Mercurial > repos > enis > gcp_batch_netcat

view gcp_batch_netcat.xml @ 13:be2f70ae6749 draft default tip

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
planemo upload for repository https://github.com/afgane/gcp_batch_netcat commit 2435de746d841f314b70f6257de0a3abaf77ec90
author enis
date Fri, 15 Aug 2025 13:14:31 +0000
parents 3fd12035e6c9
children
line wrap: on
line source

<tool id="gcp_batch_netcat" name="GCP Batch Netcat" version="0.2.0">
    <description>Submit a job to GCP Batch to test network connectivity.</description>
    <requirements>
        <container type="docker">afgane/gcp-batch-netcat:0.2.0</container>
    </requirements>
    <command><![CDATA[
python3 '$__tool_directory__/gcp_batch_netcat.py'
--output '$output'
--project '$project'
--region '$region'
--service_account_key '$service_account_key'
--network '$network'
--subnet '$subnet'
--nfs_address '$nfs_address'
    ]]></command>
    <inputs>
        <param name="region" type="text" label="GCP Batch Region" optional="false" help="Region where the Batch job will run (e.g., us-central1)"/>
        <param name="network" type="text" label="GCP Network name" optional="false" help="VPC network name where Galaxy is deployed"/>
        <param name="subnet" type="text" label="GCP Subnet name" optional="false" help="Subnet name where Galaxy is deployed"/>
        <param name="nfs_address" type="text" label="NFS Server Address" help="The LoadBalancer external IP address of the NFS server (e.g., 10.150.0.17). This must be the external IP, not the internal ClusterIP." optional="false"/>
        <param name="service_account_key" type="data" format="json" label="GCP Service Account Key File" help="JSON key file for GCP service account with Batch API permissions"/>
        <param name="project" type="text" label="GCP Project ID" help="The ID of the GCP project to use. If not provided, will be extracted from the service account key." optional="true"/>
    </inputs>
    <outputs>
        <data name="output" format="txt"/>
    </outputs>
    <help><![CDATA[
    <help><![CDATA[
**What it does**

This tool submits a job to GCP Batch to test network connectivity and NFS mounting between Batch workers and your NFS server. It uses a custom Galaxy VM image and provides comprehensive testing including NFS mount operations, CVMFS repository access, and directory listings to help identify connectivity issues in Galaxy deployments on Google Kubernetes Engine (GKE).

**Test Capabilities**

The tool performs comprehensive testing using a container running on the custom `galaxy-k8s-boot-v2025-08-10` VM image:
- Network connectivity test (netcat to port 2049)
- NFS mount test with both NFSv3 and NFSv4
- Directory listing of the NFS share
- Galaxy-specific directory detection
- CVMFS repository access test (via bind mount from host VM)
- Galaxy reference data verification
- Disk usage and mount information

**Architecture**

The tool uses a hybrid approach:
- **Host VM**: Custom `galaxy-k8s-boot-v2025-08-10` image with CVMFS client and NFS utilities
- **Container**: `afgane/gcp-batch-netcat:0.2.0` with network testing tools
- **Bind Mount**: `/cvmfs` from host VM is bind-mounted into the container for CVMFS access

**Required: NFS LoadBalancer External IP**

You must provide the external IP address of your NFS server's LoadBalancer service. This is crucial because:
- Galaxy sees the NFS server via its internal ClusterIP (e.g., 10.96.0.1)
- GCP Batch jobs run outside the cluster and need the LoadBalancer external IP (e.g., 10.150.0.17)

**Finding Your NFS LoadBalancer IP**

To find the correct IP address, run:
```
kubectl get svc | grep nfs
kubectl get svc <nfs-service-name> -o wide
```

Look for the "EXTERNAL-IP" column for LoadBalancer type services.

**Important: LoadBalancer Configuration**

For NFS connectivity from GCP Batch jobs, your NFS server must be exposed via a LoadBalancer service with an external IP. The tool also requires:
- NFS ports (2049, 111, 20048) accessible from external networks
- Proper NFS export configuration allowing external mounts
- VM runs with sufficient privileges for mount operations

**Troubleshooting Results**

The tool provides detailed diagnostics:
- **Network connectivity success + NFS mount success**: Everything working correctly
- **Network connectivity success + NFS mount failure**: Network works but NFS configuration issues
- **Network connectivity failure**: Firewall or LoadBalancer configuration issues
- **CVMFS mount success/failure**: Indicates broader network connectivity and VM image capabilities

**Best Practices**

1. Ensure your NFS service is exposed as type LoadBalancer with an external IP
2. Verify GCP firewall rules allow traffic from Batch subnet to NFS LoadBalancer IP on ports 2049, 111, and 20048
3. Check NFS export configuration allows mounting from external IPs
4. Test the connection manually: `telnet <EXTERNAL-IP> 2049`
5. Verify the custom VM image is available in your GCP project
    ]]>

    ]]></help>
</tool>