Backup Exivity Installation on Kubernetes using Velero
This document provides guidance on backing up an Exivity installation deployed on Kubernetes using Velero. Effective backups ensure operational continuity by safeguarding all critical data associated with Exivity.
Overview
The Exivity installation on Kubernetes includes three critical components to back up:
- RabbitMQ: Can be deployed via the Helm chart or configured as an external service.
- PostgreSQL: Can be deployed via the Helm chart or configured as an external service.
- Filesystem: Persistent Volume Claims (PVCs) associated with the Exivity namespace.
Note: If RabbitMQ and PostgreSQL are configured as external services, you must establish additional backup procedures for these components. This document does not cover external service backups.
Prerequisites
- Velero Installation: Ensure Velero is installed on your cluster. Refer to the Velero Restic documentation for detailed setup instructions.
- Backup Storage Location: Configure a Backup Storage Location (BSL) to store backups, such as AWS S3, Azure Blob Storage, or NFS.
- Cluster Access: Ensure you have
kubectlaccess to the Kubernetes cluster with the necessary permissions to manage backups. - Namespace Details: Identify the namespace where Exivity is deployed (e.g.,
exivityor a custom namespace).
Filesystem Backup (PVCs)
Persistent Volume Claims (PVCs) in the Exivity namespace store critical application data. Backups should prioritize PVCs containing application data, while PVCs ending with -log, which store log files, are less critical but still recommended to back up.
Important PVCs to Back Up
All PVCs not ending in -log should be backed up as they contain essential application data.
Log PVCs
PVCs ending with -log store log files. These are not critical for application recovery but are still recommended for backup to retain logging history.
Backup Methods with Velero
Velero supports two primary methods for backing up data:
1. Snapshots
Snapshots offer a quick and efficient way to create point-in-time backups of PVCs. However, this method depends on the cloud provider's support for CSI snapshots.
Note: Customers using self-managed clusters may not have snapshot capabilities. In such cases, consider using Restic as an alternative.
2. Restic Integration
Restic provides a flexible approach, directly copying PVC data to the backup storage location. It is particularly useful when snapshots are unavailable.
To enable Restic during Velero installation, run:
velero install --use-restic
For more details, visit the Velero Restic documentation.
Verifying and Validating Backups
Step 1: Verify the Backup
Ensure the backup completed successfully:
velero backup describe exivity-backup --details
Step 2: Validate the Backup
Simulate a restore in a non-production environment to verify the integrity of the backup.
Restoring from Backup
Step 1: Restore the Namespace
To restore the Exivity namespace and associated PVCs:
velero restore create --from-backup exivity-backup
Step 2: Verify the Restore
Check the restore status:
velero restore describe <restore-name>
Ensure all Pods are running:
kubectl get pods -n <exivity-namespace>
Additional Considerations
- Application Downtime: Minimize activity on PVCs during backups to prevent data corruption. Consider putting Exivity services in maintenance mode.
- Backup Scheduling: Automate backups by setting up a CronJob to ensure regular backups.
- Disaster Recovery: Store backups in a separate region or location for added resilience.
- External Services: For PostgreSQL and RabbitMQ configured as external services, establish a dedicated backup strategy.
- Security: Encrypt backups and limit access to backup storage for security.
By following this guide, you can effectively back up and restore your Exivity installation on Kubernetes using Velero, ensuring minimal disruption in case of data loss or system failure.