Persistent Block Storage for Kubernetes: SUSE Storage, powered by Longhorn

This article was written by Sushant Gaurav, Technical Engineer Writer at the SUSE Documentation Team.

When you run applications on Kubernetes, you need persistent storage. This storage retains data even if a pod restarts, crashes, or reschedules to another node. Kubernetes manages this through Persistent Volumes (PVs) and Persistent Volume Claims (PVCs), which allow applications to request and use storage resources.

But where does this storage come from? A Storage Provisioner handles this by dynamically creating and managing the actual storage that backs these PVCs.

So what makes it stand out? Let’s break down its key characteristics:

• Lightweight: Longhorn is resource-efficient and easy to deploy, eliminating the need for heavyweight storage stacks.
• Cloud native: It integrates deeply with Kubernetes, utilizing its APIs and concepts like Custom Resource Definitions (CRDs) and controllers.
• Distributed: Longhorn replicates data across multiple nodes to provide high availability and prevent data loss.
• Block Storage: Longhorn provides volumes as block devices, similar to hard drives or SSDs. This makes it ideal for databases, file systems, and stateful applications.
• Seamless Kubernetes Integration: It acts as a dynamic provisioner using Kubernetes StorageClass, which automates and declares persistent storage management.

But let’s dive even deeper!

1. Longhorn carves out a volume from the storage pool.
2. It replicates that volume across multiple nodes for data safety.
3. It then exposes the volume to the pod as a block device, ready for mounting and use.

Behind the scenes, Longhorn uses Kubernetes primitives and its own controller logic to automatically maintain, recover, and manage volumes.

• Snapshots for point-in-time recovery
• Backups to S3 or NFS-compatible targets
• Live volume migration across nodes
• Incremental backups and restores
• Metrics and monitoring via Prometheus

1. Creates a 10 GB volume.
2. Provisions three replicas across three different Kubernetes nodes.
3. Launches an engine on the same node as your application pod.
4. Handles input-output from the pod, syncing data across all replicas.
5. Allows you to take snapshots periodically.
6. Sends backups of those snapshots to an S3 bucket for disaster recovery.

• A Developer Creates a PVC The developer (or Helm chart, or operator) defines a PersistentVolumeClaim (PVC), for example, requesting 10Gi using the longhorn StorageClass.

• Kubernetes API Receives the Request The Kubernetes API server receives this PVC and holds it until a matching volume can be provisioned.

• Longhorn CSI Controller Steps In The longhorn-csi-plugin running in your cluster detects the PVC and forwards the request to the Longhorn Manager.

• Volume Planning by Longhorn Manager The manager creates a new internal Longhorn Volume object. It determines:

  • How many replicas to create
  • Which nodes and disks should host them
  • Ensures anti-affinity rules so that replicas do not reside on the same node

• Replica Deployment via Instance Managers The manager communicates with instance-manager pods on chosen nodes to initiate longhorn-replica processes. Each process allocates space on its local disk.

• PersistentVolume is Created Once all components are ready, the manager notifies the CSI controller, which creates a Kubernetes PersistentVolume (PV) and binds it to your original PVC.

• Pod is Scheduled Kubernetes schedules your pod (for example, a database) on a node. Kubernetes is aware that the pod needs the volume.

• CSI Node Plugin Engages The longhorn-csi-plugin running on the node (as a DaemonSet) receives a callback from the kubelet to handle attachment.

• Engine is Started The CSI plugin contacts the Longhorn Manager, which initiates a dedicated longhorn-engine process on the same node as the pod.

• Engine Connects to Replicas This engine connects with all the distributed replica processes to establish a data path and ensure everything is synchronized.

• Volume is Mounted Finally, the block device is exposed to the host and mounted into your container. Your application now recognizes a volume and can begin reading from or writing to it—as if it were a regular disk.

• All Writes Go Through the Engine Every write from the application is first handled by the longhorn-engine, which synchronously replicates the data to all replicas.

• Write Quorum Ensures Safety Longhorn waits for a quorum (majority) of replicas to acknowledge the write before confirming success to the application. This guarantees strong consistency.

• Reads Are Optimized For reads, the engine often retrieves data from the nearest healthy replica, which reduces latency and improves performance.

The engine serves as the real-time coordinator that keeps replicas synchronized, ensures durability, and handles any failovers if an issue occurs.

• Snapshots (Instant, Local) Snapshots capture the exact state of a volume at a specific point in time. They are incremental and stored within the volume’s replicas, making them fast and efficient.

• Backups (Off-Cluster, Durable) Snapshots can be exported to remote storage (such as S3, MinIO, or NFS) as backups. The manager handles this asynchronously, so it does not block your application’s I/O.

These features are ideal for disaster recovery, version rollback, and long-term archival.

• Replica Failures: If a replica or the node it resides on fails, Longhorn detects the failure. As long as a quorum of healthy replicas remains, the volume continues to function. Longhorn then identifies another healthy node, initiates a new replica, and rebuilds it by streaming data from the surviving replicas.

• Engine Failures (Pod Node Crashes): If the pod and engine’s node fails,

  1. Kubernetes reschedules the pod to a new node.
  2. Longhorn detects the failed engine and launches a new one on the new node.
  3. The new engine reconnects to the healthy replicas and resumes operations.

This self-healing mechanism ensures minimal downtime and no data loss.

• Kubernetes deletes the pod or PVC.
• The CSI plugin unmounts and detaches the volume.
• The engine is stopped.
• If the volume is deleted, all replicas and metadata are removed from the cluster.

• High Availability: Longhorn maintains multiple replicas of your volume, ensuring data availability even if a node fails. It also performs automatic failover and healing, which provides uninterrupted storage access.
• Fault Tolerance: Longhorn is designed to gracefully handle failures, whether from a node crash, disk failure, or network disruption.

This level of redundancy and resilience is characteristic of a top-tier storage system, and Longhorn provides it natively within Kubernetes.

• Space-Efficient: Only the changes since the last snapshot are stored, making them lightweight and scalable.
• Point-in-Time Recovery: If data is accidentally deleted or an application misbehaves, you can instantly roll back to a previous snapshot.
• System-Generated Snapshots: During critical operations, such as replica rebuilding, Longhorn automatically generates snapshots to maintain consistency.

• Disaster Recovery: Back up your volumes to S3-compatible storage (for example, AWS S3, MinIO, GCS) or network file systems.
• Long-Term Archival: This feature is ideal for retaining historical data for audits or regulatory requirements.
• Easy Restoration: Volumes can be restored to the same or a different cluster, offering genuine disaster recovery capabilities.

• Automated Scheduling: Set up recurring snapshots and backups directly from the Longhorn UI or through Kubernetes manifests.
• Retention Policies: Control the number of snapshots or backups to retain, ensuring storage efficiency without compromising safety.

• Visual Oversight: View the real-time health of nodes, disks, volumes, and replicas.
• One-Click Actions: Perform operations such as attaching, detaching, creating, snapshotting, backing up, and restoring directly from the browser.

• Shared Access: Multiple pods can read from and write to the same volume. This is ideal for shared Content Management Systems (CMS) or file-based applications.
• Built-In NFS Server: Longhorn uses a longhorn-share-manager component to expose volumes over NFS internally.

• Non-Disruptive Migration: Move a running volume with its application still writing data—from one node to another without downtime.

• Rolling Upgrades: Longhorn allows you to update its components (engine, manager, replicas) without affecting running workloads.

• Tiered Storage: Assign tags to disks and nodes for intelligent placement of replicas. For example, place performance-critical data on SSDs and backups on HDDs.

• At-Rest Encryption: Longhorn encrypts data using Linux’s dm-crypt and securely manages keys via Kubernetes Secrets.

• Live Resizing: Increase your volume size on the fly without stopping the application or unmounting the volume.

Where it is used:

• Retail stores
• Factory automation
• Telecom base stations
• Internet of Things (IoT) data collection at the edge
• Remote branch offices

In these environments, Longhorn transforms basic compute nodes into highly available, self-healing storage nodes, eliminating the need for external storage infrastructure.

Where it is used:

• Internal Continuous Integration and Continuous Delivery (CI/CD) pipelines
• Business applications (Customer Relationship Management [CRM], Enterprise Resource Planning [ERP])
• Development and staging environments
• Self-hosted services like GitLab, Jenkins, or databases

Longhorn enables smaller teams to maintain agility without sacrificing data persistence or reliability.

Where it is used:

• cloud native workloads optimized for cost efficiency
• Stateful services running on spot instances
• Applications with moderate input/output (I/O) needs but strong durability requirements

This approach is particularly beneficial when managing large-scale applications where the cost of each persistent volume accumulates.

Where it is used:

• Databases (PostgreSQL, MySQL, MongoDB)
• Queuing systems (Kafka, RabbitMQ)
• Stateful microservices
• In-memory data stores and distributed caches

It provides production-grade resilience without the overhead of complex traditional storage.

Where it is used:

• Internal developer platforms
• Infrastructure teams managing storage-as-a-service
• Teams with limited storage expertise but significant reliability objectives

Longhorn eliminates the need to manage external storage tools or Application Programming Interfaces (APIs), allowing platform teams to focus on their core responsibilities.

Where it is used:

• Local development clusters
• CI/CD testing pipelines
• Application prototyping and Quality Assurance (QA)

It assists development teams in testing stateful workloads without incurring the expense of external storage.

Where it is used:

• Critical data platforms
• Applications with regular versioning needs
• Any environment where data loss is not an option

Snapshots and backups can be automated, providing peace of mind with minimal manual effort.

• Control Plane: Orchestrates storage logic, such as determining where volumes and replicas should run, and managing metadata, snapshots, and backups.
• Data Plane: Performs the intensive tasks of actual data replication and input/output (I/O) on each node.

• Longhorn Manager: This is the central coordinating component for volumes, replicas, and storage actions.
• CSI Controller Plugin: This component interfaces with Kubernetes to fulfill volume provisioning requests.
• Longhorn UI: This is a web-based dashboard used to visualize and manage your volumes.

These components operate in close coordination with the Kubernetes API server to ensure volumes are optimally placed and managed.

• Instance Manager: This component acts as a node-local supervisor. It manages the lifecycle of Engines and Replicas on its respective node.
• CSI Node Plugin: This plugin mounts Longhorn volumes to your pods by interfacing with the kubelet.
• Longhorn Engine: This component serves data directly to your application and is always co-located with the application pod to ensure low latency.
• Longhorn Replica: These components are the actual data holders, storing the blocks on disk. Multiple replicas distribute across nodes for high availability.

Note: If a node crashes, Longhorn quickly rebuilds replicas on other healthy nodes, ensuring your data remains safe and accessible.

1. The Engine on the same node receives the I/O request.
2. It then synchronously replicates the data to other replicas across the network.
3. This process ensures real-time redundancy with minimal latency.

• Amazon S3
• NFS shares

Longhorn provides four primary methods to manage your storage setup: the Longhorn UI, kubectl, the Longhorn API, and Helm for installation and upgrades.

• Volume Management: Create, delete, attach, and detach volumes. Monitor volume health, performance metrics, and input-output (I/O) activity.
• Node Management: View available nodes, their disk capacity, and enable or disable volume scheduling per node.
• Disk Management: Define which disk paths Longhorn can use, add or remove disks, and configure disk tags.
• Snapshots and Backups: Manually or automatically take snapshots, back them up, and restore volumes as needed.
• Recurring Jobs: Schedule recurring snapshots and backups to maintain data protection policies.
• Monitoring and Charts: Gain visual insights into volume throughput, latency, and operations. For advanced monitoring, integrate with Prometheus or Grafana.
• Settings: Adjust global settings such as backup targets and replica balancing policies.

Accessing the UI: You can access the UI through a Kubernetes Ingress, a NodePort service, or by using kubectl port-forward on the longhorn-ui service.

• volumes.longhorn.io
• nodes.longhorn.io
• replicas.longhorn.io
• backups.longhorn.io
• settings.longhorn.io

Behind the scenes, the longhorn-manager acts as a Kubernetes controller that continuously reconciles the desired state (CRDs) with the actual state in the cluster.

• RESTful API: This is the same API used by the UI, enabling you to automate or extend Longhorn’s capabilities.
• OpenAPI/Swagger Documentation: The API is fully documented, making it easy to explore or generate Software Development Kits (SDKs).
• Integration Possibilities: Integrate Longhorn into your internal dashboards, monitoring systems, or provisioning workflows.

Access Point: The API is served via the longhorn-manager pods and is typically exposed through a Kubernetes service within the cluster.

• Deploy Longhorn using the official Helm chart.
• Configure global settings during installation (for example, replica count, backup targets).
• Easily upgrade versions or roll back if necessary.

• A Kubernetes cluster (version 1.25 or newer is recommended, please refer to the official documentation for compatibility with your specific Longhorn version).
• A compatible Container Storage Interface (CSI) and iSCSI setup on all nodes. This typically requires open-iscsi (or iscsid for some distributions) and privilege support on the nodes.
• Adequate local disk space on your nodes for volume replicas.

For detailed, step-by-step instructions, specific customizations, and comprehensive upgrade guidance, always refer to the official Longhorn documentation.

You can deploy Longhorn using the following methods:

• Install as a Rancher Apps & Marketplace: If you are using Rancher, Longhorn can be easily deployed through its integrated Applications & Marketplace (refer to the official guide for Rancher Apps & Marketplace installation).

• Install with Kubectl: For direct deployment using Kubernetes manifest files (refer to the official guide for Kubectl installation).

• Install with Helm: The recommended and most common method for deploying Longhorn (refer to the official guide for Helm installation).

• Install with Helm Controller: For automated deployment and management of Helm charts within Kubernetes (refer to the official guide for Helm Controller installation).

• Install with Fleet: For GitOps-driven deployment across multiple clusters using Fleet (refer to the official guide for Fleet installation).

• Install with Flux: For GitOps-driven deployment using Flux CD (refer to the official guide for Flux installation).

• Install with ArgoCD: For GitOps-driven deployment using ArgoCD (refer to the official guide for ArgoCD installation).

• Air Gap Installation: For deploying Longhorn in air-gapped environments without direct internet access (refer to the official guide for Air Gap installation).

• Synchronous Replication: Each volume has multiple replicas distributed across different nodes. Writes are synchronized in real-time to ensure no data loss during node failures.
• Automated Engine Failover: If the node hosting a pod and its volume engine fails, Kubernetes reschedules the pod elsewhere. Longhorn detects this failure and restarts the engine on the new node using healthy replicas.
• Automatic Replica Rebuilds: When a replica or its host goes offline, Longhorn automatically creates a new replica on a healthy node by copying data from the remaining healthy ones.

Longhorn supports an advanced V2 Data Engine built on SPDK; find more details here. This is ideal for workloads requiring ultra-low-latency and high IOPS, such as real-time analytics or databases.

• Ultra-high IOPS and throughput
• Minimal I/O latency
• Lower CPU utilization per I/O operation
• Hardware-agnostic via its block device layer (BDEV)
• Modular design for constructing custom storage stacks

For modern cloud native applications, these benefits translate into faster response times and improved efficiency.

• Incremental Snapshots: Create efficient, point-in-time copies of your volume for quick recovery.
• Cross-Cluster Backups to S3 or NFS: Protect your data by storing backups off-cluster, which is ideal for disaster recovery.
• Recurring Snapshot and Backup Jobs: Schedule automated protection routines to ensure that backup windows are never missed.

• open-iscsi and iscsid facilitate each node’s ability to discover and connect to Longhorn volumes.
• Some volume operations necessitate direct disk access, so Longhorn runs certain components as privileged pods to securely manage mounting and device handling.