I mean some support of clustering by software itself
First of all, such SAN must be very reliable itself. Second, it must
support some kind of global locking mechanism, so several nodes can
use lock to protect file from simultaneous writing. Third, Cyrus IMAP
must lock mailboxes, so several instances on different server can work
with one mailbox without conflicts. Whether Cyrus IMAP use locks or
assumes that he is the only one who access mail box, I don't know. Can
it safely access one mailbox from different servers, I don't know too.
---
Yes, I know. But the latest version of MySQL can use on disk
(non-indexed) tables fields. I don't think that I need search by
letter content. If I will need it (of course, via web-interface), I
think I can make that feature.
I will look at DbMail too. Generally, I don't need exactly MySQL. I
just want to build load-balanced mail system. Probably, based on
Postfix + Cyrus IMAP + Squirrel Mail. I have found some links that may
be useful but didn't look at them yet.

http://cyrusimap.web.cmu.edu/ag.html
http://www-uxsup.csx.cam.ac.uk/~dpc22/cyrus/replication.html
http://cyrusimap.web.cmu.edu/imapd/install-replication.html

First of all, Cyrus IMAP has feature called "Cyrus IMAP Aggregator":
"The Cyrus IMAP Aggregator transparently distributes IMAP and POP
mailboxes across multiple servers. Unlike other systems for load
balancing IMAP mailboxes, the aggregator allows users to access
mailboxes on any of the IMAP servers in the system." Probably, it's
what I want.

Also, there is Cyrus IMAP replication.But some people says that there
can be lost letters during failover. And, of course, "use at your own
risk".

For now I see two ways to build load-balanced mail system:
1) Some kind of shared storage. It may be NFS-like global filesystem
or MySQL database.
2) Mailbox replication. It can be done by Cyrus IMAP replication or by
some other software.

Perhaps, there are other ways. I will look...

Thanks.

Bron,

would you be willing to share those monitoring scripts?

TIA

Rudy

I've come to a sligthly different conclusion after pondering on the
"perfect IMAP solution" topic.

I've thought about the following type/group of servers:
- "traditional" mailbox servers, which speak protocols like imap and pop
to the user
- object servers, which store key/value pairs and basically nothing more
- metadata servers, which store the needed metadata to serve the e-mails
(could be the same group as the object servers)
- directors, which would manage all the data (object and meta) on the
storage servers and direct the clients (the mailbox servers) to the
right one

The basic principles would be:
- object servers can be dumb, their all purpose is to store the value (a
blob) with a key (identifier to them)
- object servers report to the directors regularly, so the directors
know how much space is there, what keys are stored there and how loaded
is the given server at the moment
- metadata servers store everything, which is now stored in a directory
structure or in different databases (bdb, skiplist, others) in cyrus
backends, they know that a folder in user's mailbox consists of what
keys, stores meta information to the e-mails (headers, maybe keywords
from the e-mail for faster searching, etc)
- delivery to the system would happen by first split the e-mail to
different parts (metadata and data, data into mime parts, etc). Then
each of the data would be checksummed (for example with SHA1) and stored
into one (or more, depends on the design) object server along with the
metadata for the aproppriate servers.
- directors would then notice (by the object servers announcing them, or
the mailbox servers asked them where to store the given object) the new
object, distributed between themselves (for redundancy)
- fetching e-mails (like fetching them from the filesystem now) would
involve metadata, director lookups (where is the information) and
finally one or more object store get operation
- the mailbox servers could do some compression and/or encryption on the
contents they store in the metadata/object servers
- the directors play a role of a global broker for the data, so every
transaction would flow through them. This gives the ability of
implementing storage-hierarchies (where there are multiple level of
servers and a given information could be kept in geographically
different location for redundancy, availability or speed) and automatic
leveling, so you could keep each of your object servers busy (both in
the terms of disk space and CPU/IO capacity) and equal the load among them.

Obvious benefits:
- if there is a pdf attachment flowing around in 100.000 people's
mailbox, it will be stored exactly once, regardless of the surrounding
e-mail
- you can choose to replicate a given object to any number of servers.
If you combine this with this with crypto, you can even store
information on untrustworthy computers (you can use your spare diskspace
from your dns servers for example)
- you can pull out and start a new storage server any time, you just
have to tell the broker not to direct connections to there (if the data
is replicated to at least one other box), or migrate them to another
servers (if you don't do replication). Installing a new server is as
simple as adding it's IP to the directors, they notice that there is an
effectively unused, empty system, so a slow migration (leveling) starts,
maybe according to the usage statistics of the object servers, so "hot"
object would be moved first
- you could install an in-memory (or a local disk-backed) object cache
for each mail frontend, so heavily used objects would remain local to them

etc, etc

It seems to be simple in mind (of course there are a lot more details
inside), a little harder to code, but not impossible. The hardest part
seems to be the directors and the metadata servers, then the
modifications to the mail server (eg. cyrus) and the object store (which
is painly simple).

Speaking for existing components, I think memcached could be used (the
protocol and the server implementation) for the object storage
(complemented with a disk based store on the object servers and a
transactional layer, which would ask for servers from the directors),
and maybe an SQL based DB for the metadata store (with some replication).

Any takers? :)

Yes, I need the cluster exactly. Have I lots of domains, I could store
mailboxes of each domain on separate server. But I have only one big
domain. So, I need to spread mailboxes on one domain across several
servers. And than I need very clever load-balancer that will send
request to server where particular mailbox is. I don't know such
balancers aware of mail system structure.

Another way is to try to use something like GFS, constructed from
several servers. Each server will contain one portion of data and will
have Cyrus IMAP instance. But GFS will be mounted to each server, so
each Cyrus IMAP instance will see whole filesystem. Of course, here we
have same possible lock issues as with NFS. And we have no redundancy,
as I understand.
So, I need cluster for reliability to. I want to have each mailbox at
least on two servers (or to have shared storage upon two-nodes
failover cluster), so I can survive crash of any node (and not only of
disk system, that can be protected by RAID, but CPU crash, memory...)
with minimal recovery time.

That doesn't scale forever unfortunately, though you can get pretty
beefy, eventually you need to scale sideways. Once you're scaling to
multiple machines you need a proxying frontend of some sort (murder or
our perdition/nginx solution, take your pick) and this all becomes a lot
easier.

Also it means you don't have hot spare hardware (or cold spare hardware)
sitting in your datacentre doing nothing if you're willing to take the
time to make multiple cyrus instances work on the same machine. Then
you can have both masters and replicas on the same host, and just switch
one up to be a master when the other dies.

Bron.

Dear Sarah

thank you for your thorough answer !

maybe we can wait and see if Cyrus 2.3.7 and mupdate
can do the job along with FreeBSD+PEN+VRRPD...i´ll test it.

best regards,

Actually, only a single process can be writing to a mailboxes
database at a time.
I'm not sure why closing the database between changes might be
important. Multiple imapd processes on backends all access the same
mailboxes database. Writes are serialized with locks. If a network
filesystem implements these locks correctly, there's no reason why
you couldn't run multiple "backends" against a single redundant
filesystem. There are a number of examples of people doing this.

:wes

Hi Sarah,

I'm really confused now.

1) You are talking about NAS as a possible solution and I don't know how
that should work if NFS doesn't work. Until now I thought a NAS device is
an embedded fileserver which can be accessed using different network
filesystems like SMB/CIFS, NFS or whatever. As long as it doesn't provide
proper locking (which may only be true if it provides NFSv4), it will
never work as a shared storage among more than one cyrus-imapd server.

2) Several people on this list have confirmed that they are running
cyrus-imapd clusters on shared storage (SAN) which works fine with a
cluster filesystem. That tells me that shared access to cyrus databases
works fine as long as the filesystem used provides proper locking, which
means in case of a cluster that the cluster filesystem has to coordinate
locking among all cluster members. Isn't that the main reason why those
filesystems exist?

3) I don't think the reliability of an appliance hardware is any better
than good server and SAN components. In fact most appliances I saw are
simply relabeled DELL or Intel OEM hardware. What you say may be true for
the installed software but I don't think it's true for the hardware.

The whole high availability thing has been discussed on this list so many
times and I'm a bit confused again. It's a really interesting topic.

Simon

I seem to recall that's what they do with Zimbra. Not only something
like the mailboxes.db in MySQL, but also the Cyrus cache files within
each folder, and the squat index. I believe they now also leverage
this for fast cross-folder searching. However, like Cyrus, the
messages remain as individual files in the filesystem.
I believe BerkelyDB now supports clustering, but I suspect that would
cause some to shudder at the thought of such a thing. ;-)

We also have had good experience with a PostgreSQL cluster that we use
in conjunction with our RADIUS servers.

Amos

While I agree that avoiding berkeley DB is a good thing, are you really
sure that the cluster won't work with it? What is really different between
using berkeley or skiplist DB for the cluster? I'm also running without
BDB but I want to understand how berkeley databases are different to
skiplist databases in a cluster situation.

Regards,
Simon