XCP-ng
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Performing automated shutdown during a power failure using a USB-UPS with NUT - XCP-ng 8.2

    Scheduled Pinned Locked Moved Compute
    32 Posts 15 Posters 22.3k Views 17 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H Offline
      Hannes_5253 @olivierlambert
      last edited by Hannes_5253

      @olivierlambert Oh man, only saw this answer because I went back to my old post. I will do a full guide when I have some time and send it to you.

      1 Reply Last reply Reply Quote 2
      • H Offline
        Hannes_5253 @olivierlambert
        last edited by Hannes_5253

        @olivierlambert
        I wrote down the to-dos. You can use it for the official docs if you like! When you have questions, just answer on this Post.

        Network UPS Tools
        Installation on XCP-ng Host

        At first: Connect your UPS.
        Then run this commands to install NUT:

        yum update
        
        yum –enablerepo=* install epel-release
        
        yum install nut
        
        yum install nut-client
        
        cd /etc/ups
        
        wget https://github.com/serrc-techops/NUT-Configuration/blob/master/slave/xen/xen-shutdown.sh
        
        chmod +x xen-shutdown.sh
        

        Important Commands

        • upsc apcups (check UPS connection)

        • systemctl restart nut-server
          (NUT-server reboot) | (Use this to apply configuration changes and to connect the UPS after System startup)

        • systemctl restart nut-monitor (NUT-monitor restart)

        • nut-scacnner -U (shows connected devices)

        Configure the files stored in /etc/ups like this:
        upsmon.conf

        RUN_AS_USER root
        MONITOR apcups@localhost 1 admin [PASSWORD] master
        SHUTDOWNCMD „/etc/ups/xen-shutdown.sh“
        

        nut.conf

        MODE=netserver
        

        ups.conf

        pollinterval = 1
        maxretry = 3
        [apcups]
        driver = usbhid-ups 
        #->when you use USB devices
        port = auto
        desc = „[NAME]“
        vendorid = [VENDORID]
        productid = [PRODUCTID]
        serial = „[SERIALNO]“
        

        upsd.conf

        LISTEN 0.0.0.0 3493
        

        upsd.users

        [admin]
        password = [PASSWORD]
        actions = set
        actions= fsd
        instcmds = ALL
        

        Finish config Changes

        systemctl restart nut-server
        systemctl restart nut-monitor
        

        Finished
        Good to know: You can now also connect to your NUT server via the pfSense plugin by using the credentials in uspd.users to have a gui for your UPS. To do this you have to open up Port 3493 on your host.
        Run this command to open the Port:

        iptables -I INPUT -p tcp -m tcp --dport 3493 -j ACCEPT
        

        Then save your changes to a config file and adjust Year, Month and Day in the config name. In my case it's the 22th of december in 2022:

        iptables-save > /etc/sysconfig/iptables
        mkdir /etc/iptables/
        iptables-save > /etc/iptables/rules_2022-12-22_INPUT_ACCEPT_3493_NUT.v4 --> Optional, extra saving for Backups.
        

        I recommend using this convention of naming your rule files. Its a lot easier to track your changes and to restore files.

        lkniteL 1 Reply Last reply Reply Quote 3
        • lkniteL Offline
          lknite @Hannes_5253
          last edited by lknite

          @Hannes_5253 awesome! Thank you for this posting, it's helping me to get a nut client installed. Note for folks coming across this later I needed to use the following to install the nut-client:

          yum -y install nut-client --enablerepo=epel
          

          It would be cool if xcp-ng came pre-installed with nut-client and a default configuration that shuts down the xen server & turns off the ups after it finishes shutting down... similar to how truenas has a service which can be enabled to do so. You'd have to configure it of course, with the nut server to monitor, credentials, and some other options such as whether to actually powerdown the ups after shutting down or not, but maybe through a nice gui after turning it on. Seems like everyone should be using this setup ... just a matter of time till they are ready to.

          Another reason this would be nice to be integrated, is that docs recommend setting up a user account for nut, one for the monitor so clients can access and another for the shutdown so one of the watchers doesn't change the shutdown script & nut provides a file that indicates when the ups should shutdown, so having that be the same on all xcp-ng systems rather than custom solution would be good.

          H 1 Reply Last reply Reply Quote 4
          • H Offline
            Hannes_5253 @lknite
            last edited by Hannes_5253

            @lknite Glad I could help and I agree. 👍🏻

            1 Reply Last reply Reply Quote 0
            • olivierlambertO Offline
              olivierlambert Vates 🪐 Co-Founder CEO
              last edited by olivierlambert

              Hi,

              Sadly, this use case is more meant for "non server-grade", where your machine isn't hosted in a datacenter (which is the default XCP-ng target/market).

              However, I'm not against helping people doing the configuration or having an official guide to document it (I mean, in our doc)

              Keep in mind we are always trying to find a balance between maintaining something (meaning time+money over other features) vs where the money is coming from (companies paying for support). If we pre-install all of this, it means we'll need to maintain it, while we still have a huge backlog of critical feature for our main (paying) target 🙂 I hope you understand. Also, if we succeed and continue to grow that way with a far larger team than today, we could probably use that extra money from companies to improve integrations for the rest. But before doing it, we need to focus.

              2b2bff2 1 Reply Last reply Reply Quote 2
              • 2b2bff2 Offline
                2b2bff @olivierlambert
                last edited by

                @olivierlambert I wonder how datacenters are doing this then in case of power loss? Or isn't that something of their concern?

                1 Reply Last reply Reply Quote 1
                • olivierlambertO Offline
                  olivierlambert Vates 🪐 Co-Founder CEO
                  last edited by olivierlambert

                  In a DC, you have usually 2x power feed per rack (one on the left, one on the right). So even if one power line/feed is down, it's not a problem, since all your machines are usually dual PSU.

                  Also, everything is backed by UPS (both feeds) inside the building, and then diesel generators are taking the load after 10/15 minutes (diesel takes few minutes to start).

                  So in a colo, you will never have to get your own UPS.

                  2b2bff2 1 Reply Last reply Reply Quote 1
                  • 2b2bff2 Offline
                    2b2bff @olivierlambert
                    last edited by

                    @olivierlambert in simple words: they just don't shut down. And if they would have to there are bigger problems to solve.
                    Thanks for answering...

                    gskgerG 1 Reply Last reply Reply Quote 1
                    • gskgerG Offline
                      gskger Top contributor @2b2bff
                      last edited by gskger

                      @2b2bff I think that there are still some business scenarios, where this functionality would come in handy.

                      For example, we are running server rooms at our main production sites worldwide (no data centers, no colo, all on-site). Each features a three VMware hosts cluster with shared storage, backup, switches, and firewalls in an air-conditioned server room with adequate fire prevention/protection. All have two power feeds (A and B or left and right as Olivier called them) and all systems have dual PSUs, but the sites usually have only one power supplier and no generators.

                      Feed A goes to an UPS and feed B directly to the power line. If the power goes down, the UPS automatically triggers the vCenter, storage and backup to shut down when the UPS remaining runtime is below a certain threshold.

                      But I can perfectly understand Oliviers reasoning and there are workarounds. It all depends on your risk appetite (if that is a word in English).

                      2b2bff2 1 Reply Last reply Reply Quote 1
                      • 2b2bff2 Offline
                        2b2bff @gskger
                        last edited by

                        @gskger yeah same on my place. I play around with xcp-ng at home, where this is not important, and there is no UPS. So it is not important here.
                        But I have built two hosts at work in a server room as well. Together with TrueNAS and a couple of other things. The APC UPS has a management card, so it can be reached via network, but somehow the hosts have to shut down gracefully if needed. That's how I stumpled upon this thread in the first place.

                        1 Reply Last reply Reply Quote 1
                        • olivierlambertO Offline
                          olivierlambert Vates 🪐 Co-Founder CEO
                          last edited by

                          I'm not saying it's not important in general (it depends on the use cases) 🙂 But in our priorities (the "regular" DC world), it is not. For the "Edge computing" case, it might be more important, but the word "focus" doesn't have any meaning if we do everything at the same time.

                          And as usual, contributions are always welcome!

                          1 Reply Last reply Reply Quote 2
                          • O Offline
                            odeawan
                            last edited by

                            Would just having the nut client be sufficient enough on the base XCP-NG to tigger a shutdown via NUT? Maintaining the NUT server seems to be a hold up and add extra complexity for XCP-NG. We all may have different DC power situations, but we could all use tools in our belt at home or the data center.

                            H 1 Reply Last reply Reply Quote 0
                            • H Offline
                              Hannes_5253 @odeawan
                              last edited by

                              @odeawan Sure but you need a nut server. When you use the XCP-NG Server as a client you have to install the nut server on a different system. You can't install the nut server on a vm on the same host because the nut server must be installed on a system to shut down last.
                              So running this scenario is the most redundant and efficient way.

                              1 Reply Last reply Reply Quote 0
                              • O Offline
                                odeawan
                                last edited by

                                Well I still don't think it is out of scope then for just the NUT client for enterprises or HomeLabs on XCP-NG.

                                SBCs are everywhere these days. Using a Raspberry Pi as the NUT Server in a homelab or a flavor of a more robust server for NUT seems like a solid choice. No USB passthrough to worry about, uptime on a 1500VA+ UPS, forget about it! There are a handful of guides how to get it running for a Pi or anything else (including this post).

                                As I think this though, I would still feel ok with another external device watching, waiting, and notifying me on a successful power off of any number of my hosts and VMs. Not all enterprises or homelabs can afford (even if their appetites want it) to get enterprise level power automations. We have our power. Break the chain. @olivierlambert

                                1 Reply Last reply Reply Quote 0
                                • olivierlambertO Offline
                                  olivierlambert Vates 🪐 Co-Founder CEO
                                  last edited by olivierlambert

                                  Which chain? The development is open, if you want something, do it 🙂 If you want to be the maintainer so we can have it updated, packaged and put in our repo (even if not bundled by default), go ahead! If we think there's people behind it, we are not against, since it's an extra package.

                                  D 1 Reply Last reply Reply Quote 4
                                  • D Offline
                                    dj423 @olivierlambert
                                    last edited by dj423

                                    This post is deleted!
                                    1 Reply Last reply Reply Quote 0
                                    • N Offline
                                      nomad
                                      last edited by

                                      After NUT's grand reconfiguration there are a few things that you need to be aware of:

                                      In order to run NUT as a monitor to shut down your XCP-ng hypervisors it is no longer sufficient to just install nut-client and enable nut-monitor.

                                      You also need to install nut and enable nut.target or nut-monitor won't autostart. There won't be anything in journalctl either, since it isn't even trying to start - the thing that tells it to do so is the nut.target and if that's missing nothing will ever trigger.

                                      yum install nut nut-client --enablerepo=epel
                                      

                                      make your edits in nut.conf and upsmon.conf then

                                      systemctl enable nut.target 
                                      systemctl enable nut-monitor 
                                      systemctl start nut-monitor
                                      
                                      C 1 Reply Last reply Reply Quote 0
                                      • C Offline
                                        CodeMercenary @nomad
                                        last edited by

                                        @nomad What do you mean by the grand reconfiguration? Is there a new version that changes how things work?

                                        1 Reply Last reply Reply Quote 0
                                        • F FritzGerald referenced this topic on
                                        • S Offline
                                          samuelolavo
                                          last edited by

                                          Hello,

                                          I’ve been configuring NUT on XCP-ng 8.3 and had some trouble finding proper documentation. However, after going through the messages in this forum, I created a document that I believe might help others set up the NUT client on XCP-ng 8.3:
                                          https://github.com/samuel-olavo/xcp-ng-nutclient

                                          This method worked for me — tested and confirmed.

                                          Thanks everyone!

                                          ForzaF 1 Reply Last reply Reply Quote 3
                                          • ForzaF Offline
                                            Forza @samuelolavo
                                            last edited by Forza

                                            @samuelolavo, nice work! I wonder if it can be improved by using an independent machine/unit and login remotely via ssh and execute the script? This way we need no modification on xcp-ng dom0 itself.

                                            P 1 Reply Last reply Reply Quote 0
                                            • First post
                                              Last post