AutoBackup
Logout
IntroductionDashboard overviewBasic flow
Configuration
Account onboardingSetupPolicyNotification groupsTags
Usage
Operations on resourcesAzure Native VMsSnapshotRestoreEBS volumesEC2 instancesRDS instances and clustersS3DynamoDBRedshiftEFSRoute 53Azure VMAzure SAP HANAGCP SnapshotIBM Cloud VMAPIDisaster Recovery
Technical documentation
Backup processEncryptionAccounts scanningHooks
Firewall settingsManaging API keysManaging users

Restore

Backups of all resources are stored in customer accounts. AutoBackup stores only meta-data which may help to locate a desired resource’s backup (cloud account, region identifier of a backup). AutoBackup also records information about backup creation time. To restore a snapshot from a specified date, browse the backup events list, find information about a backup you’re interested in and read its meta-data. Further steps depend on a type of resource you want to restore. They are described in the sections below.

EBS volumes

Go to the AWS console and log in to an account where EBS volume snapshot is located and share it with a destination account to which you want to restore it. Next, copy the snapshot to the destination account and region. Use the AWS EBS snapshots management tools to restore the snapshot. The snapshot’s meta-data contain information read from describe-volumes AWS API call. The meta-data can be used to determine where the original volume was located, to which EC2 instance it was attached and what tags where put on the original volume.

EC2 instances

Go to the AWS console and log in to an account where EBS volumes that belong to the EC2 instance being recovered are located and share them with a destination account to which you want to restore them. Next, copy them to the destination account and region, use the AWS EBS snapshots management tools to restore the snapshots. Next, launch an EC2 instance. During the EC2 instance configuration use the backup metadata retrieved from the AutoBackup to select correct AMI, tagging, etc (meta-data contain the output of the describe-instances AWS API call). Finally, attach restored EBS volumes to the EC2 instance.

RDS instances and clusters

Go to the AWS console and log in to an account where an RDS snapshot is located and share it with a destination account to which you want to restore it. Next, copy it to the destination account and region, use the AWS RDS snapshots management tools to restore the snapshot. While selecting RDS snapshot restore options (such as database instance size, multi-az, maintenance window etc.), use the backup meta-data retrieved from the AutoBackup (metadata contain the output of the describe-db-instances or describe-db-clusters AWS API calls depending on a type of database you’re restoring).

S3

Create a new S3 bucket to which you want your replicated objects to be restored. Using meta-data gathered from the AutoBackup, locate an S3 bucket that stores replicas of original objects which you want to be restored. Next, copy the content of the bucket in which replicas are being stored to the bucket which you’ve created to store restored objects (use AWS S3 API to perform copying).

Keep in mind that S3 backup is implemented using same-region/cross-region replication native AWS S3 mechanisms, which has the following implications:

  • replicas storing bucket does not contain objects from original bucket which were put before enabling replication,

  • the objects you see in the replica bucket eventually reflect the most recent state of the original bucket. It means that it’s not easy to restore a bucket state from a specific point in time. To achieve it, you may take an advantage of the S3 versioning mechanism which is enabled on replica bucket and copy only the required versions of replicated objects.

DynamoDB

For DynamoDB, the backup meta-data contain information about original table indexes, tags, read/write capacity units and stream settings. For replica snapshots, also a name of an S3 bucket containing replicated table data is stored in backup meta-data. The restore process is different for primary and replica snapshots.

Primary snapshot can be restored only in a region and an account in which the snapshot is located. Use native DynamoDB tools to create a table from the snapshot. Use the meta-data gathered from AutoBackup to restore table indexes and set read/write capacity units.

Replica snapshots are stored as objects in an S3 bucket. You can locate the bucket and a common prefix of objects representing a snapshot using the meta-data from AutoBackup. Each object contains a list of DynamoDB JSON objects. The syntax of each object is the same as the one used by the DynamoDB API. To restore a DynamoDB table from replica snapshot, you need to iterate over the S3 objects containing DynamoDB table data and put data from the object to a new DynamoDB table (you can use BatchWriteItem).

Redshift

For Redshift AutoBackup takes snapshots only in the region and account where an original resource is located. Snapshot meta-data contain information fetched using describe-clusters. Use the meta-data to locate a snapshot, then restore a desired Redshift cluster using AWS Redshift snapshots restoring tools.

EFS

EFS filesystems primary backups are created using AWS Backup Vault service. On the other hand, data stored on EFS filesystems is replicated to S3 bucket.

In order to restore primary EFS snapshot, use backup meta-data gathered from AutoBackup to locate a desired snapshot in AWS Backup Vault service, then use the AWS Backup Vault tools to perform restoring.

EFS replicas are stored in an S3 bucket pointed in a snapshot’s meta-data. To restore files replicated to S3, you must first create and mount a new EFS file system (or re-use existing) to which data will be restored. Then you need to use AWS S3 API commands to copy desired objects to the mounted EFS filesystem.

Name of a bucket which stores EFS filesystems replicas can be found in snapshot meta-data. In the bucket, snapshots are located under prefixes constructed using the following format aws-efs/{filesystem-id}/{backup-event-date}, where {filesystem-id} denotes an identifier of filesystem, and {backup-event-date} denotes a date of snapshot creation. Copy all the objects stored under one of prefixes with described format.

Route 53

Route53 snapshots are stored in S3 buckets. First, health checks should be restored (CreateHealthCheck), next hosted zones (CreateHostedZone), the last one to restore are traffic policies (CreateTrafficPolicy).

Notice that optional CloudWatch alarms that monitor Health Checks statuses are not backed up. It should be obvious as these are part of the CloudWatch service, not Route 53. This just has to be clarified because the alarms are also shown in the Route 53 section of AWS Management Console which may be misleading.

Azure VM

Azure VMs are backed up using native Azure Backup vaults. In order to restore an Azure VM, use the restore mechanism provided by Azure. The restore process with different scenarios is described in official Azure documentation, available here.

Azure SAP HANA

Azure SAP HANA is backed up using native Azure Backup vaults. In order to restore an Azure SAP HANA, use the restore mechanism provided by Azure. The restore process with different scenarios is described in official Azure documentation, available here.

GCP Snapshot

In GCP snapshots can not be copied between projects. To work around this a temporary image need to be created. Follow the following steps to restore the latest snapshot.

Setup the shell ( requires bash 4+ )

Replace values matching your environment

declare -Ax labels
declare -x vault_project=<VAULT PROJECT ID>
declare -x target_project=<TARGET PROJECT ID>
declare -x owner_resource=<VM NAME>
declare -x owner_zone=<VM ZONE NAME>
declare -x restore_region=<VM REGION>
declare -x snapshot disk_size
declare -x tmp_disk="tmp-$(uuidgen)"
declare -x tmp_image="tmp-$(uuidgen)"
labels[nc-backup-snapshot-owner-account]=$target_project
labels[nc-backup-snapshot-owner-resource]=$owner_resource
labels[nc-backup-snapshot-owner-zone]=$owner_zone
label_query="$(for k in ${!labels[@]}; do echo "labels.$k=${labels[$k]} AND "; done;)"
label_query=${label_query:0:-4}

Grab latest snapshot and size

declare -a _tmp_arr
_tmp_arr=($(gcloud compute snapshots list --project $vault_project --filter="$label_query" --sort-by=creationTimestamp | tail -n1 | tr -s ' ' |  cut -f1,2 -d' '))
snapshot=${_tmp_arr[0]}
disk_size=${_tmp_arr[1]}

Create tmp image

gcloud compute images create $tmp_image --project=$vault_project --family=restore --source-snapshot=$snapshot --storage-location=$restore_region

Create disk from tmp image

gcloud beta compute disks create $tmp_disk --image-project=$vault_project --type=pd-standard --size="${disk_size}GB" --zone=$owner_zone --image=$tmp_image --project $target_project

Create the snapshot

gcloud compute disks snapshot $tmp_disk --snapshot-names=$snapshot --zone=$owner_zone --storage-location=$restore_region --project $target_project

Delete tmp disk

gcloud compute disks delete $tmp_disk --project=$target_project --zone $owner_zone

Delete tmp image

gcloud compute images delete $tmp_image --project=$vault_project

IBM Cloud VM

For VMs AutoBackup takes snapshots only in the region and account where an original resource is located. Snapshot's metadata contain VM and volumes information, and list of taken snapshots. Use this metadata to locate volumes' snapshots and follow this instruction to restore desired VM.