Backup Server Configuration Questions

I have a super little setup for our small business consisting of 1 primary mac mini server, 1 backup mini server, 2 WD 2TB external firewire drives, and a rackmounted Cisco switch and UPS. AFP, VPN, FTP, expandable storage, time machine backups and managed mobile accounts all packed into a compact, quiet server cabinet that fits under a desk for less than $2000. Unfortunately the success of this little gem has made it more and more critical to our publishing workflow.
For good measure I picked up another mac mini thinking i could set it up as an OD replica backup server. Unfortunately I didn't think this through before the purchase and now I have a what amounts to $500 brick in my server cabinet. Would appreciate some guidance on how best to deploy this backup server.
1) For the backup server to be of any real use I assume its going to need access to the data drives. Is there any way to manage this with external drives? Somebody suggested I should just plug my external drives into both servers, however I did some other reading that suggested this could turn my drives into toasters. I then thought of setting up WD NAS drives through my cabinet switch but was told that NAS and AFP don't play well and I would have the same issue - two systems trying to access the filesystems at the same time.
2) If i can resolve the first issue, I have the backup setup as an OD replica, which theoretically should take over if the primary goes down. Do I also need to setup DHCP on the backup for this to be relevant? Should that range be the same as the primary or do they need to be distinct?
3) I have the 2TB primary drive firewired to the primary server with the 2TB time machine drive daisy chained. I was recommended to use Syncronize Pro for my backup between the drives but despite the warnings on time machine's applicability in a server setup (timing not configurable, CPU overhead) its been perfect for my needs with zero CPU overhead after the first sync. My only complaint is time machine doesn't work with ARD so you have to browse the time machine directory manually.
4) Am I missing a larger plot here? Can I setup the external drives or backup server in another way to be more efficient. Should I pickup another set of drives and somehow synchronize the primary and secondary server completely??
This is my first server config and has been a fun little project except for a nightmare of a time with the VPN but that's another story.
Any help apprecaited.

For the backup server to be of any real use I assume its going to need access to the data drives. Is there any way to manage this with external drives? Somebody suggested I should just plug my external drives into both servers, however I did some other reading that suggested this could turn my drives into toasters.
You're right - You cannot connect one FireWire drive to two systems and hope it will work. That is asking for trouble right there.
I then thought of setting up WD NAS drives through my cabinet switch but was told that NAS and AFP don't play well and I would have the same issue - two systems trying to access the filesystems at the same time.
The whole point of NAS is that the NAS controller (in conjunction with the access protocol (e.g. AFP, NFS, etc.) takes care of concurrent access.
However, all of the above depends on the data you're storing on the external/shared drives. For example, don't expect to store any database-based data such as Open Directory to be shared between machines via the shared drives. Any shared drive setup should be for static files only (e.g. users home directories would be OK, as would backups, web content, etc.).
I have the backup setup as an OD replica, which theoretically should take over if the primary goes down. Do I also need to setup DHCP on the backup for this to be relevant? Should that range be the same as the primary or do they need to be distinct?
That depends on what you're trying to protect against.
If you're planning to keep critical services running in case the primary server fails then you can probably eschew DHCP altogether - existing clients will retain their DHCP address for at least half the lease period. e.g. if your lease is set for 3 days you have 36 hours before those machines will require a functional DHCP server. That's more than enough time for most server issues to get resolved (e.g. a reboot), and even more than it takes to turn on DHCP on the secondary server if you don't think the primary server will be back online in time.
IMHO that's preferable to running dual DHCP servers. You can do that if you prefer but they MUST have different DHCP ranges (don't try to setup both DHCP servers with the same address pools).
As for point 3 - Time Machine is fine, IMHO, as long as you realize its limitations and don't expect Time Machine to backup everything, including dynamic data such as database files.
4) Am I missing a larger plot here? Can I setup the external drives or backup server in another way to be more efficient. Should I pickup another set of drives and somehow synchronize the primary and secondary server completely??
It depends on what you're preparing for/against.
If you're looking to protect against hardware failure then you could run everything on the external drives and reconnect the drives to the other machine to boot it as the server if the first one is down. That's not necessarily ideal, but it would be one option.
The second thing to consider is what services you're running that support their own replication/backup protocols. You've already seen Open Directory replicas, so that's the right way to backup your OD setup. The same applies to DNS and MySQL - both of which have their own replication protocols.
User-based data is a little harder to replicate between servers which is why a NAS option may be viable here. Of course that doesn't necessarily provide protection against accidental deletion.
At the end of the day, though, there are many ways to set this up. The right way depends on your needs, the services you're running and what's important to your business (focus on the things your business cannot do without, and have a plan for the other services (e.g. manually start the secondary DHCP server if needed.

Similar Messages

  • AnyConnect Client Profile Backup Server Configuration

    I'm trying to understand the use of Backup Server option in AnyConnect Client Profile
    Configuration > Remote Access VPN > Network (Client) Access > AnyConnect Client Profile > Edit > Backup Server
    (Screenshot attached)
    My questions:
    1. In what all scenarios do we add servers (ASA devices) in this tab
    2. If I have same information in two different locations (Site A and Site B) for AnyConnect user, can I add Site A-ASA and Site B-ASA into Backup Server tab as a failover mechanism for end user.
    3. Or is it only used to mention ASA devices configured in failover unit
    4. In case of failover unit, does it support stateful failover
    I could not find answers to above questions from Google search. So, asking here

    I think we need to be careful when we talk about failover. The original post was clearly asking about two different scenarios
    1) ASAs at two different sites
    2) ASAs configured as a High Availability failover pair (Active/Standby).
    The profile does work to provide failover in 1) but does not work to provide failover in 2).
    I do not know the authoritative answer to the question about IP phones use of the profile. I believe that the answer ought to be that yes the phone would receive the profile after its first connection and would use the backup server identified in the profile is the primary server was not available. That is a basic functionality of the AnyConnect client and if the phone is using the AnyConnect client then it ought to support that failover. 
    If someone does have an authoritative answer then please speak up. Several of us would like to know the right answer here.
    HTH
    Rick

  • Personal Web Server - Configuration Question

    Hi All,
    I am attempting to change the 'home directory' of the personal web server from the default to '\www'. Based on my understanding this can be done by simply editing 'httpd.conf'.
    However, I am unable to edit this file, or even make a copy of it. The account that I am using has got the 'administrator' check enabled, and when attempt to type 'su' in the console, and enter my password, it responds with 'sorry'.
    How does one therefore get enough permissions to edit this file?
    Regards
    Olaf

    You probably can't su to root in the terminal because root is disabled by default as a security measure. If you want to edit that file you can use sudo to execute a command as root. In the terminal try:
    sudo emacs httpd.conf
    and then enter your password. You'll probably have to save it to another location because of directory permissions and then copy it over or something. The rest is left as an exercise to the reader.

  • How to configure backup server

    Basis Gurus,
    I have a problem.Can anyone tell me the step the ,how
    can i configure the backup server
    regards
    gopal
    Thanks in advance

    We don't know
    - your backup software
    - your backup medium
    - what you want to backup
    This doesn't seem to be a SAP problem - contact the vendor of your backup software.
    Markus

  • How can I save/backup my server configuration ?

    Hi,
    I'm new to OS X Server.
    I have my server configured and running as planed.
    But how can I save the server configurations?
    So in case I have to reinstall, I can just reload the configuration.
    Thanks,
    JO

    You can also run the the Server Assistant (/Applications/Server/Server Assistant.app) and save the resulting configuration to a file or as a directory record.
    If that file is present at the root level of any local drive, or present on a directory server, when a new copy of Mac OS X Server boots up for the first time (Think USB pen drive) it will automatically configure itself and reboot.
    This can be very useful if you need to setup many servers at once. However, you are only storing the serial number and a few basic settings (time zone, which services to turn on by default, etc) so this feature isn't really all that great for disaster recovery purposes. It can, however, save you a few minutes dealing with serial numbers when you need to rebuild a server NOW.
    Also, since none of your services will be configured yet, it's usually best practice to setup a server without any services turned on (except maybe remote desktop) and then turn them on after you get things setup. This is where those "tear" sheet .plist backup files from Server Admin come in handy.
    Matt Bryant
    ACTC
    Husson College and the New England School of Communications

  • Easiest way to Configuring backup server in oracle 8i

    I want to make a backup server i.e database for my existing database in different server. For example: My existing server completely crashed. I am having backup of os level complete backup only. Please note that not useing export file. Please suggest.

    It totally depends on your business requirements. If business requires something then you have to do it even though it is hard through the technology.
    Oracle does provide the following two main things to ponder on.
    1) Oracle Replication.
    2) Oracle Data Guard.
    -aijaz

  • OS X 10.4.11 Server - configured name and reverse DNS do not match / DNS

    Hi all,
    I have looked for similar posts but all seem to have different scenarios, hoping to get an answer from someone more experienced than myself before I do anything silly.
    Help much appreciated!
    Scenario:
    We run a 10.4.11 OS X Server on an XServe, hosted at an ISP. ISP provides all DNS services, incl. the reversed DNS entry.
    I am currently only running the following services (based on the display in ServerAdmin):
    AFP
    Firewall
    iChat
    Mail
    QuickTimeStreaming
    Web
    All others (incl. DNS) are grayed out. (As ISP instructed us not to add a DNS service on our box, that's "normal" according to my experiences with dedicated /co-location server hosting).
    We never used changeip after the initial setup, meaning the server's
    Current Hostname = somename.local and
    DNS Hostname = mail.ourdomainname.net
    So in system.log I find this re-occuring entry:
    Jul 8 11:41:22 somename servermgrd: servermgr_dns: configured name and reverse DNS name do not match (somename.local != mail.ourdomainname.net), various services may not function properly - use changeip to repair and/or correct DNS
    Finally, my question:
    As Mail and Web services etc. are currently running OK from what I can tell,
    1) do I HAVE to change this at all?
    2) Would it be much better / why?
    3) Could I change this using the following command
    (111.11.111.1 indicating the server's IP address)
    changeip 111.11.111.1 111.11.111.1 somename.local mail.ourdomainname.net
    4) without running a DNS server on the machine, i.e. DNS service is not required for this to work?
    5) obviously I want to be able to use Server Admin after I issue this command...
    6) can I fall back easily in case this would screw it up, or is there no risk whatsoever doing this in my case?
    THANK YOU so much for any help!

    Hi Jonas
    If port 443 is already being used on the same box as KMS then it will complain and probably not start the service? I've seen this with LDAP port 636. This is when Kerio is installed on a server configured as an OD Master. Clearly the port can't be used by both servers.
    It might be easier to change the port your sites are currently using to something else? Although don't do anything yet. Pose the question to Kerio Support and see what advice they offer.
    Yes moving the mail to a local folder on the mail client will do it.
    Is Kerio going on the same box? If its a different box (presumably different IP address?) Then what you can do is to port forward to the new server's IP address instead of disabling it. This way while you are bringing the new server on line users can still send mail right up until the time you give instructions on changing their inbound/outbound mail server details. Of course they won't be able to receive but if you time it right they may not even get an error message? Depends on what their schedules are.
    If it was me I would choose IMAP every time. As the mail admin you have full control and a central location for easy backup. KMS has a built in archiving feature that makes this a simple process. This is an easier option than going round individual client machines and making sure mail held locally in POP accounts are backed up. Besides there is always someone who falls through the loop and I'm not taking into account drive failures. It makes good sense anyway as there is talk of legislation being introduced to make this a requirement for businesses who run their own mail servers. This is certainly true for certain parts of the US and what usually happens there is generally taken up in the UK and most parts of Europe.
    Kerio's WebMail Client means users don't even have to have their own computer. Just as long as they have access to one that has access to the internet they can send/receive mail. No need for dedicated mail applications such as Apple Mail, Thunderbird, Entourage etc. How mail is uses remains consistent for all users.
    Yes. I did this not so long ago with Leopard's built in Mail Server. I sent an e-mail defining a time when no inbound mail would be received. Disabled port forwarding for SMTP port 25 and approx 30 minutes after that another mail stating no outbound mail should be sent. Once everything was swopped over (we were changing from a G4 10.4 server to a G5 10.5 Server) port 25 was enabled, new server brought online and everyone was mailing again with no appreciable downtime.
    These boxes were to have the same IP address hence the slightly different approach.
    Does this help?
    Tony

  • Backup server on an ACE

    When creating a backup server on an ACE running A5(2.1), we're using the probe as the trigger. Once the primary real server has failed to the backup,  will it fail back to the primary server when the probe deems the primary server available?
    It's just  as well as the ACE manual documents the backup serverfarm, there's dearth of info on the backup server.
    Thanks.
    _ Greg

    Hi Greg,
    Backup rserver as you know would be configured with standby keyword. When primary server will be Operational (probe passed)
    - Existing connections on backup keep accessing backup.
    - For new connection requests ACE looks up sticky entries, if there's already an entry for backup server, the connection is sent to the standby rserver.
    - If a new client request (connection) doesn't match any sticky entry for backup rserver ACE forwards this request to primary.
    Let me know if you have any questions.
    Regards,
    Kanwal
    Note: Please mark answers if they are helpful.

  • Backup server recomendations

    We currently backup our 4 V880 servers using a 420R as backup server and an L25 tape jukebox on a dedicated gigabit ethernet.
    The L25 is in need of replacement and I thought an SL24 would be ideal but wondered what people might recommend as a backup server. The 420R already has some i/o issues and given the increased throughput of the LTO drives I thought this might need replacing as well. We use Netbackup software on the 420R is that has any bearing on the answer.
    regards,
    Paul

    Hi Greg,
    Backup rserver as you know would be configured with standby keyword. When primary server will be Operational (probe passed)
    - Existing connections on backup keep accessing backup.
    - For new connection requests ACE looks up sticky entries, if there's already an entry for backup server, the connection is sent to the standby rserver.
    - If a new client request (connection) doesn't match any sticky entry for backup rserver ACE forwards this request to primary.
    Let me know if you have any questions.
    Regards,
    Kanwal
    Note: Please mark answers if they are helpful.

  • ACE backup-server and sticky

    Hi all,
    a question:
         if a configure a serverfarm with backup-server
    serverfarm host S_Das
      rserver DAS1
        backup-rserver DAS1_1
        inservice
      rserver DAS_1
        inservice standby
      rserver DAS2
        backup-rserver DAS2_1
        inservice
      rserver DAS_1
        inservice standby
    sticky ip-netmask 255.255.255.255 address both SF_DAS
      timeout 10
      replicate sticky
      serverfarm S_Das
    and rserver DAS1 goes down what will be behaviour of sticky and balancing?
    New connection wel'll go towards DAS2 or a tricky and clever sticky take precedence? (i mean persistence on DAS1_1 that is my backup server..)
    tnx
    Das

    Hi Danilo,
    If your primary rserver goes down the sticky entries associated with that server will be automatically flushed from the sticky table so that
    all new incoming connections will be diverted to your backup rserver.
    In case that primary rserver comes back then:
    - Existing connections on backup keep accessing backup.
    - For new connection requests ACE looks up sticky entries, if there's already an entry for backup server the connections is sent to the standby rserver.
    - If a new client request (connection) doesn't match any sticky entry for backup rserver ACE forwards this request to primary.
    In case that you want to use the primary rserver for all the connections after coming back to operational state then the backup option would be configured like this:
    rserver Primary
    ip address 10.10.10.2
      inservice
    rserver Standby
    ip address 10.10.10.3
      inservice
    serverfarm host Primary
      rserver Primary
        inservice
    serverfarm host Standby
      rserver Standby
        inservice
    policy-map type loadbalance http first-match slb
    class class-default
    serverfarm Primary backup Standby
    HTH

  • CSM configuration question

    Customer wasnt current CSM config changed:
    ===================================
    Customer's request is to make all requests go to real server 173.200.12.109 and if that server is down only then send all requests to backup server 173.200.12.110. But if server 173.200.12.109 comes back online then start sending all requests back to 173.200.12.109 and not use 173.200.12.110.
    Questions:
    ==========
    1. I think I have to put the two servers in VLAN 110 and not VLAN 12 and use the CSM in bridge mode by giving the same IP addresses of 173.200.12.8 for client VLAN 12 and server VLAN 110. Right?
    2. There are two CAT 6500 with a CSM in each in Fault Tolerant Mode already configured and running and now need the above config changes added. Do I need to configure both CSM manually or if I configure one CSM will the other copy the config automatically.
    3. I need to add VLAN 12 and VLAN 110 to Switch VLAN DATABASE, but not add VLAN 12 or VLAN 110 to the MSFC2 or should I only add VLAN 12 to MSFC2 and not VLAN 110.
    4.Do new firewall rules need to be created for the two new server real IP addresses or VIP or non change required to the Firewall Rules.
    4. What are some useful troubleshooting commands I can see if this doesn't work ? -
    show module csm x connection detail, etc.

    1 & 3) The servers will go into vlan 110. You need to create this vlan on the switch but there is not a routed interface for it.
    The client vlan (vlan 12) will need a routed interface however it is not clear from your diagram where this should be. You will need to create vlan 12 on the switch as well. If you are putting a firewall in front of this vlan which it seems you are from your diagram then the routed interface for vlan 12 will be on the firewall not the MSFC. If you put it on the MSFC you will simply route round the firewall - probably not what you want.
    2) Version 4.1(1) does not seem to support the command "hw-module csm 'slot no" standby config-sync" (worth checking tho). Looks like this was brought in on version 4.2. Without this command yes you will have to manually copy the config.
    4) if you are not allowing through http ( assuming it is http) to the VIP already yes you will need a new firewall rule. That will allow application traffic. If you need direct access to the servers for management etc. then you will need to add in rules for those as well.
    5) sh mod csm x reals
    sh mod csm x vservers.
    sh mod csm x ft
    sh mod csm x conn
    HTH

  • 2 AnyConnect queries backup server and not connecting.

    We are in the process of swapping over from the old IPSEC VPN client to AnyConnect for remote users.
    A couple of questions,
    1) With the IPSEC VPN client you could configure a Backup server. with AnyConnect there is not an option for this as far as I can see. Is there an option for this anywhere?
    2) Sometimes AnyConnect will not connect, I have found the way round this is to access an Internet website first, once that comes up then AnyConnect will come up ok. Is there something I can do about this such as timeout,script a website location to try first within Any Connect?

    Hi,
    You can add multiple backup servers by editing the profile xml file or by using the Anyconnet profile editor.
    What version of the Anyconnect client are you using? How do you connect to the Internet? Are you connecting via a proxy?
    Thanks
    John

  • ASA backup server command

    I know you can define a backup server when you are configuring a remote client on the asa and the client download the backup server's ips. the question is if you can define the same when you are configuring a site-to-site vpn????

    Yes, you can but with some restritions.
    http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/c5.html#wp2152979
    crypto map mymap 10 set peer 10.0.0.1 10.0.0.2

  • Difference between pool pair relationship and Backup registrar configuration

    Hi,
    I would like to difference between pool pair relationship and Backup registrar configuration?
    Are both concepts are reffering same for DR site resiliency in Lync 2013?
    Thanks

    Backup Registrar works the same in Lync 2013 as it did in Lync 2010. This allows for registration in the event the primary registrar is unavailable. Pool Pairing is built on top of the Backup Registrar functionality.
    Take a look at the following:
    Backup Registrar Functionality in Lync Server 2013: http://blogs.technet.com/b/dodeitte/archive/2012/08/08/backup-registrar-functionality-in-lync-server-2013.aspx
    Lync Paired Pools - Why it Matters: http://blogs.perficient.com/microsoft/2012/12/paired-pools-why-it-matters/
    Backup Registrar relationships in Lync Server 2013: http://technet.microsoft.com/en-us/library/jj205033.aspx
    Please mark posts as answers/helpful if it answers your question.
    Blog
    Lync Validator - Used to assist in the validation and documentation of Lync Server 2013.

  • Printer Server configuration for APEX 3.1.2 in 10g XE

    I have APEX3.1.2 installed in 10g XE and I am going thorough the OTN tutorial "[Oracle Application Express 3.0-- Building a Functional Application"|http://www.oracle.com/technology/obe/apex/obe30/apexdev30.htm#l7] in the section "Editing Application Objects".
    When I click "Print Attribute" of a page region, it displayed "{color:#ff0000}Report printing is currently not available, there is no print server configured{color}".
    Can you tell me what this means and how to resolve it. All I have is APEX3.1.2 installed in 10gXE.
    I have searched this forum and it seems that I have to install/configure a printer server?
    Thanks!
    Kevin

    Dan,
    I have the same problem as Kevin.
    Your answer to his question can be very helpful. But if I follow the link you provide, I cant find the step 5.2.
    Step 5.1 is clear. But what are the tasks of step 5.2?
    I hope that you can tell me this.
    Thank you.
    Carlos

Maybe you are looking for