You can use Object Storage Service (OSS) volumes in Container Service for Kubernetes (ACK) clusters. This topic describes the features, storage types, use scenarios, limits, and billing rules of OSS volumes.

Only statically provisioned OSS volumes can be mounted to ACK clusters. Dynamically provisioned OSS volumes are not supported.

Features

OSS is a secure, cost-effective, and high-durability cloud storage service provided by Alibaba Cloud. OSS allows you to store large amounts of data in the cloud.

OSS provides rich security capabilities, including server-side encryption, client-side encryption, hotlink protection whitelists, fine-grained permission control, log auditing, and retention policies (WROM). OSS provides complete security protection for your data stored in Alibaba Cloud to meet your security and compliance requirements on enterprise data.

OSS storage classes

OSS provides the following storage classes to cover a variety of hot and cold data storage scenarios: Standard, Infrequent Access (IA), Archive, and Cold Archive. For more information, see Overview.

Scenarios

You can perform the following operations on an OSS volume to meet your business requirements.

OperationReferences
Store application data

For more information, see Mount a statically provisioned OSS volume.

Encrypt data stored in an OSS volume

ACK supports only server-side encryption. For more information, see Server-side encryption.

For more information, see Encrypt an OSS volume.

Limits

Only statically provisioned OSS volumes are supported. Dynamically provisioned OSS volumes are not supported. Take note of the following items when you create a statically provisioned OSS volume:
  • An OSS bucket can be shared by multiple pods.
  • When you mount an OSS volume, do not specify the subpath parameter.
  • We recommend that you create a separate persistent volume (PV) name for each application.
  • Only the CentOS and Alibaba Cloud Linux operating systems are supported by statically provisioned OSS volumes.
  • OSS is a Filesystem in Userspace (FUSE) file system that can be mounted by using OSSFS. This method is suitable for read operations. For example, you can use this method to read configuration files, video files, and images.
  • OSSFS is not suitable for write operations. If your service requires write operations, we recommend that you use Apsara File Storage NAS (NAS) file systems.
  • You can modify parameter configurations to optimize OSSFS performance in caching and permission management. For more information, see FAQ about OSSFS, ossfs/README-CN.md, and FAQ.

Billing rules

For more information about the billing rules of OSS, see Billing overview.