##############################

##### unit4.管理系统存储 #####

##############################

#########1.分区划分##########

[root@localhost ~]# fdisk /dev/vdb

Welcome to fdisk (util-linux 2.23.2).

Changes will remain in memory only, until you decide to write them.

Be careful before using the write command.

Device does not contain a recognized partition table

Building a new DOS disklabel with disk identifier 0x2f15e742.

Command (m for help): m              ##帮助

Command action

 a     toggle a bootable flag

 b     edit bsd disklabel

 c     toggle the dos compatibility flag

 d     delete a partition                 ##删除分区

 g     create a new empty GPT partition table

 G     create an IRIX (SGI) partition table

 l     list known partition types         ##列出系统可用的分区类型

 m     print this menu

 n     add a new partition                ##新建分区

 o     create a new empty DOS partition table

 p     print the partition table          ##显示分区

 q     quit without saving changes        ##退出

 s     create a new empty Sun disklabel

 t     change a partition's system id     ##修改分区功能id

 u     change display/entry units

 v     verify the partition table

 w     write table to disk and exit       ##保存更改到分区表

 x     extra functionality (experts only)

Command (m for help): n

Partition type:

p primary (0 primary, 0 extended, 4 free)            ##分区类型为主分区

e extended                                           ##分区类型为扩展分区

Select (default p): p                                ##默认选p

Partition number (1-4, default 1):                   ##主分区id

First sector (2048-20971519, default 2048):          ##此分区起始位置

Using default value 2048

Last sector, +sectors or +size{K,M,G} (2048-20971519, default 20971519): +100M ##分区大小

Partition 1 of type Linux and of size 100 MiB is set

Command (m for help): p

Disk /dev/vdb: 10.7 GB, 10737418240 bytes, 20971520 sectors

Units = sectors of 1 * 512 = 512 bytes

Sector size (logical/physical): 512 bytes / 512 bytes

I/O size (minimum/optimal): 512 bytes / 512 bytes

Disk label type: dos

Disk identifier: 0x2f15e742

Device Boot     Start     End     Blocks     Id     System

/dev/vdb1       2048      206847   102400    83     Linux

Command (m for help): wq                             ##保存退出,如果按q表示放弃更改退出

The partition table has been altered!

Calling ioctl() to re-read partition table.

Syncing disks.

[root@localhost ~]# partprobe                        ##同步分区表(更新分区表)

[root@localhost ~]# cat /proc/partitions             ##格式化

major minor #blocks name

253     0     10485760  vda

253     1     10484142  vda1

253     16    10485760  vdb

253     17    102400    vdb1

253     20    1         vdb4

注意:扩展分区的分区起始位置和分区大小都选择建议选择默认。

扩展分区的大小显示为1

###########2.磁盘分区格式化##########

[root@localhost ~]# blkid                      ##显示可用的磁盘分区

/dev/vda1: UUID="9bf6b9f7-92ad-441b-848e-0257cbb883d1" TYPE="xfs"

[root@localhost ~]# mount /dev/vdb1 /mnt/      ##挂载分区

mount: /dev/vdb1 is write-protected, mounting read-only

mount: unknown filesystem type '(null)'        ##该磁盘分区不可挂载,因为文件系统无法识别

[root@localhost ~]# mkfs.                     ##按tab之后会显示该系统可格式化的文件系统类型

mkfs.btrfs mkfs.ext2 mkfs.ext4 mkfs.minix mkfs.vfat

mkfs.cramfs mkfs.ext3 mkfs.fat mkfs.msdos mkfs.xfs

[root@localhost ~]# mkfs.xfs /dev/vdb1         ##linux一般选择xfs文件系统

meta-data=/dev/vdb1     isize=256     agcount=4, agsize=6400 blks

         =              sectsz=512    attr=2, projid32bit=1

         =              crc=0

data     =              bsize=4096    blocks=25600, imaxpct=25

         =              sunit=0       swidth=0 blks

naming   =version 2     bsize=4096    ascii-ci=0 ftype=0

log      =internal log  bsize=4096    blocks=853, version=2

         =              sectsz=512    sunit=0 blks, lazy-count=1

realtime =none          extsz=4096    blocks=0, rtextents=0

注意:扩展分区不用修改文件系统

###########3.swap分区###########

[root@localhost ~]# vim /etc/fstab

#

# /etc/fstab

# Created by anaconda on Wed May 7 01:22:57 2014

#

# Accessible filesystems, by reference, are maintained under '/dev/disk'

# See man pages fstab(5), findfs(8), mount(8) and/or blkid(8) for more info

#

UUID=9bf6b9f7-92ad-441b-848e-0257cbb883d1 / xfs defaults 1 1

/dev/vdb6     swap     swap     defaults     0     0

/dev/vdb5     /mnt     xfs      defaults     0     0

    ||         ||       ||         ||        ||    ||

设备名称     挂载点  设备类型  挂载参数  是否备份 是否检测

#########4.磁盘加密##########

1.磁盘加密

(1).创建一个磁盘

[root@desktop19 ~]# fdisk /dev/vdb

....                     ##此过程参照第一小节

[root@desktop19 ~]# cat /proc/partitions

major minor #blocks name

253     0     10485760     vda

253     1     10484142     vda1

253     16    10485760     vdb

253     17    102400       vdb1

(2).加密

[root@desktop19 ~]# cryptsetup luksFormat /dev/vdb1

WARNING!

========

This will overwrite data on /dev/vdb1 irrevocably.

Are you sure? (Type uppercase yes): YES

Enter passphrase:                              ##密码必须是大于8位的字符数字组合

Verify passphrase:

[root@desktop19 ~]# mount /dev/vdb1 /mnt/

mount: unknown filesystem type 'crypto_LUKS'   ##无法挂载,因为无法识别该分区的文件系统

(3).打开锁

[root@desktop19 ~]# cryptsetup open /dev/vdb1 tbr

Enter passphrase for /dev/vdb1:

[root@desktop19 ~]# ll /dev/mapper/

total 0

crw-------. 1 root root 10, 236 11月 5 20:58 control

lrwxrwxrwx. 1 root root 7 11月 5 21:27 tbr -> ../dm-0

(4).创建文件系统

[root@desktop19 ~]# mkfs.xfs /dev/mapper/tbr

meta-data=/dev/mapper/tbr     isize=256     agcount=4, agsize=6272 blks

         =                    sectsz=512 attr=2, projid32bit=1

         =                    crc=0

data     =                    bsize=4096 blocks=25088, imaxpct=25

         =                    sunit=0 swidth=0 blks

naming   =version 2           bsize=4096 ascii-ci=0 ftype=0

log      =internal log        bsize=4096 blocks=853, version=2

         =                    sectsz=512 sunit=0 blks, lazy-count=1

realtime =none                extsz=4096 blocks=0, rtextents=0

(5).挂载

[root@desktop19 ~]# mount /dev/mapper/tbr /mnt/

============这之后就可以在挂载好的/mnt/路径下作操作了===========

(6).卸载

[root@desktop19 ~]# cryptsetup close tbr

device-mapper: remove ioctl on tbr failed: Device or resource busy

[root@desktop19 ~]# umount /dev/mapper/tbr

(7).关闭锁

[root@desktop19 ~]# df

Filesystem 1K-blocks Used Available Use% Mounted on

/dev/vda1 10473900 3809024 6664876 37% /

devtmpfs 927072 0 927072 0% /dev

tmpfs 942660 84 942576 1% /dev/shm

tmpfs 942660 17092 925568 2% /run

tmpfs 942660 0 942660 0% /sys/fs/cgroup

2.加密磁盘的永久挂载

[root@desktop19 ~]# df                 ##当前状态/dev/mapper/tbr并未挂载到/mnt下

Filesystem     1K-blocks     Used     Available     Use%     Mounted on

/dev/vda1      10473900     3809024     6664876     37%       /

devtmpfs       927072       0            927072     0%        /dev

tmpfs          942660       84           942576     1%        /dev/shm

tmpfs          942660       17092        925568     2%        /run

tmpfs          942660       0            942660     0%        /sys/fs/cgroup

[root@desktop19 ~]# vim /etc/crypttab

tbr                 /dev/vdb1     /root/lukspsfile

||                     ||             ||

解密后设备管理文件     设备         加密字符存放文件

[root@desktop19 ~]# vim /root/lukspsfile     ##配置加密字符存放文件

tbr952q8                                     ##加密时用的密码

[root@desktop19 ~]# chmod 600 /root/lukspsfile      ##修改加密配置文件的权限为只有root可rw

[root@desktop19 ~]# cryptsetup luksAddKey /dev/vdb1 /root/lukspsfile

Enter any passphrase:

                                                    ##关联磁盘,加密文件

[root@desktop19 ~]# vim /etc/fstab                  ##设置开机自动挂载

/dev/mapper/tbr /mnt xfs defaults 0 0

[root@desktop19 ~]# reboot                          ##重启

[root@desktop19 ~]# df                              ##当重启之后/dev/mapper/tbr就已经挂载到/mnt下了

Filesystem     1K-blocks     Used     Available     Use%     Mounted on

/dev/vda1     10473900     3808176     6665724     37%         /

devtmpfs       927072       0          927072      0%          /dev

tmpfs          942660       84          942576     1%          /dev/shm

tmpfs          942660       17036       925624     2%          /run

tmpfs          942660       0           942660     0%          /sys/fs/cgroup

/dev/mapper/tbr 96940       5176         91764     6%          /mnt

3.加密清除

[root@desktop19 ~]# vim /etc/fstab          ##删除开机自动挂载的配置

/dev/mapper/tbr     /mnt     xfs     defaults     0     0         ##删除该行

[root@desktop19 ~]# > /etc/crypttab         ##删除

[root@desktop19 ~]# rm -fr /root/lukspsfile

[root@desktop19 ~]# umount /mnt/

[root@desktop19 ~]# cryptsetup close tbr

[root@desktop19 ~]# mkfs.xfs /dev/vdb1

mkfs.xfs: /dev/vdb1 appears to contain an existing filesystem (crypto_LUKS).

mkfs.xfs: Use the -f option to force overwrite.

[root@desktop19 ~]# mkfs.xfs /dev/vdb1 -f

meta-data=/dev/vdb1     isize=256     agcount=4, agsize=6400 blks

         =              sectsz=512    attr=2, projid32bit=1

         =              crc=0

data     =              bsize=4096    blocks=25600, imaxpct=25

         =              sunit=0       swidth=0 blks

naming   =version 2     bsize=4096    ascii-ci=0 ftype=0

log      =internal log  bsize=4096    blocks=853, version=2

         =              sectsz=512    sunit=0 blks, lazy-count=1

realtime =none          extsz=4096    blocks=0, rtextents=0

###########5.磁盘阵列############

软raid====硬raid

raid 0 1 5

0:2块磁盘同时存1份数据

1:2块磁盘同时存两份数据

5:0+1

1.创建磁盘阵列

监控命令:

[root@desktop19 ~]# watch -n 1 cat /proc/mdstat

Personalities : [raid1]

md0 : active raid1 vdb3[2](S) vdb2[1] vdb1[0]     ##(S)-spare表示该设备闲置

      102272 blocks super 1.2 [2/2] [UU]

(1).先创建3个磁盘,并依次将其id改为fd

Command (m for help): t

Partition number (1-3, default 3): 1

1e Hidden W95 FAT1 80 Old Minix

Hex code (type L to list all codes): fd         ##在L中查看id号是:fd Linux raid auto

Changed type of partition 'Linux' to 'Linux raid autodetect'

(2).创建磁盘阵列

[root@desktop19 ~]# mdadm -C /dev/md0 -a yes -l 1 -n 2 -x 1 /dev/vdb{1..3}

##-C 创建磁盘阵列     ##-a 如果文件不存在则自动创建     ##-l 磁盘阵列level(raid 0,1,5)

##-n 设备个数         ##-x 闲置设备个数

mdadm: Note: this array has metadata at the start and

    may not be suitable as a boot device. If you plan to

    store '/boot' on this device please ensure that

    your boot-loader understands md/v1.x metadata, or use

    --metadata=0.90

Continue creating array?

Continue creating array? (y/n) y

mdadm: Defaulting to version 1.2 metadata

mdadm: array /dev/md0 started.

[root@desktop19 ~]# mkfs.xfs /dev/md0

meta-data=/dev/md0     isize=256 agcount=4, agsize=6392 blks

         =             sectsz=512 attr=2, projid32bit=1

         =             crc=0

data     =             bsize=4096 blocks=25568, imaxpct=25

         =             sunit=0 swidth=0 blks

naming   =version 2    bsize=4096 ascii-ci=0 ftype=0

log      =internal log bsize=4096 blocks=853, version=2

         =             sectsz=512 sunit=0 blks, lazy-count=1

realtime =             none extsz=4096 blocks=0, rtextents=0

[root@desktop19 ~]# mount /dev/md0 /mnt/

2.删除磁盘阵列

(1).破坏md0中的vdb1,2--->删除md0中的vdb1,2---->注意:剩下最后一个vdb3只能用(2)之后的步骤来删除了

[root@desktop19 ~]# mdadm -f /dev/md0 /dev/vdb1 ##-f(faulty) 破坏md0的vdb1

[root@desktop19 ~]# mdadm -D /dev/md0      ##-D 显示md0的使用情况

/dev/md0:

    Version : 1.2

    Creation Time : Sat Nov 5 22:59:22 2016

    Raid Level : raid1

    Array Size : 102272 (99.89 MiB 104.73 MB)

    Used Dev Size : 102272 (99.89 MiB 104.73 MB)

    Raid Devices : 2

    Total Devices : 3

    Persistence : Superblock is persistent

    Update Time : Sat Nov 5 23:32:37 2016

    State : clean

    Active Devices : 2

    Working Devices : 2

    Failed Devices : 1

    Spare Devices : 0

    Name : desktop19.example.com:0 (local to host desktop19.example.com)

    UUID : 111646c2:8aa85c7a:c5f0b2c6:23a93cdc

    Events : 36

    Number     Major     Minor     RaidDevice     State

    2          253         19         0         active sync /dev/vdb3

    1          253         18         1         active sync /dev/vdb2

    0          253         17         -         faulty /dev/vdb1

[root@desktop19 ~]# mdadm -r /dev/md0 /dev/vdb1 ##-r(remove) 删除md0中的vdb1

[root@desktop19 ~]# mdadm -D /dev/md0

    Number     Major     Minor     RaidDevice     State

    2          253         19         0         active sync /dev/vdb3

    1          253         18         1         active sync /dev/vdb2

(补充:

[root@desktop19 ~]# mdadm -a /dev/md0 /dev/vdb1     ##-a(add) 添加vdb1到md0

[root@desktop19 ~]# mdadm -D /dev/md0

Number Major Minor RaidDevice State

2 253 19 0 active sync /dev/vdb3

1 253 18 1 active sync /dev/vdb2

3 253 17 - spare /dev/vdb1

[root@desktop19 ~]# mdadm -f /dev/md0 /dev/vdb3

mdadm: set device faulty failed for /dev/vdb3: Device or resource busy

##当破坏到vdb3的时候报错,只能使用以下步骤来继续删除

(2).卸载md0

[root@desktop19 ~]# umount /mnt/

(3).停止磁盘阵列md0

[root@desktop19 ~]# mdadm -S /dev/md0

mdadm: stopped /dev/md0

(4).依次删除磁盘阵列所用的磁盘

[root@desktop19 ~]# fdisk /dev/vdb

Command (m for help): d ##删除分区

Partition number (1-3, default 3):

Command (m for help): p ##显示该磁盘分区

Disk /dev/vdb: 10.7 GB, 10737418240 bytes, 20971520 sectors

Units = sectors of 1 * 512 = 512 bytes

Sector size (logical/physical): 512 bytes / 512 bytes

I/O size (minimum/optimal): 512 bytes / 512 bytes

Disk label type: dos

Disk identifier: 0x27721115

    

    Device  Boot     Start     End     Blocks     Id     System

Command (m for help): wq      ##保存退出

The partition table has been altered!

Calling ioctl() to re-read partition table.

Syncing disks.

[root@desktop19 ~]# partprobe  ##注意:做完之后不要忘记同步分区表

###########6.配额#############

超出的限额会在7天后清除。

注意:配额是针对于分区的,只在该分区里生效。是该用户在该分区下的限额。