ai intermediate β± 30 minutes K8s 1.28+
AI Model Storage: hostPath vs PVC for Inference
Deploy AI models on Kubernetes using hostPath and PersistentVolumeClaim storage. Compare performance, security trade-offs, and production patterns for model serving.
By Luca Berton β’ β’ π 10 min read
π‘ Quick Answer: Use hostPath for single-node dev/test with pre-downloaded models on fast NVMe β zero network overhead but no portability. Use PVC (ReadWriteMany NFS/Lustre or ReadWriteOnce block) for production β portable, schedulable, supports multi-replica serving. For maximum throughput, combine PVC with GPU Direct Storage (GDS) to bypass CPU on NVMeβGPU transfers.
The Problem
Large language models (7Bβ405B parameters) require 14GBβ800GB of storage. Loading a 70B model from slow storage adds minutes to pod startup. Choosing the wrong storage backend causes:
- Cold start delays β pulling 140GB over 1Gbps network = 18+ minutes
- Pod scheduling failures β hostPath pins pods to specific nodes
- Data loss β hostPath doesnβt survive node replacement
- GPU idle time β CPU bottlenecks on model loading from network storage
The Solution
Option 1: hostPath β Fast Local Storage
Best for single-node setups, development, and when models are pre-cached on NVMe.
# hostpath-model-deployment.yaml
apiVersion: apps/v1
kind: Deployment
metadata:
name: vllm-hostpath
namespace: ai-inference
spec:
replicas: 1 # hostPath = single node only
selector:
matchLabels:
app: vllm-inference
template:
metadata:
labels:
app: vllm-inference
spec:
nodeSelector:
kubernetes.io/hostname: gpu-node-01 # Pin to node with models
containers:
- name: vllm
image: vllm/vllm-openai:v0.6.6
args:
- "--model=/models/Meta-Llama-3.1-70B-Instruct"
- "--tensor-parallel-size=2"
- "--gpu-memory-utilization=0.90"
- "--max-model-len=8192"
ports:
- containerPort: 8000
name: http
resources:
limits:
nvidia.com/gpu: 2
memory: "64Gi"
requests:
memory: "32Gi"
volumeMounts:
- name: model-storage
mountPath: /models
readOnly: true
- name: shm
mountPath: /dev/shm
volumes:
- name: model-storage
hostPath:
path: /data/models # Pre-downloaded on node
type: DirectoryOrCreate
- name: shm
emptyDir:
medium: Memory
sizeLimit: "16Gi" # Shared memory for tensor parallelPre-download Models to Node
# SSH to GPU node and download model
ssh gpu-node-01
# Create model directory
sudo mkdir -p /data/models
sudo chown 1000:1000 /data/models
# Download with huggingface-cli
pip install huggingface-hub
huggingface-cli download meta-llama/Llama-3.1-70B-Instruct \
--local-dir /data/models/Meta-Llama-3.1-70B-Instruct \
--local-dir-use-symlinks False
# Verify download
du -sh /data/models/Meta-Llama-3.1-70B-Instruct/
# Expected: ~140GB for 70B modelDaemonSet for Multi-Node Model Distribution
# model-preloader-daemonset.yaml
apiVersion: apps/v1
kind: DaemonSet
metadata:
name: model-preloader
namespace: ai-inference
spec:
selector:
matchLabels:
app: model-preloader
template:
metadata:
labels:
app: model-preloader
spec:
nodeSelector:
nvidia.com/gpu.present: "true"
initContainers:
- name: download-model
image: python:3.11-slim
command:
- bash
- -c
- |
if [ -d "/models/Meta-Llama-3.1-8B-Instruct/config.json" ]; then
echo "Model already cached, skipping download"
exit 0
fi
pip install -q huggingface-hub
huggingface-cli download meta-llama/Llama-3.1-8B-Instruct \
--local-dir /models/Meta-Llama-3.1-8B-Instruct \
--local-dir-use-symlinks False
env:
- name: HF_TOKEN
valueFrom:
secretKeyRef:
name: huggingface-token
key: token
volumeMounts:
- name: model-cache
mountPath: /models
containers:
- name: pause
image: registry.k8s.io/pause:3.10
volumes:
- name: model-cache
hostPath:
path: /data/models
type: DirectoryOrCreateOption 2: PVC β Production Portable Storage
Best for production, multi-replica serving, and when pods must be schedulable across nodes.
ReadWriteOnce (Block Storage)
# pvc-model-rwo.yaml
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: model-store-rwo
namespace: ai-inference
spec:
accessModes:
- ReadWriteOnce # Single node attachment
storageClassName: fast-nvme # Use fastest available StorageClass
resources:
requests:
storage: 200Gi
---
# One-time model download job
apiVersion: batch/v1
kind: Job
metadata:
name: model-download
namespace: ai-inference
spec:
template:
spec:
restartPolicy: OnFailure
containers:
- name: downloader
image: python:3.11-slim
command:
- bash
- -c
- |
pip install -q huggingface-hub
huggingface-cli download meta-llama/Llama-3.1-70B-Instruct \
--local-dir /models/Meta-Llama-3.1-70B-Instruct \
--local-dir-use-symlinks False
echo "Download complete. Size:"
du -sh /models/Meta-Llama-3.1-70B-Instruct/
env:
- name: HF_TOKEN
valueFrom:
secretKeyRef:
name: huggingface-token
key: token
resources:
requests:
memory: "4Gi"
limits:
memory: "8Gi"
volumeMounts:
- name: model-pvc
mountPath: /models
volumes:
- name: model-pvc
persistentVolumeClaim:
claimName: model-store-rwo
---
# Inference deployment using the PVC
apiVersion: apps/v1
kind: Deployment
metadata:
name: vllm-pvc
namespace: ai-inference
spec:
replicas: 1 # RWO = single node
selector:
matchLabels:
app: vllm-inference
template:
metadata:
labels:
app: vllm-inference
spec:
containers:
- name: vllm
image: vllm/vllm-openai:v0.6.6
args:
- "--model=/models/Meta-Llama-3.1-70B-Instruct"
- "--tensor-parallel-size=2"
- "--gpu-memory-utilization=0.90"
ports:
- containerPort: 8000
resources:
limits:
nvidia.com/gpu: 2
memory: "64Gi"
volumeMounts:
- name: model-pvc
mountPath: /models
readOnly: true
- name: shm
mountPath: /dev/shm
volumes:
- name: model-pvc
persistentVolumeClaim:
claimName: model-store-rwo
- name: shm
emptyDir:
medium: Memory
sizeLimit: "16Gi"ReadWriteMany (NFS/Lustre) β Multi-Replica Serving
# pvc-model-rwx.yaml
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: model-store-rwx
namespace: ai-inference
spec:
accessModes:
- ReadWriteMany # Multiple pods across nodes
storageClassName: nfs-rdma # NFS over RDMA for best throughput
resources:
requests:
storage: 500Gi
---
# Multi-replica inference with shared model store
apiVersion: apps/v1
kind: Deployment
metadata:
name: vllm-multi-replica
namespace: ai-inference
spec:
replicas: 4 # Scale across nodes
selector:
matchLabels:
app: vllm-multi
template:
metadata:
labels:
app: vllm-multi
spec:
affinity:
podAntiAffinity:
preferredDuringSchedulingIgnoredDuringExecution:
- weight: 100
podAffinityTerm:
labelSelector:
matchLabels:
app: vllm-multi
topologyKey: kubernetes.io/hostname
containers:
- name: vllm
image: vllm/vllm-openai:v0.6.6
args:
- "--model=/models/Meta-Llama-3.1-8B-Instruct"
- "--gpu-memory-utilization=0.90"
- "--max-model-len=4096"
ports:
- containerPort: 8000
name: http
resources:
limits:
nvidia.com/gpu: 1
memory: "32Gi"
readinessProbe:
httpGet:
path: /health
port: 8000
initialDelaySeconds: 120 # Model loading takes time
periodSeconds: 10
volumeMounts:
- name: model-pvc
mountPath: /models
readOnly: true
- name: shm
mountPath: /dev/shm
volumes:
- name: model-pvc
persistentVolumeClaim:
claimName: model-store-rwx
- name: shm
emptyDir:
medium: Memory
sizeLimit: "8Gi"
---
apiVersion: v1
kind: Service
metadata:
name: vllm-multi
namespace: ai-inference
spec:
selector:
app: vllm-multi
ports:
- port: 8000
targetPort: 8000
type: ClusterIPOption 3: Hybrid β hostPath Cache + PVC Source
Best of both worlds: PVC for durability, hostPath for speed.
# hybrid-model-serving.yaml
apiVersion: apps/v1
kind: Deployment
metadata:
name: vllm-hybrid
namespace: ai-inference
spec:
replicas: 1
selector:
matchLabels:
app: vllm-hybrid
template:
metadata:
labels:
app: vllm-hybrid
spec:
initContainers:
# Copy model from NFS PVC to local NVMe for fast loading
- name: cache-model
image: busybox:1.36
command:
- sh
- -c
- |
MODEL="Meta-Llama-3.1-70B-Instruct"
if [ -f "/local-cache/${MODEL}/.complete" ]; then
echo "Model already cached locally"
exit 0
fi
echo "Copying model from NFS to local NVMe..."
mkdir -p /local-cache/${MODEL}
cp -r /nfs-models/${MODEL}/* /local-cache/${MODEL}/
touch /local-cache/${MODEL}/.complete
echo "Cache complete"
volumeMounts:
- name: nfs-source
mountPath: /nfs-models
readOnly: true
- name: local-cache
mountPath: /local-cache
containers:
- name: vllm
image: vllm/vllm-openai:v0.6.6
args:
- "--model=/models/Meta-Llama-3.1-70B-Instruct"
- "--tensor-parallel-size=2"
- "--gpu-memory-utilization=0.90"
ports:
- containerPort: 8000
resources:
limits:
nvidia.com/gpu: 2
memory: "64Gi"
volumeMounts:
- name: local-cache
mountPath: /models
readOnly: true
- name: shm
mountPath: /dev/shm
volumes:
- name: nfs-source
persistentVolumeClaim:
claimName: model-store-rwx # Durable NFS storage
- name: local-cache
hostPath:
path: /data/model-cache # Fast local NVMe
type: DirectoryOrCreate
- name: shm
emptyDir:
medium: Memory
sizeLimit: "16Gi"Comparison Matrix
graph TD
A[Model Storage Decision] --> B{Single Node?}
B -->|Yes| C{Dev or Prod?}
B -->|No| D[PVC ReadWriteMany]
C -->|Dev| E[hostPath on NVMe]
C -->|Prod| F{Fast Load Critical?}
F -->|Yes| G[Hybrid: PVC + hostPath cache]
F -->|No| H[PVC ReadWriteOnce]
D --> I[NFS-RDMA or Lustre]
style E fill:#fef3c7,stroke:#f59e0b
style H fill:#dbeafe,stroke:#3b82f6
style I fill:#d1fae5,stroke:#10b981
style G fill:#ede9fe,stroke:#8b5cf6| Feature | hostPath | PVC (RWO) | PVC (RWX) | Hybrid |
|---|---|---|---|---|
| Portability | β Node-pinned | β Zone-portable | β Cluster-wide | β οΈ Node-pinned cache |
| Multi-replica | β Single pod | β Single node | β Any node | β οΈ Per-node cache |
| Load speed | β‘ NVMe direct | β‘ Block storage | β οΈ Network bound | β‘ Cached NVMe |
| Durability | β Lost on node failure | β Persistent | β Persistent | β PVC is durable |
| Setup | Simple | Moderate | Moderate | Complex |
| Security | β οΈ Host access | β Namespace isolated | β Namespace isolated | β οΈ Host access |
| Cost | Free (local disk) | $$ Block storage | $$$ NFS/Lustre | $$ + local disk |
Performance Benchmarks
# Measure model load time from different storage backends
# Test with Llama 3.1 8B (~16GB)
# hostPath on NVMe (PCIe Gen4 x4)
# Sequential read: ~7 GB/s β load time: ~2.3s
# PVC on AWS gp3 EBS (3000 IOPS, 125 MB/s)
# Sequential read: ~125 MB/s β load time: ~128s
# PVC on AWS io2 (64K IOPS, 1000 MB/s)
# Sequential read: ~1000 MB/s β load time: ~16s
# PVC on NFS over 100GbE RDMA
# Sequential read: ~3-5 GB/s β load time: ~3-5s
# Benchmark storage throughput inside a pod
kubectl exec -it vllm-pvc -- bash
fio --name=seqread --rw=read --bs=1M --size=1G \
--numjobs=4 --directory=/models --direct=1 \
--group_reporting --output-format=jsonSecurity Considerations
hostPath Security with Pod Security Standards
# hostpath requires privileged namespace or PSA exception
apiVersion: v1
kind: Namespace
metadata:
name: ai-inference
labels:
# Baseline allows hostPath with restrictions
pod-security.kubernetes.io/enforce: baseline
pod-security.kubernetes.io/warn: restricted
---
# For restricted namespaces, use a PV/PVC wrapper instead
apiVersion: v1
kind: PersistentVolume
metadata:
name: local-model-pv
spec:
capacity:
storage: 500Gi
accessModes:
- ReadWriteOnce
persistentVolumeReclaimPolicy: Retain
storageClassName: local-nvme
local:
path: /data/models
nodeAffinity:
required:
nodeSelectorTerms:
- matchExpressions:
- key: kubernetes.io/hostname
operator: In
values:
- gpu-node-01
---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: local-model-pvc
namespace: ai-inference
spec:
accessModes:
- ReadWriteOnce
storageClassName: local-nvme
resources:
requests:
storage: 500GiRead-Only Model Mounts
# Always mount models read-only in inference pods
volumeMounts:
- name: model-storage
mountPath: /models
readOnly: true # Prevent model tampering
# Use securityContext for defense in depth
securityContext:
runAsNonRoot: true
runAsUser: 1000
readOnlyRootFilesystem: true
allowPrivilegeEscalation: falseCommon Issues
Pod Stuck Pending with hostPath
# Symptom: pod won't schedule
kubectl describe pod vllm-hostpath
# Events: "0/5 nodes are available: 5 node(s) didn't match Pod's node selector"
# Fix: verify nodeSelector matches actual node label
kubectl get nodes --show-labels | grep gpu-node-01
# Ensure the hostname label existsPVC Model Download Timeout
# Large model downloads can exceed Job deadlines
# Set appropriate timeouts
spec:
activeDeadlineSeconds: 7200 # 2 hours for large models
backoffLimit: 3Model Corrupted After Interrupted Download
# Always verify model integrity after download
python3 -c "
from huggingface_hub import snapshot_download
snapshot_download(
'meta-llama/Llama-3.1-70B-Instruct',
local_dir='/models/Meta-Llama-3.1-70B-Instruct',
local_dir_use_symlinks=False,
resume_download=True # Resume interrupted downloads
)
"NFS Throughput Bottleneck
# Check NFS mount options
mount | grep nfs
# Ensure: nfsvers=4.2,rsize=1048576,wsize=1048576,hard,timeo=600
# For RDMA-capable NFS, verify RDMA transport
cat /proc/mounts | grep rdma
# Should show proto=rdmaBest Practices
- Dev/test: Use hostPath on NVMe for fastest iteration β zero overhead, zero setup
- Production single-model: PVC with ReadWriteOnce on fastest available block storage
- Production multi-replica: PVC with ReadWriteMany (NFS-RDMA or Lustre) for shared model store
- Maximum performance: Hybrid approach β PVC source + local NVMe cache per node
- Always mount read-only: Inference pods should never write to model storage
- Set readinessProbe
initialDelaySeconds: Model loading takes 30sβ5min depending on size and storage speed - Use
emptyDirwithmedium: Memoryfor/dev/shmβ required for tensor parallelism - Pre-download with Jobs: Donβt download models inside inference containers β use separate download Jobs
- Consider GDS: GPU Direct Storage bypasses CPU for NVMeβGPU transfers β 2-3x faster model loading
Key Takeaways
- hostPath = fast + simple but fragile (no portability, no HA)
- PVC RWO = portable within a zone but single-node attachment
- PVC RWX = most flexible for multi-replica serving across nodes
- Hybrid = best performance for large models in production
- Storage choice directly impacts cold start time β critical for autoscaling inference
- Always separate model download from inference with init containers or Jobs
Recommended
Kubernetes Recipes β The Complete Book100+ production-ready patterns with detailed explanations, best practices, and copy-paste YAML. Everything in one place.
Get the Book βπ
Learn by Doing
CopyPasteLearn β Hands-on Cloud & DevOps CoursesMaster Kubernetes, Ansible, Terraform, and MLOps with interactive, copy-paste-run lessons. Start free.
Browse Courses β#model-serving #storage #hostpath #pvc #inference #gpu #vllm #triton
π Deepen Your Skills β Hands-on Courses
Courses by CopyPasteLearn.com β Learn IT by Doing
Want More Kubernetes Recipes?
This recipe is from Kubernetes Recipes, our 750-page practical guide with hundreds of production-ready patterns.