Linux is not highly compatible with the Server Message Block (SMB) protocol. Therefore, we recommend that you mount an SMB file system on a Linux Elastic Compute Service (ECS) instance only if you want to share data across operating systems. This topic describes how to mount an SMB file system on a Linux ECS instance and perform read and write operations on the file system.
Prerequisites
A Linux ECS instance is available in the region where you create an SMB file system. For more information, see Creation methods.
ImportantWe recommend that you mount Network File System (NFS) file systems on a Linux ECS instance. Linux is not highly compatible with the SMB protocol. Therefore, we recommend that you mount an SMB file system on a Linux ECS instance only if you want to share data across operating systems.
If you use a version of Linux that is not in this list, errors may occur on the SMB client. If you use an unsupported version, Alibaba Cloud does not guarantee the reliability of SMB file systems.
One of the following Linux distributions is run on the ECS instance. Unless otherwise specified, this topic applies only to the following Linux distributions.
Operating system
Version
CentOS
CentOS 7.6 64-bit: 3.10.0-957.21.3.el7.x86_64 and later
Alibaba Cloud Linux
Alibaba Cloud Linux 2.1903 64-bit: 4.19.43-13.2.al7.x86_64 and later
Alibaba Cloud Linux 3.2104 64-bit: 5.10.23-4.al8.x86_64 and later
Debian
Debian 9.10 64-bit: 4.9.0-9-amd64 and later
Ubuntu
Ubuntu 18.04 64-bit: 4.15.0-52-generic and later
openSUSE
openSUSE 42.3 64-bit: 4.4.90-28-default and later
SUSE Linux
SUSE Linux Enterprise Server 12 SP2 64-bit: 4.4.74-92.35-default and later
CoreOS
CoreOS 2079.4.0 64-bit: 4.19.43-coreos and later
An SMB file system is created. For more information, see Create a General-purpose NAS file system in the NAS console.
A mount target is created. For more information, see Create a mount target.
The network is available.
The Linux ECS instance and the SMB file system reside in the same virtual private cloud (VPC).
The IP address of the Linux ECS instance is in the whitelist of the SMB file system and the ECS instance can access the SMB file system.
TCP port 445 is enabled for the ECS instance to access the SMB file system.
If port 445 is disabled, you must add a rule to the security group of the ECS instance for the port. For more information, see Add a security group rule.
Install a CIFS client
Before you mount an SMB file system on a Linux ECS instance, you must install a Common Internet File System (CIFS) client. After you configure the Linux ECS instance, you no longer need to configure the Linux ECS instance the next time you mount a file system on the instance.
Connect to the Linux ECS instance. For more information, see Connection methods.
Install a CIFS client.
Ubuntu and Debian
Install the CIFS client by using the apt-get package manager.
sudo apt-get update sudo apt-get install cifs-utilsRed Hat Enterprise Linux (RHEL), CentOS, and Alibaba Cloud Linux
Install the CIFS client by using the Yellowdog Updater, Modified (YUM) package manager.
sudo yum install cifs-utilsopenSUSE and SLES12-SP2
Install the CIFS client by using the Zypper package manager.
sudo zypper install cifs-utilsCoreOS
Install the CIFS client by performing the following steps:
Configure Security-Enhanced Linux (SELinux).
sed -i 's/SELINUXTYPE=mcs/SELINUXTYPE=targeted/' /etc/selinux/configCompile the CIFS client package on a CoreOS ECS instance.
You can perform the following steps to create a Fedora container and compile the CIFS client package. You can also download the CIFS client package that Alibaba Cloud provides for CoreOS, and then copy the package to the /tmp/ or /bin directory.
Create a Fedora container and compile the cifs-utils package.
docker run -t -i -v /tmp:/cifs fedora /bin/bashRun the following commands in sequence in the Docker environment:
yum groupinstall -y "Development Tools" "Development Libraries"yum install -y bzip2curl https://download.samba.org/pub/linux-cifs/cifs-utils/cifs-utils-6.9.tar.bz2 --output cifs-utils-6.9.tar.bz2;bunzip2 cifs-utils-6.9.tar.bz2 && tar xvf cifs-utils-6.9.tarcd cifs-utils-6.9; ./configure && makecp mount.cifs /cifs/exit
Mount the SMB file system
SMB file systems can be manually or automatically mounted on Linux ECS instances. Manual mounting is suitable for temporary mounting. If you manually mount a NAS file system on an ECS instance, you must remount the file system every time the ECS instance is started or restarted. Automatic mounting is suitable for persistent mounting. If you enable automatic mounting for a NAS file system, you do not need to remount the file system every time the ECS instance is started or restarted. To prevent the mount information from being lost after the ECS instance is restarted, we recommend that you enable automatic mounting for a NAS file system after you manually mount the file system.
Manually mount the file system
You must use the mount target of the SMB file system to mount the SMB file system on a Linux ECS instance.
Connect to the Linux ECS instance. For more information, see Connection methods.
Run the following command to mount the file system:
sudo mount -t cifs //file-system-id.region.nas.aliyuncs.com/myshare /mnt -o vers=2.1,guest,uid=0,gid=0,dir_mode=0755,file_mode=0755,mfsymlinks,cache=strict,rsize=1048576,wsize=1048576Command syntax:
sudo mount -t cifs //<Domain name of the mount target>/myshare <Mount directory> -o <Mount options>Parameter
Description
File system type
To mount an SMB file system on a Linux ECS instance, you must specify the
-t cifsparameter.Domain name of the mount target
The domain name of the mount target is automatically generated when you create the mount target. Replace the domain name with the actual value. To obtain the domain name of the mount target, perform the following steps: Log on to the NAS console. On the File System List page, click the file system ID. Click the Mount Targets tab. Then, move the pointer over the
icon in the Mount Target column. myshare
The name of the shared directory for the SMB file system. You cannot change the name after you specify this parameter.
Mount directory
The path of the directory on which the SMB file system is mounted. For example, you can specify /mnt/sharepath.
Mount options
Specify the required mount options by adding the
-oparameter in the mount command:vers: the version of the SMB protocol. Specify 2.1 or later for the option.
guest: the identity that you want to use to mount the file system. You must use the guest identity that is authenticated based on the New Technology LAN Manager (NTLM) protocol.
rsize: the maximum size of a data packet that the SMB client can read from the SMB file system. In most cases, set this option to 1048576 (1 MB).
wsize: the maximum size of a data packet that the SMB client can write to the SMB file system. In most cases, set this option to 1048576 (1 MB).
Specify the mount options by adding the
-oparameter:uid: the user to which the files in the file system belong after a successful mount. The default value of uid is 0.
gid: the user group to which the files in the file system belong after a successful mount. The default value of gid is 0.
dir_mode: the read, write, and execute permissions that you want to grant to the user on the specified directories. The value must start with 0, for example, 0755 and 0644. The default value of dir_mode is 0755.
file_mode: the read, write, and execute permissions that you want to grant to the user on files. The value must start with 0, for example, 0755 and 0644. The default value of file_mode is 0755.
mfsymlinks: specifies whether symbol links are supported.
cache:
If you set this option to strict, caching is enabled for the SMB client. The default value of cache is strict.
If you set this option to none, caching is disabled for the SMB client.
atime|relatime: If file access time does not affect your business, we recommend that you do not set this option to atime. The default value of this option is relatime.
NoteAn authorized administrator of the Linux ECS instance has full control over the SMB file system.
If you want to view the details of a mount target, run the
mount | grep cifscommand.We recommend that you use a Linux distribution whose kernel version is later than 3.10.0-514. If you use a Linux distribution whose kernel version is 3.7 or earlier, set the cache option to strict. You can run the
uname -acommand to view the kernel version.
Run the
mount -lcommand to view the mount result.If a command output similar to the following example appears, the file system is mounted.
After the file system is mounted, you can run the
df -hcommand to view the capacity of the file system.If the file system fails to be mounted, troubleshoot the issue. For more information, see Troubleshoot the failure of mounting an SMB file system on Linux.
Read data from and write data to the file system.
You can access the SMB file system the same way you access a regular directory. The following figure shows an example.
(Optional) Automatically mount the file system
You can configure the /etc/fstab file of a Linux ECS instance to automatically mount an SMB file system when the ECS instance is restarted.
Before you enable automatic mounting, make sure that the preceding manual mounting is successful. This prevents startup failures of the ECS instance.
Open the /etc/fstab configuration file.
//<Domain name of the mount target>/myshare /mnt cifs vers=3,guest,uid=0,gid=0,dir_mode=0755,file_mode=0755,mfsymlinks,cache=strict,rsize=1048576,wsize=1048576 0 0For more information, see Mount parameters. The following table describes the parameters that are not included in the preceding table.
Parameter
Description
0 (the first value after wsize)
Specifies whether to back up a file system by running the dump command. A non-zero value indicates that the file system is backed up. For a NAS file system, the default value is 0.
0 (the second value after wsize)
The order in which the fsck command checks file systems at startup. For a NAS file system, the default value is 0, which indicates that the fsck command is not run at startup.
Run the
rebootcommand to restart the ECS instance.ImportantIf you restart the ECS instance, services are interrupted. We recommend that you perform the operation during off-peak hours.
Verify that automatic mounting is enabled.
NoteYou can run the
df -hcommand to check the mounted NAS file system within one minute after the ECS restarts.
Scenarios
To ensure optimal performance of the file system, you can specify mount options based on specific scenarios. This section lists scenarios and the mount options that are suitable for each scenario:
Shared access to a file system from multiple Linux ECS instances
Multiple Linux ECS instances share access to a file system and no access control is required. In this scenario, you can use an authorized administrator of each ECS instance to mount the file system on the ECS instances. The following command shows an example:
mount -t cifs //file-system-id.region.nas.aliyuncs.com/myshare /mnt/sharepath -o vers=2.1,guest,mfsymlinksParameters:
file-system-id.region.nas.aliyuncs.com: the domain name of the mount target. Replace the domain name with the actual value. To obtain the domain name of the mount target, perform the following steps: Log on to the NAS console. On the File System List page, click the file system ID. Click the Mount Targets tab. Then, move the pointer over the icon in the Mount Target column. /mnt/sharepath: the path of the directory on which the file system is mounted. Replace it with the actual path.
Shared access from multiple Linux ECS instances to a home directory
Shared access to a file system from multiple Linux ECS instances that function as web servers
Shared access from both a Windows ECS instance and a Linux ECS instance to a file system
Access control
To grant different permissions to different users, NAS allows you to authenticate users and control access to SMB file systems based on an Active Directory (AD) domain. After the mount target of an SMB file system is joined to an AD domain, AD users can access the SMB file system. Then, you can control access to files and directories in the SMB file system based on the AD domain.
For more information, see Join the mount target of an SMB file system to an AD domain and Mount and use an SMB file system on a Linux client as an AD domain user.
References
For more information about how to back up data in an SMB file system, see Back up files from a General-purpose NAS file system.
You can also enable the recycle bin feature. If you accidentally delete files from a General-purpose NAS file system, you can use the recycle bin feature to restore these files and their metadata such as user identifiers (UIDs), group identifiers (GIDs), and access control lists (ACLs). For more information, see Recycle bin.
For more information about how to mount and access an SMB file system on an on-premises server or in a self-managed data center, see Access a file system from a data center.
To mount a file system across VPCs in the same region, or across different accounts and regions, use Cloud Enterprise Network (CEN). For more information, see Use CEN to mount a NAS file system across VPCs in the same region or Use CEN to mount a NAS file system across accounts and regions.