Backup and Restore Management Plane

This guide provides steps for backing up and restoring the self-hosted Private Cloud Director management plane in disaster recovery scenarios. The procedures include both manual and automated backup methods, as well as manual restoration process.

NOTE

When restoring the management plane, ensure it's done on a Kubernetes cluster that is separate from the cluster where the backup was generated.

Prerequisites

System Requirements

  • Access to the Kubernetes management cluster

  • Installed and configured airctl binary

  • Valid airctl configuration file at /opt/pf9/airctl/conf/airctl-config.yaml

  • Root or sudo access to the management node

For S3 Backup Storage

  • AWS credentials with S3 bucket access

  • Existing S3 bucket for backup storage

  • AWS CLI configured (for verification purposes)

Important Considerations

  1. The restoration process must be performed on a separate Kubernetes management cluster that is different from the management cluster where the backup was generated.

Manual Backup Procedure

  1. Create a backup directory:

  1. Execute the airctl backup command:

Info

Execute the following commands as a non-root user.

Info

Use --region <region_name> parameter if you intend to back up only a specific region. If not specified, all the regions will be included in the backup.

  1. Verify backup contents:

The backup archive should contain:

  • state_backup.yaml: System state configuration

  • kplane_values_backup.yaml: Kubernetes management cluster configuration

  • consul.snap: Consul snapshot

  • mysql_dump_Infra.sql: Infrastructure database backup

  • mysql_dump_Region1.sql: Region-specific database backup

  • ovn-north-backup & ovn-south-backup : Ovn database backup

Automated Backup Configuration

The Private Cloud Director management plane includes an automated backup system that protects your data and configuration. This system creates regular backups and can store them both locally and in Amazon S3.

Learn how to verify backup operations and configure S3 storage for your backups.

Understanding the backup system

When you install Private Cloud Director management plane, the system automatically sets up backup protection for you. During installation, it creates a cronjob called mgmt-plane-backup in the pf9-utils namespace that runs every hour to back up your system.

Your backups get stored in a dedicated storage area called mgmt-plane-backup-pvc on your Kubernetes cluster. This storage persists even if pods restart, keeping your backup data safe and accessible.

Step 1: Verify backup operations

You can check the status of your backup system at any time using kubectl commands.

  1. Run the following command to view the backup cronjob status.

This displays when you ran the last backup, confirming your system is working properly.

Step 2: Check backup logs

To troubleshoot backup operations or verify successful completion, you can view the backup logs.

  1. List the backup pods to find the most recent operation.

  1. From the output, copy the pod name with the most recent timestamp.

  2. View the logs for that specific pod.

Replace mgmt-plane-backup-29167800-l294fwith your actual pod name from step 1.

The logs show detailed information about the backup operation, including any errors or success messages.

Step 3: Configure S3 backup storage

To enable storing backups in an S3 bucket, you need to configure S3 credentials in a secret named aws-credentials in thepf9-utils namespace.

Before you begin, consider the following points.

  • The backup system stores data in the PVC named mgmt-plane-backup-pvc on the Kubernetes cluster and will also upload to your configured S3 location.

  • The mgmt-plane-backupcronjob runs hourly to ensure regular system backups to both local storage and S3.

  1. Run the following command to open and edit aws-credentials on the editor.

  1. On the aws-credentials edit section data:

  1. Replace the placeholder values with your actual AWS credentials.

Placeholder
Replace with

YOUR_ACCESS_KEY

Your AWS access key ID

YOUR_SECRET_KEY

Your AWS secret access key

YOUR_AWS_REGION

Your AWS region (for example, us-west-2)

YOUR_BUCKET_NAME/PATH/

Your S3 bucket name and optional path

  1. Save and close the editor.

Once configured, your backups will be stored both locally in the PVC and in your specified S3 bucket location. This provides enhanced data protection and allows for disaster recovery scenarios.

You have successfully configured automated backups for your Private Cloud Director management plane. Your system now creates regular backups and stores them securely both locally and in Amazon S3.

Manual Restore Procedure

When you need to restore your Private Cloud Director management plane, you can access backups stored locally in the PVC or from Amazon S3. This section walks you through both restoration methods.

Standard Restore (from local PVC)

To restore from local backups, you need to access the backup files stored in the mgmt-plane-backup-pvc. This process involves finding the PVC, locating the underlying storage, and mounting it to access the backup files.

Step 1: Locate the backup PVC

Run the following command to find the backup PVC in the pf9-utils namespace.

The output displays your backup PVC details. Here is a sample example.

Step 2: Find the underlying persistent volume

Get the volume name for the backup PVC, by running the following command.

The output returns the persistent volume name. Here is an example.

Step 3: Get the persistent volume configuration

Describe the persistent volume to find the NFS share information by running the following command.

In the output, look for the Source: section with VolumeHandle field. This contains the NFS server and path information that you need for mounting.

Step 4: Install NFS utilities

Install the required NFS packages on your system by running the following command.

Step 5: Mount the NFS share

Create a local directory and mount the NFS share:

Replace 10.149.106.253:/mnt/gnocchi with the server and share path from your VolumeHandle field.

Step 6: Access the backup files

List the available backup files by running the following command

The backup files will display with timestamps. Here is a sample output.

Choose the backup file you want to restore based on the timestamp that matches your desired restore point.

Step 7: Execute the restore command

Extract and specify the backup directory path, then run the restore command:

Replace <backupdirpath>with the path to your extracted backup directory.

NOTE

Execute the restore command as a non-root user, similar to the backup procedure.

Restore from S3 Backup

Create and configure the /etc/default/airctl-backup file with required AWS parameters, making sure that AWS_S3_PATH points specifically to the backup file you want to restore, not just the S3 bucket:

Execute the S3 restore command:

NOTE

For complete disaster recovery, manually restore Gnocchi metrics data from the original pcd-sc persistent volume

Verification Steps

Check backup file integrity using MD5 checksum::

Verify S3 uploads (if configured):

Monitor restore progress:

Common Issues

  • If AWS credentials are not properly configured, automated S3 backups will continue locally but skip S3 upload.

  • Restore operations may take significant time depending on data volume.

  • Services may take additional time to start after restore completion.

PreviousCluster Scaling & Other OperationsNextAirctl Reference

Last updated

Was this helpful?