Acronis Cyber Infrastructure 3.
Copyright Statement Copyright ©Acronis International GmbH, 2002-2019. All rights reserved. ”Acronis” and ”Acronis Secure Zone” are registered trademarks of Acronis International GmbH. ”Acronis Compute with Confidence”, ”Acronis Startup Recovery Manager”, ”Acronis Instant Restore”, and the Acronis logo are trademarks of Acronis International GmbH. Linux is a registered trademark of Linus Torvalds. VMware and VMware Ready are trademarks and/or registered trademarks of VMware, Inc.
Contents 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 1.1 About This Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 1.2 Hardware Requirements for ABGW-only Installations . . . . . . . . . . . . . . . . . . . . . . . . . 1 2. Installing Acronis Cyber Infrastructure . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3 3.
CHAPTER 1 Introduction 1.1 About This Guide This guide describes how to deploy Acronis Cyber Infrastructure on a single node with the sole purpose of creating Backup Gateway endpoints. 1.2 Hardware Requirements for ABGW-only Installations Normally, Acronis Cyber Infrastructure is installed on at least five nodes to fully utilize its built-in high availability and data redundancy capabilities.
Chapter 1. Introduction Note: If you plan to use Backup Gateway to store backups in the cloud, make sure the local storage cluster has plenty of logical space for staging (keeping backups locally before sending them to the cloud). For example, if you perform backups daily, provide enough space for at least 1.5 days’ worth of backups. For more details, see the Administrator’s Guide. • 4 logical CPUs* • 4GB RAM** • 1GbE network interface with a static IP address.
CHAPTER 2 Installing Acronis Cyber Infrastructure To install Acronis Cyber Infrastructure, do the following: 1. Prepare bootable media using the distribution ISO image (mount it to an IPMI virtual drive, create a bootable USB drive, or set up a PXE server). 2. Boot the server from the chosen media. 3. On the welcome screen, choose Install Acronis Cyber Infrastructure. 4. On step 1, please carefully read the End-User License Agreement.
Chapter 2. Installing Acronis Cyber Infrastructure shown on the login screen and the primary node’s root password. In the admin panel, open INFRASTRUCTURE > Nodes and click ADD NODE to invoke a screen with the management node address and the token. The node may appear on the INFRASTRUCTURE > Nodes screen in the UNASSIGNED list as soon as token is validated. However, you will be able to join it to the storage cluster only after the installation is complete. 8.
CHAPTER 3 Creating the Storage Cluster To create the storage cluster, do the following: 1. Open the INFRASTRUCTURE > Nodes screen and click a node in the UNASSIGNED list. 2. On the node overview screen, click Create cluster. 3. In the Cluster field, type a name for the cluster. The name may only contain Latin letters (a-z, A-Z), numbers (0-9), underscores (“_”) and hyphens (“-“). 4. Click New cluster. You can monitor cluster creation in the HEALTHY list of the INFRASTRUCTURE > Nodes screen.
Chapter 3. Creating the Storage Cluster might take some time depending on the number of disks to be configured. Once the automatic configuration is complete, the cluster is created.
CHAPTER 4 Connecting Acronis Backup Software to Storage Backends via Backup Gateway Note: If you are going to migrate your Acronis Storage Gateway, skip the steps described in this chapter and proceed to Migrating Backups from Older Solutions (page 20). The Backup Gateway storage access point (also called “gateway”) is intended for service providers who use Acronis Backup Cloud and/or Acronis Backup Advanced and want to organize an on-premise storage for their clients’ backed-up data.
Chapter 4. Connecting Acronis Backup Software to Storage Backends via Backup Gateway and other overhead, which reduces overall performance. Take note of the following: • When configuring Backup Gateway, you will need to provide the credentials of your administrator account in the Acronis backup software. • In cases when not local but external storage (e.g., NFS) is used with Backup Gateway, redundancy has to be provided by the said external storage.
Chapter 4. Connecting Acronis Backup Software to Storage Backends via Backup Gateway Redundancy by replication is not supported for Backup Gateway. You can later change the erasure coding mode on the Backup > Parameters panel. 7. On the DNS Configuration tab, specify the external DNS name for this gateway, e.g, backupgateway.example.com. Make sure that each node running the gateway service has a port open for outgoing Internet connections and incoming connections from your Acronis backup software.
Chapter 4. Connecting Acronis Backup Software to Storage Backends via Backup Gateway Click Next. 8. On the Register in backup software pane, specify the following information for your Acronis product: • In Address, specify the address of the Acronis Backup Cloud management portal (e.g., https://cloud.acronis.com/) or the hostname/IP address and port of the Acronis Backup Advanced management server (e.g., http://192.168.1.2:9877).
Chapter 4. Connecting Acronis Backup Software to Storage Backends via Backup Gateway NFS volume. Before you proceed, make sure that: 1. The NFS share has enough space for backups. 2. Each NFS export is used by only one gateway. In particular, do not configure two Acronis Cyber Infrastructure installations to use the same NFS export for backup storage. To set up Backup Gateway, do the following: 1.
Chapter 4. Connecting Acronis Backup Software to Storage Backends via Backup Gateway 7. On the DNS Configuration tab, specify the external DNS name for this gateway, e.g, backupgateway.example.com. Make sure that each node running the gateway service has a port open for outgoing Internet connections and incoming connections from your Acronis backup software. Backup agents will use this address and port to upload the backup data.
Chapter 4. Connecting Acronis Backup Software to Storage Backends via Backup Gateway Click Next. 8. On the Register in backup software pane, specify the following information for your Acronis product: • In Address, specify the address of the Acronis Backup Cloud management portal (e.g., https://cloud.acronis.com/) or the hostname/IP address and port of the Acronis Backup Advanced management server (e.g., http://192.168.1.2:9877).
Chapter 4. Connecting Acronis Backup Software to Storage Backends via Backup Gateway reason, it is recommended to use the local storage cluster as storage backend. Since backups are cold data with specific access rights, it is cost-efficient to use storage classes that are intended for long-term storage of infrequently accessed data.
Chapter 4. Connecting Acronis Backup Software to Storage Backends via Backup Gateway 4.3.2 Setting Up Backup Gateway Before you proceed, make sure that the destination storage has enough space for backups. To set up Backup Gateway, do the following: 1. On the INFRASTRUCTURE > Networks screen, make sure that the ABGW private and ABGW public traffic types are added to your networks. 2. In the left menu, click STORAGE SERVICES > Backup storage. 3.
Chapter 4. Connecting Acronis Backup Software to Storage Backends via Backup Gateway 7. On the Register in backup software pane, specify the following information for your Acronis product: • In Address, specify the address of the Acronis Backup Cloud management portal (e.g., https://cloud.acronis.com/) or the hostname/IP address and port of the Acronis Backup Advanced management server (e.g., http://192.168.1.2:9877).
CHAPTER 5 Updating Certificate for Backup Gateway When you register a Backup Gateway in Acronis Backup Cloud or Acronis Backup Advanced, they exchange certificates that are valid for one year. One and a half months before expiration, you will be alerted about the expiring certificate in the admin panel. To update the certificate, you need to connect to your backup software and renew the certificate. Do the following: 1. On the STORAGE SERVICES > Backup storage screen, click Update certificate. 2.
Chapter 5. Updating Certificate for Backup Gateway 3. Click NEXT. 4.
CHAPTER 6 Re-registering Backup Gateway in a New Acronis Backup Advanced To switch a configured Backup Gateway to a different Acronis Backup Advanced instance, re-register the gateway with that instance. To do this: 1. On the STORAGE SERVICES > Backup storage screen, click Re-register. 2. On the Re-registration in Acronis Backup tab, specify the following: • In Address, specify the hostname/IP address of the target management server and the port 9877 (e.g., http://192.168.1.2:9877).
CHAPTER 7 Migrating Backups from Older Solutions By means of Backup Gateway, you can migrate backups from Acronis Storage 1.5 and Acronis Storage Gateway 1.6 and 1.7 to a storage backend of your choice: the local storage cluster, external NFS, or public cloud. Migration to NFS backends is not available, however, if multiple nodes are selected as Backup Gateway. Important: Before you proceed, make sure that the destination storage has enough space for both existing and new backups.
Chapter 7. Migrating Backups from Older Solutions Agents are directed straight to Backup Gateway, bypassing the proxy on the source storage. Steps that you need to take depend on how the source storage is registered in Acronis Backup Cloud: under the IP address or DNS name. • If the source storage is already registered under the DNS name, you need to change the IP address behind it to those of the Backup Gateway nodes.
Chapter 7. Migrating Backups from Older Solutions 5. Provide the credentials for the cloud management portal of the Acronis Backup Cloud installation that the source storage is registered in and click NEXT. 6. Enable SSH access on all FES nodes of Acronis Storage 1.5 as instructed and click NEXT. 7. Map the public IP addresses of FES nodes accessible via SSH to their private IP addresses and click NEXT. This step is required to access FES nodes via SSH through tunnels. 8.
Chapter 7. Migrating Backups from Older Solutions • external NFS • public cloud 9. Make sure the correct network interface is selected in the drop-down list. Click NEXT. If necessary, click the cogwheel icon and configure node’s network interfaces on the Network Configuration screen. 10. Configure the destination storage backend: • For a storage cluster, select the desired tier, failure domain, and redundancy mode.
Chapter 7. Migrating Backups from Older Solutions Click NEXT. 11. Review the source and destination storages and click PROCEED. 12. On the next panel, follow the instructions to point the source storage DNS name to the IP addresses of your new storage cluster. Having updated the DNS configuration, wait for 24 hours for all backup agents to cache the new IP addresses. Until this happens, the START MIGRATION button will be disabled.
Chapter 7. Migrating Backups from Older Solutions Depending on data size, migration may take as long as several days. 7.2 Migrating Backups from Acronis Storage Gateway 1.6 and 1.7 (NFS) 1. Disable the firewall or explicitly open TCP port 44446 on the source Acronis Storage Gateway.
Chapter 7. Migrating Backups from Older Solutions • To open TCP port 44446 in the firewall, do the following: 1. Find out the zone where port 44445 is open: # firewall-cmd --list-all-zones | grep active mix_eth0 (active) 2. Add the required port to the same zone: # firewall-cmd --zone=mix_eth0 --permanent --add-port=44446/tcp # firewall-cmd --reload 2.
Chapter 7. Migrating Backups from Older Solutions Important: Each time you change nodes in the Backup Gateway cluster, adjust the DNS settings accordingly. 7. Choose a storage type to create a gateway to one of the destinations: • local storage cluster • external NFS • public cloud 8. Make sure the correct network interface is selected in the drop-down list. Click NEXT. If necessary, click the cogwheel icon and configure node’s network interfaces on the Network Configuration screen. 9.
Chapter 7. Migrating Backups from Older Solutions Click NEXT. 10. Review the source and destination storages and click START MIGRATION. Depending on data size, migration may take as long as several days.
CHAPTER 8 Monitoring Backup Gateway After you create a Backup Gateway, you can monitor it on the STORAGE SERVICES > Backup storage > OVERVIEW screen.
Chapter 8.
CHAPTER 9 Releasing Nodes from Backup Gateway Backup Gateway is meant to provide access to one specific storage backend. If you need to switch the backend, e.g., from a public cloud to a local storage cluster or one public cloud bucket to another, you need to delete the Backup Gateway by releasing all its nodes and create a new one. When the Backup Gateway is deleted, it is also unregistered from your Acronis backup software, which loses access to the storage backend.
Chapter 9. Releasing Nodes from Backup Gateway 3. Specify the credentials of your administrator account in your Acronis backup software and click NEXT. In case the release is forced, simply click NEXT.
