ProHoster > Blog > Ulamuliro > Kumanani ndi Veeam Backup yatsopano ya yankho la AWS

Kumanani ndi Veeam Backup yatsopano ya yankho la AWS

Kumayambiriro kwa December, njira yatsopano inatulutsidwa Veeam Backup ya AWS posunga zosunga zobwezeretsera ndi kubwezeretsanso makina amtambo a Amazon Elastic Compute Cloud (Amazon EC2).

Ndi chithandizo chake, mutha kupanga zosunga zobwezeretsera za zochitika za EC2 ndikuzisunga posungira mitambo Amazon Simple Storage Service (Amazon S3), ndikupanganso maunyolo azithunzi za EC2 mumtundu wamba.

Kuti mubwezeretse deta, Veeam Backup ya AWS imapereka izi:

  • Kubwezeretsanso chitsanzo chonse cha EC2
  • Kubwezeretsa ma volume a zitsanzo
  • Kubwezeretsanso mafayilo ndi zikwatu za alendo OS yachitsanzo

Kuphatikiza apo, popeza yankho limapanga zosunga zobwezeretsera mu mtundu wa Veeam, mutha kugwiritsa ntchito Veeam Backup & Replication kusunga makope a EC2 zosunga zobwezeretsera pamalo osungiramo, kenako ndikusamutsa deta pakati pa mtambo, pafupifupi komanso panyumba.

Ndipo, ndithudi, ogwiritsa ntchito adzakondwera kuti yankho latsopanoli lili ndi mtundu waulere. Kuti mudziwe zambiri ndi Veeam Backup ya AWS, landirani kumphaka.

Kumanani ndi Veeam Backup yatsopano ya yankho la AWS

Zofunikira zazikulu

Kuphatikiza pa kuthekera komwe kwatchulidwa kale kuti mupange zokha zithunzi za Amazon EBS ndikusunga zosunga zobwezeretsera mumtambo wa Amazon S3, yankho limagwiritsa ntchito:

  • Kutsimikizika kwazinthu zambiri kwa oyang'anira zosunga zobwezeretsera
  • Chitetezo cha data potengera mfundo
  • Thandizo lolekanitsa gawo la IAM
  • Thandizo la kasinthidwe kachigawo
  • Ma aligorivimu omangidwira pakuwunika koyambirira kwa mtengo wantchito, zomwe zimathandiza kuwongolera malipiro.

Chabwino, monga tanenera kale, pali chilolezo chaulere, BYOL (pangani laisensi yanu), ndi chilolezo chotengera kugwiritsa ntchito zinthu - aliyense akhoza kusankha yoyenera.

Miyendo ya ntchito

Mwachidule, magawo akuluakulu ndi awa:

  1. Timayang'ana zomangamanga zathu kuti zitsatire zomwe zafotokozedwa apa.
  2. Ikani Veeam Backup ya AWS monga tafotokozera pansipa.
  3. Tchulani maudindo a IAM. Amafunika kuti apeze zida za AWS zomwe zimagwiritsidwa ntchito posunga zosunga zobwezeretsera ndikuchira:
    • Ngati mukufuna kusungitsa zochitika za EC2 mu akaunti yomweyo ya AWS, mutha kugwiritsa ntchito ntchitoyi Kubwezeretsa Zosunga Zosintha - idapangidwa pakukhazikitsa Veeam Backup ya AWS. Udindowu uli ndi ufulu wokwanira wopeza zochitika zonse za EC2 ndi zidebe za S3 mkati mwa akaunti ya AWS komwe Veeam Backup ya AWS imayikidwa (akaunti yoyambirira ya AWS).
    • Ngati mukufuna kusunga kapena kubwezeretsa deta kuchokera ku zochitika za EC2 pakati pa maakaunti awiri a AWS, kapena mukufuna kugwiritsa ntchito gawo la IAM lodzipatulira lokhala ndi ufulu wochepa pa ntchito iliyonse, ndiye kuti mudzafunika kupanga maudindo a IAM mu akaunti yoyamba ya AWS. ndikuwonjezera ku Veeam Backup ya AWS. Izi zikukambidwa mwatsatanetsatane mu zolemba.

  4. Timakonza zosunga zobwezeretsera, zomwe ndi:
    • Kukonza chosungira cha S3.

      Taonani: Ngati mugwiritsa ntchito zithunzi zomwe zidapangidwa mwachilengedwe m'malo mosunga zosunga zobwezeretsera kuti muteteze deta yanu, ndiye kuti mutha kudumpha mfundo iyi, chifukwa Chosungira cha S3 sichikufunika muzochitika izi.

    • Kukhazikitsa makonda a netiweki pazinthu zothandizira zochitika za antchito.
      ogwira — awa ndi ma EC2 othandizira omwe akuyendetsa OS LinuxAmayambitsidwa pokhapokha panthawi yosunga (kapena kubwezeretsa) ndipo amagwira ntchito ngati wothandizira wosunga. Mu makonda a ogwira ntchito, muyenera kufotokoza gulu la Amazon VPC, subnet, ndi chitetezo lomwe ma assistant instances awa adzalumikizana nawo. Mutha kuwerenga zambiri za izi apa. apa.

  5. Kenako timapanga malamulo otengera zomwe zosunga zosunga zobwezeretsera kapena zithunzithunzi za zochitika za EC2 zidzapangidwa. Ndilankhula za izi mwachidule pansipa.
  6. Mutha kubwezeretsanso kuchokera ku zosunga zobwezeretsera - zambiri pazomwe zili pansipa.

Kutumiza ndi kasinthidwe

Veeam Backup ya AWS ikupezeka pa Msika wa AWS.

Ntchitoyi imaperekedwa motere:

  1. Timapita ku AWS Marketplace pansi pa akaunti ya AWS yomwe tikufuna kugwiritsa ntchito kukhazikitsa yankho.
  2. Tsegulani Veeam Backup ya AWS tsamba, sankhani kope lomwe tikufuna (lolipira kapena laulere). Werengani zambiri za makope apa.
    • Veeam Backup ya AWS Free Edition
    • Veeam Backup ya AWS Yolipidwa Edition
    • Veeam Backup ya AWS BYOL Edition

  3. Dinani pamwamba kumanja Pitirizani Kulembetsa.

    Kumanani ndi Veeam Backup yatsopano ya yankho la AWS

  4. Pa tsamba lolembetsa, pitani ku gawo Migwirizano ndi zokwaniritsa (kagwiritsidwe ntchito) ndikudina pamenepo Onetsani tsatanetsatane, tsatirani ulalo Chotsatira Chizindikiro Chogwirizanitsa werengani mgwirizano wa chilolezo.
  5. Kenako dinani batani Pitilizani ku Configuration ndi kupitiriza kasinthidwe.
  6. Patsamba Konzani pulogalamuyo khazikitsani zoikamo:
    • Kuchokera pamndandanda Njira Yokwaniritsira (zosankha zotumizira) sankhani zomwe mwasankha - VB kwa AWS Deployment.
    • Kuchokera pamndandanda wamitundu Mapulogalamu a Pulogalamu sankhani mtundu waposachedwa wa Veeam Backup wa AWS.
    • Kuchokera pamndandanda wa zigawo Chigawo sankhani dera la AWS momwe chitsanzo cha EC2 chokhala ndi Veeam Backup cha AWS chidzatumizidwa.

    Taonani: Mutha kuwerenga zambiri za zigawo za AWS apa.

  7. Kenako dinani batani Pitirizani Kukhazikitsa kupitiriza kukhazikitsa.

    Kumanani ndi Veeam Backup yatsopano ya yankho la AWS

  8. Patsamba Kukhazikitsa pulogalamuyo tsatirani izi:
    • gawo Zambiri Zosintha onetsetsani kuti zokonda zonse zili zolondola.
    • Kuchokera pamndandanda wa zochita Sankhani Zochita kusankha Yambitsani CloudFormation.
    • Veeam Backup ya AWS imayikidwa pogwiritsa ntchito stack ya AWS CloudFormation.

      Taonani: Apa, stack ndi mndandanda wazinthu zamtambo zomwe zitha kuyendetsedwa ngati gawo losiyana: lopangidwa, lochotsedwa, logwiritsidwa ntchito poyendetsa mapulogalamu. Mutha kuwerenga zambiri pazolembedwa za AWS.

      Dinani apa Yambani ndikuyambitsa wizard yopanga stack Pangani stack wizard.

Kupanga AWS CloudFormation StackKupanga stack ya AWS CloudFormation:

Kumanani ndi Veeam Backup yatsopano ya yankho la AWS

  1. Poyenda Tchulani template Mutha kusiya zokonda za template ya stack.
  2. Poyenda Tchulani zandalama Timayika zoikamo za stack yathu.
    • M'munda Dzina lotayirira lowetsani dzina; Mutha kugwiritsa ntchito zilembo zazikulu ndi zazing'ono, manambala ndi mitsinje.
    • Mu gawo la zoikamo Kukonzekera kwachiwonetsero:
      Kuchokera pamndandanda Mtundu wachitsanzo wa Veeam Backup wa seva ya AWS muyenera kusankha mtundu wa chitsanzo cha EC2 chomwe Veeam Backup ya AWS idzayikidwe (pambuyo pake tidzayitcha Veeam Backup ya seva ya AWS). Ndi bwino kusankha mtundu t2.pakatikati.
      Kuchokera pamndandanda Key Pair ya Veeam Backup ya AWS Server muyenera kusankha makiyi awiri omwe adzagwiritsidwe ntchito potsimikizira pa seva yatsopanoyi. Ngati makiyi ofunikirawo mulibe pamndandanda, muyenera kupanga monga momwe tafotokozera apa.
      Nenani ngati mukufuna kuloleza kusungitsa ma voliyumu a EBS pa Veeam Backup ya seva ya AWS (mwachisawawa, mwachitsanzo. koona).
      Tchulani ngati Veeam Backup ya seva ya AWS ikufunika kuyambiranso pulogalamuyo ikalephera.
      Tchulani ngati Veeam Backup ya seva ya AWS ikufunika kuyambiranso pakagwa vuto la zomangamanga.

  3. Mu gawo la zoikamo maukonde Kusintha Kwa Mtanda:
    • Nenani ngati mukufuna kupanga Elastic IP adilesi ya Veeam Backup ya seva ya AWS. Onani apa kuti mudziwe zambiri.
    • M'munda Ma Adilesi Ololedwa a IP olumikizirana ndi SSH tchulani ma adilesi a IPv4 omwe mwayi wopita ku Veeam Backup wa seva ya AWS kudzera pa SSH udzaloledwa.
    • M'munda Ma Adilesi a IP Ololedwa kuti mulumikizane ndi HTTPS tchulani maadiresi osiyanasiyana a IPv4 kumene mwayi wopita ku Veeam Backup wa mawonekedwe a intaneti a AWS udzaloledwa.
      Nthawi ya adilesi ya IPv4 yafotokozedwa muzolemba za CIDR (mwachitsanzo, 12.23.34.0/24). Kuti mulole kulowa kuchokera ku ma adilesi onse a IPv4, mutha kulowa 0.0.0.0/0. (Komabe, njirayi siyikulimbikitsidwa chifukwa imachepetsa chitetezo chazomwe zimagwira ntchito.)

  4. Kutengera ma adilesi otchulidwa a IPv4, AWS CloudFormation imapanga gulu lachitetezo la Veeam Backup la AWS, lokhala ndi malamulo oyenerera amayendedwe obwera kudzera pa SSH ndi HTTPS. (Mwachikhazikitso, port 22 imagwiritsidwa ntchito pamayendedwe obwera kudzera pa SSH, ndi doko 443 la HTTPS.) Ngati mukufuna kufotokozera gulu lina lachitetezo la Veeam Backup la AWS pakuyika yankho, ndiye musaiwale kuwonjezera pamanja. malamulo oyenerera ku gulu ili ndikuwonetsetsa kuti akuloledwa kupeza mautumiki a AWS (olembedwa mu gawo la Zofunikira pa bukhuli).
  5. Mu gawo VPC ndi Subnet muyenera kusankha Amazon Virtual Private Cloud (Amazon VPC) ndi subnet yomwe Veeam Backup ya seva ya AWS idzalumikizidwa.
  6. Poyenda Konzani zosankha za stack tchulani ma tag a AWS, zilolezo za IAM, ndi zosintha zina.

    Kumanani ndi Veeam Backup yatsopano ya yankho la AWS

  7. Poyenda Review onani makonda onse, sankhani njira Ndikuvomereza kuti AWS CloudFormation ikhoza kupanga zothandizira za IAM ndikusindikiza Pangani stack.

Mukakhazikitsa, tsegulani tsamba lawebusayiti poloza msakatuli ku DNS kapena IP adilesi ya EC2 pomwe Veeam Backup ya AWS imayikidwa, mwachitsanzo:
https://ec2-135-169-170-192.eu-central-1.compute.amazonaws.com

Konsoliyo imawonetsa zothandizira zomwe zakonzedwa kuti ziteteze deta pogwiritsa ntchito Veeam Backup ya AWS:

Kumanani ndi Veeam Backup yatsopano ya yankho la AWS

Zofunikira zokhazikitsira maziko, maudindo, ndi zina. akufotokozedwa mwatsatanetsatane mu zolemba.

Ndondomeko zosunga zobwezeretsera

Kuti titeteze zochitika, timapanga ndondomeko.

Mungathe kukonza ndondomeko zosiyanasiyana za zinthu zosiyanasiyana: mwachitsanzo, ndondomeko yoteteza mapulogalamu amtundu wa 3 (ovuta kwambiri), kapena ndondomeko zamagulu amtundu wa 2 ndi 1. M'makonzedwe a ndondomeko, tchulani:

  • Akaunti yokhala ndi maudindo a IAM
  • Zigawo - mukhoza kusankha angapo
  • Zomwe zakonzedwa kuti zitetezedwe - izi zitha kukhala zida zonse kapena zochitika zosankhidwa kapena (ma tag)
  • Zofunika kuzipatula
  • Zokonda pazithunzi, kuphatikiza kugwiritsa ntchito zithunzithunzi komanso nthawi yosungira iyenera kukhala
  • Zokonda zosunga zobwezeretsera: njira yopita kunkhokwe, ndandanda ndi nthawi yosungira
  • Chiyerekezo cha mtengo wa ntchito (zambiri za izo pansipa)
  • Zokonda ndi zidziwitso

Kuwunika kwa mtengo wautumiki womangidwa

Veeam Backup ya AWS ili ndi kuyerekezera kwamitengo yodzipangira yokha kuti muwerengere nthawi yomweyo mtengo wantchito zosunga zobwezeretsera potengera mfundo inayake. Kuwerengera kumaphatikizapo ma metric awa:

  • Mtengo wosunga zobwezeretsera
  • Mtengo wazithunzi
  • Mtengo wamagalimoto - izi ndizofunikira makamaka ngati malo osungiramo zinthu ali kunja kwa dera lomwe zinthu zapamtunda zimagwira ntchito (Amazon AWS imayitanitsa anthu kupita kumadera ena)
  • Ndalama zogulira
  • mtengo wonse

Kumanani ndi Veeam Backup yatsopano ya yankho la AWS

Zambiri zitha kutumizidwa ku fayilo ya CSV kapena XML.

Zida Zothandizira - Ogwira Ntchito

Kuti muchepetse ndalama zamagalimoto, mutha kukonza zopanga zokha za zida zothandizira - antchito - m'dera lomwelo la AWS monga zinthu zotetezedwa. Ogwira ntchito amangoyambika pokhapokha posamutsa deta kuchokera ku / kupita kumtambo wa Amazon S3 kapena pakuchira, ndipo akamaliza ntchito amazimitsidwa ndikuchotsedwa.

Kumanani ndi Veeam Backup yatsopano ya yankho la AWS

Zosunga

Pazosunga zosunga zobwezeretsera, Veeam Backup ya AWS imagwiritsa ntchito zithunzi zamtundu (onani. Zithunzi za Amazon EBS). Pakusunga zosunga zobwezeretsera, Veeam Backup ya AWS imagwiritsa ntchito malamulo a AWS CLI kupanga zithunzithunzi zamavoliyumu a EBS ophatikizidwa pamwambo wa EC2. Kenako, kutengera momwe mungasungire zosunga zobwezeretsera zomwe mwasankha, Veeam Backup ya AWS ipanga mwina zithunzi zamtundu wamtundu kapena zosunga zobwezeretsera pazithunzi za EC2.

Zithunzi zakubadwa

Veeam Backup ya AWS imapanga zithunzi zamtundu wa EC2 motere:

  1. Choyamba, zithunzithunzi zamavoliyumu a EBS ophatikizidwa pamwambowu zimatengedwa.
  2. Zithunzi za EBS zimapatsidwa ma tag a AWS akapangidwa. Makiyi ndi mayendedwe a ma tagwa ali ndi metadata yobisika. Veeam Backup ya AWS imagwira zithunzi za EBS ndi metadata ngati zithunzi zakubadwa zachitsanzo cha EC2.
  3. Ngati chitsanzo cha EC2 chakhala chikuyang'aniridwa ndi ndondomeko yosunga zobwezeretsera, Veeam Backup ya AWS imayang'ana kuchuluka kwa malo obwezeretsa mu tcheni chazithunzi. Ngati idutsa malire a ndondomeko, mfundo yakale kwambiri imachotsedwa. Taonani: Mfundo yosungira ndi kuchotsa zokha (kusunga) sikugwira ntchito pazithunzi zomwe zimapangidwa pamanja (tikulankhula za zithunzi zomwe zimapangidwa mosiyana). Mukhoza kuchotsa zithunzithunzi zotere monga tafotokozera apa. (Ngati ndi "pamanja" tikutanthauza kukhazikitsa ndondomeko pamanja kunja kwa ndandanda, ndiye kuti kukhudzanso kudzagwira ntchito pachithunzi chomwe chapangidwa motere.)

Zosungira pamlingo wazithunzi

Umu ndi momwe Veeam Backup ya AWS imachitira zosungira pazithunzi:

  1. Choyamba, zithunzithunzi zamavoliyumu a EBS ophatikizidwa pamwambowu zimatengedwa.
  2. Veeam Backup ya AWS imagwiritsa ntchito zithunzi za EBS ngati zosunga zobwezeretsera. Mukamaliza zosunga zobwezeretsera, zithunzithunzi izi zichotsedwa.
  3. Wothandizira amakhazikitsidwa kudera la AWS komwe kuli chitsanzo kuti athandizire kukonza deta ya EC2.
  4. Ma voliyumu a EBS amapangidwa kuchokera pazithunzi zosakhalitsa ndikuphatikizidwa ndi zochitika za ogwira ntchito.
  5. Deta imawerengedwa kuchokera ku mavoti a EBS pazochitika za ogwira ntchito, kenako deta imasamutsidwa kumalo osungirako a S3, kumene idzasungidwa mu mtundu wa Veeam.
  6. Pa gawo lowonjezera, Veeam Backup ya AWS imawerenga metadata yosunga zobwezeretsera kuchokera kunkhokwe ya S3 ndikuigwiritsa ntchito kuzindikira midadada yomwe yasintha kuyambira gawo lapitalo.
  7. Kusungako kukamalizidwa, Veeam Backup ya AWS imachotsa zithunzi zosakhalitsa za EBS ndi zitsanzo za ogwira ntchito ku Amazon EC2.

Kuchira kwa data

Ndi Veeam Backup ya AWS, mutha kubwezeretsa deta m'njira izi:

  • Kumalo oyambilira, lembani zomwe zidachitika poyamba. Deta yonse pa nthawiyi idzalembedwa ndi omwe asungidwa muzosunga zobwezeretsera, ndipo kasinthidwe kachitsanzo adzasungidwa.
  • Kumalo atsopano, kupanga chochitika chatsopano. Muzochitika izi - ngati musankha kubwezeretsa kumalo atsopano kapena ndi zoikamo zatsopano - muyenera kufotokozera zosintha zomwe zidzagwiritsidwe ntchito pamene kubwezeretsa kwatha:
    • Chigawo
    • Zokonda za encryption
    • Chitsanzo dzina ndi mtundu
    • Zokonda pamaneti: Virtual Private Cloud (VPC), subnet, gulu lachitetezo

Voliyumu kubwezeretsa

Kubwezeretsanso ma voliyumu a EC2 kuchokera pa chithunzithunzi kapena kuchokera ku zosunga zobwezeretsera, kupita koyambirira kapena kumalo atsopano, kumathandizidwanso. Chachiwiri, kwa malo atsopano muyenera kufotokoza dera la AWS, Malo Opezeka ndi magawo ena.

Njira yobwezeretsa imakhudzanso ogwira ntchito.

Njira yokhayo ikuwoneka mwachidule motere (pogwiritsa ntchito chitsanzo chobwezeretsa kuchokera ku zosunga zobwezeretsera):

  1. Veeam Backup ya AWS imakhazikitsa ogwira ntchito m'dera lomwe mukufuna la AWS, imapanga kuchuluka kofunikira kwa mavoti opanda kanthu a EBS ndikuwayika kwa ogwira ntchito.
  2. Imabwezeretsanso deta kuchokera ku zosunga zobwezeretsera kupita ku ma voliyumu awa.
  3. Imachotsa ma voliyumu a EBS ndikuwasamutsa kupita komwe mukufuna (gwero kapena dera lina la AWS), komwe mavoliyumu amasungidwa ngati mavoliyumu osiyana.
  4. Imachotsa chitsanzo cha ogwira ntchito pamene ntchito zatha.
    Taonani: Musaiwale kuti mutatha kuchira voliyumuyo sidzangophatikizidwa ndi chitsanzo cha EC2 (idzangosungidwa pamalo omwe mwatchulidwa ngati voliyumu ya EBS).

Kuchira kwa fayilo

Imakulolani kuti mubwezeretse mafayilo amodzi popanda kubwezeretsanso chochitika chonsecho.

Mukayambitsa kuchira kwamafayilo, mumalandira ulalo (kutengera dzina la anthu wamba la DNS) pomwe mutha kuwona mawonekedwe onse a fayilo pa OS ya alendo, pezani mafayilo ofunikira momwemo, ndikuyiyika pamakina akomweko.
Komanso, kuti muwonetsetse chitetezo, mutha kuyang'ana satifiketi ndi chala chake kuti muwonetsetse kuti palibe MiTM.

Kumanani ndi Veeam Backup yatsopano ya yankho la AWS

Kuphatikiza ndi Veeam Backup & Replication

Ngati muli ndi Veeam Backup & Replication yomwe yayikidwa muzomangamanga zanu, mutha kukonza makina ake ku Amazon EC2 mtambo pogwiritsa ntchito Direct Restore to AWS magwiridwe antchito, ndikuteteza deta iyi ndi Veeam Backup ya AWS.
Veeam Backup & Replication imathandiziranso kugwira ntchito ndi zosungira za Amazon S3 zomwe Veeam Backup ya AWS imapanga - mutha kubwezeretsanso zosunga zobwezeretsera za Amazon EC2 pazomwe zili pamalopo.

Mbali za Baibulo laulere

Mtundu waulere wa Veeam Backup wa AWS umakupatsani mwayi wosunga zosunga zobwezeretsera mpaka zochitika 10 EC2; Kubwezeretsa kuchokera ku zosunga zobwezeretsera kumachitika popanda zoletsa.
Taonani: Analimbikitsa ntchito t2.pakatikati.

Pafupifupi mtengo wazinthu ndi 9.8 USD/mwezi, kutengera kugwiritsidwa ntchito kwa XNUMX/XNUMX ndi zosintha zosasintha zotsatirazi:

  • EC2 - 1 t3.micro chitsanzo
  • EBS - 1 GP2 voliyumu ya 8 GB
  • Kukonzekera kwa S3 repository - 50 GB Standard S3 yosungirako, 13 S000 PUT zopempha, 3 S10 GET zopempha, 000 GB S3 Sankhani ntchito

maulalo othandiza

Veeam Backup ya yankho la AWS pa Msika wa AWS
Buku lothandizira (m'Chingerezi).

Source: www.habr.com

Gulani kuchititsa kodalirika kwamasamba okhala ndi chitetezo cha DDoS, ma seva a VPS VDS Gulani malo odalirika osungira mawebusayiti okhala ndi chitetezo cha DDoS, ma seva a VPS VDS | ProHoster