Cover image for Data Serving with FUJITSU Enterprise Postgres on IBM LinuxONE

Data Serving with FUJITSU Enterprise Postgres on IBM LinuxONE

Author Sam Amsavelu , Neeraj Arora , Nikhil Kumar Bayawat , Victoria Coates , Gary Evans , Y
Release Date: 2021/07/01
ISBN: 9780738459745
Topic:
0%
21
Chapters
0-1
Hours read
0k
Total Words
    Start Reading Now    
       Add to Wishlist       
View table of contents

Enterprises require support and agility to work with big data repositories and relational databases. FUJITSU Enterprise Postgres is one of the leading relational database management systems (RDBMSs), and it is designed to work with large data sets.

As more companies transform their infrastructures with hybrid cloud services, they require environments that protect the safety of their data and business rules.

At IBM®, we believe that your data is yours and yours alone. The insights and advantages that come from your data are yours to use in the pursuit of your business objectives. IBM is dedicated to this mission, and the IBM LinuxONE platform is designed around this core statement.

IBM LinuxONE is a secure and scalable data serving and computing platform that is made for today's critical workloads. IBM LinuxONE is an all-Linux enterprise platform for open innovation that combines the best of Linux and open technology with the best of enterprise computing in one system.

Combining FUJITSU Enterprise Postgres, which is a robust Relational Database Management System (RDBMS) that provides strong query performance and high availability (HA), with IBM LinuxONE can transform your application and data portfolio by providing innovative data privacy, security, and cyber resiliency capabilities, which are all delivered with minimal downtime.

This IBM Redbooks® publication describes data serving with FUJITSU Enterprise Postgres 12 that is deployed on IBM LinuxONE, which provides the scalability, business-critical availability, and security that your enterprise requires. This publication is useful to IT architects, system administrators, and others who are interested in understanding the significance of using FUJITSU Enterprise Postgres on IBM LinuxONE.

This publication is written for those who are familiar with IBM LinuxONE and have some experience in the use of PostgreSQL.

Table of Contents

  1. Front cover
  2. Notices
    1. Trademarks
  3. Preface
    1. Authors
    2. Now you can become a published author, too!
    3. Comments welcome
    4. Stay connected to IBM Redbooks
  4. Chapter 1. Customer value
    1. 1.1 Open standards that are enhanced with Fujitsu and IBM innovation
    2. 1.2 Compatibility with open source PostgreSQL
    3. 1.2.1 The most secure enterprise Postgres on IBM LinuxONE
    4. 1.2.2 Fujitsu support for the PostgreSQL community
    5. 1.2.3 Customer first support model: Free from penalties and prohibitive obligations
    6. 1.2.4 Beyond PostgreSQL: Fujitsu support for open source
    7. 1.2.5 IBM and open source
    8. 1.3 Cloud-native containerized FUJITSU Enterprise Postgres
    9. 1.3.1 Containerized FUJITSU Enterprise Postgres key benefits
    10. 1.4 Data security
    11. 1.4.1 Vulnerability management
    12. 1.4.2 Threat management
    13. 1.4.3 Transparent Data Encryption by using IBM Crypto Express adapters
    14. 1.4.4 Data masking: Policy-based dynamic data obfuscation technique
    15. 1.4.5 Dedicated Audit Logs
    16. 1.5 Data integrity
    17. 1.5.1 Data integrity as a state versus data integrity as a process
    18. 1.5.2 Data integrity and data security: The fine differences
    19. 1.5.3 Transaction log mirroring or WAL duplexing
    20. 1.6 IBM LinuxONE performance and scalability
    21. 1.7 Business continuity
    22. 1.7.1 Culture of resiliency through people, processes, and technology
    23. 1.7.2 RTO and RPO
    24. 1.7.3 High availability and scalability with FUJITSU Enterprise Postgres
    25. 1.7.4 Connection pooling, load balancing, and using Pgpool-II
    26. 1.8 Disaster preparedness
    27. 1.8.1 One-click backup and recovery by using WebAdmin
    28. 1.8.2 Backup and recovery by using IBM Spectrum Protect
    29. 1.9 Hybrid Transactional Analytical Processing: Merging Online Transaction Processing and Online Analytical Processing
    30. 1.10 Faster data consumption and memory optimization
    31. 1.10.1 Faster data load when using FUJITSU High-Speed Data Load
    32. 1.10.2 Reducing memory usage with FUJITSU Global Meta Cache
    33. 1.10.3 Comparing FUJITSU Enterprise Postgres 12 with open source PostgresSQL on IBM LinuxONE
    34. 1.11 FUJITSU Enterprise Postgres editions for IBM LinuxONE
    35. 1.12 Licensing
  5. Chapter 2. Introducing FUJITSU Enterprise Postgres features on IBM LinuxONE
    1. 2.1 Availability and reliability features
    2. 2.1.1 Database multiplexing
    3. 2.1.2 Server Assistant: Avoiding split-brain scenarios
    4. 2.1.3 Backup and recovery by using commands
    5. 2.1.4 Connection Manager
    6. 2.2 Security
    7. 2.2.1 FUJITSU Transparent Data Encryption
    8. 2.2.2 Data masking
    9. 2.2.3 Audit Log
    10. 2.3 Performance
    11. 2.3.1 Vertical Clustered Index: Increased aggregation performance
    12. 2.3.2 FUJITSU High-Speed Data Load: pgx_loader
    13. 2.3.3 Global Meta Cache
    14. 2.3.4 Performance tuning
    15. 2.3.5 Data compression by using IBM zEnterprise Data Compression
    16. 2.4 Fujitsu developed database management software
    17. 2.5 Application development features
    18. 2.5.1 Embedded SQL, Java, and Open Database Connectivity integration
    19. 2.5.2 Oracle compatible features
    20. 2.6 FUJITSU Enterprise Postgres supported open-source software peripheral devices
    21. 2.7 FUJITSU Enterprise Postgres data sheet
  6. Chapter 3. Lab environment overview
    1. 3.1 Overview
    2. 3.1.1 High availability lab environment for FUJITSU Enterprise Postgres 12 on Red Hat Enterprise Linux 8
    3. 3.1.2 High availability lab environment for FUJITSU Enterprise Postgres 12 on SUSE Linux Enterprise Server 12 SP4
    4. 3.1.3 Security feature lab environment for FUJITSU Enterprise Postgres 12 on Red Hat Enterprise Linux 8
    5. 3.1.4 Red Hat OpenShift lab environment for FUJITSU Enterprise Postgres 12
    6. 3.1.5 Application development feature lab environment with FUJITSU Enterprise Postgres 12
    7. 3.1.6 Summary of lab environment
    8. 3.2 FUJITSU Enterprise Postgres 12 server installation on LinuxONE
    9. 3.2.1 Prerequisites
    10. 3.3 Installing and configuring a stand-alone database instance on a Red Hat Enterprise Linux 8 guest
    11. 3.4 Installing and configuring a stand-alone database instance on a SUSE Linux Enterprise Server 12 Linux guest
  7. Chapter 4. Data security with Transparent Data Encryption, Data Masking, and Audit Log
    1. 4.1 LinuxONE cryptography
    2. 4.2 IBM LinuxONE cryptography features
    3. 4.2.1 Central Processor Assist for Cryptographic Function
    4. 4.2.2 CryptoExpress feature card
    5. 4.2.3 Trusted Key Entry workstation
    6. 4.3 Transparent Data Encryption
    7. 4.3.1 Overview
    8. 4.3.2 Benefits of using TDE
    9. 4.3.3 Architectural overview
    10. 4.3.4 Configuring TDE
    11. 4.3.5 Creating a TDE master key
    12. 4.3.6 Enabling encryption
    13. 4.3.7 Periodic operations
    14. 4.3.8 Changing the keystore passphrase
    15. 4.3.9 Backing up the keystore
    16. 4.3.10 Configuring the standby server to use TDE
    17. 4.4 FUJITSU Enterprise Postgres encryption on IBM LinuxONE with crypto cards
    18. 4.4.1 Overview
    19. 4.4.2 Benefits of using TDE on IBM LinuxONE
    20. 4.4.3 Architectural overview
    21. 4.4.4 Prerequisites
    22. 4.4.5 Configuring TDE on IBM LinuxONE
    23. 4.4.6 Creating a TDE master key
    24. 4.4.7 Enabling encryption
    25. 4.4.8 Creating encrypted tablespaces
    26. 4.4.9 Viewing the list of encrypted tablespaces
    27. 4.4.10 Managing the keystore
    28. 4.4.11 Configuring a standby server to use TDE on IBM LinuxONE
    29. 4.5 Data Masking feature
    30. 4.5.1 Overview
    31. 4.5.2 Benefits of using data masking
    32. 4.5.3 Architectural overview
    33. 4.5.4 Configuration parameters for the Data Masking feature
    34. 4.5.5 Creating the Data Masking extension
    35. 4.5.6 Enabling and disabling the Data Masking feature
    36. 4.5.7 How to use Data Masking
    37. 4.5.8 How to create Data Masking policies
    38. 4.5.9 How to alter Data Masking policies
    39. 4.5.10 How to delete Data Masking policies
    40. 4.5.11 Viewing the list of Data Masking policies in a database
    41. 4.5.12 Data Masking security notes
    42. 4.6 Audit Logging
    43. 4.6.1 Overview
    44. 4.6.2 Benefits of using Audit Logging
    45. 4.6.3 How to use audit logging
    46. 4.6.4 Transforming the output to SQL tables
    47. 4.7 Authentication
    48. 4.7.1 Host-based authentication
    49. 4.7.2 SCRAM
    50. 4.7.3 GSSAPI
    51. 4.7.4 CERT
    52. 4.7.5 PEER
  8. Chapter 5. High availability and high reliability architectures
    1. 5.1 FUJITSU Enterprise Postgres Database HA options
    2. 5.2 HA building blocks for FUJITSU Enterprise Postgres Database on Linux running on IBM LinuxONE
    3. 5.2.1 IBM LinuxONE Hardware provided HA
    4. 5.2.2 Operating system-provided high availability
    5. 5.2.3 Hypervisor (IBM z/VM)
    6. 5.2.4 FUJITSU Enterprise Postgres provided high availability
    7. 5.3 IBM LinuxONE with FUJITSU Enterprise Postgres Database: Considerations for high availability
    8. 5.3.1 Networking
    9. 5.3.2 FUJITSU Enterprise Postgres HA networking options
    10. 5.3.3 I/O channel failover considerations
    11. 5.3.4 More information about the LCSS
    12. 5.4 IBM LinuxONE with FUJITSU Enterprise Postgres Database: Examples for HA
    13. 5.4.1 FUJITSU Enterprise Postgres active-passive on a two-LPAR system
    14. 5.4.2 FUJITSU Enterprise Postgres active-passive mode on two IBM LinuxONE systems within the same data center
    15. 5.4.3 FUJITSU Enterprise Postgres active/passive mode on two IBM LinuxONE systems distributed across two data centers
    16. 5.4.4 Implementing an active/passive HA architecture when using a command-line interface
    17. 5.4.5 Implementing an active-passive high availability architecture by using the WebAdmin GUI
    18. 5.4.6 Simulating automatic failover
    19. 5.5 IBM LinuxONE with IBM z/VM live guest relocation for FUJITSU Enterprise Postgres Database
    20. 5.5.1 Single-system image clustered hypervisor with live guest relocation
    21. 5.5.2 LGR
    22. 5.5.3 Lab environment
    23. 5.5.4 Overview of the z/VM SSI cluster
    24. 5.5.5 Simulating a database workload
    25. 5.5.6 Relocating an active FUJITSU Enterprise Postgres Database by using LGR
    26. 5.5.7 Setup information
    27. 5.5.8 Simulating the client workload
    28. 5.5.9 Relocating the FUJITSU Enterprise Postgres Database Guest
    29. 5.5.10 Validating the relocation
  9. Chapter 6. Connection pooling and load balancing with Pgpool-II
    1. 6.1 Connection pooling
    2. 6.2 Pgpool-II
    3. 6.2.1 Pgpool-II features
    4. 6.3 Installing and configuring Pgpool-II for FUJITSU Enterprise Postgres
    5. 6.3.1 Installing and configuring Pgpool-II in a stand-alone configuration
    6. 6.3.2 Installing and configuring Pgpool-II in a highly available architecture
  10. Chapter 7. Application development, compatibility features, and migration
    1. 7.1 Application development by using database drivers
    2. 7.1.1 JDBC driver
    3. 7.1.2 ODBC driver
    4. 7.1.3 C library (libpq)
    5. 7.1.4 Embedded SQL in C
    6. 7.1.5 Application connection switch feature
    7. 7.1.6 Connecting an application to a database by using the application connection switch feature
    8. 7.2 Connection Manager
    9. 7.2.1 Configuring the Connection Manager
    10. 7.2.2 Using Connection Manager from an application
    11. 7.2.3 Connection Manager use case examples
    12. 7.3 Oracle compatibility features
    13. 7.3.1 Original Oracle compatibility functions
    14. 7.3.2 Oracle compatible functions that use orafce
    15. 7.4 Migrating to FUJITSU Enterprise Postgres
    16. 7.4.1 Migrating from OSS PostgreSQL to FUJITSU Enterprise Postgres
  11. Chapter 8. Database performance features of FUJITSU Enterprise Postgres
    1. 8.1 Vertical Clustered Index
    2. 8.1.1 VCI applicability
    3. 8.1.2 Benefits of VCI
    4. 8.1.3 VCI architecture
    5. 8.1.4 VCI use case scenarios
    6. 8.2 FUJITSU High-Speed Data Load (pgx_loader)
    7. 8.2.1 Verification
    8. 8.3 Global Meta Cache
    9. 8.3.1 Using the Global Meta Cache feature
  12. Chapter 9. Backup, recovery, and monitoring
    1. 9.1 Backup and recovery overview
    2. 9.1.1 Logical and physical backups
    3. 9.1.2 Logical backup
    4. 9.1.3 Physical backup
    5. 9.1.4 The pg_rman command for backup and recovery
    6. 9.1.5 Performing backup and recovery in a FUJITSU Enterprise Postgres high availability environment
    7. 9.1.6 Managing FUJITSU Enterprise Postgres backups with IBM Spectrum Protect
    8. 9.2 Optimizer hints
    9. 9.2.1 Overview
    10. 9.2.2 How to use optimizer hints
    11. 9.3 Locked statistics
    12. 9.3.1 Overview
    13. 9.3.2 How to use locked statistics
    14. 9.4 Monitoring
    15. 9.4.1 Overview
    16. 9.4.2 How to use pgBadger
    17. 9.4.3 How to use pg_statsinfo
  13. Chapter 10. FUJITSU Enterprise Postgres cluster on Red Hat OpenShift Container Platform
    1. 10.1 Container-based FUJITSU Enterprise Postgres
    2. 10.1.1 Containerized FUJITSU Enterprise Postgres Database on IBM hardware
    3. 10.2 Container orchestration: Red Hat OpenShift on an IBM infrastructure
    4. 10.2.1 Containers and Kubernetes
    5. 10.2.2 Red Hat OpenShift 4
    6. 10.2.3 Red Hat OpenShift 4 for Kubernetes developer experience
    7. 10.2.4 Modernizing core business applications by using IBM Cloud Paks
    8. 10.2.5 Private and public hosting options
    9. 10.2.6 Red Hat OpenShift on IBM LinuxONE: System requirements
    10. 10.2.7 Minimum system requirements
    11. 10.2.8 Preferred system requirements
    12. 10.2.9 Red Hat OpenShift Deployment procedure on IBM LinuxONE
    13. 10.2.10 Creating the Red Hat OpenShift cluster
    14. 10.2.11 Downloading the Red Hat OpenShift client
    15. 10.2.12 Preparing the ssh keys
    16. 10.2.13 Creating the installation configuration file
    17. 10.2.14 Creating the Kubernetes manifest and ignition config files
    18. 10.2.15 Creating the cluster
    19. 10.2.16 Installing the NFS server and setting up a storage class in Red Hat OpenShift Container Platform
    20. 10.2.17 Installing IBM Spectrum Virtualize and setting up a storage class
    21. 10.3 FUJITSU Enterprise Postgres on Red Hat OpenShift
    22. 10.3.1 Multi-architectural container images
    23. 10.3.2 FUJITSU Enterprise Postgres server
    24. 10.3.3 FUJITSU Enterprise Postgres Operator
    25. 10.4 FUJITSU Enterprise Postgres Operator operations
    26. 10.4.1 FUJITSU Enterprise Postgres Operator installation
    27. 10.4.2 Deploying a single-node FUJITSU Enterprise Postgres cluster by using the command-line interface
    28. 10.4.3 Deploying a single node FUJITSU Enterprise Postgres cluster by using the Red Hat OpenShift console
    29. 10.4.4 Deploying a three-node HA FUJITSU Enterprise Postgres cluster by using a Red Hat OpenShift console
    30. 10.4.5 Changing FUJITSU Enterprise Postgres cluster configurations
    31. 10.4.6 Changing the FUJITSU Enterprise Postgres cluster configuration by using the Red Hat OpenShift console
    32. 10.5 FUJITSU Enterprise Postgres cluster CR configuration file explanation
  14. Appendix A. Version upgrade guide
    1. Overview of pg_upgrade for major version upgrades
    2. Using pg_upgrade
  15. Appendix B. Sizing guide
    1. General recommendations
    2. Sizing a database server
    3. Proof of concept architecture
    4. FUJITSU Enterprise Postgres benchmark on IBM LinuxONE white paper
  16. Appendix C. Patching guide
    1. Package operations by using a downloaded RPM
  17. Related publications
    1. IBM Redbooks
    2. Online resources
    3. Help from IBM
  18. Back cover