Acronis Storage 2.
Copyright Statement Acronis International GmbH, 2002-2016. All rights reserved. ”Acronis” and ”Acronis Secure Zone” are registered trademarks of Acronis International GmbH. ”Acronis Compute with Confidence”, ”Acronis Startup Recovery Manager”, ”Acronis Active Restore”, ”Acronis Instant Restore” and the Acronis logo are trademarks of Acronis International GmbH. Linux is a registered trademark of Linus Torvalds. VMware and VMware Ready are trademarks and/or registered trademarks of VMware, Inc.
Contents 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 1.1 About Acronis Storage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 1.2 What’s New in Acronis Storage 2.0 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 2. Managing Acronis Storage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3 2.
3.2 Monitoring Cluster Storage Space . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30 3.2.1 Physical Space Chart . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31 3.2.2 Logical Space Chart . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31 3.2.2.1 Understanding Logical Space . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32 3.2.3 Monitoring Chunk Status and Replication . . . . . . . . .
.2.1 Object Storage Infrastructure Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60 5.2.2 Planning the S3 Cluster . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61 5.2.3 Sample Object Storage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62 5.2.4 Creating the S3 Cluster . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 64 5.2.5 Managing Object Storage Users . . . . . . . . . . . . . .
CHAPTER 1 Introduction To support the growing demand for both high performance and high data availability, modern data centers need a fast, flexible storage solution. Existing solutions, however, are often difficult to manage and maintain, or not flexible enough (e.g., local RAID arrays), or too expensive (e.g., storage area networks). Acronis Storage is designed to solve these issues. It can run on commodity hardware, so no significant infrastructure investments are needed.
Chapter 1. Introduction • A web-based user interface that enables access to all Acronis Storage 2.0 features, including management and monitoring of clusters and nodes, iSCSI targets, S3 object storages, and Acronis Backup Gateways. • Support for new data redundancy modes by erasure coding to ensure a significant reduction of data replication overhead. • Ability to create and manage object storages with support for the Amazon S3 compatible protocol. • Ability to create and manage iSCSI targets.
CHAPTER 2 Managing Acronis Storage To start managing Acronis Storage, log in to the management panel as admin (or superadmin) and make sure that storage nodes are shown on the NODES screen. The first step to perform, before you can create any clusters, is to create the internal and public networks required by Acronis Storage. You can do that by configuring the network interfaces of all nodes. Having created the networks, you can proceed to creating Acronis Storage clusters. 2.
Chapter 2. Managing Acronis Storage 2. On the node overview screen, click NETWORK.
2.1. Configuring Node Network Interfaces 3. Select a network interface and click Configure. 4. On the Configure screen, do one of the following: • To obtain the IP address, DNS, and routing settings from the DHCP server, select Automatically (DHCP). • To obtain just the IP address from the DHCP server, select Automatically (DHCP address only). • To specify the IP address manually, select Manual and add the IP address.
Chapter 2. Managing Acronis Storage 5. If necessary, set up a gateway and a DNS server. 6. If you have set a custom maximum transmission unit (MTU) on the network hardware, set the same value in the corresponding field. Warning: Setting a custom MTU in management panel prior to configuring it on the network hardware will result in network failure on the node and require manual resetting.
2.1. Configuring Node Network Interfaces 8. On the Choose roles panel, select roles to assign to the network interface (for details, see Network Interface Roles in the Acronis Storage 2.0 Installation Guide). 9. If you need to open specific ports on a network interface with public roles, do the following: (a) Click Configure.
Chapter 2. Managing Acronis Storage (b) On the Configure custom role panel, create custom roles: click Add and specify role names and ports. Custom roles can later be assigned to any network interface in a cluster. To remove a custom role, make sure it is not assigned to any interface, select it, and click Remove. (c) Click Done to return to the Choose roles panel. 11. Select the required roles and click Done to assign them. 2.1.
2.1. Configuring Node Network Interfaces Gbps. To create a bond, do the following: 1. On the NODES screen, click the node to bond the network interfaces on. 2. On the node overview screen, click NETWORK. 3. In the NETWORK list, check network interfaces to bond, and click Create bonding in the menu to the right. 4. On the Configure Bonding panel, select the bonding type from the drop-down list. The balance-xor type is selected by default and recommended for both fault tolerance and good performance.
Chapter 2. Managing Acronis Storage 5. Set up network parameters as described in step 4 in Configuring Node Network Interfaces on page 3 and click PROCEED. 6. On the Choose roles panel, select roles to assign to the bonding network interface (for details, see Network Interface Roles in the Acronis Storage 2.0 Installation Guide).
2.1. Configuring Node Network Interfaces 7. Click Done. 2.1.2 Setting Up VLAN Interfaces To set up a VLAN network interface, do the following: 1. On the NODES screen, click the node on which to configure VLAN. 2. On the node overview screen, click NETWORK. 3. Select a network interface and click Create VLAN. 4. On the Configure VLAN panel, specify a number for VLAN, add an IP address, and, if necessary, set up a gateway and a DNS server.
Chapter 2. Managing Acronis Storage 5. Click Proceed to create a VLAN interface. 2.2 Creating Acronis Storage Clusters To create an Acronis Storage cluster means to create a cluster on one (first) node, then populate it with more nodes.
2.2. Creating Acronis Storage Clusters Important: To be able to create a cluster, you will need to assign a storage role to a node’s network interface. 2.2.1 Creating the Cluster on the First Node 1. Open the NODES screen and click a node in the UNASSIGNED list. 2. On the node overview screen, click Create cluster. 3. In the Cluster field, type a name for the cluster. The name may only contain Latin letters (a-z, A-Z), numbers (0-9), underscores (“_”) and dashes (“-”).
Chapter 2. Managing Acronis Storage 4. Make sure a configured network interface with a storage role is selected from the Storage interface drop-down list. Note: If the network was not previously configured, click the cogwheel icon and, on the Network Configuration screen, configure a storage role for a network interface. 5. If required, to enable data encryption, check the Encryption box (see Managing Tier Encryption on page 21) and proceed to create the cluster.
2.2. Creating Acronis Storage Clusters Note: You can later disable encryption for new chunk services (CS) on the SETTINGS > Advanced settings panel. 6. Click New cluster to have Acronis Storage assign the roles to disks automatically. Alternatively, click Advanced configuration to assign the roles to each drive manually (see Assigning Disk Roles Manually on page 17). You can monitor cluster creation progress in the HEALTHY list of the NODES screen.
Chapter 2. Managing Acronis Storage 2. On the node overview screen, click Join cluster. 3. Make sure a configured network interface with a storage role is selected from the Storage interface drop-down list. Note: If the network was not previously configured, click the cogwheel icon and, on the Network Configuration screen, configure a storage role for a network interface.
2.2. Creating Acronis Storage Clusters 5. Click Join cluster to have Acronis Storage assign the roles to disks automatically and add the node to the current cluster. Alternatively, click Advanced configuration to assign the roles to each drive manually (see Assigning Disk Roles Manually on page 17). 2.2.
Chapter 2. Managing Acronis Storage • Storage. Use the disk to store chunks and run a chunk service on the node. From the Caching and checksumming drop-down list, select one of the following: • Use SSD for caching and checksumming (available and recommended only for SSD). Data caching improves cluster performance by placing the frequently accessed data on an SSD. Data checksumming generates checksums each time some data in the cluster is modified.
2.3. Releasing Nodes from Cluster 6. Click PROCEED. You can monitor disk configuration progress in the HEALTHY list of the NODES screen. 2.3 Releasing Nodes from Cluster To release a node means to remove it from the cluster (e.g., for maintenance). As the node may be running services needed by the cluster, do the following prior to releasing it to avoid cluster degradation: 1. If the node runs one of the five required metadata services, add a metadata role to another node.
Chapter 2. Managing Acronis Storage 2. If the node has any access points, make sure that the same access points are configured on other nodes in the cluster as well. 3. If the node has iSCSI targets, move them to a different node. 4. If the node has an S3 gateway or ABGW, reconfigure DNS for S3 and ABGW access points to remove the node from DNS records. Next, release the node from S3 and ABGW in the corresponded sections of the SERVICES screen. 5.
2.5. Managing Tier Encryption token obtained in the management panel). • By reinstalling Acronis Storage on the node from scratch. 2.5 Managing Tier Encryption Acronis Storage can encrypt data stored on disks with the AES-256 standard, so if a disk gets lost or stolen the data will be safe. Acronis Storage stores disk encryption keys in cluster’s metadata (MDS). Encryption can be enabled or disabled only for the newly created chunk services (CS).
Chapter 2. Managing Acronis Storage To enable or disable tier encryption, on the SETTINGS > Advanced settings panel, select or deselect tiers and click SAVE. 2.6 Managing Acronis Storage Users The web-based user interface of Acronis Storage supports the following user types: • Observer. Observers can monitor Acronis Storage performance and parameters but cannot change any settings. • Administrator. Administrators have complete control over Acronis Storage but cannot manage user accounts. • Superadmin.
2.6. Managing Acronis Storage Users 4. Choose a user type–Observer or Administrator–and click Done. 2.6.2 Managing User Accounts The only user management option available to all users except the superadmin is changing the account password. To do that, on any screen, click the user icon in the top left corner of the management panel and click Change password.
Chapter 2. Managing Acronis Storage 2.7 Managing Acronis Storage Updates You can update your Acronis Storage infrastructure using the web-based user interface. Important: To check for and download updates, the cluster must be healthy and each node in the infrastructure must be able to open outgoing Internet connections. To update Acronis Storage, do the following: 1. Open the SETTINGS > Updates screen and click CHECK FOR UPDATES. The scrupt will run yum each node.
2.8. Allowing root Access to Cluster Nodes Over SSH 2. To apply all available updates, click UPDATE NOW. While updates are being applied, some of the Acronis Storage services might be unavailable for a short period of time. 2.8 Allowing root Access to Cluster Nodes Over SSH In certain situations, you or the technical support team may need root access to cluster nodes via SSH. To allow root access to all nodes in the cluster, do the following: 1. Obtain an SSH public key from the technical support team. 2.
Chapter 2. Managing Acronis Storage To delete the key after root access is no longer required, select the key and click Delete. 2.9 Backing Up and Restoring Management Node Acronis Storage stores node information, statistics, and configuration in a database on the node with the management panel. Database backups are created automatically every day. To back up the database manually, open the SETTINGS > Backup screen and click BACKUP NOW.
2.9. Backing Up and Restoring Management Node Once backup is completed, the Last backup date will be refreshed. 2.9.1 Restoring Management Node from Backup You can restore a management node database from backup on the following nodes: • the same management node or any node assigned to a cluster, • a new node outside the cluster. In this case, Acronis Storage will restore the database and install only the management panel component on the node.
Chapter 2. Managing Acronis Storage Note: You can specify the same network interface in both parameters. To restore the database to a new node, do the following: 1. Copy the backup file /mnt/vstorage/webcp/backup/backup-.tar from the initial management node to the same directory on the target node. 2. Run the following script on the target node: # /usr/libexec/vstorage-ui-backend/bin/restore-management-node.sh \ -x -i \ -f
2.10. Managing Acronis Storage Licenses keys before and want to upgrade, choose one of the following: • Upgrade, to increase the storage space limit. • Prolong, to prolong the license. 4. Click Activate to activate or upgrade the license.
CHAPTER 3 Monitoring Acronis Storage Clusters From the management panel, you can monitor the performance of both the whole cluster and its parts. 3.1 Monitoring Cluster Status The overall cluster statistics are available on the cluster OVERVIEW screen. Pay attention to the cluster status that can be one of the following: • HEALTHY. All cluster components are active and operate normally. • UNKNOWN. Not enough information about the cluster state (e.g., because the cluster is inaccessible). • DEGRADED.
3.2. Monitoring Cluster Storage Space The two charts that provide information on how storage space is used are PHYSICAL SPACE and LOGICAL SPACE. They are described in the following sections in more detail. 3.2.1 Physical Space Chart The PHYSICAL SPACE chart shows the combined space of all disks available to the cluster. The following statistics are available: • Used space. The space occupied by all data chunks and their replicas plus the space occupied by any other data stored on cluster nodes’ disks.
Chapter 3. Monitoring Acronis Storage Clusters taken into account. • Free space. The difference between the two above. 3.2.2.1 Understanding Logical Space When monitoring disk space information in the cluster, keep in mind that logical space is the amount of free disk space that can be used for storing user data in the form of data chunks and all their replicas. Once this space runs out, no data can be written to the cluster.
3.2. Monitoring Cluster Storage Space State Description blocked Percentage of chunks which have fewer active replicas than the set minimal amount. Write requests to a blocked chunk are frozen until it has at least the set minimum amount of replicas. Read requests to blocked chunks are allowed, however, as they still have some active replicas left. Blocked chunks have higher replication priority than degraded chunks.
Chapter 3. Monitoring Acronis Storage Clusters If some of the services were not in the healthy state for some time, these time periods will be highlighted in red on the charts. 3.2.5 Monitoring Cluster I/O Activity You can monitor the history of the cluster I/O activity on the READ and WRITE charts on the cluster OVERVIEW screen.
3.2. Monitoring Cluster Storage Space The current cluster I/O activity averaged for the last 10 seconds is shown as: • the speed of read and write I/O operations, in megabytes per second (MB/s). • the number of read and write I/O operations per second (IOPS).
CHAPTER 4 Monitoring Acronis Storage Nodes Nodes added to the Acronis Storage infrastructure are listed on the NODES screen, grouped by their statuses. If there are no clusters in Acronis Storage, you will only see a list of the UNASSIGNED nodes. If there are clusters, you can select one in the drop-down list on the left. The cluster nodes will be listed on the screen alongside the unassigned nodes. 4.1 Node Statuses A node can have one of the following statuses: • HEALTHY.
4.2. Monitoring Node Performance The overall statistics include: • the number of CPUs and the amount of RAM, • CPU usage, in percent over time, • RAM usage, in percent over time. The DISKS section shows: • the number of HDD and SSD drives and their statuses, • node I/O activity over time on the read and write charts. The NETWORK section shows: • the list of network interfaces and their statuses, • the amount of transmitted (TX) and received (RX) traffic over time.
Chapter 4. Monitoring Acronis Storage Nodes The SERVICES section shows Acronis Storage services running on the node and their statuses. The following sections provide more information on disk and network usage. 4.2.1 Monitoring Node Disks To monitor the usage and status of node disks, click the DISKS link on the node overview screen. You will see a list of all disks on the node and their status icons. A disk status icon shows the combined status of S.M.A.R.T.
4.3. Monitoring Node Network 4.2.1.1 Monitoring the S.M.A.R.T. Status of Node Disks The S.M.A.R.T. status of all disks is monitored by a tool installed along with Acronis Storage. Run every 10 minutes, the tool polls all disks attached to nodes, including journaling SSDs and system disks, and reports the results to the management node. Note: For the tool to work, make sure the S.M.A.R.T. functionality is enabled in node’s BIOS. If a S.M.A.R.T.
CHAPTER 5 Exporting Acronis Storage Cluster Data Acronis Storage allows you to export storage space as: • Block storage via iSCSI for virtualization, databases and other needs. • Object storage for storing unlimited number of files via an Amazon S3 compatible protocol. You can store data like media files, backups, dropbox-like applications, and Open Xchange files. You can build your own Amazon S3 compatible object storage services as a part of your cloud offering or for internal needs.
5.1. Exporting Data via iSCSI In this example there are three hardware nodes working in an Acronis Storage cluster. Two nodes host one iSCSI target each, while the third hosts two iSCSI targets. Each node has two network connections: one internal for cluster communication and one external for iSCSI exporting. Each iSCSI target has its own static IP address assigned from the datacenter network. The iSCSI network must be properly configured to run iSCSI targets.
Chapter 5. Exporting Acronis Storage Cluster Data To create and start a target, do the following: 1. On the SERVICES > iSCSI > Targets screen, click ADD TARGET. 2. On the Add target panel, type a name for the new target in the Name field. 3. In the node drop-down list, select a node on which the target will be located. The node should have an iSCSI role assigned to one of its network interfaces to appear in the list. 4.
5.1. Exporting Data via iSCSI 6. Click Done to create the target. The ISCSI target will be automatically started after creation and the initiators will be able to access the target via the specified IP address. 5.1.1.1 Performance Tips • Spread iSCSI targets evenly across nodes in the cluster. For example, ten nodes with one iSCSI target per each will perform better than a single node with ten iSCSI targets on it.
Chapter 5. Exporting Acronis Storage Cluster Data 3. Click Done. 5.1.3.1 Listing LUNs In Acronis Storage, each iSCSI target can have multiple LUNs (virtual disks or volumes). You can list the LUNs of a target and iSCSI initiators that are currently connected. To list the LUNs, open the SERVICES > iSCSI > Targets screen, select a target and click a link in the LUNs column. To list the initiators that are currently connected to iSCSI targets, open the INITIATORS tab on the same screen.
5.1. Exporting Data via iSCSI 5.1.3.2 Adding LUNs To add a LUN to an iSCSI target, do the following: 1. On the SERVICES > iSCSI > Targets screen, select the necessary target and click a link in the LUNs column. 2. To add a new LUN to the list, click ADD LUN.
Chapter 5. Exporting Acronis Storage Cluster Data 3. On the Add LUN screen, select the LUN’s number from the drop-down list. 4. In the LUN Size field, specify the size of the LUN in GB; select a tier from the drop-down list to the right. For more information on tiers, see Understanding Storage Tiers in the Acronis Storage 2.0 Installation Guide. 5. From the Failure domain drop-down list, choose a placement policy for replicas. For more details, see Understanding Failure Domains in the Acronis Storage 2.
5.1. Exporting Data via iSCSI 5.1.4.1 Accessing Acronis Storage iSCSI Targets from CentOS 6 1. Make sure that the iscsi-initiator-utils package is installed. 2. Discover the required target by its IP address. For example: # iscsiadm --mode discovery --type sendtargets --portal 192.168.10.100 3. Restart the iscsid service to rescan for newly added drives: # service iscsi restart To check that the new drive has appeared in the system, use fdisk, parted or similar tools.
Chapter 5. Exporting Acronis Storage Cluster Data 3. In the Discover Target Portal window, enter the portal IP address and click OK. The newly added portal will appear in the Target portals section. 4.
5.1. Exporting Data via iSCSI and click Connect. 5. In the Connect to Target window, click OK.
Chapter 5. Exporting Acronis Storage Cluster Data 6. Target’s Inactive status will change to Connected. 7. The newly attached disk will appear in Server Manager Dashboard > Computer Management > Storage > Disk Management.
5.1. Exporting Data via iSCSI 8. Right-click the disk information section and select Online. The disk status will change to Online. 9. Right-click the disk information section and select Initialize Disk.
Chapter 5. Exporting Acronis Storage Cluster Data 10. In the Initialize Disk window, click OK. 11. Right-click the disk space section, select New Simple Volume..., and follow the wizard’s instruction to format the new disk to NTFS.
5.1. Exporting Data via iSCSI 12. The disk state will change to Healthy. The new disk will appear in Windows Explorer.
Chapter 5. Exporting Acronis Storage Cluster Data 5.1.4.3 Accessing Acronis Storage iSCSI Targets from VMware ESXi 1. In the vSphere Client, switch to the Configuration tab, and click Storage Adapters in the Hardware section. 2. If no software iSCSI adapters have been added, do so by right-clicking in the Storage Adapters section and selecting Add Software iSCSI Adapter.... 3. Open the software iSCSI adapter’s properties, switch to the Static Discovery tab and click Add.... 4.
5.1. Exporting Data via iSCSI (c) In the Location section, enter target’s IP address in the Target Host field, click Discover IQNs and select the desired target, then click Discover LUNs and select the desired LUN. 3. Click Finish to format the disk. The new storage repository will appear in XenCenter. For more information, see XenCenter documentation. 5.1.4.5 Accessing Acronis Storage iSCSI Targets from Microsoft Hyper-V Note: Names of the targets to be mounted must not contain underscore characters. 1.
Chapter 5. Exporting Acronis Storage Cluster Data InitiatorPortalAddress : 0.0.0.0 InitiatorSideIdentifier : 400001370000 IsConnected : True IsDataDigest : False IsDiscovered : True IsHeaderDigest : False IsPersistent : False NumberOfConnections : 1 SessionIdentifier : ffffe00000b5e020-4000013700000005 TargetNodeAddress : iqn.2014-04.com.vstorage:test1 TargetSideIdentifier : 0001 .. _PSComputerName PSComputerName :: : 4. To check that the disk has been connected, run PS C:\Users\Admini
5.1. Exporting Data via iSCSI 3. Click Done. The newly created CHAP user account will be listed on the iSCSI Users screen. 5.1.5.2 Creating Acronis Storage iSCSI Targets Bound to CHAP Accounts To create an Acronis Storage iSCSI target bound to a CHAP account, do the following: 1. On the SERVICES > iSCSI > Targets screen, select an iSCSI target and click Configure. 2. On the Configure target screen, check Enable CHAP and/or Enable mutual CHAP and select users in the corresponding drop-down lists.
Chapter 5. Exporting Acronis Storage Cluster Data 3. Click Done. 5.1.5.3 Changing CHAP Account Passwords To change the password of a CHAP account, do the following: 1. On the SERVICES > iSCSI Users screen, select a user and click Configure. 2. In the Password section on the Configure user screen, click change.
5.2. Exporting Data via S3 3. Type a new password in the corresponding field and click Done. The password should be 12 to 16 characters long for Windows clients to be able to establish connection. The new password will become active after target reboot. 5.2 Exporting Data via S3 Acronis Storage allows you to export cluster disk space to customers in the form of an S3-like object-based storage. Acronis Storage is implemented as an Amazon S3-like API, which is one of the most common object storage APIs.
Chapter 5. Exporting Acronis Storage Cluster Data that describes it as well as a unique identifier that allows finding the object in the storage. Object storage is optimized for storing billions of objects, in particular for application storage, static web content hosting, online storage services, big data, and backups. All of these uses are enabled by object storage thanks to a combination of very high scalability and data availability and consistency.
5.2. Exporting Data via S3 • An object server stores actual object data received from S3 gateway, packed into special containers to achieve high performance. The containers are redundant, you can specify the redundancy mode while configuring object storage. • A name server stores information about objects (metadata) received from the S3 gateway. Metadata includes object name, size, ACL, location, owner, and such. • S3 gateway is a data proxy between object servers and users.
Chapter 5. Exporting Acronis Storage Cluster Data 1. Define which nodes of the Acronis Storage cluster will run the S3 storage access point services. It is recommended to have all nodes available in Acronis Storage run these services. 2. Configure the network so that the following is achieved: • All components of the S3 cluster communicate with each other via the S3 private network. All nodes of an S3 cluster must be connected to the S3 private network.
5.2.
Chapter 5. Exporting Acronis Storage Cluster Data 5.2.4 Creating the S3 Cluster To set up object storage services on a cluster node, do the following: 1. Make sure that S3 private network is configured on each node that will run object storage services. 2. On the SERVICES > Nodes screen, check the box of each cluster node where object storage services will run. 3. Click Create S3 cluster. 4. Make sure a network interface with an S3 (private) role is selected in the drop-down list.
5.2. Exporting Data via S3 5. Click Proceed. 6. In Tier, select the storage tier that will be used for the object storage. For information about storage tiers, consult Understanding Storage Tiers in the Acronis Storage 2.0 Installation Guide. 7. In Failure domain, choose a placement policy for replicas. For more details, see Understanding Failure Domains in the Acronis Storage 2.0 Installation Guide. 8. In Data redundancy, select the redundancy mode that the object storage will use.
Chapter 5. Exporting Acronis Storage Cluster Data Note: You can later change the redundancy mode on the S3 > Settings panel. 9. Click Proceed. 10. Specify the external DNS name for the S3 endpoint that will be used by the end users to access the object storage. For example, mys3storage.example.com. Click Proceed. Important: Configure your DNS server according to the example suggested in the management panel. 11. From the drop-down list, select an S3 endpoint protocol: HTTP, HTTPS or both.
5.2. Exporting Data via S3 Note: It is recommended to use only HTTPS for production deployments. If you have selected HTTPS, do one of the following: • Check Generate self-signed certificate to get a self-signed certificate for HTTPS evaluation. • Acquire an SSL certificate and key from a third party and upload them. 12. If required, click Configure Acronis Notary and specify Notary DNS name and Notary user key. For more information on Acronis Notary, see Managing Acronis Notary in Buckets. 13.
Chapter 5. Exporting Acronis Storage Cluster Data 5.2.5 Managing Object Storage Users The concept of S3 user is one of the base concepts of object storage along with those of object and bucket (container for storing objects). The Amazon S3 protocol uses a permission model based on access control lists (ACLs) where each bucket and each object is assigned an ACL that lists all users with access to the given resource and the type of this access (read, write, read ACL, write ACL).
5.2. Exporting Data via S3 5.2.5.2 Managing S3 Access Key Pairs Each S3 user has one or two key pairs (access key and secret key) for accessing the S3 cloud. You can think of the access key as login and the secret key as password. (For more information about S3 key pairs, refer to http://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSGettingStartedGuide/AWSCredentials.html.) The access keys are generated and stored locally in the Acronis Storage cluster on S3 name servers.
Chapter 5. Exporting Acronis Storage Cluster Data 2. The existing keys will be shown on the Keys panel. • To revoke a key, click Revoke. • To add a new key, click Generate access key. Note: To access a bucket, a user will need the following information: the management panel IP address, the DNS name of the S3 cluster specified during configuration, the S3 access key ID, and the S3 secret access key. 5.2.
5.2. Exporting Data via S3 • set per-bucket access policies, for example, versioning in the bucket. In the current version of Acronis Storage, you can enable and disable Acronis Notary for object storage buckets and monitor the space used by them on the SERVICES > S3 > Buckets screen. You cannot create and manage object storage buckets from Acronis Storage.
Chapter 5. Exporting Acronis Storage Cluster Data 4. Specify a name for the new bucket, and then click Create. Note: It is recommended to use bucket names that comply with DNS naming conventions. For more information on bucket naming, see Bucket and Key Naming Policies on page 75. The new bucket will appear in CyberDuck and you can manage it and upload files into it. 5.2.6.2 Managing Bucket Versions Versioning is a way of keeping multiple variants of an object in the same bucket.
5.2. Exporting Data via S3 5.2.6.3 Listing Bucket Contents You can list bucket contents with a web browser. To do this, visit the URL that consists of the external DNS name for the S3 endpoint that you specified when creating the S3 cluster and the bucket name. For example, mys3storage.example.com/mybucket.
Chapter 5. Exporting Acronis Storage Cluster Data Note: You can also copy the link to bucket contents by right-clicking it in CyberDuck, and then selecting Copy URL. 5.2.6.4 Managing Acronis Notary in Buckets Acronis Storage offers integration with the Acronis Notary service to leverage blockchain notarization and ensure the immutability of data saved in object storage clusters. To use Acronis Notary in user buckets, you need to set it up in the S3 cluster and enable it for said buckets.
5.2. Exporting Data via S3 3. On the Notary Settings screen, specify the DNS name and user key in the respective fields and click Done. Enabling and Disabling Acronis Notary To enable or disable blockchain notarization for a bucket, select a bucket on the SERVICES > S3 > Buckets screen and click Enable Notary or Disable Notary, respectively. Notarization is disabled for new buckets by default.
Chapter 5. Exporting Acronis Storage Cluster Data • can be from 3 to 63 characters long, • must start and end with a lowercase letter or number, • can contain lowercase letters, numbers, periods (.), hyphens (-), and underscores (_), • can be a series of valid name parts (described previously) separated by periods. An object key can be a string of any UTF-8 encoded characters up to 1024 bytes long. 5.2.7.
5.2. Exporting Data via S3 To release a node from an S3 cluster, do the following: 1. On the SERVICES > S3 Nodes screen, check the box of the node to release. 2. Click Release. 5.2.10 Supported Amazon S3 Features 5.2.10.
Chapter 5. Exporting Acronis Storage Cluster Data • GET Object • GET Object ACL • HEAD Object • POST Object • PUT Object • PUT Object - Copy • PUT Object acl • Initiate Multipart Upload • Upload Part • Complete Multipart Upload • Abort Multipart Upload • List Parts Note: For a complete list of Amazon S3 REST operations, see Amazon S3 REST API documentation. 5.2.10.
5.3. Using Acronis Storage with Acronis Backup Cloud • x-amz-meta-** • x-amz-version-id • x-amz-copy-source • x-amz-metadata-directive • x-amz-copy-source-version-id 5.2.10.3 Supported Authentication Scheme The following authentication scheme is supported by the Acronis Storage implementation of the Amazon S3 protocol: • Signature Version 2. • Signature Version 4. 5.
Chapter 5. Exporting Acronis Storage Cluster Data 5.3.2 Configuring Acronis Backup Gateway Clusters To set up an Acronis Backup Gateway cluster on top of an Acronis Storage cluster, do the following: 1. Make sure that the Acronis Backup Gateway network is configured on each node that will run the gateway service. 2. On the SERVICES > Acronis Backup Nodes screen, select a check box next to each cluster node where the gateway services will run.
5.3. Using Acronis Storage with Acronis Backup Cloud 3. Click Create Gateway. 4. For each node, select the network interface to which the Acronis Backup Gateway network role is assigned. The gateway service will listen on the IP address assigned to this interface. 5. Click Proceed. 6. In Tier, select the storage tier that will be used for the object storage. For information about storage tiers, consult Understanding Storage Tiers in the Acronis Storage 2.0 Installation Guide. 7.
Chapter 5. Exporting Acronis Storage Cluster Data 8. In Data redundancy, select an erasure coding mode. For more details, see Understanding Data Redundancy in the Acronis Storage 2.0 Installation Guide. Note: (a) Redundancy by replication is not supported for Acronis Backup Gateway. (b) You can later change the erasure coding mode on the Acronis Backup Gateway > Parameters panel.
5.3. Using Acronis Storage with Acronis Backup Cloud 9. Click Proceed. 10. Specify the external DNS name for this gateway, e.g, backupgateway.example.com. Make sure that the required port is open for both incoming and outgoing requests on each node running the gateway service. Backup agents will use this address and port to upload the backed-up data. Important: 1. Configure your DNS server according to the example suggested in the management panel. 2.