You can use Object Storage Service (OSS) volumes in Container Service for Kubernetes (ACK) clusters. This topic describes the features, storage classes, use scenarios, limits, and billing rules of OSS volumes.

Only statically provisioned OSS volumes can be mounted to ACK clusters. Dynamically provisioned OSS volumes are not supported.

Features

OSS is a secure, cost-effective, and high-durability cloud storage service provided by Alibaba Cloud. OSS allows you to store large amounts of data in the cloud.

OSS provides rich security capabilities, including server-side encryption, client-side encryption, hotlink protection whitelists, fine-grained permission control, log auditing, and retention policies (WROM). OSS provides complete security protection for your data stored in Alibaba Cloud to meet your security and compliance requirements on enterprise data.

OSS storage classes

OSS provides the following storage classes to cover a variety of hot and cold data storage scenarios: Standard, Infrequent Access (IA), Archive, and Cold Archive. For more information, see Overview.

Scenarios

You can perform the following operations on an OSS volume to meet your business requirements.

Operation References
Store application data

For more information, see Mount a statically provisioned OSS volume.

Encrypt data stored in an OSS volume

ACK supports only the server-side encryption of OSS. For more information, see Server-side encryption.

For more information, see Encrypt an OSS volume.

Limits

The following section describes how to configure a statically provisioned OSS volume:

  • An OSS bucket can be shared by multiple pods.
  • To mount an OSS volume, do not specify subpath.
  • We recommend that you create a persistent volume (PV) for each application.
  • Only the CentOS, Alibaba Cloud Linux 2, and Alibaba Cloud Linux 3 operating systems are supported.
  • OSS is a Filesystem in Userspace (FUSE) file system that can be mounted by using OSSFS. This method is suitable for read operations. For example, you can use this method to read configuration files, video files, and images.
  • OSSFS is not suitable for write operations. If you require write operations, we recommend that you use Apsara File Storage NAS (NAS) file systems.
  • Compared with file systems in user space, file systems in kernel space offer higher stability and performance. We recommend that you use NAS file systems instead of OSS buckets in production environments.
  • You can modify parameter configurations to optimize OSSFS performance in caching and permission management. For more information, see FAQ about OSSFS, ossfs/README-CN.md, and FAQ.

Billing rules

For more information about the billing rules of OSS, see Overview.