Conversational Azure Backup Best Practices PDF
Conversational Azure Backup Best Practices PDF
Conversational Azure Backup Best Practices PDF
Veeam
Veeam® is the leader in Backup solutions that
deliver Cloud Data Management™. Veeam
provides a single platform for modernizing
backup, accelerating hybrid cloud and securing
your data. With 365,000+ customers worldwide,
including 81% of the Fortune 500 and 66% of the
Global 2,000, Veeam customer-satisfaction
scores are the highest in the industry at 3.5x the
average. Veeam’s global ecosystem includes
70,000+ partners, including HPE, NetApp, Cisco
and Lenovo as exclusive resellers. Currently
headquartered in Baar, Switzerland, Veeam has
offices in more than 30 countries.
All rights reserved. No part of this book shall be reproduced, stored in a retrieval
system, or transmitted by any means, electronic, mechanical, photocopying, recording,
or otherwise, without written permission from the publisher. No patent liability is
assumed with respect to the use of the information contained herein. Although every
precaution has been taken in the preparation of this book, the publisher and author
assume no responsibility for errors or omissions. Nor is any liability assumed for
damages resulting from the use of the information contained herein.
Trademarks
Conversational Geek, the Conversational Geek logo and J. the Geek are trademarks of
Conversational Geek®. All terms mentioned in this book that are known to be
trademarks or service marks have been appropriately capitalized. We cannot attest to
the accuracy of this information. Use of a term in this book should not be regarded as
affecting the validity of any trademark or service mark.
Additional Information
For general information on our other products and services, or how to create a custom
Conversational Geek book for your business or organization, please visit our website at
ConversationalGeek.com
Publisher Acknowledgments
All of the folks responsible for the creation of this guide:
Authors: Nick Cavalancia
Brien Posey
Project Editor: Pete Roythorne
Copy Editor: Pete Roythorne
Content Reviewers: Sam Nichol
David Hill
Melissa Palmer
Notes from the Authors
The problem with the way that buzzwords and technical jargon
get thrown around is that they can cause terms to become
ambiguous, or to lose their original meaning. Take the term
Disaster Recovery for example. In some circles, disaster recovery
is synonymous with backup and restoration. For others, disaster
recovery refers to having the ability to failover a workload to the
cloud in the event that an organization’s data center becomes
incapacitated.
The one big caveat to this, however, is that these best practices
aren’t necessarily the same as those that were previously used.
Remember, they were intended for an either/or situation. Either
a workload was running in the cloud, or it was running on-
premises.
10 Best Practices for Backing Up Resources
Residing in Microsoft Azure
Because the best practices for backup and restoration have
evolved significantly in recent years, we wanted to talk about
some of these, especially as they relate to protecting resources
that are stored in the Azure cloud.
This one might sound like a bit of a no-brainer, but it’s incredibly
important. You need to back up your data. Yes, seriously. This is
the number one best practice.
The reason why we’re including the need for data backups
among the other best practices is because it directly ties into a
couple of the things that we have already talked about. Namely,
the cloud providers marketing efforts, and the concept of
location agnostics. Let us explain.
If you were to ask most people what message the big cloud
provider’s marketing teams were trying to convey 10 years ago,
they would probably tell you that the message was that the
cloud makes everything cheaper and easier.
The bottom line is that the need for backups doesn’t go away
just because a resource resides in the cloud. Data loss can, and
certainly still does happen in cloud environments.
This all ties back to the concept of location agnostics. Your data
needs to be backed up, regardless of where that data resides.
A second best practice is to make sure that you are using the
right tool for the job. Your backup software needs to be aligned
with your backup requirements.
We will be the first to admit that this seems like yet another odd
thing to include in a list of best practices. At best, it seems a little
bit over simplistic. At worst, it sounds like a pitch designed to sell
backup software. In reality though, there are three very
important reasons why we are including the concept of using the
right tool for the job among our list of best practices for backing
up resources in Azure.
The first reason why it is so important to use the right tool for
the job is that backup software that was designed for on-
premises use might not do such a good job backing up resources
in the cloud. That isn’t to say that a legacy backup product can’t
back up resources in Azure. We have seen it done. What we are
saying though is that trying to repurpose an on-premises backup
product for use in the cloud can be problematic. In some cases,
the software may work, but fail to provide an optimal
experience. In other situations, the software might partially
work, but leave you with gaps in your coverage.
The lesson here is to use a backup product that avoids the use of
agents, and that is specifically designed for use with Azure.
The third best practice for protecting your resources within the
Azure cloud is to use backup automation whenever you can.
But job scheduling isn’t the only way that automation can be
used to assist with the backup process. Modern cloud backup
applications make it possible to automate things like VM
snapshot creation, and backup lifecycle management that is
based around the organizations retention policies.
A deep dive into Azure billing is well beyond the scope of this
book, but we do want to take a moment and talk about data
egress fees. These fees can have an enormous impact on the
cost of your Azure backups.
Simply put, data egress fees are charges for data that leaves the
cloud. These fees are not unique to Microsoft. Although the data
egress fee amounts vary from one cloud provider to the next,
most cloud providers do charge their customers a fee any time
that data leaves their cloud. Presumably these fees were put into
place as a way of discouraging customers from moving their
cloud workloads to another provider, or moving those workloads
back on-premises. Regardless of intent though, data egress fees
can come into play when an organization creates or restores a
backup.
Admittedly, $0.087 per gigabyte doesn’t sound like all that much
money, but let’s do some math. Suppose for a moment that you
needed to restore 1 TB of data from Azure to an on premises
VM. One terabyte is equal to 1024 gigabytes. Just to make things
fair, let’s assume that five gigabytes of data are going to be
restored for free. This means that you would be billed for
transferring 1019 GB of data. At $0.087 per gigabyte, that works
out to $88.65.
There are costs tied to the use of Azure storage. If you are going
to be storing your backup data in the Azure cloud, then it is
important to factor those costs into your backup strategy.
Aside from the previously discussed data egress fees, there are
two main costs that you need to be aware of. First, there are
capacity related costs. When you store data in the Azure cloud,
you aren’t purchasing storage, you’re renting it. As such,
Microsoft charges a fee each month for every gigabyte of
storage that is in use. Suppose for example, that you were to
write a 100 GB file to the Azure cloud. You would be charged for
100 GB of storage each month, for as long as the file remains in
the cloud.
One of the most important things that you should do with regard
to your Azure backups is to keep your backup data completely
isolated from everything else. This is the only way to guarantee
the integrity of your backups.
The trick to keeping your backups safe is to make sure that the
backup data is not accessible from any of your standard user
accounts. Instead, create purpose-built accounts that are used
only for backup and restoration tasks. These should be the only
accounts that have access to the data.
It really doesn’t get much simpler than that. Even so, there are
some extraordinarily complex backup solutions on the market
today. While such solutions presumably work, it is usually better
to go with a less complicated solution.
• Virtual Machine
• Application
• File
While the idea that there are different types of restorations may
seem really obvious, some of the backup and data recovery tools
that are available today force you into performing one specific
type of recovery. Unless you have a backup solution in place that
offers granular restoration capabilities, you may end up having
to restore an entire system just to recover a file or an
application.
The Big Takeaways
With a market share estimated at just under 18%, and revenues
of over $5 billion (plus the fact that you’ve read this book), it’s
probably safe to say that your organization has some portion of
its’ operations in Azure and needs to protect it with backups.
Source: Microsoft
Azure-Native
Cost-Effective
Storage in any cloud – even Azure – can get expensive if your
use isn’t managed. Microsoft Azure offers a number of storage
tiers, each with lowered cost/GB tied with reduced response
times and recovery speed. But, because some backups are
needed for long-term retention while others are needed for
instant recovery, cost-effective backups are only achieved
when you can efficiently manage your storage use.
Secure
Hybrid-Ready
Cost-effective
Secure
Hybrid-ready