我的书签
添加书签
移除书签Backing up virtual machines
OADP for OKD Virtualization is a Technology Preview feature only. Technology Preview features are not supported with Red Hat production service level agreements (SLAs) and might not be functionally complete. Red Hat does not recommend using them in production. These features provide early access to upcoming product features, enabling customers to test functionality and provide feedback during the development process. For more information about the support scope of Red Hat Technology Preview features, see https://access.redhat.com/support/offerings/techpreview/. |
You back up virtual machines (VMs) by creating an OpenShift API for Data Protection (OADP) Backup custom resource (CR).
The Backup CR performs the following actions:
Backs up OKD Virtualization resources by creating an archive file on S3-compatible object storage, such as Multicloud Object Gateway, Noobaa, or Minio.
Backs up VM disks by using one of the following options:
Container Storage Interface (CSI) snapshots on CSI-enabled cloud storage, such as Ceph RBD or Ceph FS.
Restic file system backups on object storage.
OADP provides backup hooks to freeze the VM file system before the backup operation and unfreeze it when the backup is complete. The The |
You can add hooks to the Backup CR to run commands on specific VMs before or after the backup operation.
You schedule a backup by creating a Schedule CR instead of a Backup CR.
Creating a Backup CR
You back up Kubernetes images, internal images, and persistent volumes (PVs) by creating a Backup custom resource (CR).
Prerequisites
You must install the OpenShift API for Data Protection (OADP) Operator.
The
DataProtectionApplicationCR must be in aReadystate.Backup location prerequisites:
You must have S3 object storage configured for Velero.
You must have a backup location configured in the
DataProtectionApplicationCR.
Snapshot location prerequisites:
Your cloud provider must have a native snapshot API or support Container Storage Interface (CSI) snapshots.
For CSI snapshots, you must create a
VolumeSnapshotClassCR to register the CSI driver.You must have a volume location configured in the
DataProtectionApplicationCR.
Procedure
Retrieve the
backupStorageLocationsCRs by entering the following command:$ oc get backupStorageLocations
Example output
NAME PHASE LAST VALIDATED AGE DEFAULTvelero-sample-1 Available 11s 31m
Create a
BackupCR, as in the following example:apiVersion: velero.io/v1kind: Backupmetadata:name: <backup>labels:velero.io/storage-location: defaultnamespace: openshift-adpspec:hooks: {}includedNamespaces:- <namespace> (1)includedResources: [] (2)excludedResources: [] (3)storageLocation: <velero-sample-1> (4)ttl: 720h0m0slabelSelector: (3)- matchLabels:app=<label_1>- matchLabels:app=<label_2>- matchLabels:app=<label_3>orlabelSelectors: (4)- matchLabels:app=<label_1>- matchLabels:app=<label_2>- matchLabels:app=<label_3>
1 Specify an array of namespaces to back up. 2 Optional: Specify an array of resources to include in the backup. Resources might be shortcuts (for example, ‘po’ for ‘pods’) or fully-qualified. If unspecified, all resources are included. 3 Optional: Specify an array of resources to exclude from the backup. Resources might be shortcuts (for example, ‘po’ for ‘pods’) or fully-qualified. 4 Specify the name of the backupStorageLocationsCR.Verify that the status of the
BackupCR isCompleted:$ oc get backup -n openshift-adp <backup> -o jsonpath='{.status.phase}'
Backing up persistent volumes with CSI snapshots
You back up persistent volumes with Container Storage Interface (CSI) snapshots by editing the VolumeSnapshotClass custom resource (CR) of the cloud storage before you create the Backup CR.
Prerequisites
The cloud provider must support CSI snapshots.
You must enable CSI in the
DataProtectionApplicationCR.
Procedure
Add the
metadata.labels.velero.io/csi-volumesnapshot-class: "true"key-value pair to theVolumeSnapshotClassCR:apiVersion: snapshot.storage.k8s.io/v1kind: VolumeSnapshotClassmetadata:name: <volume_snapshot_class_name>labels:velero.io/csi-volumesnapshot-class: "true"driver: <csi_driver>deletionPolicy: Retain
You can now create a Backup CR.
Backing up applications with Restic
You back up Kubernetes resources, internal images, and persistent volumes with Restic by editing the Backup custom resource (CR).
You do not need to specify a snapshot location in the DataProtectionApplication CR.
Restic does not support backing up |
Prerequisites
You must install the OpenShift API for Data Protection (OADP) Operator.
You must not disable the default Restic installation by setting
spec.configuration.restic.enabletofalsein theDataProtectionApplicationCR.The
DataProtectionApplicationCR must be in aReadystate.
Procedure
Edit the
BackupCR, as in the following example:apiVersion: velero.io/v1kind: Backupmetadata:name: <backup>labels:velero.io/storage-location: defaultnamespace: openshift-adpspec:defaultVolumesToRestic: true (1)...
1 Add defaultVolumesToRestic: trueto thespecblock.
Creating backup hooks
You create backup hooks to run commands in a container in a pod by editing the Backup custom resource (CR).
Pre hooks run before the pod is backed up. Post hooks run after the backup.
Procedure
Add a hook to the
spec.hooksblock of theBackupCR, as in the following example:apiVersion: velero.io/v1kind: Backupmetadata:name: <backup>namespace: openshift-adpspec:hooks:resources:- name: <hook_name>includedNamespaces:- <namespace> (1)excludedNamespaces: (2)- <namespace>includedResources: []- pods (3)excludedResources: [] (4)labelSelector: (5)matchLabels:app: velerocomponent: serverpre: (6)- exec:container: <container> (7)command:- /bin/uname (8)- -aonError: Fail (9)timeout: 30s (10)post: (11)...
1 Optional: You can specify namespaces to which the hook applies. If this value is not specified, the hook applies to all namespaces. 2 Optional: You can specify namespaces to which the hook does not apply. 3 Currently, pods are the only supported resource that hooks can apply to. 4 Optional: You can specify resources to which the hook does not apply. 5 Optional: This hook only applies to objects matching the label. If this value is not specified, the hook applies to all namespaces. 6 Array of hooks to run before the backup. 7 Optional: If the container is not specified, the command runs in the first container in the pod. 8 This is the entrypoint for the init container being added. 9 Allowed values for error handling are FailandContinue. The default isFail.10 Optional: How long to wait for the commands to run. The default is 30s.11 This block defines an array of hooks to run after the backup, with the same parameters as the pre-backup hooks.
Scheduling backups
You schedule backups by creating a Schedule custom resource (CR) instead of a Backup CR.
Leave enough time in your backup schedule for a backup to finish before another backup is created. For example, if a backup of a namespace typically takes 10 minutes, do not schedule backups more frequently than every 15 minutes. |
Prerequisites
You must install the OpenShift API for Data Protection (OADP) Operator.
The
DataProtectionApplicationCR must be in aReadystate.
Procedure
Retrieve the
backupStorageLocationsCRs:$ oc get backupStorageLocations
Example output
NAME PHASE LAST VALIDATED AGE DEFAULTvelero-sample-1 Available 11s 31m
Create a
ScheduleCR, as in the following example:$ cat << EOF | oc apply -f -apiVersion: velero.io/v1kind: Schedulemetadata:name: <schedule>namespace: openshift-adpspec:schedule: 0 7 * * * (1)template:hooks: {}includedNamespaces:- <namespace> (2)storageLocation: <velero-sample-1> (3)defaultVolumesToRestic: true (4)ttl: 720h0m0sEOF
1 cronexpression to schedule the backup, for example,0 7 *to perform a backup every day at 7:00.2 Array of namespaces to back up. 3 Name of the backupStorageLocationsCR.4 Optional: Add the defaultVolumesToRestic: truekey-value pair if you are backing up volumes with Restic.Verify that the status of the
ScheduleCR isCompletedafter the scheduled backup runs:$ oc get schedule -n openshift-adp <schedule> -o jsonpath='{.status.phase}'
