 7.2. Configuring an encrypted GFS2 file system in a cluster
  Expand section "7.2. Configuring an encrypted GFS2 file system in a cluster" Collapse section "7.2. Configuring an encrypted GFS2 file system in a cluster"
3. 7.3. Migrating a GFS2 file system from RHEL7 to RHEL8
8. Getting started with the pcsd Web UI
Expand section "8. Getting started with the pcsd Web UI" Collapse section "8. Getting started with the pcsd Web UI"
1. 8.1. Installing cluster software
2. 8.2. Setting up the pcsd Web UI
3. 8.3. Creating a cluster with the pcsd Web UI
  Expand section "8.3. Creating a cluster with the pcsd Web UI" Collapse section "8.3. Creating a cluster with the pcsd Web UI"
  1. 8.3.1. Configuring advanced cluster configuration options with the pcsd Web UI
  2. 8.3.2. Setting cluster management permissions
4. 8.4. Configuring cluster components with the pcsd Web UI
  Expand section "8.4. Configuring cluster components with the pcsd Web UI" Collapse section "8.4. Configuring cluster components with the pcsd Web UI"
5. 8.5. Configuring a high availability pcsd Web UI
9. Configuring fencing in a Red Hat High Availability cluster
Expand section "9. Configuring fencing in a Red Hat High Availability cluster" Collapse section "9. Configuring fencing in a Red Hat High Availability cluster"
1. 9.1. Displaying available fence agents and their options
2. 9.2. Creating a fence device
3. 9.3. General properties of fencing devices
4. 9.4. Testing a fence device
5. 9.5. Configuring fencing levels
6. 9.6. Configuring fencing for redundant power supplies
7. 9.7. Displaying configured fence devices
8. 9.8. Modifying and deleting fence devices
9. 9.9. Manually fencing a cluster node
10. 9.10. Disabling a fence device
11. 9.11. Preventing a node from using a fencing device
12. 9.12. Configuring ACPI for use with integrated fence devices
  Expand section "9.12. Configuring ACPI for use with integrated fence devices" Collapse section "9.12. Configuring ACPI for use with integrated fence devices"
10. Configuring cluster resources
Expand section "10. Configuring cluster resources" Collapse section "10. Configuring cluster resources"
1. 10.1. Resource agent identifiers
2. 10.2. Displaying resource-specific parameters
3. 10.3. Configuring resource meta options
  Expand section "10.3. Configuring resource meta options" Collapse section "10.3. Configuring resource meta options"
4. 10.4. Configuring resource groups
  Expand section "10.4. Configuring resource groups" Collapse section "10.4. Configuring resource groups"
5. 10.5. Determining resource behavior
11. Determining which nodes a resource can run on
Expand section "11. Determining which nodes a resource can run on" Collapse section "11. Determining which nodes a resource can run on"
1. 11.1. Configuring location constraints
2. 11.2. Limiting resource discovery to a subset of nodes
3. 11.3. Configuring a location constraint strategy
  Expand section "11.3. Configuring a location constraint strategy" Collapse section "11.3. Configuring a location constraint strategy"
  1. 11.3.1. Configuring an "Opt-In" cluster
  2. 11.3.2. Configuring an "Opt-Out" cluster
4. 11.4. Configuring a resource to prefer its current node
12. Determining the order in which cluster resources are run
Expand section "12. Determining the order in which cluster resources are run" Collapse section "12. Determining the order in which cluster resources are run"
13. Colocating cluster resources
Expand section "13. Colocating cluster resources" Collapse section "13. Colocating cluster resources"
14. Displaying resource constraints and resource dependencies
15. Determining resource location with rules
Expand section "15. Determining resource location with rules" Collapse section "15. Determining resource location with rules"
1. 15.1. Pacemaker rules
  Expand section "15.1. Pacemaker rules" Collapse section "15.1. Pacemaker rules"
2. 15.2. Configuring a pacemaker location constraint using rules
16. Managing cluster resources
Expand section "16. Managing cluster resources" Collapse section "16. Managing cluster resources"
1. 16.1. Displaying configured resources
2. 16.2. Modifying resource parameters
3. 16.3. Clearing failure status of cluster resources
4. 16.4. Moving resources in a cluster
  Expand section "16.4. Moving resources in a cluster" Collapse section "16.4. Moving resources in a cluster"
  1. 16.4.1. Moving resources due to failure
  2. 16.4.2. Moving resources due to connectivity changes
5. 16.5. Disabling a monitor operation
6. 16.6. Configuring and managing cluster resource tags
  Expand section "16.6. Configuring and managing cluster resource tags" Collapse section "16.6. Configuring and managing cluster resource tags"
  1. 16.6.1. Tagging cluster resources for administration by category
  2. 16.6.2. Deleting a tagged cluster resource
17. Creating cluster resources that are active on multiple nodes (cloned resources)
Expand section "17. Creating cluster resources that are active on multiple nodes (cloned resources)" Collapse section "17. Creating cluster resources that are active on multiple nodes (cloned resources)"
1. 17.1. Creating and removing a cloned resource
2. 17.2. Configuring clone resource constraints
3. 17.3. Promotable clone resources
  Expand section "17.3. Promotable clone resources" Collapse section "17.3. Promotable clone resources"
  1. 17.3.1. Creating a promotable clone resource
  2. 17.3.2. Configuring promotable resource constraints
4. 17.4. Demoting a promoted resource on failure
18. Managing cluster nodes
Expand section "18. Managing cluster nodes" Collapse section "18. Managing cluster nodes"
1. 18.1. Stopping cluster services
2. 18.2. Enabling and disabling cluster services
3. 18.3. Adding cluster nodes
4. 18.4. Removing cluster nodes
5. 18.5. Adding a node to a cluster with multiple links
6. 18.6. Adding and modifying links in an existing cluster
  Expand section "18.6. Adding and modifying links in an existing cluster" Collapse section "18.6. Adding and modifying links in an existing cluster"
7. 18.7. Configuring a large cluster with many resources
19. Setting user permissions for a Pacemaker cluster
Expand section "19. Setting user permissions for a Pacemaker cluster" Collapse section "19. Setting user permissions for a Pacemaker cluster"
1. 19.1. Setting permissions for node access over a network
2. 19.2. Setting local permissions using ACLs
20. Resource monitoring operations
Expand section "20. Resource monitoring operations" Collapse section "20. Resource monitoring operations"
1. 20.1. Configuring resource monitoring operations
2. 20.2. Configuring global resource operation defaults
  Expand section "20.2. Configuring global resource operation defaults" Collapse section "20.2. Configuring global resource operation defaults"
3. 20.3. Configuring multiple monitoring operations
21. Pacemaker cluster properties
Expand section "21. Pacemaker cluster properties" Collapse section "21. Pacemaker cluster properties"
22. Configuring resources to remain stopped on clean node shutdown
Expand section "22. Configuring resources to remain stopped on clean node shutdown" Collapse section "22. Configuring resources to remain stopped on clean node shutdown"
1. 22.1. Cluster properties to configure resources to remain stopped on clean node shutdown
2. 22.2. Setting the shutdown-lock cluster property
23. Configuring a node placement strategy
Expand section "23. Configuring a node placement strategy" Collapse section "23. Configuring a node placement strategy"
1. 23.1. Utilization attributes and placement strategy
  Expand section "23.1. Utilization attributes and placement strategy" Collapse section "23.1. Utilization attributes and placement strategy"
  1. 23.1.1. Configuring node and resource capacity
  2. 23.1.2. Configuring placement strategy
2. 23.2. Pacemaker resource allocation
  Expand section "23.2. Pacemaker resource allocation" Collapse section "23.2. Pacemaker resource allocation"
3. 23.3. Resource placement strategy guidelines
4. 23.4. The NodeUtilization resource agent
24. Configuring a virtual domain as a resource
Expand section "24. Configuring a virtual domain as a resource" Collapse section "24. Configuring a virtual domain as a resource"
1. 24.1. Virtual domain resource options
2. 24.2. Creating the virtual domain resource
25. Configuring cluster quorum
Expand section "25. Configuring cluster quorum" Collapse section "25. Configuring cluster quorum"
26. Configuring quorum devices
Expand section "26. Configuring quorum devices" Collapse section "26. Configuring quorum devices"
1. 26.1. Installing quorum device packages
2. 26.2. Configuring a quorum device
3. 26.3. Managing the quorum device service
4. 26.4. Managing a quorum device in a cluster
  Expand section "26.4. Managing a quorum device in a cluster" Collapse section "26.4. Managing a quorum device in a cluster"
27. Triggering scripts for cluster events
Expand section "27. Triggering scripts for cluster events" Collapse section "27. Triggering scripts for cluster events"
28. Multi-site Pacemaker clusters
Expand section "28. Multi-site Pacemaker clusters" Collapse section "28. Multi-site Pacemaker clusters"
1. 28.1. Overview of Booth cluster ticket manager
2. 28.2. Configuring multi-site clusters with Pacemaker
29. Integrating non-corosync nodes into a cluster: the pacemaker_remote service
Expand section "29. Integrating non-corosync nodes into a cluster: the pacemaker_remote service" Collapse section "29. Integrating non-corosync nodes into a cluster: the pacemaker_remote service"
1. 29.1. Host and guest authentication of pacemaker_remote nodes
2. 29.2. Configuring KVM guest nodes
  Expand section "29.2. Configuring KVM guest nodes" Collapse section "29.2. Configuring KVM guest nodes"
  1. 29.2.1. Guest node resource options
  2. 29.2.2. Integrating a virtual machine as a guest node
3. 29.3. Configuring Pacemaker remote nodes
  Expand section "29.3. Configuring Pacemaker remote nodes" Collapse section "29.3. Configuring Pacemaker remote nodes"
  1. 29.3.1. Remote node resource options
  2. 29.3.2. Remote node configuration overview
4. 29.4. Changing the default port location
5. 29.5. Upgrading systems with pacemaker_remote nodes
30. Performing cluster maintenance
Expand section "30. Performing cluster maintenance" Collapse section "30. Performing cluster maintenance"
1. 30.1. Putting a node into standby mode
2. 30.2. Manually moving cluster resources
  Expand section "30.2. Manually moving cluster resources" Collapse section "30.2. Manually moving cluster resources"
  1. 30.2.1. Moving a resource from its current node
  2. 30.2.2. Moving a resource to its preferred node
3. 30.3. Disabling, enabling, and banning cluster resources
4. 30.4. Setting a resource to unmanaged mode
5. 30.5. Putting a cluster in maintenance mode
6. 30.6. Updating a RHEL high availability cluster
7. 30.7. Upgrading remote nodes and guest nodes
8. 30.8. Migrating VMs in a RHEL cluster
31. Configuring disaster recovery clusters
Expand section "31. Configuring disaster recovery clusters" Collapse section "31. Configuring disaster recovery clusters"
1. 31.1. Considerations for disaster recovery clusters
2. 31.2. Displaying status of recovery clusters
32. Interpreting resource agent OCF return codes
33. Configuring a Red Hat High Availability cluster with IBM z/VM instances as cluster members
Legal Notice

Red Hat Training

A Red Hat training course is available for RHEL 8

Chapter 25. Configuring cluster quorum

A Red Hat Enterprise Linux High Availability Add-On cluster uses the votequorum service, in conjunction with fencing, to avoid split brain situations. A number of votes is assigned to each system in the cluster, and cluster operations are allowed to proceed only when a majority of votes is present. The service must be loaded into all nodes or none; if it is loaded into a subset of cluster nodes, the results will be unpredictable. For information on the configuration and operation of the votequorum service, see the votequorum(5) man page.

25.1. Configuring quorum options

There are some special features of quorum configuration that you can set when you create a cluster with the pcs cluster setup command. The following table summarizes these options.

Table 25.1. Quorum Options

Option	Description
`auto_tie_breaker`	When enabled, the cluster can suffer up to 50% of the nodes failing at the same time, in a deterministic fashion. The cluster partition, or the set of nodes that are still in contact with the `nodeid` configured in `auto_tie_breaker_node` (or lowest `nodeid` if not set), will remain quorate. The other nodes will be inquorate. The `auto_tie_breaker` option is principally used for clusters with an even number of nodes, as it allows the cluster to continue operation with an even split. For more complex failures, such as multiple, uneven splits, it is recommended that you use a quorum device.//LINK TO The `auto_tie_breaker` option is incompatible with quorum devices.
`wait_for_all`	When enabled, the cluster will be quorate for the first time only after all nodes have been visible at least once at the same time. The `wait_for_all` option is primarily used for two-node clusters and for even-node clusters using the quorum device `lms` (last man standing) algorithm. The `wait_for_all` option is automatically enabled when a cluster has two nodes, does not use a quorum device, and `auto_tie_breaker` is disabled. You can override this by explicitly setting `wait_for_all` to 0.
`last_man_standing`	When enabled, the cluster can dynamically recalculate `expected_votes` and quorum under specific circumstances. You must enable `wait_for_all` when you enable this option. The `last_man_standing` option is incompatible with quorum devices.
`last_man_standing_window`	The time, in milliseconds, to wait before recalculating `expected_votes` and quorum after a cluster loses nodes.

For further information about configuring and using these options, see the votequorum(5) man page.

25.2. Modifying quorum options

You can modify general quorum options for your cluster with the pcs quorum update command. You can modify the quorum.two_node and quorum.expected_votes options on a running system. For all other quorum options, executing this command requires that the cluster be stopped. For information on the quorum options, see the votequorum(5) man page.

The format of the pcs quorum update command is as follows.

pcs quorum update [auto_tie_breaker=[0|1]] [last_man_standing=[0|1]] [last_man_standing_window=[time-in-ms] [wait_for_all=[0|1]]

The following series of commands modifies the wait_for_all quorum option and displays the updated status of the option. Note that the system does not allow you to execute this command while the cluster is running.

[root@node1:~]# pcs quorum update wait_for_all=1
Checking corosync is not running on nodes...
Error: node1: corosync is running
Error: node2: corosync is running

[root@node1:~]# pcs cluster stop --all
node2: Stopping Cluster (pacemaker)...
node1: Stopping Cluster (pacemaker)...
node1: Stopping Cluster (corosync)...
node2: Stopping Cluster (corosync)...

[root@node1:~]# pcs quorum update wait_for_all=1
Checking corosync is not running on nodes...
node2: corosync is not running
node1: corosync is not running
Sending updated corosync.conf to nodes...
node1: Succeeded
node2: Succeeded

[root@node1:~]# pcs quorum config
Options:
  wait_for_all: 1

25.3. Displaying quorum configuration and status

Once a cluster is running, you can enter the following cluster quorum commands to display the quorum configuration and status.

The following command shows the quorum configuration.

pcs quorum [config]

The following command shows the quorum runtime status.

pcs quorum status

25.4. Running inquorate clusters

If you take nodes out of a cluster for a long period of time and the loss of those nodes would cause quorum loss, you can change the value of the expected_votes parameter for the live cluster with the pcs quorum expected-votes command. This allows the cluster to continue operation when it does not have quorum.

Warning

Changing the expected votes in a live cluster should be done with extreme caution. If less than 50% of the cluster is running because you have manually changed the expected votes, then the other nodes in the cluster could be started separately and run cluster services, causing data corruption and other unexpected results. If you change this value, you should ensure that the wait_for_all parameter is enabled.

The following command sets the expected votes in the live cluster to the specified value. This affects the live cluster only and does not change the configuration file; the value of expected_votes is reset to the value in the configuration file in the event of a reload.

pcs quorum expected-votes votes

In a situation in which you know that the cluster is inquorate but you want the cluster to proceed with resource management, you can use the pcs quorum unblock command to prevent the cluster from waiting for all nodes when establishing quorum.

Note

This command should be used with extreme caution. Before issuing this command, it is imperative that you ensure that nodes that are not currently in the cluster are switched off and have no access to shared resources.

# pcs quorum unblock

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation