Pakutanga kwaDecember, mhinduro itsva yakabudiswa Veeam Backup yeAWS kuitira kuchengetedza uye kudzoreredza kweAmazon Elastic Compute Cloud (Amazon EC2) cloud infrastructure.
Nerubatsiro rwayo, unogona kugadzira makopi ekuchengetedza eEC2 zviitiko uye woachengeta mukuchengetedza kwegore Amazon Simple Storage Service (Amazon S3), uye zvakare kugadzira maketani eEC2 snapshots mune yemuno fomati.
Kudzoreredza data, Veeam Backup yeAWS inopa zvinotevera sarudzo:
- Kuwanazve yese EC2 muenzaniso
- Kudzoreredza mavhoriyamu emuenzaniso
- Kudzoreredza mafaera uye maforodha emuenzi OS yemuenzaniso
Uye zvakare, sezvo mhinduro ichigadzira ma backups muVeeam fomati, unogona kushandisa Veeam Backup & Replication kuchengetedza makopi eEC2 backups mune-inzvimbo repository, uye wozofambisa data pakati pegore, chaiwo uye pane-nzvimbo zvivakwa.
Uye, hongu, vashandisi vachafara kuti mhinduro nyowani ine yemahara vhezheni. Kuti uwane rumwe ruzivo rwakadzama neVeeam Backup yeAWS, unogamuchirwa kukati.
Zvinhu zvakakosha
Pamusoro pekugona kwatotaurwa kwekugadzira otomatiki Amazon EBS snapshots uye kuchengetedza backups muAmazon S3 gore, mhinduro inoshandisa:
- Multi-factor authentication kune backup administrator
- Policy-based data protection
- IAM basa rekuparadzanisa rutsigiro
- Cross-regional configuration support
- Yakavakwa-mu-algorithm yekuongorora kwekutanga kwemitengo yemasevhisi, iyo inobatsira kudzora kubhadhara.
Zvakanaka, sezvatotaurwa, kune rezinesi remahara, BYOL (vaka rako rezinesi), uye rezinesi rakavakirwa pakushandisa zviwanikwa - munhu wese anogona kusarudza iyo chaiyo.
Zvikamu zvebasa
Muchidimbu, matanho makuru ndeaya anotevera:
- Isu tinotarisa zvivakwa zvedu zvekutevedzera zvinodiwa nehurongwa zvinotsanangurwa .
- Isa Veeam Backup yeAWS sezvinotsanangurwa pazasi.
- Taura mabasa eIAM. Ivo vanodiwa kuti vawane zviwanikwa zveAWS zvinoshandiswa kuchengetedza uye kudzoreredza:
- Kana ukaronga kutsigira EC2 zviitiko mukati meiyo AWS account, unogona kushandisa iro basa Default Backup Dzosera - inogadzirwa panguva yekuiswa kweVeeam Backup yeAWS. Iri basa rine kodzero dzinodiwa dzekuwana ese EC2 zviitiko uye S3 mabhaketi mukati meAWS account uko Veeam Backup yeAWS inoiswa (iyo yekutanga AWS account).
- Kana iwe ukaronga kuchengetedza kana kudzoreredza data kubva kuEC2 zviitiko pakati peakaundi maviri akasiyana AWS maakaundi, kana uchida kushandisa yakatsaurirwa IAM basa rine hushoma seti yekodzero pakushanda kwega kwega, saka iwe uchafanirwa kugadzira inodiwa mabasa eIAM mukati meiyo yekutanga AWS account. wobva wawedzera ivo kuVeeam Backup yeAWS. Izvi zvinokurukurwa zvakadzama mu .
- Isu tinogadzirisa zvigadziriso zvekuchengetedza, zvinoti:
- Kugadzirisa iyo S3 repository.
Cherechedza: Kana iwe uchizoshandisa natively yakagadzirwa snapshots pane backups kuchengetedza data rako, saka unogona kusvetuka iyi poindi, nekuti. Iyo S3 repository haidiwe mune ino mamiriro.
- Kuseta zvigadziriso zvetiweki zvezvikamu zvekubatsira zviitiko zvevashandi.
vashandi -Aya ndiwo anobatsira EC2 zviitiko zvinomhanya Linux OS. Iwo anotangwa chete kwenguva ye backup (kana kudzoreredza) uye kuita senge backup proxy. Mune zvigadziriso zvevashandi, iwe uchafanirwa kutsanangura iyo Amazon VPC, subnet uye chengetedzo boka uko aya ebetsero zviitiko achabatana. Unogona kuverenga pamusoro peizvi zvese .
- Kugadzirisa iyo S3 repository.
- Zvadaro tinogadzira mutemo pahwaro hwekuti makopi ekuchengetedza kana snapshots eEC2 zviitiko zvichagadzirwa. Ndichataura nezvazvo muchidimbu pazasi.
- Unogona kudzoreredza kubva kukopi yekuchengetedza - zvimwe pane izvo pazasi.
Deployment uye kugadzirisa
Veeam Backup yeAWS inowanikwa pa .
Sarudzo inoiswa seizvi:
- Isu tinoenda kuAWS Marketplace pasi peAWS account yatinoronga kushandisa kuisa mhinduro.
- Vhura iyo Veeam Backup yeAWS peji, sarudza iyo edition yatinoda (yakabhadharwa kana yemahara). Verenga zvakawanda nezve editions .
- Veeam Backup yeAWS Yemahara Edition
- Veeam Backup yeAWS Yakabhadharwa Edition
- Veeam Backup yeAWS BYOL Edition
- Dzvanya kumusoro kurudyi Ramba uchinyoresa.
- Papeji yekunyorera, enda kune chikamu Terms uye Conditions (matemu ekushandisa) uye tinya ipapo Show Details, tevera chinongedzo Ending User Ending License Agreement verenga chibvumirano cherezinesi.
- Tinobva tadzvanya bhatani Ramba uchienda kuConfiguration uye enderera kune iyo configuration.
- Pane peji Gadzirisa iyi software set the installation settings:
- Kubva pane zvinyorwa Kuzadzika Sarudzo (sarudzo dzekuendesa) sarudza sarudzo yechigadzirwa chedu - VB yeAWS Deployment.
- Kubva pakurongwa kweshanduro Software Shanduro sarudza yazvino vhezheni yeVeeam Backup yeAWS.
- Kubva pamazita ematunhu Nharaunda sarudza iyo AWS dunhu umo iyo EC2 muenzaniso neVeeam Backup yeAWS ichaiswa.
Cherechedza: Unogona kuverenga zvakawanda nezve AWS matunhu .
- Tinobva tadzvanya bhatani Enderera ku Launch kuenderera mberi nekutanga.
- Pane peji Tanga software iyi tevera matanho aya:
- chidimbu Kugadziridza Zvinyorwa tarisa kuti ese maseting akarurama.
- Kubva pane zvinyorwa zvezviito Sarudza Chiito sarudza Tanga CloudFormation.
- Veeam Backup yeAWS yakaiswa uchishandisa AWS CloudFormation stack.
Cherechedza: Pano, stack muunganidzwa wezviwanikwa zvegore zvinogona kudzorwa sechikamu chakasiyana: chakagadzirwa, chakabviswa, chinoshandiswa kuita maapplication. Iwe unogona kuverenga zvakawanda muAWS zvinyorwa.
Dinani pano Tanga uye vhura iyo stack yekugadzira wizard Gadzira stack wizard.
Kugadzira iyo AWS CloudFormation StackKugadzira iyo AWS CloudFormation stack:
- Pakufamba Taura template Unogona kusiya default stack template marongero.
- Pakufamba tsanangura stack details Isu tinopinza zvigadziriso zvestack yedu.
- Mumunda Stack name pinda zita; Iwe unogona kushandisa epamusoro uye madiki mabhii, nhamba uye madheshi.
- Muchikamu chezvirongwa Instance Configuration:
Kubva pane zvinyorwa Instance mhando yeVeeam Backup yeAWS server iwe unofanirwa kusarudza rudzi rweEC2 muenzaniso iyo Veeam Backup yeAWS ichaiswa (pano tichaidaidza Veeam Backup yeAWS server) Zvinokurudzirwa kusarudza rudzi t2.medium.
Kubva pane zvinyorwa Key Pair yeVeeam Backup yeAWS Server unofanirwa kusarudza makiyi maviri anozoshandiswa kuratidza chokwadi pane iyi server nyowani. Kana iyo inodiwa kiyi peya isiri mune iyo rondedzero, iwe unofanirwa kuigadzira sekutsanangurwa kwazvino .
Rondedzera kana iwe uchida kugonesa otomatiki backup yeEBS mavhoriyamu eVeeam Backup yeAWS server (nekusarudzika, i.e. zvechokwadi).
Taura kana iyo Veeam Backup yeAWS server inoda kutangwa patsva kana software yatadza.
Taura kana iyo Veeam Backup yeAWS server inoda kutangwa patsva kana paine kutadza kwezvivakwa.
- Muchikamu chezvirongwa zvetiweki Kurongwa Kwemaitiro:
- Taura kana iwe uchida kugadzira Elastic IP kero yeVeeam Backup yeAWS server. Ona pano kuti uwane mamwe mashoko.
- Mumunda Inobvumidzwa Kunobva IP Kero yekubatanidza kune SSH tsanangura huwandu hweIPv4 kero kubva uko kuwana kuVeeam Backup yeAWS server kuburikidza neSSH kuchabvumidzwa.
- Mumunda Inobvumidzwa Kwakabva IP Kero yekubatanidza kuHTTPS tsanangura huwandu hwemakero eIPv4 kubva uko kuwana kuVeeam Backup yeAWS yewebhu interface ichabvumidzwa.
IPv4 kero interval inotsanangurwa muCIDR notation (semuenzaniso, 12.23.34.0/24). Kubvumira kupinda kubva kune ese IPv4 kero, unogona kuisa 0.0.0.0/0. (Zvisinei, iyi sarudzo haina kukurudzirwa nekuti inoderedza kuchengetedzwa kwezvivakwa.)
- Kubva pane yakatsanangurwa IPv4 kero, AWS CloudFormation inogadzira boka rekuchengetedza reVeeam Backup yeAWS, ine mitemo yakakodzera yeinouya traffic kuburikidza neSSH neHTTPS. (Nekusagadzika, port 22 inoshandiswa kune inouya traffic kuburikidza neSSH, uye port 443 yeHTTPS.) Kana iwe uchizotsanangura rakasiyana chengetedzo boka reVeeam Backup yeAWS panguva yekuiswa kwemhinduro, saka usakanganwa kuwedzera nemaoko. mitemo yakakodzera kuboka iri uye tarisa kuti inobvumirwa kupinda kune AWS masevhisi (akanyorwa muChikamu cheZvinodiwa chegwaro remushandisi).
- Muchikamu VPC uye Subnet iwe unofanirwa kusarudza Amazon Virtual Private Cloud (Amazon VPC) uye subnet iyo iyo Veeam Backup yeAWS server ichabatanidzwa.
- Pakufamba Gadzirisa zvingasarudzwa tsanangura maAWS tag, mvumo yebasa reIAM, uye mamwe marongero.
- Pakufamba ongorora tarisa zvigadziriso zvese, sarudza sarudzo Ini ndinobvuma kuti AWS CloudFormation inogona kugadzira zviwanikwa zveIAM uye dzvanya Gadzira stack.
Mushure mekuisa, vhura iyo webhu console nekunongedza mubrowser kuDNS kana IP kero yeiyo EC2 chiitiko panoisirwa Veeam Backup yeAWS, semuenzaniso:
https://ec2-135-169-170-192.eu-central-1.compute.amazonaws.com
Iyo console inoratidza zviwanikwa zvakagadzirirwa kuchengetedza data uchishandisa Veeam Backup yeAWS:
Inodiwa marongero ezvivakwa, mabasa, nezvimwe. zvinotsanangurwa zvakadzama mu .
Backup Policies
Kuti tidzivirire zviitiko, tinogadzira mitemo.
Unogona kumisa marongero akasiyana emhando dzakasiyana dzezvinhu: semuenzaniso, mutemo wakagadzirirwa kuchengetedza tier 3 zvikumbiro (zvisinganyanyi kukosha), kana marongero echikamu 2 uye tier 1 maapplication. Muzvirongwa zvepolicy, tsanangura:
- Akaundi ine mabasa eIAM
- Dunhu - unogona kusarudza akati wandei
- Izvo zvakarongerwa kuchengetedzwa - izvi zvinogona kuve zvese zviwanikwa kana zvakasarudzwa zviitiko kana (ma tags)
- Zvekubvisa
- Zvigadziriso zveSnapshot, kusanganisira kushandisa zvipfupi uye kuti ndeipi nguva yekuchengetedza inofanira kunge iri
- Backup marongero: nzira inoenda kune repository, hurongwa uye nguva yekuchengetedza
- Kufungidzira kwemutengo wemasevhisi (zvimwe nezvazvo pazasi)
- Ronga uye zviziviso zvigadziriso
Yakavakwa-in service cost assessment
Veeam Backup yeAWS yakavaka-mukati-otomatiki mutengo wekufungidzira kuti uverenge mutengo wemasevhisi ekuchengetedza zvichienderana nepolicy chaiyo. Iko kuverenga kunosanganisira zvinotevera metrics:
- Mutengo wekuchengetedza
- Snapshot mutengo
- Mari yetraffic - izvi zvinonyanya kukosha kana repository iri kunze kwedunhu rinoshanda zvinhu zvezvivakwa (Amazon AWS inobhadharisa traffic kune mamwe matunhu)
- Mari yekutengeserana
- mari yakakwana
Dhata inogona kutumirwa kune CSV kana XML faira.
Anobatsira Zvikamu - Vashandi
Kuti udzikise mutengo we traffic, unogona kugadzirisa otomatiki kugadzirwa kwezvinhu zvinobatsira - vashandi - munzvimbo imwechete yeAWS sezvinhu zvakachengetedzwa. Vashandi vanotangwa otomatiki panguva yekuchinjisa data kubva / kuenda kuAmazon S3 gore kana panguva yekupora, uye mushure mekupedza mashandiro vanodzimwa nekudzimwa.
Backup
Nezve backup mashandiro, Veeam Backup yeAWS inoshandisa emuno snapshots (ona. ) Panguva yekuchengetedza, Veeam Backup yeAWS inoshandisa mirairo yeAWS CLI kugadzira zvipfupi zveEBS mavhoriyamu akasungirirwa kune EC2 muenzaniso. Zvadaro, zvichienderana negadziriro yeparutivi yaunosarudza, Veeam Backup yeAWS ichagadzira ingave ketani yezvaiitika snapshots kana mufananidzo-level backup kubva kwavari yeEC2 muenzaniso.
Native snapshots
Veeam Backup yeAWS inogadzira snapshots yemuno yeEC2 muenzaniso sezvinotevera:
- Chekutanga, snapshots eEBS mavhoriyamu akasungirirwa pachiitiko ichi anotorwa.
- EBS snapshots inopihwa maAWS tag kana yagadzirwa. Makiyi uye kukosha kwema tag aya ane metadata yakavharidzirwa. Veeam Backup yeAWS inobata EBS snapshots ine metadata seyakatorwa snapshots yeEC2 muenzaniso.
- Kana iyo EC2 muenzaniso yanga yatove pasi peiyo backup policy, Veeam Backup yeAWS inotarisa huwandu hwemapoinzi ekudzoreredza muketani yemifananidzo. Kana ikadarika muganho wepolicy, iyo yekare poindi inobviswa. Cherechedza: Iyo yekuchengetedza uye otomatiki yekudzima mutemo (kuchengeta) haishande kune snapshots yakagadzirwa nemaoko (tiri kutaura nezve snapshots yakagadzirwa zvakasiyana). Unogona kudzima snapshots sezvakatsanangurwa . (Kana ne "nemawoko" tichireva kuvhura mutemo nemaoko kunze kwehurongwa, ipapo retouch ichashanda kune snapshot yakagadzirwa nenzira iyi.)
Image-level backups
Heano maitiro eVeeam Backup yeAWS inoita ma backups emifananidzo:
- Chekutanga, snapshots yeEBS mavhoriyamu akabatanidzwa kune ino chiitiko anotorwa.
- Veeam Backup yeAWS inoshandisa EBS snapshots sema backup masosi. Kana iyo backup process yapera, izvi snapshots zvinodzimwa.
- Mubatsiri anozotangwa mudunhu reAWS uko muenzaniso uripo kubatsira kugadzirisa iyo EC2 data data.
- EBS mavhoriyamu anogadzirwa kubva kwechinguva snapshots uye akabatanidzwa kune yevashandi chiitiko.
- Dhata inoverengwa kubva kuEBS mavhoriyamu pane yevashandi muenzaniso, iyo data inoendeswa kune iyo S3 repository, kwainozochengetwa muVeeam fomati.
- Munguva yechikamu chekuwedzera, Veeam Backup yeAWS inoverenga metadata yekuchengetedza kubva kuS3 repository uye inoishandisa kuona zvidhinha zvachinja kubva muchikamu chakapfuura.
- Kana iyo backup yapera, Veeam Backup yeAWS inodzima yenguva pfupi EBS snapshots uye muenzaniso wevashandi kubva kuAmazon EC2.
Data kupora
NeVeeam Backup yeAWS, unogona kudzoreredza data nenzira dzinotevera:
- Kunzvimbo yepakutanga, kudzoreredza chiitiko chepakutanga. Yese data pachiitiko ichi inozonyorwa pamusoro neavo vakachengetwa mu backup, uye iyo muenzaniso gadziriso ichachengetedzwa.
- Kunzvimbo itsva, kugadzira chiitiko chitsva. Mune ino mamiriro - kana ukasarudza kudzoreredza kune imwe nzvimbo kana nezvitsva zvigadziriso - iwe unozofanirwa kutsanangura zvigadziriso zvinozoiswa kumuenzaniso kana kudzoreredza kwapera:
- Nharaunda
- Encryption settings
- Muenzaniso zita uye mhando
- Network marongero: Virtual Private Cloud (VPC), subnet, boka rekuchengetedza
Volume recovery
Kudzoreredza EC2 mavhoriyamu emuenzaniso kubva pamufananidzo kana kubva kune backup, kune yepakutanga kana kunzvimbo itsva, inotsigirwa zvakare. Muchiitiko chechipiri, kune iyo nzvimbo itsva iwe unofanirwa kutsanangura iyo AWS dunhu, Kuwanikwa Zone uye mamwe ma parameter.
Nzira yekudzorera inosanganisirawo vashandi.
Maitiro acho pachawo anotaridzika seizvi (uchishandisa muenzaniso wekudzoreredza kubva kune backup):
- Veeam Backup yeAWS inotangisa vashandi munharaunda inodiwa yeAWS, inogadzira iyo nhamba inodiwa yemavhoriyamu EBS asina chinhu uye inoanamatira kune yevashandi chiitiko.
- Inodzoreredza data kubva kune backup kune aya mavhoriyamu.
- Inobvisa EBS mavhoriyamu uye oaendesa kunzvimbo yaunoda (sosi kana imwe AWS dunhu), uko mavhoriyamu anochengetwa semavhoriyamu akasiyana.
- Inodzima chiitiko chevashandi kana mabasa apera.
Cherechedza: Usakanganwa kuti mushure mekudzoreredza vhoriyamu haizobatanidzwa otomatiki kune iyo EC2 muenzaniso (inongochengetedzwa kunzvimbo yakatarwa sevhoriyamu yeEBS yakasiyana).
Kudzoreredza faira
Inokutendera kuti udzorere mafaera ega pasina kudzoreredza iyo yese muenzaniso.
Paunotanga kudzoreredza faira-level, iwe unogamuchira URL (zvichienderana nemushandi weruzhinji zita reDNS) kwaunogona kuona iyo yese faira chimiro pane yevaenzi OS, tsvaga mafaera anodiwa mairi, uye woaisa kumuchina wemuno.
Zvakare, kuti uve nechokwadi chekuchengetedza, unogona kutarisa chitupa uye zvigunwe zvayo kuti uve nechokwadi chekuti hapana MiTM.
Kubatanidzwa neVeeam Backup & Replication
Kana iwe uine Veeam Backup & Replication yakaiswa mune yako zvivakwa, unogona kugadzirisa kudzoreredza kwemichina yayo kuAmazon EC2 gore uchishandisa iyo Direct Restore kune AWS mashandiro, uye wozodzivirira iyi gore data neVeeam Backup yeAWS.
Veeam Backup & Replication inotsigirawo kushanda neAmazon S3 repositories iyo Veeam Backup yeAWS inogadzira - unogona kudzoreredza makopi ekuchengetedza eAmazon EC2 zviitiko kune-pane-nzvimbo zvivakwa.
Zvimiro zveshanduro yemahara
Iyo yemahara vhezheni yeVeeam Backup yeAWS inokutendera iwe kuchengetedza kusvika kugumi EC10 zviitiko; Kudzoreredza kubva kune backups kunoitwa pasina kurambidzwa.
Cherechedza: Inokurudzirwa kushandiswa t2.medium.
Inofungidzirwa mutengo wezviwanikwa ndeye 9.8 USD / mwedzi, zvichibva pakushandiswa kweXNUMX/XNUMX neanotevera default marongero:
- EC2 - 1 t3.micro muenzaniso
- EBS - 1 GP2 vhoriyamu ye8 GB
- Kugadziriswa kweS3 repository - 50 GB Standard S3 kuchengetedza, 13 S000 PUT zvikumbiro, 3 S10 GET zvikumbiro, 000 GB S3 Sarudza kushandiswa
Useful links
Veeam Backup yeAWS mhinduro pa
(muChirungu).
Source: www.habr.com