Acronis Cyber Infrastructure 4.
Table of contents 1 Introduction 3 2 Hardware requirements for installations with Backup Gateway 4 3 Installing Acronis Cyber Infrastructure 5 4 Creating the storage cluster 6 5 Adding locations to Acronis Cyber Backup or Acronis Cyber Backup Cloud 7 5.1 Connecting to the local storage cluster via Backup Gateway 7 5.2 Connecting to external NFS shares via Backup Gateway 11 5.3 Connecting to public cloud storage via Backup Gateway 14 5.3.1 Important requirements and restrictions 15 5.3.
1 Introduction Acronis Cyber Infrastructure represents a new generation of hyper-converged infrastructures targeted at both service providers and end customers. It is a scale-out, cost-efficient, and multipurpose cyber protection solution that combines universal storage and high-performance virtualization. Acronis Cyber Infrastructure works seamlessly with the Acronis Cyber Cloud suite of products, Acronis Cyber Backup.
2 Hardware requirements for installations with Backup Gateway Normally, Acronis Cyber Infrastructure is installed on at least five nodes to fully utilize its built-in high availability and data redundancy capabilities. However, if you only want to use the Backup Gateway, you can deploy a very basic installation on a single virtual or physical node. Although in this case you may need to provide data redundancy by other means or risk losing user data.
3 Installing Acronis Cyber Infrastructure 2. Prepare the bootable media using the distribution ISO image (mount it to an IPMI virtual drive, create a bootable USB drive, or set up a PXE server). 3. Boot the server from the chosen media. 4. On the Welcome screen, choose InstallAcronis Cyber Infrastructure. 5. On step 1, carefully read the End-User License Agreement. Accept it by selecting the I accept the End-User License Agreement check box, and then click Next. 6.
4 Creating the storage cluster To create the storage cluster, do the following: 1. Open the Infrastructure > Nodes screen, and then click Create storage cluster. 2. (Optional) To configure the disk roles or node location, click the cogwheel icon. 3. Type a name for the cluster. It may only contain Latin letters (a-z, A-Z), numbers (0-9), and hyphens (“-“). 4. Enable encryption, if required. 5. Click Create. You can monitor cluster creation on the Infrastructure > Nodes screen.
5 Adding locations to Acronis Cyber Backup or Acronis Cyber Backup Cloud Note If you are going to migrate your Acronis Storage Gateway, skip the steps described in this section and proceed to "Migrating backups from older solutions" (p. 21). Backup storage uses Backup Gateway is a storage access point.
1. On the Infrastructure > Networks screen, make sure that the ABGW private and ABGW public traffic types are added to the networks you intend to use. 2. In the left menu, click Storage services > Backup storage. 3. Select the nodes to run the gateway services on, and then click Create gateway on the right pane. Note The nodes are displayed with small icons representing their roles within a cluster. For more information on the icons, refer to https://kb.acronis.com/content/61024. 4.
Redundancy by replication is not supported for Backup Gateway. For erasure coding, changing the redundancy scheme is disabled, because it may decrease cluster performance. This is because re-encoding demands a significant amount of cluster resources for a long period of time. If you still want to change the redundancy scheme, contact the technical support team. Click Next. 7. On the DNS Configuration pane, specify the external DNS name for this gateway, for example, backupgateway.example.com.
Note For complex environments, HAProxy might be used to build a scalable and redundant load balancing platform, which can be easily moved or migrated and is independent from Acronis Cyber Infrastructure. For more information, refer to https://kb.acronis.com/content/64787. 8. On the Register in backup software pane, specify the following information for your Acronis product: Important Make sure that two-factor authentication (2FA) is disabled for your partner account.
b. In Account, specify the credentials of a partner account in the cloud or of an organization administrator on the local management server. 9. Finally, click Done. 5.2 Connecting to external NFS shares via Backup Gateway Take note of these limitations: l Acronis Cyber Infrastructure does not provide data redundancy on top of NFS volumes. Depending on the implementation, NFS shares may use their own hardware or software redundancy.
6. On the Volume parameters pane, specify the hostname or IP address of the NFS share, the export name, and select the NFS version. NFS4 is recommended, as it provides better scalability and performance compared to NFS3, which has limitations in the protocol. Click Next. 7. On the DNS Configuration pane, specify the external DNS name for this gateway, for example, backupgateway.example.com.
Important l Configure your DNS server according to the example suggested in the admin panel. l Each time you change the network configuration of nodes in the Backup Gateway cluster, adjust the DNS records accordingly. 8. On the Register in backup software pane, specify the following information for your Acronis product: Important Make sure that two-factor authentication (2FA) is disabled for your partner account.
b. In Account, specify the credentials of a partner account in the cloud or of an organization administrator on the local management server. 9. Finally, click Done. 5.
data storage. In order to avoid the low data retrieval rate and to cut expenses, we recommend using Acronis Cyber Cloud for storing backup data. 5.3.1 Important requirements and restrictions l When working with public clouds, Backup Gateway uses the local storage as the staging area as well as to keep service information. It means that the data to be uploaded to a public cloud is first stored locally and only then sent to the destination.
6. On the Public cloud parameters pane, do the following: a. Select a public cloud provider. If your provider is S3 compatible but not in the list, try AuthV2 compatible (S3) or AuthV4 compatible (S3). b. Depending on the provider, specify Region, Authentication (keystone) URL, or Endpoint URL. c. In the case of Swift object storage, specify the authentication protocol version and attributes required by it. d. Specify user credentials. In the case of Google Cloud, select a JSON file with keys to upload. e.
a. In Address, specify the address of the Acronis Cyber Backup Cloud management portal (for example, https://cloud.acronis.com/) or the hostname/IP address and port of the Acronis Cyber Backup management server (for example, http://192.168.1.2:9877). b. In Account, specify the credentials of a partner account in the cloud or of an organization administrator on the local management server. 8. Finally, click Done.
6 Updating the certificate for Backup Gateway When you register a Backup Gateway in Acronis Cyber Backup Cloud or Acronis Cyber Backup, they exchange certificates that are valid for one year. One and a half months before expiration, you will be alerted about the expiring certificate in the admin panel. 1. On the Storage services > Backup storage screen, click Update certificate. 2.
3. Click Next. 4.
7 Re-registering Backup Gateway in a new Acronis Cyber Backup instance To switch configured backup storage to a different Acronis Cyber Backup instance, you need to reregister the gateway with that instance. 1. On the Storage services > Backup storage screen, click Re-register. 2. On the Re-registration in Acronis Backup tab, specify the following: a. In Address, specify the hostname/IP address of the target management server and the port 9877 (for example, http://192.168.1.2:9877).
8 Migrating backups from older solutions By means of Backup Gateway, you can migrate backups from Acronis Storage 1.5 and Acronis Storage Gateway 1.6 and 1.7 to a storage backend of your choice: the local storage cluster, external NFS, or public cloud. Migration to NFS backends is not available, however, if multiple nodes are selected as Backup Gateway. Important Before you proceed, make sure that the destination storage has enough space for both existing and new backups. Migration overview 1.
8.1 Migrating backups from Acronis Storage 1.5 1. Update all Acronis Storage 1.5 nodes to version 1.5.65665 or newer as earlier versions are not eligible for migration. To do this, log in to the Acronis Storage web console, proceed to Settings > Software Update, upload the latest ISO image, and then click Update. 2. Log in to the new storage cluster. On the Storage services > Backup storage > Nodes screen, select one or more nodes, and then click Migrate. 3. Select Acronis Storage 1.5, and then click Next.
8. Choose a storage type to create a gateway to one of the destinations: l Local storage cluster l External NFS l Public cloud 9. Make sure the correct network interface is selected in the drop-down list. Click Next. If necessary, click the cogwheel icon and configure the node’s network interfaces on the Network configuration screen.
10. Configure the destination storage backend: l For a storage cluster, select the desired tier, failure domain, and redundancy mode. l For NFS, specify a hostname or IP address, an export name and path, and choose the NFS version.
l For a public cloud, select a public cloud provider, specify credentials, and the name of the folder (bucket, container). A separate object container should be used for each Backup Gateway cluster. Click Next.
11. Review the source and destination storages, and then click Proceed. 12. On the next pane, follow the instructions to point the source storage DNS name to the IP addresses of your new storage cluster. Having updated the DNS configuration, wait for 24 hours for all backup agents to cache the new IP addresses. Until this happens, the Start migration button will be disabled. After all backup agents have been rerouted to the new cluster, the button will become enabled and you can click it to start migration.
Depending on data size, migration may take as long as several days. 8.2 Migrating backups from Acronis Storage Gateway 1.6 and 1.7 (NFS) 1. Disable the firewall or explicitly open TCP port 44446 on the source Acronis Storage Gateway. l To disable the firewall, run # systemctl stop firewalld l To open TCP port 44446 in the firewall, do the following: a. Find out the zone where port 44445 is open: # firewall-cmd --list-all-zones | grep active mix_eth0 (active) b.
# firewall-cmd --zone=mix_eth0 --permanent --add-port=44446/tcp # firewall-cmd --reload 2. In the admin panel of the backup gateway node, proceed to Storage services > Backup storage > Nodes, select the node(s) to run the gateway services on, and then click Migrate. 3. Select the source storage version, and then click Next. 4. Specify the connection details for the source storage, and then click Next. 5.
If necessary, click the cogwheel icon and configure the node’s network interfaces on the Network configuration screen. 9. Configure the destination storage backend: l For a storage cluster, select the desired tier, failure domain, and redundancy mode. l For NFS, specify a hostname or IP address, an export name and path, and choose the NFS version.
l For a public cloud, select a public cloud provider, specify credentials, and the name of the folder (bucket, container). A separate object container should be used for each Backup Gateway cluster. Click Next.
10. Review the source and destination storages, and click Start migration. Depending on data size, migration may take as long as several days.
9 Monitoring Backup Gateway After you create a Backup Gateway, you can monitor it on the Storage services > Backup storage > Overview screen.
© Acronis International GmbH, 2003-2020
10 Releasing nodes from Backup Gateway Backup storage is meant to provide access to one specific storage backend. If you need to switch the backend, for example, from a public cloud to a local storage cluster or one public cloud bucket to another, you need to delete the backup storage by releasing all its nodes from the backup storage cluster and create a new one. When the backup storage is deleted, it is also unregistered from your Acronis backup software, which loses access to the storage backend. 1.
then click Next. In case the release is forced, simply click Next.
