think your postgres backups and disaster recovery are
play

Think Your Postgres Backups And Disaster Recovery Are Safe? Let's - PowerPoint PPT Presentation

Jul 04, 2023 •451 likes •941 views

Think Your Postgres Backups And Disaster Recovery Are Safe? Let's talk. / Payal Singh Database Administrator OmniTI 1 Who am I ? DBA@OmniTI Github: payals Blog: http://penningpence.blogspot.com Twitter: @pallureshu Email:

  1. Think Your Postgres Backups And Disaster Recovery Are Safe? Let's talk. / Payal Singh Database Administrator OmniTI 1

  2. Who am I ? DBA@OmniTI Github: payals Blog: http://penningpence.blogspot.com Twitter: @pallureshu Email: payal@omniti.com 2

  3. Agenda Types of backups Validation Backups management Automation Filesystem Third party tools In-house solution 3

  4. Types of Backups 4

  5. Business Continuity Objectives Recovery Point Objective (RPO) Recovery Time Objective (RTO) 5

  6. Types of Backups ● Logical ○ pg_dump ○ pg_dumpall ● Physical (File-system Level) ○ Online  Most commonly used  No downtime ○ Offline  rarely used  shutdown database for backup 6

  7. Logical Backups Advantages: Granularity Fine-tuned restores Multiple in-built compression types Ease of use, no extra setup required Disadvantages: Relatively slower Frozen snapshots in time, i.e. no PITR Locks Data spread in time 7

  8. pg_dumpall Pros : • Globals Cons : ● Requires superuser privileges ● No granularity while restoring ● Plaintext only ● Cannot take advantage of faster/parallel restore with pg_restore 8

  9. Physical Backups Advantages: Faster Incremental Backups Point In Time Recovery By default compression on certain file-systems Disadvantages: Lacks granularity 9

  10. Why do you need both? The more the merrier: Database wide restores - Filesystem restore is faster! Someone dropped a table? - Dump backups are faster! 10

  11. pg_basebackup Advantage : • In core postgres • No explicit backup mode required • Multiple instances can run concurrently • Backups can be made on master as well as standby Disadvantage: • Slower when compared to snapshot file-system technologies • Backups are always of the entire cluster 11

  12. pg_basebackup Requirements • A superuser or a user with REPLICATION permissions can be used • archive_command parameter should be set to true • max_wal_senders should be at least 1 12

  13. Delayed Replicas as Backups • In situations where accidental damage was done that was realized in a short period of time. • May still result in some data loss post recovery, but it depends on the importance of table, other objects dependent on it, etc. 13

  14. Version Controlled DDL • Committing daily changes to schema design, functions, triggers etc. into source control • Can go back to any state • pg_extractor (https://github.com/omniti-labs/pg_extractor) facilitates this by creating files for each database object, followed by integration with git, svn, etc. 14

  15. Validation 15

  16. Continuous Restores Validation is important Estimates / Expectations RTO Procedure / External factors Does it even work? Development Database Routine refresh + restore testing Reporting Databases: Overnight restores for reporting databases refreshed daily. Great candidate for daily validation. 16

  17. Sample Validation Log 2015-03-01 10:00:03 : Testing backup for 2015-02-28 from /data/backup/hot_backup/+/var/log/test/bin/test_backups.sql 2015-03-01 10:00:03 : Starting decompress of /data/backup/hot_backup/test.local-data-2015-02-28.tar.gz 2015-03-01 10:00:03 : Starting decompress of /data/backup/hot_backup/test.local-xlog-2015-02-28.tar.gz 2015-03-01 10:00:03 : Waiting for both decompressing processes to finish 2015-03-01 14:36:06 : Decompressing worked, generated directory test with size: 963G 2015-03-01 14:36:06 : Starting PostgreSQL server starting 2015-03-01 14:36:07.372 EST @ 3282 LOG: loaded library "pg_scoreboard.so" 2015-03-01 15:52:36 : PostgreSQL started 2015-03-01 15:52:36 : Validating Database starting Vacuum 2015-03-02 08:17:56 : Test result: OK 2015-03-02 08:18:11 : All OK. 17

  18. Where did Gitlab go wrong? No PITR, no alerts for missing backups, no documentation for backup location, no restore testing “…backups…taken once per 24 hours…not yet been able to figure out where they are stored…don’t appear to be working...” No retention policy “Fog gem may have cleaned out older backups ” No monitoring “ Our backups to S3 apparently don’t work either: the bucket is empty ” No RPO “…Unless we can pull these from the past 24 hours they will be lost” 18

  19. Sobering Thought of the Day A chain is only as strong as the weakest link 19

  20. Backup Management 20

  21. Retention Period Remove all older than x days VS Remove all but latest x backups Off-server (short term) VS Off-site retention period (long term) 21

  22. Security Transfer One way passwordless SSH access HTTPS for cloud uploads (e.g. s3cmd) Storage Encryption Access control PCI Compliance Private keys Logical backups preferred Multi-Tenancy Environment Backup Server  Client Client  Backup server 22

  23. Monitoring and Alerts Alert at runtime • To detect errors at runtime within script, or change in system/user environments • Immediate • Cron emails Alert on storage/retention: • Error in retention logic/implementation • Secondary/Delayed • Cron’d script, external monitoring Alert on backup validation: • On routine refreshes/restores 23

  24. S3 Backups Ideal for long term backups: • Cheap • Ample space • Transfer in parts, can pick up where you left off in case of errors • Speed depends on bandwidth Secure: • Buckets , Users, Policies Communication: • AWS cli / s3cmd • Access keys • PGP encryption 24

  25. S3 Backups Contd. Sample Bucket Policy: { "Version": "2012-10-17", "Id": "S3-Account-Permissions", "Statement": [ { "Sid": "1", "Effect": "Allow", "Principal": { "AWS": "arn:aws:iam::<account_number>:user/omniti_testing" }, "Action": "s3:*", "Resource": [ "arn:aws:s3:::omniti_testing", "arn:aws:s3:::omniti_testing/*" ] } ] } 25

  26. S3 Backups Contd. Sample User Policy: { "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": "s3:*", "Resource": [ "arn:aws:s3:::omniti_testing", "arn:aws:s3:::omniti_testing/*" ] } ] } 26

  27. Automation 27

  28. Why Automate? Reduced Chance of Human Error pg_dump backups filesystem level backups retention scripts backup monitoring and alerts off-site and off-server transfer as well as storage access channels security keys cronjobs… Less work, faster Move scripts, swap crontabs, ensure all accesses exist Uniformity, Reliability 28

  29. What to Automate? Scripts Crontabs Accesses Validation/restores 29

  30. Automation Example In Chef payal@payal-ThinkPad-T520$ ls -l s3_backup/ drwxr-xr-x 2 payal payal 4096 Dec 2 11:03 attributes drwxr-xr-x 3 payal payal 4096 Dec 2 11:03 files -rw-r--r-- 1 payal payal 1351 Dec 2 11:03 README.md drwxr-xr-x 2 payal payal 4096 Dec 2 11:03 recipes drwxr-xr-x 3 payal payal 4096 Dec 2 11:03 templates payal@payal-ThinkPad-T520 $ ls -l s3_backup/templates/default/ -rwxr-xr-x 1 payal payal 3950 Dec 2 11:03 backup.sh.erb -rw-r--r-- 1 payal payal 1001 Jan 12 12:40 check_offsite_backups.sh.erb -rw-r--r-- 1 payal payal 37 Dec 2 11:03 pg_dump_backup.conf.erb -rw-r--r-- 1 payal payal 19 Dec 2 11:03 pg_dump.conf.erb -rw-r--r-- 1 payal payal 6319 Dec 2 11:03 pg_dump_upload.py.erb -rw-r--r-- 1 payal payal 1442 Dec 2 11:03 pg_start_backup.sh.erb -rw-r--r-- 1 payal payal 1631 Dec 2 11:03 s3cfg.erb 30

  31. Automation Example in Ansible - name: "Use pg_dump for logical backup" shell: "pg_dump -U postgres -Fc -f {{ db_name }}_{{ today }}.bak {{ db_name }} > backup.log 2>&1" args: chdir: "{{ backup_dir }}" when: not only_upload_backup - name: "upload backup fjle" s3: region="ap-southeast-1" bucket=“sample" object="/DB_bucket/ {{ db_name }}_{{ today }}.bak" src="{{ backup_dir }}/ {{ db_name }}_{{ today }}.bak" mode=put https://github.com/payals/postgresql_automation/tree/master/backups 31

  32. Filesystem 32

  33. Can Filesystems enhance DR? ZFS • Available on Solaris, Illumos. ZFS on Linux is new but improving! • Built in compression • Protections against data corruption • Snapshots • Copy-on-Write 33

  34. How can ZFS help you with DR? Scenario 1: You’re using pg_upgrade for a major upgrade with hard link option (-k). It fails in between. Since you used hardlinks, you cannot turn on the older cluster. What do you do? ZFS Rollback – instantaneously rollback a dataset to a previous state from a snapshot sudo zfs rollback <snapshot_name> 34

  35. How can ZFS help you with DR? Scenario 2: You’ve accidentally deleted a large table in a very large database where taking full backups are infeasible. Is there a faster alternative to a filesystem restore? ZFS rollback will overwrite pgdata so you cannot use that. ZFS Clone – Copy-on-Write. Instantaneously clone a dataset from snapshot without any additional space consumptions as long as you don’t write to it. sudo zfs clone <snapshot_name> <mountpoint> 35

  36. External Tools 36

  37. OmniPITR PITR backups and archives Backups off of master or standby Built in backup integrity checks Quick setup, Minimal requirements Comprehensive logging Built in retention Ideal for infrastructures of all sizes 37

Recommend

Scott Stanford # Topology Infrastructure Backups &amp; Disaster Recovery

Scott Stanford # Topology Infrastructure Backups &amp; Disaster Recovery

Scott Stanford # Topology Infrastructure Backups &amp; Disaster Recovery Monitoring Lessons Learned Q&amp;A # # Boston Traditional Proxy 1.2 Tb database, mostly db.have Average daily journal size 70 Gb

571 views • 27 slides
HEALTH IT IN DISASTER RECOVERY Presenter: Alaina Lamphear HIT IN DISASTER RECOVERY HEALTH IT IN

HEALTH IT IN DISASTER RECOVERY Presenter: Alaina Lamphear HIT IN DISASTER RECOVERY HEALTH IT IN

HEALTH IT IN DISASTER RECOVERY Presenter: Alaina Lamphear HIT IN DISASTER RECOVERY HEALTH IT IN DISASTER RECOVERY AGENDA Introduction About Disaster Recovery Plans Real Life Disaster Examples Electronic Health Records and Natural Disasters

622 views • 31 slides
Disaster Recovery . How to Create a Robust Disaster Recovery Plan. Todays agenda The

Disaster Recovery . How to Create a Robust Disaster Recovery Plan. Todays agenda The

Disaster Recovery . How to Create a Robust Disaster Recovery Plan. Todays agenda The drivers behind a DR Plan Disaster Recovery Fundamentals Risk analysis for Small Business &amp; NFP Steps to build a robust DR Plan How cloud

682 views • 22 slides
IT DISASTER RECOVERY &amp; BUSINESS CONTINUITY PLANS IT DISASTER RECOVERY (DR) Business

IT DISASTER RECOVERY &amp; BUSINESS CONTINUITY PLANS IT DISASTER RECOVERY (DR) Business

IT DISASTER RECOVERY &amp; BUSINESS CONTINUITY PLANS IT DISASTER RECOVERY (DR) Business Continuity is planning and preparation to ensure an institution can continue to operate in case of serious incidents or disasters and is the ability to

471 views • 11 slides
Ptrack 2.0: yet another block-level incremental backup engine Alexey Kondratov Postgres

Ptrack 2.0: yet another block-level incremental backup engine Alexey Kondratov Postgres

Ptrack 2.0: yet another block-level incremental backup engine Alexey Kondratov Postgres Professional PGCon20, May 27-28 Outline o Motivation: incremental backups o How Postgres works with data? o Ptrack 1.0 recap o Ptrack 2.0 overview

631 views • 28 slides
signin.ritlug.com sign in! The Importance of Backups RITLug - Week 2! Solomon Rubin Backups!

signin.ritlug.com sign in! The Importance of Backups RITLug - Week 2! Solomon Rubin Backups!

Dont forget to signin.ritlug.com sign in! The Importance of Backups RITLug - Week 2! Solomon Rubin Backups! What is it?! Copy and archiving data to a secondary location. (Duh) Two Purposes Data recovery File Replacement

324 views • 15 slides
Disaster Recovery Planning Marcus Bendtsen Institutionen fr Datavetenskap (IDA) Avdelningen

Disaster Recovery Planning Marcus Bendtsen Institutionen fr Datavetenskap (IDA) Avdelningen

Disaster Recovery Planning Marcus Bendtsen Institutionen fr Datavetenskap (IDA) Avdelningen fr Databas- och Informationsteknik (ADIT) Disaster Recovery Planning When a disaster strikes and the business continuity plan fails to prevent

757 views • 39 slides
Framework Introduction to the NDRF The National Disaster Recovery Framework (NDRF) was

Framework Introduction to the NDRF The National Disaster Recovery Framework (NDRF) was

Topic 3 National Disaster Recovery Framework Introduction to the NDRF The National Disaster Recovery Framework (NDRF) was released by FEMA in late 2011 to serve as a guide to promoting effective recovery practices/principles The NDRF

808 views • 21 slides
CDR Overview CDR Today we will review National Disaster Recovery Framework Federal

CDR Overview CDR Today we will review National Disaster Recovery Framework Federal

CDR Overview CDR Today we will review National Disaster Recovery Framework Federal Resources Pre-Disaster Recovery Plan Tools and Resources NDRF CDR Recovery principles Roles and responsibilities Coordinating

286 views • 15 slides
Developing a Comprehensive Disaster-Recovery Plan Prepared for CENIC by USC Information

Developing a Comprehensive Disaster-Recovery Plan Prepared for CENIC by USC Information

Developing a Comprehensive Disaster-Recovery Plan Prepared for CENIC by USC Information Technology Services March 2010 1 Why Business Continuity and Disaster Recovery? We want to provide continuous service and improved backup for

630 views • 21 slides
UNDP POST DISASTER RECOVERY PROGRAMMES APEC Seminar on Capacity Building for Disaster

UNDP POST DISASTER RECOVERY PROGRAMMES APEC Seminar on Capacity Building for Disaster

UNDP POST DISASTER RECOVERY PROGRAMMES APEC Seminar on Capacity Building for Disaster Recovery and Rehabilitation Shanghai, 27 28 Jun 2012 Hossein Sarem Kalali, UNDP About UNDP UN development network offices in 166

389 views • 27 slides
Tie 9-Steps to Disaster Recovery: How to Become Betuer Prepared for the Next Event Alessandra

Tie 9-Steps to Disaster Recovery: How to Become Betuer Prepared for the Next Event Alessandra

University of New Orleans ScholarWorks@UNO DRU Workshop 2013 Presentations Disaster Resistant University Workshop: Linking Mitigation Conferences and Workshops and Resilience 3-1-2013 Tie 9-Steps to Disaster Recovery: How to Become

658 views • 42 slides
Disaster Recovery Waivers From Pla n to Im p lem enta tion: Lessons Lea rned Suggestions to

Disaster Recovery Waivers From Pla n to Im p lem enta tion: Lessons Lea rned Suggestions to

Departm ent of Housing and Urban Developm ent Disaster Recovery Waivers From Pla n to Im p lem enta tion: Lessons Lea rned Suggestions to Other Disaster Recovery Grantees Ask for everything even if you dont think youll need it.

477 views • 21 slides
ACTUALLY TEST YOUR PLAN www.martinandassoc.com 1 Disaster Recovery using Shadow Protect March

ACTUALLY TEST YOUR PLAN www.martinandassoc.com 1 Disaster Recovery using Shadow Protect March

Disaster Recovery using Shadow Protect March Madness Lunch &amp; Learn A GENDA Identify and Quantify Exposure Risk Evolution of Recovery Technologies Build a Recover-Ability Solution B EYOND B ACKUP E NSURING R ECOVER -A BILITY

388 views • 6 slides
DISASTER NEEDS FOR DISASTER NEEDS FOR FLOOD PREPARATION, RESPONSE, AND RECOVERY Linn County

DISASTER NEEDS FOR DISASTER NEEDS FOR FLOOD PREPARATION, RESPONSE, AND RECOVERY Linn County

7/30/2009 DISASTER NEEDS FOR DISASTER NEEDS FOR FLOOD PREPARATION, RESPONSE, AND RECOVERY Linn County Public Health Overview Preparation Training and Planning Community and Partnership Identification Response R

272 views • 9 slides
Action Plan Development 1 The big picture A CDBG disaster recovery grantee must: Step 1

Action Plan Development 1 The big picture A CDBG disaster recovery grantee must: Step 1

Action Plan Development 1 The big picture A CDBG disaster recovery grantee must: Step 1 : Determine the effects of the disaster Step 2 : Develop a plan to respond to the most critical disaster recovery needs not addressed by other

666 views • 32 slides
Timeliness and the Art of Disbursement 2012 HUD CDBG Disaster Recovery Training Feb 13, 2012

Timeliness and the Art of Disbursement 2012 HUD CDBG Disaster Recovery Training Feb 13, 2012

Timeliness and the Art of Disbursement 2012 HUD CDBG Disaster Recovery Training Feb 13, 2012 Sandra Gunner Hugh Hyman Community Development Director Reports Manager Louisiana Office of Community Development Disaster Recovery Unit A

391 views • 20 slides
Hurricane Michael Integrated Recovery Coordination &amp; Collaboration Hurricane Michael

Hurricane Michael Integrated Recovery Coordination &amp; Collaboration Hurricane Michael

Hurricane Michael Integrated Recovery Coordination &amp; Collaboration Hurricane Michael Integrated Recovery Disaster Timeline Response v. Recovery Disaster Recovery Framework Disaster Response Framework Intermediate to long-term recovery

709 views • 18 slides
L Long Long- -Term Recovery After a Disaster: T T Term Recovery After a Disaster: R R Aft

L Long Long- -Term Recovery After a Disaster: T T Term Recovery After a Disaster: R R Aft

L Long Long- -Term Recovery After a Disaster: T T Term Recovery After a Disaster: R R Aft Aft Di Di t t International Comparisons International Comparisons Ilan Ilan Noy Noy EQC EQC- -MPI Chair in the Economics of Disasters

444 views • 31 slides
Backup &amp; Disaster Recovery Backup &amp; Disaster Recovery Protect your data. Protect your

Backup &amp; Disaster Recovery Backup &amp; Disaster Recovery Protect your data. Protect your

BC 360 from KDC Technologies 877.532.1112 | www.kdctechnologies.com Backup &amp; Disaster Recovery Backup &amp; Disaster Recovery Protect your data. Protect your data. Protect your business. Protect your business. SMB Disaster

341 views • 18 slides
Heather Lagrone Texas General Land Office Disaster Recovery The e Texas as Pro rogr gram am

Heather Lagrone Texas General Land Office Disaster Recovery The e Texas as Pro rogr gram am

Heather Lagrone Texas General Land Office Disaster Recovery The e Texas as Pro rogr gram am - Hu Hurr rricanes icanes Dolly ly &amp; Ike $3.1 billion Disaster Recovery Program 11 million Texans affected (45% of population)

444 views • 11 slides
Disaster Recovery Section Update February 17, 2012 ND Department of Emergency Services Ensuring

Disaster Recovery Section Update February 17, 2012 ND Department of Emergency Services Ensuring

Disaster Recovery Section Update February 17, 2012 ND Department of Emergency Services Ensuring a safe and secure homeland for all North Dakotans. North Dakotas 2011 Flood: The Disaster Recovery Section has been guiding initiatives to

299 views • 19 slides
Common Challenges with CDBG-Disaster Recovery Programs Guidance for Navigating the Recovery

Common Challenges with CDBG-Disaster Recovery Programs Guidance for Navigating the Recovery

Common Challenges with CDBG-Disaster Recovery Programs Guidance for Navigating the Recovery Terrain 1 What are the Common Challenges? 2 Common Challenges Unique challenges arise in the administration of disaster recovery programs:

197 views • 15 slides
LONG TERM RECOVERY ISSUES ELIZABETH B. SAVAGE, JD, MSPH FELLOW, DISASTER RELIEF PROJECT NC PRO

LONG TERM RECOVERY ISSUES ELIZABETH B. SAVAGE, JD, MSPH FELLOW, DISASTER RELIEF PROJECT NC PRO

LONG TERM RECOVERY ISSUES ELIZABETH B. SAVAGE, JD, MSPH FELLOW, DISASTER RELIEF PROJECT NC PRO BONO RESOURCE CENTER PRESENTATION WEDNESDAY, MAY 13, 2020 AGENDA Legal Aid of NC (LANC) The Disaster Relief Project Phases of Recovery

577 views • 9 slides

More recommend