Backup, Migrations and Restore
Please refer to HeavyScript for updates to TrueTool.
This guide has been written with the best efforts of the staff and tested as best possible. We are not responsible if it doesn't work for every scenario or user situation. This guide has been thoroughly tested with TrueNAS SCALE 22.02.4.
Requirements
This guide makes use of our command-line tool, called TrueTool and assumes you've already created backups using the BASH TrueTool.
Please refer to the GitHub page for Truetool to follow the commands and instructions below.
ZFS replication
Our only officially supported system for "offsite" backups is ZFS replication. Offsite can be either another machine, a zfs formated usb drive or other pool on the same system without any issues when it comes to the guides.
However, whilst zfs replication CAN be done to an archive file, which can be saved in whatever way the user fancies, we do not provide official support for it. Using zfs replication in this manner exponentially increases the chance of complications.
Backup
If you haven't created a manual backup yet using truetool one must be created before any of the following steps below.
bash /PATH/TO/truetool_DIRECTORY/truetool.sh -b
It automatically deletes excessive backups, which defaults to a max. of 14 backups. To increase this, to 31 for example, use:
bash /PATH/TO/truetool_DIRECTORY/truetool.sh -b 31
This can also easily be combined with other truetool options, such as update, sync, prune etc. like this:
bash /PATH/TO/truetool_DIRECTORY/truetool.sh -b 10 -sup
As mentioned above, all the commands and the various options for
truetoolare available on the Truetool GitHub page
Exporting Backups
The instructions below are designed to showcase the specific replication paremeters required for fail-safe replication of the ix-applications dataset. It does not intend to cover everything related to replication on TrueNAS SCALE.
Please setup your ZFS replication in accordance with the TrueNAS Documentation, your off-site backup provider and/or the form of replication (local vs offsite) you want to do.
The above only creates only a backup of the kubernetes objects and a snapshot of the PVC and ix_volume storage.
These backups are saved under the same ix-applications dataset.
It does not protect these against, for example, deletion of datasets or save them on an external system.
We highly advise making both an internal backup (separate dataset on the same system) and an offsite backup.
One could create a normal recursive(!) replication of the ix-volumes dataset using the SCALE GUI, with the following few special tricks by editing the replication after creation:
To do so, setup the following replication task:
It's also important to ensure you keep regular config backups of the SCALE system itself, preferably right after the Apps backup above). However this is not part of this guide and we will assume you've done so yourself.
Checking Backups
To make which backups are present, one can use truetool command and select the 3rd option to get a list of backups
Which results in
Restore
One of the most important parts of backups is to ensure they can be restored. There are two scenario's for a restore:
Reverting a working system
Total System Restore
Reverting a running system
Reverting a running system is rather trivial. But there are a few caveats:
- This will reinitialize the kubernetes node, which means all kubernetes objects that are not deployed using the Apps system will get reverted
- You CANNOT revert a single Apps
To revert an existing system, the process is as follows:
List your current backups using
truetoolSelect option 5
Restore a BackupChoose Backup and answer the prompt
Please keep in mind this can take a LONG time, so be sure to wait a few hours before touching the system again. When done, a reboot might be adviceable
Total System restore and Migration to new system
Sometimes you either need to wipe your system, Migrate to a new system or restore a system completely. With the steps below, this is all very-much-possible.
- Ensure a clean system, without Apps or configuration except the bare minimum network configuration
- Do not choose an apps pool yet, or do ANYTHING with apps until step 3
- Please do not restore SCALE configuration from backup-file, before Apps pool replication is finished.
- We've only tested this on non-encrypted
ix-applicationsdatasets, as encryption ofix-applicationsis officially not supported.
- Using ZFS replication, move back the previously backed-up
ix-applicationsdataset to the disk that will contain the future Apps Pool. This was covered in the Exporting Backups section.
:::Important BlueFin Bug Fix
With Bluefin, a UI bug has encountered preventing users to select the required new force option when selecting a pool
This leads to an error warning for a "partialy initialised pool"
To prevent this error, run the following commands one-by-one, replacing POOL with the name of your Apps Pool:
zfs create POOL/ix-applications/docker
zfs create POOL/ix-applications/k3s
zfs create POOL/ix-applications/k3s/kubelet
zfs create POOL/ix-applications/catalogs
zfs set mountpoint=legacy POOL/ix-applications/k3s/kubelet
:::
Optional/untested: When the SCALE system itself is also wiped, ensure to restore it using a SCALE config export first.
Once the ZFS replication is complete, on the new or migrated system navigate to the Apps tab in the Truenas Scale GUI. When prompted to select a pool, select the pool containing the
ix-applicationsdataset.All you need to do now is restore the Truetool snapshot of your
ix-applicationsdataset by following the Reverting a running system guide above.
Video Guide
TBD
Developer notes
PVC mountpoints on replication
In some/all cases PVC mountpoints are not correctly set to legacy after replication.
Both TrueTool and Heavyscript have added scripting to fix this issue, however it does not seem to be a priority for iX-Systems to fix upstream.
To fix this issue manually, run:
zfs set mountpoint=legacy "$(zfs list -t filesystem -r "$(cli -c 'app kubernetes config' | grep -E "pool\s\|" | awk -F '|' '{print $3}' | tr -d " \t\n\r")" -o name -H | grep "volumes/pvc")"
Jira Ticket: https://ixsystems.atlassian.net/browse/NAS-118570