Ceph » mgr

I want to log all (or subtree) operations made in Cephfs. I mean file/dir creation,removal,opening. I know MDS (or MDSes is multimds enabled) know everything about all these actions.

Ther is approach using auditd-like daemons, but unfortunately, it requires to run such a daemon on every host/container/VM. This approach is not always appropriate, especially when you don't control exact usage of auth key given to someone. Also, this method does not able to catch CephFS access through libcephfs.

I think, if set up, MDS may just log chosen action to a separate log file.