Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Next »

Infoblox recommends that you regularly back up your configuration files and/or discovery database files. You can back up your system files locally on the appliance or to your management system, or use TFTP (Trivial File Transfer Protocol), FTP (File Transfer Protocol), or SCP (Secure Copy) to back them up to a remote server. Backing up and restoring the configuration files using TFTP, FTP, or SCP is supported on both IPv4 and IPv6 communication protocols. You can select to back up files manually or schedule automatic backups for a later date.
To avoid missing a backup when a remote server is unavailable during a scheduled automatic backup, you can choose to save files locally on your appliance while backing up to the remote server. Both the local and remote backup files share the same date because NIOS saves these files from the same backup. The backup file is a .tar.gz file that contains the configuration settings, data set, and TFTP files. Note that the local backup contains only the Grid backup. It does not contain backups for reporting or NetMRI.

Note

While the content of the backup file in plaintext it does not contain any plaintext representation of any passwords. These are either encrypted with AES-256 or salted hashed with SHA-128.

You may also schedule automatic backups of the discovery database, which consists of the complete discovery data for networks and network devices such as core, distribution and edge routers, enterprise switches, security devices, and end host devices. NIOS backs up the discovery database in a .tar.gz file, with the raw discovery data formatted as an XML file.

Note

Infoblox recommends that you backup the configuration after you convert a Grid to a different mode. Restoring the old backup by performing a forced restore, may prevent the Grid members from rejoining the Grid Master after the restore.

The following sections describe how to use the backup and restore functions:

Note

Infoblox highly recommends that you always back up the current configuration file before upgrading, restoring, or reverting the software on the appliance. If you are performing these operations on appliances licensed for Discovery and that perform discovery, the discovery database can be backed up and restored using the same mechanisms.


Backing Up Files

You can back up system files and discovery databases periodically and on demand. You can then restore the files on the same appliance or on a different appliance. For information about restoring files, see Restoring Backup Files. You can configure the appliance to automatically back up the files on a weekly, daily, or hourly basis.
Infoblox recommends that you back up the system files during off-hours to minimize the impact on network services. By default, the automatic backup function is turned off. You must log in with a superuser account to back up files.
You can back up system configuration and/or discovery database files to the following:

  • A local directory
  • The management system that you use to operate the appliance
  • A TFTP server
  • An FTP server. This option requires that you have a valid username and password on the server prior to backing up files.
  • An SSH server that supports SCP. This option requires that you have a valid username and password on the server prior to backing up files.

Local Backup

You can store a backup file on the appliance itself. However, Infoblox recommends that you store backup files in an alternate location. When you back up the system files locally, the appliance uses the following format to name the file: BACKUP_YYYY_MM_DD_MM.tar.gz. For example, a file name of BACKUP_2013_11_30_23_00 means that the file is backed up on November 30th, 2013 at 11:00 PM.
The appliance can save up to 20 configuration files, regardless of how often the files are saved (weekly, hourly, or daily). Ensure that you take the size of the configuration file into consideration when backing up files because the storage limit on an appliance is 5 Gb (gigabytes). If your configuration file is 500 Mb (megabytes), then the appliance can store 10 configuration files. When uploading configuration files on to a TFTP, FTP, or SCP server, you must consider the file size on that server as well.

Using TFTP

TFTP is a client-server protocol that uses UDP as its transport protocol. It does not provide authentication or encryption, therefore it does not require a username or password.
When you back up the system files to a TFTP server, you select the backup file you want to download, enter the name in which the file is stored on the TFTP server and the server IP address.

Using FTP

FTP is a client-server protocol used to exchange files over TCP-based networks. The appliance, as the FTP client, connects to a remote FTP server that you identify. When you use FTP to back up the system files, the password and file contents are transmitted in clear text and may be intercepted by other users.
When you back up the system files to an FTP server, the appliance, as the FTP client, logs on to the FTP server. You must specify the username and password the appliance uses to log on to the FTP server. The user account must have write permission to the directory to which the appliance uploads the backup file.

Using SCP

SCP is more secure than TFTP and FTP. It uses the SSH protocol to provide authentication and security. You can use SCP to back up the NIOS system files to a server running SSHv2.
When you use SCP to back up the system files to an SSH server, you must specify the username and password the appliance uses to log on to the server. Note that you must use either "password" or "Password" in the SCP password prompt because the appliance does not recognize "PASSWORD" in the prompt. Therefore, ensure that you customize the SCP password prompt to say "Enter your password" or "Enter your Password." Otherwise, the SCP backup will fail. The user account must have write permission to the directory to which the appliance uploads the backup file. In addition, make sure that you enter the correct IP address of the SSH server; the appliance does not check the credentials of the SSH server to which it connects.

Note

The SCP protocol uses SSH for data transfer and thus provides the same authentication and security as SSH. SCP uses LAN1 regardless of whether the MGMT port is enabled or not.

Automatically Backing Up Data Files

Infoblox recommends that you regularly back up your configuration files and/or discovery database files. The easiest way to accomplish this task is to configure the appliance for scheduled automatic backups of the NIOS configuration files. When you automatically back up a configuration file on the appliance, the file is named in the format
<GRIDNAME>_YYYY_MM_DD_HH.MM.tar.gz. The default time for an automatic backup is 3:00 AM. Infoblox recommends scheduling configuration file backups to take place during the slowest period of network activity. You can choose a schedule for when and how often files are backed up: weekly, daily, or hourly.
If a Grid has a discovery member, you may also schedule automatic backups of the Discovery database, which consists of the complete discovery data for networks and network devices such as core, distribution and edge routers, enterprise switches, security devices, and end host devices. NIOS backs up the Discovery database in a
.tar.gz file, with the raw Discovery data formatted as an XML file. For information on discovery features and requirements, see the chapter Infoblox Network Insight.
To automatically back up a database file on an independent appliance or Grid Master:

  1. From the Grid tab, select the Grid Manager tab, and then click Backup -> Schedule Backup from the Toolbar.
  2. In the Schedule Backup dialog box, select the destination of the backup file from the Backup to drop-down list:
    • TFTP: Back up system files to a TFTP server.
    • Keep local copy: Select this to also save a local copy of the backup file on your appliance. This is disabled by default. The local backup contains only the Grid backup, it does not contain backups for reporting and NetMRI. Note that when you select this, the total backup time will increase.
      • IP Address of TFTP Server: Enter the IP address of the TFTP server to which you want to back up the system files.
      • Directory Path: Enter the directory path of the file. For example, you can enter /archive/backups. The directory path cannot contain spaces and backslash(\). The folder or directory you enter here must already exist on the specified server. Do not include the file name in the directory path.
      • Recurrence: Select how often you want to back up the files. You can select Weekly, Daily, or Hourly from the drop-down list. When you select Weekly, complete the following:
        • Every: Choose a day of the week from the drop-down list.
        • Time: Enter a time in the hh:mm:ss AM/PM format. You can also click the clock icon and select a time from the drop-down list. The Grid Master creates a backup file on the selected day and time every week.
          When you select Daily, enter a time in the hh:mm:ss AM/PM format. You can also select a time from the drop-down list.
          When you select Hourly, complete the following:
        • Minutes after the Hour: Enter the minute after the hour when the Grid Master creates a backup file. For example, enter 5 if you want the Grid Master to create a backup file five minutes after the hour every hour.
      • Disable Scheduled Backup: Select this if you want to disable automatic backups from occurring now.
        You can still save the settings for future use.
    • FTP: Back up system files to an FTP server.
    • Keep local copy: Select this to also save a local copy of the backup file on your appliance. This is disabled by default. The local backup contains only the Grid backup, it does not contain backups for reporting and NetMRI. Note that when you select this, the total backup time will increase.
      • IP Address of FTP Server: The IP address of the FTP server.
      • Directory Path: Enter the directory path of the file. For example, you can enter /archive/backups. The directory path cannot contain spaces and backslash(\). The folder or directory you enter here must already exist on the specified server. Do not include the file name in the directory path.

      • Username: Enter the username of your FTP account.

        Note that if you have configured AD server for authentication, you must specify "domain name\\username". 

      • Password: Enter the password of your FTP account.
      • Recurrence: Select how often the scheduled backups should occur. You can select Weekly, Daily, or Hourly. For information, see TFTP.
      • Disable Scheduled Backup: Select this if you want to disable automatic backups from occurring now, but want to save the settings for future us.
    • SCP: Back up system files to an SSH server that supports SCP.
    • Keep local copy: Select this to also save a local copy of the backup file on your appliance. This is disabled by default. The local backup contains only the Grid backup, it does not contain backups for reporting and NetMRI. Note that when you select this, the total backup time will increase.
      • IP Address of SCP Server: The IP address of the SCP server.
      • Directory Path: Enter the directory path of the file. For example, you can enter /archive/backups. The directory path cannot contain spaces and backslash(\). The folder or directory you enter here must already exist on the specified server. Do not include the file name in the directory path.

      • Username: Enter the username of your SCP account.

        Note that if you have configured AD server for authentication, you must specify "domain name\\username".

      • Password: Enter the password of your SCP account.
      • Recurrence: Select how often the scheduled backups should occur. You can select Weekly, Daily, or Hourly. For information, see the TFTP section.

      • Disable Scheduled Backup:Select this if you want to disable automatic backups from occurring now.
        You can still save the settings for future use.

        Note that when you select FTP or SCP, ensure that you have a valid user name and password on the server prior to backing up the files.

         New status types such as Upload keys triggered, Upload keys in progress, Upload keys done are displayed in the Reporting Restore dialog box also.

    • Grid Master (Local): Back up to a local directory on the Grid Master. This is the default.
      By default, the Grid Master generates a backup file and saves it locally in its own storage at 3:00 AM daily.
      Be aware that backing up the Grid and saving it locally on an hourly basis increases the turnover of files stored on the Grid Master. Backing it up hourly to a remote server increases the overall amount of traffic on your network.
  3. If the Grid has a discovery member, Grid Manager displays the NIOS data and Discovery data checkboxes. You can select the NIOS data checkbox, to back up NIOS configuration data for the Grid and select the Discovery data checkbox, to back up discovery data for the Grid.
    If the Grid has a reporting member, Grid Manager displays the Infoblox Splunk App checkbox. You can select the Infoblox Splunk App checkbox, to back up Splunk application reporting data.
  4. Save the configuration and click Restart if it appears at the top of the screen.

Manually Backing Up Data Files

You can manually back up a NIOS data file in addition to scheduling your backups. If a Grid has a discovery member, you can also manually back up the current discovery database. Doing so backs up the complete discovery database that is resident on the Consolidator appliance, which is a member of the Grid. Keep in mind that discovery processes may be taking place on the associated NIOS appliances licensed for that task. NIOS will temporarily suspend the Discovery service while the backup is being retrieved from the Consolidator appliance.
To back up manually:

  1. From the Grid tab, select the Grid Manager tab, and then click Backup -> Manual Backup from the Toolbar.
  2. In the Backup wizard, select the destination of the backup file from the Backup to drop-down list:
    • My Computer: Back up system files to a local directory on your computer. This is the default.
    • TFTP: Back up system files to a TFTP server.
      • Filename: Enter the directory path and the file name of the backup file. For example, you can enter /archive/backups/Infoblox_2009_10_20_15_30. The directory path cannot contain spaces and backslash(\). 
      • IP Address of TFTP Server: Enter the IP address of the TFTP server to which you want to back up the system files.
    • FTP: Back up system files to an FTP server.
      • Filename: Enter the directory path and the file name of the backup file. For example, you can enter /archive/backups/Infoblox_2009_10_20_15_30. The directory path cannot contain spaces and backslash(\).
      • IP Address of FTP Server: The IP address of the FTP server.

      • Username: Enter the username of your FTP account.
        Note that if you have configured AD server for authentication, you must specify "domain name//username".

      • Password: Enter the password of your FTP account.
    • SCP: Back up system files to an SSH server that supports SCP.
      • Filename: Enter the directory path and the file name of the backup file. For example, you can enter /archive/backups/Infoblox_2009_10_20_15_30. The directory path cannot contain spaces and backslash(\). 
      • IP Address of SCP Server: The IP address of the SCP server.
      • Username: Enter the user name of your SCP account.

        Note that if you have configured AD server for authentication, you must specify "domain name//username". 

        • Use Keys: If you select this checkbox, you can back up files to SCP without entering the password. The first time you select the checkbox, you need to enter the password. However, during subsequent times, the Infoblox server verifies whether Infoblox keys are available on the SCP server. If they are available, you can click the Backup button without entering the password. If Infoblox keys are not available on the SCP server, the following message is displayed:
          Infoblox SSH keys are not present on SCP server. Please upload the keys to the SCP server or download the keys and manually add it to the SCP server.
          Password: Enter the password of your SCP account.

        • Keys Type: Select the SSH key type to be uploaded. At present, only ECDSA and RSA keys are supported. Click Upload Keys to upload the keys to the SCP server. If the keys are not available, click Download Keys to download the keys and manually add them to the SCP server.


  3. If the Grid has a discovery member, Grid Manager displays the NIOS data and Discovery data checkboxes. You can select the NIOS data checkbox, to back up NIOS configuration data for the Grid and select the Discovery data checkbox, to back up discovery data for the Grid.
    If the Grid has a reporting member, Grid Manager displays the Infoblox Reporting & Analytics App checkbox. You can select the Infoblox Reporting & Analytics App checkbox, to back up Splunk application reporting data.

  4. Click Backup.


Note

  • If you are using Fedora, ECDSA keys are supported only on Fedora versions later than Fedora 12.
  • When you select FTP or SCP, ensure that you have a valid user name and password on the server prior to backing up the files. Also ensure that the target SSH server has the required permissions for an SCP backup. The permission must be 755 and the target server must have write permission to the directory to which you upload the backup file.
  • For an SCP backup, ensure that you are logged in as the user for whom the key was created. Also ensure that the .ssh directory on the server and the files it contains, have the correct permissions: chmod 600 ~/.ssh/authorized_keys && chmod 700 ~/.ssh/
  • If you promote a Grid Master or perform an HA failover, you must upload the SSH key once again for a successful SCP backup using keys.

Downloading Backup Files

You can save an existing backup file, or create and save a new one to your local management system, a TFTP server, an FTP server, or a SCP server.
To download an existing backup file:

From the Grid tab, select the Grid Manager tab, and the click Backup -> Manage Local Backup from the Toolbar. Grid Manager displays the current backup files in the Manage Local Backups dialog box.

To download a backup file, select the checkbox of a backup file, and then click the Transfer icon. You cannot select multiple files for downloading.

Select one of the following from the Backup to drop-down list:

  1. My Computer: Backup to a local directory on your computer. This is the default.
  2. TFTP: Save the backup file to a TFTP server.
    • Filename: Enter the directory path and the file name of the backup file. For example, you can enter /archive/backups/Infoblox_2009_10_20_15_30 .
    • IP Address of TFTP Server: Enter the IP address of the TFTP server to which you want to save the backup file.
  3. FTP: Save the backup file to an FTP server.
    • Filename: Enter the directory path and the file name of the backup file. For example, you can enter /archive/backups/Infoblox_2009_10_20_15_30.
    • IP Address of FTP Server: The IP address of the FTP server.
    • Username: Enter the username of your FTP server account.
    • Password: Enter the password of your FTP server account.
  4. SCP: Save the backup file to an SSH server that supports SCP.
    • Filename: Enter the directory path and the file name of the backup file. For example, you can enter/archive/backups/Infoblox_2009_10_20_15_30.
    • IPAddressofSCPServer: The IP address of the SCP server.
    • Username: Enter the username of your SCP server account.
    • Password: Enter the password of your SCP server account.

    Note

    When you select FTP or SCP, ensure that you have a valid username and password on the server prior to backing up the files.

Click Transfer Copy.

Restoring Backup Files

You can restore a backup file of a NIOS configuration or a Discovery database to an appliance running the same NIOS version as that of the appliance from which the backup file originates. You can also restore a backup file from an appliance running a NIOS version to an appliance running a later NIOS version as long as the upgrade from the earlier NIOS version to the later version is supported. For example, you can restore a backup file from an appliance running NIOS 6.10.0 to an appliance running NIOS 7.3.200 because upgrading from NIOS 6.10.0 to 7.3.200 is supported. However, you cannot restore a backup file from an appliance running NIOS 6.9.0 to an appliance running NIOS
7.3.200 because upgrading from NIOS 6.9.0 to 7.3.200 is not supported.
You can restore an existing backup file on the appliance from which it originates, or restore a backup file from a different appliance (referred to as a forced restore). To download a backup file from a different appliance, see Downloading Backup Files from a Different Appliance below.
You must log in with a superuser account to back up and restore files. NIOS provides three ways to restore a backup file:

From a local directory or the management system you use to operate the appliance

From a TFTP server

From a remote server using FTP. This option requires that you have a valid username and password on the FTP server prior to performing a backup or restore.

Note

When you restore NIC interfaces to a VM, ensure that you provision appropriate NIC interfaces with the database content that must be restored to avoid any errors. 

To restore a backup file to the same independent appliance or Grid Master:

From the Grid tab, select the Grid Manager tab, and then click Restore from the Toolbar.

In the Restore dialog box, choose one of the following from the Restore from drop-down list:

  1. My Computer: Restore a file from your local computer. This is the default.
    • Filename: Click Select File to navigate to the configuration file.
  2. TFTP: Restore a file from a TFTP server.
    • Filename: Enter the directory path and the file name you want to restore. For example, you can enter /archive/backups/Infoblox_2009_10_20_15_30 .
    • IP Address of TFTP Server: Enter the IP address of the TFTP server from which you restore the configuration file.
  3. FTP: Restore a file from an FTP server.
    • Filename: Enter the directory path and the file name of the backup file. For example, you can enter /archive/backups/Infoblox_2009_10_20_15_30.
    • IP Address of FTP Server: The IP address of the FTP server.
  4. Username: Enter the username of your FTP server account.
  5. Password: Enter the password of your FTP server account.
  6. Grid Master (Local): Restore from a local directory on the Grid Master. In the Backup Set table, select the file you want to restore.

To restore NIOS configuration data, select the NIOS data checkbox.

To restore Discovery data, select the Discovery data checkbox. Discovery data should be restored to Consolidator appliances with the correct licensing.

To download a backup file from one appliance to a different appliance, select Force Restore from Different Grid to enable the feature, and then select one of the following:

  • Retain Current Grid Master IP Settings (this is the default)
  • Overwrite Grid Master IP Settings

Click Restore. In the Confirm Restore dialog box, click Yes.
After restoring the file, the appliance restarts. The restore process overwrites all existing data. All pending scheduled tasks are not restored or reverted.

Close your current browser window, wait a few minutes, and then reconnect to the NIOS appliance.

Downloading Backup Files from a Different Appliance

When you "force restore" a NIOS appliance, you download a backup file from one appliance to a different appliance. To restore a backup file to the same appliance or Grid Master, use the Restore function as described in Restoring Backup Files above.
To download a backup file from one appliance to a different appliance:

From the Grid tab, select the Grid Manager tab, and then click Restore from the Toolbar.

In the Restore wizard, do the following:

  • Restore from: Choose a source from which you restore the configuration file, as described in Restoring Backup Files above.

Select Force Restore from Different Grid to enable the feature, and then select one of the following:

  • Retain Current Grid Master IP Settings (this is the default)
  • Overwrite Grid Master IP Settings

Click Restore. In the Confirm Restore dialog box, click Yes.
After restoring the file, the appliance reboots. The restore process overwrites all existing data. All pending scheduled tasks are not restored or reverted.

Close your current browser window, wait a few minutes, and then reconnect to the NIOS appliance.

  • No labels