WORM Backups with XCP-ng / Xen Orchestra - Seeking Solutions & Experience
-
Hello everyone,
I'm exploring options for implementing WORM (Write Once, Read Many) capabilities for my backups within my XCP-ng environment, specifically using Xen Orchestra.
My current setup:
- XCP-ng Version: 8.3
- Xen Orchestra Version: 5.106.4 (Stable)
- Intended Backup Target: Synology NAS
My primary goal is to ensure that my backup data, once written, becomes immutable for a defined retention period, offering protection against accidental deletion or ransomware attacks.
My questions are:
- Does Xen Orchestra offer any native WORM features or integrations that I might be overlooking for its backup jobs?
- If not directly, has anyone successfully implemented WORM backups with a similar perimeter (XCP-ng, Xen Orchestra, and potentially a Synology NAS or other storage solution)? I'm very interested in learning about your setup, the specific technologies you used (e.g., storage features, specific configurations), and any lessons learned or best practices.
Any insights, architectural recommendations, or shared experiences would be highly valuable.
Thank you in advance for your help!
Best regards,
SylvainB
-
Hi,
- Yes, we made a small program you can deploy on Linux, that do exactly that. You just need to set it up with the right retention (the same than XO), and you are done. IDK if this program can run on a Synology NAS, only @lsouai-vates and/or @florent could answer
- We have customers who did it with the vendor implementation (AWS S3 with specific retention policies, some storage vendors also have this option you can enable and configure to be the same retention than XO: it will work then out of the box). IDK what do you have in Synology though.
-
@SylvainB said in WORM Backups with XCP-ng / Xen Orchestra - Seeking Solutions & Experience:
Hello everyone,
I'm exploring options for implementing WORM (Write Once, Read Many) capabilities for my backups within my XCP-ng environment, specifically using Xen Orchestra.
My current setup:
- XCP-ng Version: 8.3
- Xen Orchestra Version: 5.106.4 (Stable)
- Intended Backup Target: Synology NAS
My primary goal is to ensure that my backup data, once written, becomes immutable for a defined retention period, offering protection against accidental deletion or ransomware attacks.
My questions are:
- Does Xen Orchestra offer any native WORM features or integrations that I might be overlooking for its backup jobs?
- If not directly, has anyone successfully implemented WORM backups with a similar perimeter (XCP-ng, Xen Orchestra, and potentially a Synology NAS or other storage solution)? I'm very interested in learning about your setup, the specific technologies you used (e.g., storage features, specific configurations), and any lessons learned or best practices.
Any insights, architectural recommendations, or shared experiences would be highly valuable.
Thank you in advance for your help!
Best regards,
SylvainB
You can setup in the Synology its WriteOnce feature, then configure the appropriate configuration settings, including retention ones.
This will prepare the appropriate WORM environment you’re looking for. It will work well due it being the equivalent to Vates solution and/or the S3 based one.
-
We need to create a guide on this at some point. Thanks for the link @john.c !
-
@olivierlambert @SylvainB A slight tangent but ASUSTOR’s ADM has most recently also gained WORM capabilities. Likely in their latest ADM update.
https://www.asustor.com/admv2?type=2&subject=10&sub=156&lan=en
-
@olivierlambert I agree, ping @thomas-dkmt
