JAVA面试题分享二百四十八:使用Velero对Kubernetes集群进行完整备份和还原

已于 2023-12-15 08:28:08 修改
阅读量1k 收藏 21
点赞数 24
分类专栏: JAVA 面试题分享 Kubernetes 内容分享 容器化 内容分享 文章标签: java kubernetes 开发语言
于 2023-12-15 08:27:55 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/qq_45038038/article/details/134976226
版权

Velero(以前称为 Heptio Ark)是一个开源工具,可以安全地备份和还原,执行灾难恢复以及迁移 Kubernetes 集群资源和持久卷。 Velero可以部署Kubenetes集群中,可用于如下场景:

  • •  备份集群资源并在丢失的情况下进行还原

  • •  将集群资源迁移到其他集群

  • •  将生产集群资源复制到开发和测试集群

    Velero 包含运行在集群中的服务端软件和一个命令行的客户端

    1. 安装 Velero

    1.1 安装Velero客户端

    Velero下载 
wget -cN https://github.com/vmware-tanzu/velero/releases/download/v1.7.0/velero-v1.7.0-linux-amd64.tar.gz

部署

tar -zxvf velero-v1.7.0-linux-amd64.tar.gz
cp -p velero-v1.7.0-linux-amd64/velero /usr/bin/

安装命令补全

yum install -y bash-completion
echo 'source <(velero completion bash)' >>/etc/profile
source /etc/profile

1.2 安装服务端软件到集群中

1.2.1 配置kubectl访问Kubernetes集群

velero 命令默认读取kubectl配置的集群上下文,所以我们先配置 kubectl 对 kubernetes 集群的访问 [备注] Velero 也支持--kubeconfig参数和KUBECONFIG环境变量

1.2.2 准备秘钥文件
mkdir -p /opt/velero
vim /opt/velero/credentials-velero
[default]
aws_access_key_id = minioadmin
aws_secret_access_key = minioadmin
1.2.3 执行安装程序
velero install \
    --provider aws \
    --image {镜像仓库地址}/velero:v1.7.0  \
    --plugins {镜像仓库地址}/velero/velero-plugin-for-aws:v1.2.1 \
    --bucket fcloud-sc \
    --use-restic \
    --secret-file /opt/velero/credentials-velero \
    --use-volume-snapshots=false \
    --backup-location-config region=cn-northeast-204,s3ForcePathStyle="true",s3Url={对象存储访问地址}

[检查安装状态]

kubectl logs deployment/velero -n velero

参数说明

  • • --provider: 声明使用的 Velero 插件类型,MINIO提供为aws

  • • --bucket: MINIO对象存储中的桶,需提前创建

  • • --secret-file: 提供访问MINIO的访问秘钥

  • • --use-volume-snapshots=true: 是否使用kubernetes的卷快照功能

  • • --use-restic: 使用开源免费备份工具restic备份和还原持久卷数据

  • • --backup-location-config: 备份bucket的一些配置

  • • --prefix: 备份存储在 QingStor bucket 中的前缀,相当于指定备份存放在bucket的目录

  • • --plugins: 使用的 Velero 插件,我们使用AWS S3兼容插件和CSI插件

  • • --feature=EnableCSI: 安装Velero中CSI的支持

  • • s3Url:MINIO对象存储API地址

Velero 支持对持久卷以建立快照的方式备份,也支持使用restic将持久卷里的文件备份到对象存储

1.3 执行备份与恢复操作

[使用案例]

1.3.1 执行备份

参数说明:

  • • --ttl (在ttl超时后,backup会被定期清理,ttl默认30天),可用单位h、m、s

  • • --include-namespaces 选项可以指定备份某些命名空间下面的资源

  • • --exclude-namespaces 选项可以指定备份排除某些命名空间下面的资源

  • • --include-resources 选项可以指定备份哪些资源类型 --exclude-resources可以指定排除某些资源类型

  • • 备份集群的所有资源

velero backup create cluster-all-resource

  • • 备份集群所有资源,并指定有效期为10天

velero backup create cluster-all-resource-10-day --ttl 240h

  • • 匹配满足条件的标签备份所有资源

velero backup create nginx-backup --selector app=nginx

  • • 指定命名空间备份

velero create backup namespaces-backup --include-namespaces kube-system,default

  • • 备份指定namespace之外的所有namespace

velero backup create exclude-namespace-default --exclude-namespaces default

  • • 按照资源类型备份

velero backup create resource-backup-cluster --include-resources pod,secret,configmap

  • • 备份包括PV数据的方法

velero create backup nacos-backup --selector app=nacos --default-volumes-to-restic

[说明]

--default-volumes-to-restic参数会将PV中数据同步备份

  • • 备份排除指定标签外的所有资源

velero backup create except-label --selector 'backup notin (ignore)'

  • • 指定执行备份匹配标签的对象

velero schedule create custome-time-backup --schedule="1 0 * * *" --selector app=nginx

  • • 每隔一分钟执行备份

velero schedule create backup-1-m --schedule="@every 1m" --selector app=nginx

  • • 每隔10秒执行备份

velero schedule create backup-10-s --schedule="@every 10s" --selector app=nginx

  • • 每隔一小时执行备份

velero schedule create backup-10-s --schedule="@every 1h" --selector app=nginx

  • • 每隔一天执行备份

velero schedule create nginx-daily-backup --schedule="@daily" --selector app=nginx
1.3.2 查看备份信息

  • • 查看备份目录

velero get backup-locations
NAME      PROVIDER   BUCKET/PREFIX   PHASE       LAST VALIDATED                  ACCESS MODE   DEFAULT
default   aws        velero          Available   2021-11-17 18:44:57 +0800 CST   ReadWrite     true

  • • 查看所有备份清单信息

velero get backup
NAME                                STATUS      ERRORS   WARNINGS   CREATED                         EXPIRES   STORAGE LOCATION   SELECTOR
backup-all                          Completed   0        0          2021-11-17 16:34:04 +0800 CST   29d       default            backup notin (ignore)
backup-all-1-m-20211117104612       Completed   0        0          2021-11-17 18:46:21 +0800 CST   29d       default            <none>
backup-all-1-m-20211117104512       Completed   0        0          2021-11-17 18:45:17 +0800 CST   29d       default            <none>
backup-all-1-m-20211117104412       Completed   0        0          2021-11-17 18:44:17 +0800 CST   29d       default            <none>
backup-all-1-m-20211117104312       Completed   0        0          2021-11-17 18:43:17 +0800 CST   29d       default            <none>
backup-all-1-m-20211117104212       Completed   0        0          2021-11-17 18:42:23 +0800 CST   29d       default            <none>
backup-all-1-m-20211117104109       Completed   0        0          2021-11-17 18:41:17 +0800 CST   29d       default            <none>
backup-all-1-m-20211117104008       Completed   0        0          2021-11-17 18:40:08 +0800 CST   29d       default            <none>
backup-all-1-m-20211117103908       Completed   0        0          2021-11-17 18:39:08 +0800 CST   29d       default            <none>
backup-all-1-m-20211117103808       Completed   0        0          2021-11-17 18:38:17 +0800 CST   29d       default            <none>
backup-all-1-m-20211117103708       Completed   0        0          2021-11-17 18:37:08 +0800 CST   29d       default            <none>
backup-all-1-m-20211117103608       Completed   0        0          2021-11-17 18:36:08 +0800 CST   29d       default            <none>
backup-all-1-m-20211117103508       Completed   0        0          2021-11-17 18:35:08 +0800 CST   29d       default            <none>
backup-all-1-m-20211117103408       Completed   0        0          2021-11-17 18:34:08 +0800 CST   29d       default            <none>

  • • 查看指定备份

velero backup get cluster-all-resource-10-day
NAME                          STATUS      ERRORS   WARNINGS   CREATED                         EXPIRES   STORAGE LOCATION   SELECTOR
cluster-all-resource-10-day   Completed   0        0          2021-11-18 10:26:40 +0800 CST   9d        default            <none>

  • • 查看backup的详细信息,带上detail可以查看备份的资源内容

velero backup describe cluster-all-resource-10-day --details
Name:         cluster-all-resource-10-day
Namespace:    velero
Labels:       velero.io/storage-location=default
Annotations:  velero.io/source-cluster-k8s-gitversion=v1.21.5
              velero.io/source-cluster-k8s-major-version=1
              velero.io/source-cluster-k8s-minor-version=21

Phase:  Completed

Errors:    0
Warnings:  0

Namespaces:
  Included:  *
  Excluded:  <none>

Resources:
  Included:        *
  Excluded:        <none>
  Cluster-scoped:  auto

Label selector:  <none>

Storage Location:  default

Velero-Native Snapshot PVs:  auto

TTL:  240h0m0s

Hooks:  <none>

Backup Format Version:  1.1.0

Started:    2021-11-18 10:26:40 +0800 CST
Completed:  2021-11-18 10:26:49 +0800 CST

Expiration:  2021-11-28 10:26:40 +0800 CST

Total items to be backed up:  774
Items backed up:              774

Resource List:
  apiextensions.k8s.io/v1/CustomResourceDefinition:
    - backups.velero.io
    - backupstoragelocations.velero.io
    - bgpconfigurations.crd.projectcalico.org
    - bgppeers.crd.projectcalico.org
    - blockaffinities.crd.projectcalico.org
    - clusterinformations.crd.projectcalico.org
    - deletebackuprequests.velero.io
    - downloadrequests.velero.io
    - felixconfigurations.crd.projectcalico.org
    - globalnetworkpolicies.crd.projectcalico.org
    - globalnetworksets.crd.projectcalico.org
    - hostendpoints.crd.projectcalico.org
    - ipamblocks.crd.projectcalico.org
    - ipamconfigs.crd.projectcalico.org
    - ipamhandles.crd.projectcalico.org
    - ippools.crd.projectcalico.org
    - kubecontrollersconfigurations.crd.projectcalico.org
    - networkpolicies.crd.projectcalico.org
    - networksets.crd.projectcalico.org
    - podvolumebackups.velero.io
    - podvolumerestores.velero.io
    - resticrepositories.velero.io
    - restores.velero.io
    - schedules.velero.io
    - serverstatusrequests.velero.io
    - volumesnapshotlocations.velero.io
  apiregistration.k8s.io/v1/APIService:
    - v1.
    - v1.admissionregistration.k8s.io
    - v1.apiextensions.k8s.io
    - v1.apps
    - v1.authentication.k8s.io
    - v1.authorization.k8s.io
    - v1.autoscaling
    - v1.batch
    - v1.certificates.k8s.io
    - v1.coordination.k8s.io
    - v1.crd.projectcalico.org
    - v1.discovery.k8s.io
    - v1.events.k8s.io
    - v1.networking.k8s.io
    - v1.node.k8s.io
    - v1.policy
    - v1.rbac.authorization.k8s.io
    - v1.scheduling.k8s.io
    - v1.storage.k8s.io
    - v1.velero.io
    - v1beta1.admissionregistration.k8s.io
    - v1beta1.apiextensions.k8s.io
    - v1beta1.authentication.k8s.io
    - v1beta1.authorization.k8s.io
    - v1beta1.batch
    - v1beta1.certificates.k8s.io
    - v1beta1.coordination.k8s.io
    - v1beta1.discovery.k8s.io
    - v1beta1.events.k8s.io
    - v1beta1.extensions
    - v1beta1.flowcontrol.apiserver.k8s.io
    - v1beta1.networking.k8s.io
    - v1beta1.node.k8s.io
    - v1beta1.policy
    - v1beta1.rbac.authorization.k8s.io
    - v1beta1.scheduling.k8s.io
    - v1beta1.storage.k8s.io
    - v2beta1.autoscaling
    - v2beta2.autoscaling
  apps/v1/ControllerRevision:
    - kube-system/calico-node-7d87c4c87d
    - kube-system/kube-proxy-5ccdb8dc86
    - kube-system/nodelocaldns-58f95f4df7
  apps/v1/DaemonSet:
    - kube-system/calico-node
    - kube-system/kube-proxy
    - kube-system/nodelocaldns
  apps/v1/Deployment:
    - kube-system/calico-kube-controllers
    - kube-system/coredns
    - kube-system/openebs-localpv-provisioner
    - velero/velero
  apps/v1/ReplicaSet:
    - kube-system/calico-kube-controllers-846b5f484d
    - kube-system/coredns-b5648d655
    - kube-system/openebs-localpv-provisioner-5bfb67894
    - nginx-example/nginx-deployment-57d5dcb68
    - velero/velero-666dff5c96
  coordination.k8s.io/v1/Lease:
    - kube-node-lease/portlb-bird-server
    - kube-system/kube-controller-manager
    - kube-system/kube-scheduler
  crd.projectcalico.org/v1/BlockAffinity:
    - portlb-bird-server-10-233-118-0-24
  crd.projectcalico.org/v1/ClusterInformation:
    - default
  crd.projectcalico.org/v1/FelixConfiguration:
    - default
  crd.projectcalico.org/v1/IPAMBlock:
    - 10-233-118-0-24
  crd.projectcalico.org/v1/IPAMHandle:
    - ipip-tunnel-addr-portlb-bird-server
    - k8s-pod-network.39fec2325367cfbc59fabe82a6492fdcb93a59c171fa6fd34c43bb5a7d6425bb
    - k8s-pod-network.51a5f327459894bd1e426d108a5b44d714905c61c9932e6fea359354136fc0d6
    - k8s-pod-network.5b6f67561d96a8ce2a0438eda8d137fb13d549a616c29aead82a44d494fdb1c6
    - k8s-pod-network.7716e4e89d82fd8869d3dfdda054db247211d769ea448f50279d85c3f86f25f7
    - k8s-pod-network.7fa1af505ac996bb2fa0003c4d4fa8c0cb553fab4b84b5306794e15b9d84dd27
    - k8s-pod-network.91554fb749b2d3f85ce12e92f7afdc42727860c90cd762e926007ae3f820e425
    - k8s-pod-network.a5b2dbe887e2bdc152ca337a87c1a24106b5ca608ce55f782a79b0507023b6eb
    - k8s-pod-network.adf0e44e6443edbaafc5dffa3913d605af4ef24365065129c5a03873c4c40ddf
    - k8s-pod-network.eab88d54fcf5a7d1eb032f8d6aa8c1ccef99202a85210b9ee5528e6788c517a5
  crd.projectcalico.org/v1/IPPool:
    - default-ipv4-ippool
  crd.projectcalico.org/v1/KubeControllersConfiguration:
    - default
  discovery.k8s.io/v1/EndpointSlice:
    - default/kubernetes
    - kube-system/coredns-2fjtf
    - nginx-example/my-nginx-6ljkr
  flowcontrol.apiserver.k8s.io/v1beta1/FlowSchema:
    - catch-all
    - exempt
    - global-default
    - kube-controller-manager
    - kube-scheduler
    - kube-system-service-accounts
    - probes
    - service-accounts
    - system-leader-election
    - system-nodes
    - workload-leader-election
  flowcontrol.apiserver.k8s.io/v1beta1/PriorityLevelConfiguration:
    - catch-all
    - exempt
    - global-default
    - leader-election
    - system
    - workload-high
    - workload-low
  policy/v1/PodDisruptionBudget:
    - kube-system/calico-kube-controllers
  rbac.authorization.k8s.io/v1/ClusterRole:
    - admin
    - calico-kube-controllers
    - calico-node
    - cluster-admin
    - devops-app
    - edit
    - ks-installer
    - kubeadm:get-nodes
    - openebs-maya-operator
    - system:aggregate-to-admin
    - system:aggregate-to-edit
    - system:aggregate-to-view
    - system:auth-delegator
    - system:basic-user
    - system:certificates.k8s.io:certificatesigningrequests:nodeclient
    - system:certificates.k8s.io:certificatesigningrequests:selfnodeclient
    - system:certificates.k8s.io:kube-apiserver-client-approver
    - system:certificates.k8s.io:kube-apiserver-client-kubelet-approver
    - system:certificates.k8s.io:kubelet-serving-approver
    - system:certificates.k8s.io:legacy-unknown-approver
    - system:controller:attachdetach-controller
    - system:controller:certificate-controller
    - system:controller:clusterrole-aggregation-controller
    - system:controller:cronjob-controller
    - system:controller:daemon-set-controller
    - system:controller:deployment-controller
    - system:controller:disruption-controller
    - system:controller:endpoint-controller
    - system:controller:endpointslice-controller
    - system:controller:endpointslicemirroring-controller
    - system:controller:ephemeral-volume-controller
    - system:controller:expand-controller
    - system:controller:generic-garbage-collector
    - system:controller:horizontal-pod-autoscaler
    - system:controller:job-controller
    - system:controller:namespace-controller
    - system:controller:node-controller
    - system:controller:persistent-volume-binder
    - system:controller:pod-garbage-collector
    - system:controller:pv-protection-controller
    - system:controller:pvc-protection-controller
    - system:controller:replicaset-controller
    - system:controller:replication-controller
    - system:controller:resourcequota-controller
    - system:controller:root-ca-cert-publisher
    - system:controller:route-controller
    - system:controller:service-account-controller
    - system:controller:service-controller
    - system:controller:statefulset-controller
    - system:controller:ttl-after-finished-controller
    - system:controller:ttl-controller
    - system:coredns
    - system:discovery
    - system:heapster
    - system:kube-aggregator
    - system:kube-controller-manager
    - system:kube-dns
    - system:kube-scheduler
    - system:kubelet-api-admin
    - system:monitoring
    - system:node
    - system:node-bootstrapper
    - system:node-problem-detector
    - system:node-proxier
    - system:persistent-volume-provisioner
    - system:public-info-viewer
    - system:service-account-issuer-discovery
    - system:volume-scheduler
    - view
  rbac.authorization.k8s.io/v1/ClusterRoleBinding:
    - calico-kube-controllers
    - calico-node
    - cluster-admin
    - devops-app
    - ks-installer
    - kubeadm:get-nodes
    - kubeadm:kubelet-bootstrap
    - kubeadm:node-autoapprove-bootstrap
    - kubeadm:node-autoapprove-certificate-rotation
    - kubeadm:node-proxier
    - openebs-maya-operator
    - system:basic-user
    - system:controller:attachdetach-controller
    - system:controller:certificate-controller
    - system:controller:clusterrole-aggregation-controller
    - system:controller:cronjob-controller
    - system:controller:daemon-set-controller
    - system:controller:deployment-controller
    - system:controller:disruption-controller
    - system:controller:endpoint-controller
    - system:controller:endpointslice-controller
    - system:controller:endpointslicemirroring-controller
    - system:controller:ephemeral-volume-controller
    - system:controller:expand-controller
    - system:controller:generic-garbage-collector
    - system:controller:horizontal-pod-autoscaler
    - system:controller:job-controller
    - system:controller:namespace-controller
    - system:controller:node-controller
    - system:controller:persistent-volume-binder
    - system:controller:pod-garbage-collector
    - system:controller:pv-protection-controller
    - system:controller:pvc-protection-controller
    - system:controller:replicaset-controller
    - system:controller:replication-controller
    - system:controller:resourcequota-controller
    - system:controller:root-ca-cert-publisher
    - system:controller:route-controller
    - system:controller:service-account-controller
    - system:controller:service-controller
    - system:controller:statefulset-controller
    - system:controller:ttl-after-finished-controller
    - system:controller:ttl-controller
    - system:coredns
    - system:discovery
    - system:kube-controller-manager
    - system:kube-dns
    - system:kube-scheduler
    - system:monitoring
    - system:node
    - system:node-proxier
    - system:public-info-viewer
    - system:service-account-issuer-discovery
    - system:volume-scheduler
    - velero
  rbac.authorization.k8s.io/v1/Role:
    - default/pod-reader
    - kube-public/kubeadm:bootstrap-signer-clusterinfo
    - kube-public/system:controller:bootstrap-signer
    - kube-system/extension-apiserver-authentication-reader
    - kube-system/kube-proxy
    - kube-system/kubeadm:kubeadm-certs
    - kube-system/kubeadm:kubelet-config-1.21
    - kube-system/kubeadm:nodes-kubeadm-config
    - kube-system/system::leader-locking-kube-controller-manager
    - kube-system/system::leader-locking-kube-scheduler
    - kube-system/system:controller:bootstrap-signer
    - kube-system/system:controller:cloud-provider
    - kube-system/system:controller:token-cleaner
  rbac.authorization.k8s.io/v1/RoleBinding:
    - default/read-pods
    - kube-public/kubeadm:bootstrap-signer-clusterinfo
    - kube-public/system:controller:bootstrap-signer
    - kube-system/kube-proxy
    - kube-system/kubeadm:kubeadm-certs
    - kube-system/kubeadm:kubelet-config-1.21
    - kube-system/kubeadm:nodes-kubeadm-config
    - kube-system/system::extension-apiserver-authentication-reader
    - kube-system/system::leader-locking-kube-controller-manager
    - kube-system/system::leader-locking-kube-scheduler
    - kube-system/system:controller:bootstrap-signer
    - kube-system/system:controller:cloud-provider
    - kube-system/system:controller:token-cleaner
  scheduling.k8s.io/v1/PriorityClass:
    - system-cluster-critical
    - system-node-critical
  storage.k8s.io/v1/CSINode:
    - portlb-bird-server
  storage.k8s.io/v1/StorageClass:
    - local
  v1/ConfigMap:
    - default/kube-root-ca.crt
    - kube-node-lease/kube-root-ca.crt
    - kube-public/cluster-info
    - kube-public/kube-root-ca.crt
    - kube-system/calico-config
    - kube-system/coredns
    - kube-system/extension-apiserver-authentication
    - kube-system/kube-proxy
    - kube-system/kube-root-ca.crt
    - kube-system/kubeadm-config
    - kube-system/kubelet-config-1.21
    - kube-system/nodelocaldns
    - nginx-example/kube-root-ca.crt
    - velero/kube-root-ca.crt
  v1/Endpoints:
    - default/kubernetes
    - kube-system/coredns
    - kube-system/openebs.io-local
    - nginx-example/my-nginx
  v1/Namespace:
    - default
    - kube-node-lease
    - kube-public
    - kube-system
    - nginx-example
    - velero
  v1/Node:
    - portlb-bird-server
  v1/Pod:
    - kube-system/calico-kube-controllers-846b5f484d-jf9v9
    - kube-system/calico-node-glhk7
    - kube-system/coredns-b5648d655-bwmkc
    - kube-system/coredns-b5648d655-cncmh
    - kube-system/kube-apiserver-portlb-bird-server
    - kube-system/kube-controller-manager-portlb-bird-server
    - kube-system/kube-proxy-dnt2f
    - kube-system/kube-scheduler-portlb-bird-server
    - kube-system/nodelocaldns-s4mr9
    - kube-system/openebs-localpv-provisioner-5bfb67894-4h6hq
    - nginx-example/nginx-deployment-57d5dcb68-m7rrt
    - nginx-example/nginx-deployment-57d5dcb68-ncdlj
    - velero/velero-666dff5c96-jlzrw
    - velero/velero-666dff5c96-qgrtj
  v1/Secret:
    - default/default-token-rn7nc
    - kube-node-lease/default-token-lnlrx
    - kube-public/default-token-t88k8
    - kube-system/attachdetach-controller-token-frxt5
    - kube-system/bootstrap-signer-token-9clct
    - kube-system/calico-kube-controllers-token-jj7sk
    - kube-system/calico-node-token-7tfjs
    - kube-system/certificate-controller-token-pm22g
    - kube-system/clusterrole-aggregation-controller-token-h4nzb
    - kube-system/coredns-token-h2xg8
    - kube-system/cronjob-controller-token-v8nzg
    - kube-system/daemon-set-controller-token-lmsrc
    - kube-system/default-token-cqvk9
    - kube-system/deployment-controller-token-tm9hx
    - kube-system/disruption-controller-token-85c5n
    - kube-system/endpoint-controller-token-2sw6t
    - kube-system/endpointslice-controller-token-gc6df
    - kube-system/endpointslicemirroring-controller-token-26qhz
    - kube-system/ephemeral-volume-controller-token-mn25l
    - kube-system/expand-controller-token-9dsww
    - kube-system/generic-garbage-collector-token-djbb6
    - kube-system/horizontal-pod-autoscaler-token-964br
    - kube-system/job-controller-token-5n492
    - kube-system/kube-proxy-token-5hlzd
    - kube-system/namespace-controller-token-4f9v2
    - kube-system/node-controller-token-svbhz
    - kube-system/nodelocaldns-token-qxljm
    - kube-system/openebs-maya-operator-token-p78db
    - kube-system/persistent-volume-binder-token-sfptc
    - kube-system/pod-garbage-collector-token-6p788
    - kube-system/pv-protection-controller-token-9mw4r
    - kube-system/pvc-protection-controller-token-hs5tp
    - kube-system/replicaset-controller-token-w8ctz
    - kube-system/replication-controller-token-hmvgw
    - kube-system/resourcequota-controller-token-hv8g2
    - kube-system/root-ca-cert-publisher-token-558ss
    - kube-system/service-account-controller-token-vpzg6
    - kube-system/service-controller-token-zkjcl
    - kube-system/statefulset-controller-token-k57p8
    - kube-system/token-cleaner-token-gd8kf
    - kube-system/ttl-after-finished-controller-token-z8fxz
    - kube-system/ttl-controller-token-kbtns
    - nginx-example/default-token-5hsbg
    - velero/cloud-credentials
    - velero/default-token-7522j
    - velero/velero-restic-credentials
    - velero/velero-token-g5gl6
  v1/Service:
    - default/kubernetes
    - kube-system/coredns
    - nginx-example/my-nginx
  v1/ServiceAccount:
    - default/default
    - kube-node-lease/default
    - kube-public/default
    - kube-system/attachdetach-controller
    - kube-system/bootstrap-signer
    - kube-system/calico-kube-controllers
    - kube-system/calico-node
    - kube-system/certificate-controller
    - kube-system/clusterrole-aggregation-controller
    - kube-system/coredns
    - kube-system/cronjob-controller
    - kube-system/daemon-set-controller
    - kube-system/default
    - kube-system/deployment-controller
    - kube-system/disruption-controller
    - kube-system/endpoint-controller
    - kube-system/endpointslice-controller
    - kube-system/endpointslicemirroring-controller
    - kube-system/ephemeral-volume-controller
    - kube-system/expand-controller
    - kube-system/generic-garbage-collector
    - kube-system/horizontal-pod-autoscaler
    - kube-system/job-controller
    - kube-system/kube-proxy
    - kube-system/namespace-controller
    - kube-system/node-controller
    - kube-system/nodelocaldns
    - kube-system/openebs-maya-operator
    - kube-system/persistent-volume-binder
    - kube-system/pod-garbage-collector
    - kube-system/pv-protection-controller
    - kube-system/pvc-protection-controller
    - kube-system/replicaset-controller
    - kube-system/replication-controller
    - kube-system/resourcequota-controller
    - kube-system/root-ca-cert-publisher
    - kube-system/service-account-controller
    - kube-system/service-controller
    - kube-system/statefulset-controller
    - kube-system/token-cleaner
    - kube-system/ttl-after-finished-controller
    - kube-system/ttl-controller
    - nginx-example/default
    - velero/default
    - velero/velero
  velero.io/v1/Backup:
    - velero/cluster-all-resource-10-day
  velero.io/v1/BackupStorageLocation:
    - velero/default
  velero.io/v1/DeleteBackupRequest:
    - velero/backup-all-1-m-20211117120808-czvh2
    - velero/backup-all-10-s-20211117161008-nwpxw
    - velero/backup-all-10-s-20211117161108-h9g8c

Velero-Native Snapshots: <none included>

  • • 查看指定backup的服务日志

velero backup logs cluster-all-resource-10-day

  • • 查看velero服务日志

kubectl logs deployment/velero -n velero
1.3.2 删除备份

  • • 删除所有备份

velero backup delete --all --confirm

[说明] 默认删除需要确认,可以添加参数--confirm 例如: velero backup delete --all --confirm

  • • 删除指定备份

velero backup delete cluster-all-resource-10-day --confirm
1.3.3 执行恢复操作

  • • 从backup创建restore并指定restore名称进行恢复

velero restore create restore-02 --from-backup cluster-all-resource-10-day

  • • 从backup创建restore,不手动创建restore名称,restore默认名为 ${BACKUP_NAME}-

velero restore create --from-backup cluster-all-resource-10-day

  • • 从schedule最新一次的backup创建restore

velero restore create --from-schedule backup-all-cluster-1-m

1.4 卸载velero

velero uninstall
You are about to uninstall Velero.
Are you sure you want to continue (Y/N)? y
Waiting for velero namespace "velero" to be deleted
..............................................................................................................................................................................................................................................................
Velero namespace "velero" deleted
Velero uninstalled
之乎者也·
关注
专栏目录
K8S——————通过kubuasz- ansible 进行k8s-etcd全量数据删除备份 通过 velero 安装部署 实现指定数据备份恢复
m0_66705547的博客
01-12 373
快速删除pod 备份 恢复etcd velero 备份恢复
kubernetes集群备份与恢复管理工具Velero
weixin_44093727的博客
02-15 1714
kubernetes集群备份与恢复管理工具Velero
云原生时代的数据守护者:Velero 备份与迁移实战
南宫乘风-Linux运维-虚拟化容器-Python编程 ownit.top
08-16 1120
本文将基于一个典型的云原生环境,介绍如何使用 Velero 进行 Kubernetes 集群备份与迁移支持的版本列表Velero 组件一共分两部分,分别是服务端和客户端。服务端:运行在你 Kubernetes集群中客户端:是一些运行在本地的命令行的工具,需要已配置好 kubectl 及集群 kubeconfig 的机器上。
关于k8s集群备份和恢复工具Velero 的一些笔记整理
山河已无恙
03-03 852
分享一个k8s集群容灾备份恢复开源工具Velero博文内容涉及:Velero 的简单介绍Velero 安装下载备份恢复 Demo,以及容灾测试 Demo恢复失败情况分析理解不足小伙伴帮忙指正我所渴求的,無非是將心中脫穎語出的本性付諸生活,為何竟如此艱難呢 ------赫尔曼·黑塞《德米安》Velero 是一个 vmware 开源的工具,用于 k8s 安全备份和恢复、执行灾难恢复以及迁移 Kubernetes 集群资源和持久卷。备份集群并在丢失时恢复。将集群资源迁移到其他集群
restic 安全可靠的备份工具——筑梦之路
筑梦之路
12-30 2085
支持的后端存储: 本地 sftp (通过ssh) http rest server (rest-server restic提供的 ) s3 (同时支持minio) openstack swift backblaze b2 azure blob storage google cloud storage 以及其他可以通过rclone 访问的后端存储 restic+minio minio(docker-compose搭建单机版) cat docker-compose.yml version: '3.0' .
k8s集群上安装Velero,用Velero备份K8S的数据
qq_759035366的博客
04-11 527
Velero是一个开源工具,可以安全地备份还原,执行灾难恢复以及迁移Kubernetes集群资源和持久卷。
Velero 管理 Kubernetes 备份还原
06-18
备份还原管理工具,相比其它直接操作etcd集群备份的优势在于,它可以备份k8s的持久卷数据。它主要在生产中应用于灾难还原集群迁移、数据保护等多种情况。 由于本套课程需要一些其它知识才能学习,因此需要您具备...
k8s-gitops:通过代码定义kubernetes集群状态的GitOps原理。 k8s @ home周围的社区不和谐:https:discord.gg7PbmHRK
02-03
Velero 是一个用于 Kubernetes 集群备份和恢复的工具,支持跨云环境的数据迁移和灾难恢复。 K3s 是一个轻量级的 Kubernetes 发行版,适用于资源有限的环境或边缘计算场景。 KubernetesShell(可能指的是 kubectl ...
关于velero实现备份还原
05-31
Velero 是一个开源的 Kubernetes 集群备份和恢复工具,由云原生计算基金会(CNCF)托管。它允许用户轻松地备份和恢复 Kubernetes 集群资源和持久卷。Velero 旨在提供一种可靠和一致的方式来保护 Kubernetes 集群中的...
drwatcher-operator:基于Velero和Noobaa SDS的自助备份支持
03-12
DR(Disaster Restic | Recovery)监视程序用于在OpenShift v4.x,Kubernetes v1.13或更高版本中启用基于Velero的自助服务备份和计划。 可以按照以下说明设置示例备份基础设施: : DR Watcher操作员功能 启动...
5-1 Velero 备份 Kubernetes 详解
qq_25874461的博客
03-12 242
详细介绍 Velero 工具的原理和使用方法,并备份单个 namespace 示例
about locations
饱食而遨游,泛若不系之舟
04-11 375
1. Overview velero有两个自定义资源, BackupStorageLocation和VolumeSnapshotLocation,用于配置velero备份及其相关的持久卷快照的存储位置。 BackupStorageLoaction定义为存储区, 存储区的前缀在bucket下,所有velero数据存储在该buket中存储。以及一组其他特定于提供程序的字段(例如AWS区域,Azure存...
面试题系列】K8S面试题(二)
热门推荐
颜淡慕潇
03-28 1万+
当回答这个问题时,可以先解释什么是有状态服务和无状态服务然后根据上述几个方面说明它们之间的区别举例说明哪些应用程序属于有状态服务,哪些应用程序属于无状态服务此外,可以进一步说明如何在Kubernetes中部署、管理和操作这些服务在Kubernetes中,有状态服务通常指那些需要持久性存储(例如数据库)或在运行期间需要保持某些状态(例如缓存)的应用程序。相反,无状态服务通常指那些不需要持久性存储且可以随时替换的应用程序,它们不会在运行期间保持任何状态。
k8s备份恢复实践--velero
Elvin
07-15 357
使用Velero备份k8资源到minio,阿里云oss,七牛云Kodo
K8s:通过Velero实现集群备份和恢复
xiuqingzhouyang的博客
03-10 1750
Velero 的简单介绍 Velero 是一个 vmware 开源的工具,用于 k8s 安全备份和恢复、执行灾难恢复以及迁移 Kubernetes 集群资源和持久卷。在这里插入图片描述 Velero 可以做的:备份集群并在丢失时恢复。 将集群资源迁移到其他集群。 将您的生产集群复制到开发和测试集群Velero 包括两部分:在集群上运行的服务器(Velero 服务器) 在本地运行的命令行客户端(velero cli) 什么时候使用 Velero 代替 etcd 的内置备份/恢复是合适的? 关于 Veler
k8s备份工具velero
johnhuster的专栏
03-07 2226
veleo备份原理 本地Velero客户端发送备份指令。 Kubernetes集群内就会创建一个Backup对象。 BackupController监测Backup对象并开始备份过程。 BackupController会向API Server查询相关数据。 BackupController将查询到的数据备份到远端的对象存储。 VeleroKubernetes集群中创建了很多CRD以及相关的控制器,进行备份恢复等...
基于Hive和Hadoop的哔哩哔哩网站分析系统
图南的博客
09-27 655
本项目是一个基于大数据技术的哔哩哔哩平台分析系统,旨在为用户提供全面的哔哩哔哩视频数据和深入的用户行为分析。系统采用 Hadoop 平台进行大规模数据存储和处理,利用 MapReduce 进行数据分析和处理,通过 Sqoop 实现数据的导入导出,以 Spark 为核心进行高效的数据处理。整个系统结合了大数据处理技术,为用户提供精准的内容推荐和深入的用户兴趣分析,帮助平台更好地了解视频趋势和用户需求。
Spring Cloud全解析:服务调用之OpenFeign集成OkHttp
最新发布
Lxn2zh的博客
09-30 604
HTTP连接需要进行TCP三次握手,是一个比较耗时的操作,一般我们不直接使用HttpURLConnection,而是使用HttpClient/okHttp等支持连接池的客户端工具,以Feign集成OkHttp为例。OpenFeign本质是HTTP来进行服务调用的,也就是需要集成一个Http客户端。默认是HttpURLConnection方式,也就是jdk中提供的最原始的那个。要开启OkHttp ,还需要在YML 中添加开启配置项,默认是关闭的。使用的是Client接口来进行请求的。
使用Kubernetes集群备份功能备份现有Etcd数据(提供enpoints,ca、cert、key)。
03-20
可以使用Velero这样的备份工具来备份Kubernetes集群中的Etcd数据。Velero支持备份还原Kubernetes集群中的资源,包括Etcd数据。在备份Etcd数据时,需要提供Etcd的endpoints、ca、cert和key等信息。以下是备份Etcd...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

之乎者也·

你的鼓励将是我创作的最大动力

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值