Btrbk: Difference between revisions
imported>Onny mNo edit summary |
imported>Onny Expanded remote host setup instructions |
||
| Line 19: | Line 19: | ||
Following example configuration will create a weekly incremental backup of a local Btrfs subvolume called <code>nixos</code> and sends it compressed to the remote host <code>myhost</code>. The mount point <code>/btr_pool</code>, as referenced above, contains the subvolume. | Following example configuration will create a weekly incremental backup of a local Btrfs subvolume called <code>nixos</code> and sends it compressed to the remote host <code>myhost</code>. The mount point <code>/btr_pool</code>, as referenced above, contains the subvolume. | ||
The user <code>btrbk</code> together with the private key <code>/etc/btrbk_key</code> is used for authentication | The user <code>btrbk</code> together with the private key <code>/etc/btrbk_key</code> is used for authentication. | ||
{{file|/etc/nixos/configuration.nix|nix|<nowiki> | {{file|/etc/nixos/configuration.nix|nix|<nowiki> | ||
| Line 39: | Line 39: | ||
</nowiki>}} | </nowiki>}} | ||
For transport stream compression using <code>lz4</code> to work, the package must also be installed on the target host. | The user has to be created on the remote host and needs root permissions on the commands <code>btrfs</code>, <code>readlink</code> and <code>test</code>, for example via [[sudo]]. For transport stream compression using <code>lz4</code> to work, the package must also be installed on the target host: | ||
{{file|/etc/nixos/configuration.nix|nix|<nowiki> | |||
security.sudo = { | |||
enable = true; | |||
extraRules = [{ | |||
commands = [ | |||
{ | |||
command = "${pkgs.coreutils-full}/bin/test"; | |||
options = [ "NOPASSWD" ]; | |||
} | |||
{ | |||
command = "${pkgs.coreutils-full}/bin/readlink"; | |||
options = [ "NOPASSWD" ]; | |||
} | |||
{ | |||
command = "${pkgs.btrfs-progs}/bin/btrfs"; | |||
options = [ "NOPASSWD" ]; | |||
} | |||
]; | |||
users = [ "picloud" ]; | |||
}]; | |||
}; | |||
environment.systemPackages = [ pkgs.lz4 ]; | |||
</nowiki>}} | |||
== Manual usage == | == Manual usage == | ||
Revision as of 14:37, 13 April 2023
Btrbk, a tool for creating snapshots and remote backups of btrfs subvolumes.
Setup
When transferring backups of root filesystem snapshots using Btrbk, it is recommended to mount the root Btrfs drive with subvolume id 5 (in this example /dev/sda1) to a specific mountpoint where Btrbk can operate with. So in this case all subvolumes will be available as a subdirectory in /btr_pool.
/etc/nixos/hardware-configuration.nix
fileSystems = {
"/btr_pool" = {
device = "/dev/sda1";
fsType = "btrfs";
options = [ "subvolid=5" ];
};
};
Configuration
Following example configuration will create a weekly incremental backup of a local Btrfs subvolume called nixos and sends it compressed to the remote host myhost. The mount point /btr_pool, as referenced above, contains the subvolume.
The user btrbk together with the private key /etc/btrbk_key is used for authentication.
/etc/nixos/configuration.nix
services.btrbk = {
extraPackages = [ pkgs.lz4 ];
instances.remote = {
onCalendar = "weekly";
settings = {
ssh_identity = "/etc/btrbk_key"; # NOTE: must be readable by user/group btrbk
ssh_user = "btrbk";
stream_compress = "lz4";
volume."/btr_pool" = {
target = "ssh://myhost/mnt/mybackups";
subvolume = "nixos";
};
};
};
};
The user has to be created on the remote host and needs root permissions on the commands btrfs, readlink and test, for example via sudo. For transport stream compression using lz4 to work, the package must also be installed on the target host:
/etc/nixos/configuration.nix
security.sudo = {
enable = true;
extraRules = [{
commands = [
{
command = "${pkgs.coreutils-full}/bin/test";
options = [ "NOPASSWD" ];
}
{
command = "${pkgs.coreutils-full}/bin/readlink";
options = [ "NOPASSWD" ];
}
{
command = "${pkgs.btrfs-progs}/bin/btrfs";
options = [ "NOPASSWD" ];
}
];
users = [ "picloud" ];
}];
};
environment.systemPackages = [ pkgs.lz4 ];
Manual usage
Manually dry running and testing a btrbk configuration
btrbk -c /etc/btrbk/remote.conf --dry-run --progress --verbose run
The filename remote.conf references the instance name choosen in the example configuration above.