Configuring client connections

As a grid administrator, you manage the configuration options that control how tenants can connect client applications to yourStorageGRID system to store and retrieve data. There are a number of different options to meet different client and tenant requirements.

Client applications can store or retrieve objects by connecting to any of the following:

The Load Balancer service is new in StorageGRID 11.3. Existing clients can continue to use the legacy CLB service on Gateway Nodes to connect to StorageGRID. New client applications that depend on StorageGRID to provide load balancing should connect using the Load Balancer service.

You can optionally configure the following features on your StorageGRID system:
  • Load Balancer service: You enable clients to use the Load Balancer service by creating load balancer endpoints for client connections. When creating a load balancer endpoint, you specify a port number, whether the endpoint accepts HTTP or HTTPS connections, the type of client (S3 or Swift) that will use the endpoint, and the certificate to be used for HTTPS connections (if applicable).
  • Untrusted Client Network: You can make the Client Network more secure by configuring it as untrusted. When the Client Network is untrusted, clients can only connect using load balancer endpoints.
  • High availability groups: You can create an HA group of Gateway Nodes or Admin Nodes to create an active-backup configuration, or you can use round-robin DNS or a third-party load balancer and multiple HA groups to achieve an active-active configuration . Client connections are made using the virtual IP addresses of HA groups.

You can also enable the use of HTTP for clients that connect to StorageGRID either directly to Storage Nodes or using the legacy CLB service, and you can configure S3 API endpoint domain names for S3 clients.