Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
The disk-backed message buffer is a feature that enables the MQTT broker to spill subscriber message queues to disk when they exceed available memory. Decide before deployment whether you need disk-backed message buffering for your MQTT broker.
Important
This setting requires that you modify the Broker resource. It's configured only at initial deployment by using the Azure CLI or the Azure portal. A new deployment is required if Broker configuration changes are needed. To learn more, see Customize default Broker.
The disk-backed message buffer feature is used for efficient management of message queues within the distributed MQTT broker. The benefits include:
- Efficient queue management: In an MQTT broker, each subscriber is associated with a message queue. The message processing speed of a subscriber directly affects the size of the queue. If a subscriber processes messages slowly or if they disconnect but request an MQTT persistent session, the queue can grow larger than the available memory.
- Data preservation for persistent sessions: The disk-backed message buffer feature ensures that when a queue exceeds the available memory, it's seamlessly buffered to disk. This feature prevents data loss and supports MQTT persistent sessions, allowing subscribers to resume their sessions with their message queues intact when they reconnect. The disk is used as ephemeral storage and serves as a spillover from memory. Data written to disk isn't durable and is lost when the pod exits. If at least one pod in each backend chain remains functional, the broker as a whole doesn't lose any data.
- Handling connectivity challenges: Cloud connectors are treated as subscribers with persistent sessions that can face connectivity challenges when they're unable to communicate with external systems like an Azure Event Grid MQTT broker because of network disconnect. In such scenarios, messages (PUBLISHes) accumulate. The MQTT broker intelligently buffers these messages to memory or disk until connectivity is restored, which ensures message integrity.
By default, the disk-backed message buffer feature is disabled. In this case, messages remain in memory, and back pressure is applied to clients as memory usage reaches the limit as defined by the subscriber queue limit.
Note
The MQTT broker writes data to disk exactly as received from clients, without added encryption. Securing the disk is essential to protect the data that the broker stores.
Configure disk-backed message buffer
To configure the disk-backed message buffer, edit the diskBackedMessageBuffer section in the Broker resource. Currently, this configuration is supported only by using the --broker-config-file flag when you deploy Azure IoT Operations by using the az iot ops create command. For more information, see Azure CLI support for advanced MQTT broker configuration.
This setting can't be changed after deployment. To change the disk-backed message buffer configuration, redeploy the IoT Operations instance.
To get started, prepare a Broker configuration file by following the DiskBackedMessageBuffer API reference.
Then, deploy IoT Operations with the --broker-config-file flag (other parameters omitted for brevity):
az iot ops create ... --broker-config-file <FILE>.json
For example, the simplest configuration involves only specifying the maximum size. In this case, an emptyDir volume is mounted. The maxSize value is used as the size limit of the emptyDir volume. But this option is the least preferred option because of the limitations of the emptyDir volume.
{
"diskBackedMessageBuffer": {
"maxSize": "1G"
}
}
To get a better disk-backed message buffer configuration, specify an ephemeral volume or persistent volume claim to mount a dedicated storage volume for your message buffer. For example:
{
"diskBackedMessageBuffer": {
"maxSize": "1G",
"ephemeralVolumeClaimSpec": {
"storageClassName": "foo",
"accessModes": [
"ReadWriteOnce"
]
}
}
}
{
"diskBackedMessageBuffer": {
"maxSize": "1G",
"persistentVolumeClaimSpec": {
"storageClassName": "foo",
"accessModes": [
"ReadWriteOnce"
]
}
}
}
Tailor the broker message buffer options by adjusting the following settings:
- Configure the volume: Specify a volume claim template to mount a dedicated storage volume for your message buffer.
- Select a storage class: Define the desired storage class by using the
storageClassNameproperty. - Define access modes: Determine the access modes you need for your volume. For more information, see Persistent volume access modes.
Ephemeral volume
Ephemeral volume is the preferred option for your message buffer.
For ephemeral volume, follow the advice in the Considerations for storage providers section.
The value of the ephemeralVolumeClaimSpec property is used as the ephemeral.volumeClaimTemplate.spec property of the volume in the StatefulSet specifications of the backend chains.
For example, to use an ephemeral volume with a capacity of 1 gigabyte, specify the following parameters in your Broker resource:
{
"diskBackedMessageBuffer": {
"maxSize": "1G",
"ephemeralVolumeClaimSpec": {
"storageClassName": "foo",
"accessModes": [
"ReadWriteOnce"
]
}
}
}
Persistent volume
Persistent volume is the next preferred option for your message buffer after ephemeral volume.
For persistent volume, follow the advice in the Considerations for storage providers section.
The value of the persistentVolumeClaimSpec property is used as the volumeClaimTemplates.spec property of the StatefulSet specifications of the backend chains.
For example, to use a persistent volume with a capacity of 1 gigabyte, specify the following parameters in your Broker resource:
{
"diskBackedMessageBuffer": {
"maxSize": "1G",
"persistentVolumeClaimSpec": {
"storageClassName": "foo",
"accessModes": [
"ReadWriteOnce"
]
}
}
}
emptyDir volume
An emptyDir volume is the least preferred option after persistent volume.
Use an emptyDir volume only when you use a cluster with filesystem quotas. For more information, see the Filesystem project quota tab. If the feature isn't enabled, the cluster does periodic scanning that doesn't enforce any limit and allows the host node to fill disk space and mark the whole host node as unhealthy.
For example, to use an emptyDir volume with a capacity of 1 gigabyte, specify the following parameters in your Broker resource:
{
"diskBackedMessageBuffer": {
"maxSize": "1G"
}
}
Considerations for storage providers
Consider the behavior of your chosen storage provider, for example, when you use providers like rancher.io/local-path. If the provider doesn't support limits, filling up the volume consumes the node's disk space. This behavior could lead to Kubernetes marking the node and all associated pods as unhealthy. It's crucial to understand how your storage provider behaves in such scenarios.
Tip
When you specify an Ephemeral Volume Claim (EVC) or Persistent Volume Claim (PVC) template, you can use a storage class of your choice, which increases flexibility for some deployment scenarios. For example, persistent volumes provisioned by using a PVC template appear in commands like kubectl get pv, which is useful for inspecting the cluster state.
If your Kubernetes nodes lack sufficient local disk space for the message buffer, use a storage class that provides network storage like Azure Blob Storage. It's better to use a local disk with a smaller maxSize value because the message buffer benefits from fast access and doesn't require durability.
Disabled
If you don't want to use the disk-backed message buffer, don't include the diskBackedMessageBufferSettings property in your Broker resource. This behavior is also the default.
Disk buffer vs. persistence
The disk-backed message buffer and broker persistence both write data to disk, but they serve different purposes:
| Feature | Disk-backed message buffer | Persistence |
|---|---|---|
| Purpose | Spill subscriber queues from memory to disk when they grow too large | Preserve critical broker state (retained messages, sessions, subscriptions) across pod restarts |
| Durability | Ephemeral — data is lost when the pod exits | Durable — data survives pod restarts |
| When to use | Slow subscribers, offline persistent sessions, connectivity interruptions to cloud | You need retained messages or session state to survive broker restarts |
| Data scope | PUBLISH messages in subscriber queues | Retained messages, subscriber queue metadata, state store data |
| Configuration | diskBackedMessageBuffer in Broker resource |
Persistence settings at deployment or runtime |
Note
The disk buffer and persistence can be used together. Persistence ensures state survives restarts, while the disk buffer prevents out-of-memory conditions during normal operation.