3. Developing backup strategies
Backups are insurance plans, plain and simple—and every administrator should see them that way. When disaster
strikes, your backup implementation will either leave you out of harm’s
way or drowning without a life preserver. Trust me: You don’t want to
be drowning when it should be your moment to shine. After all, if you’ve implemented a well-thought-out backup
plan and practiced the necessary recovery procedures until they are
second nature, a server that has stopped working is nothing more than a
bump in the road that you can smooth out even if you have to rebuild a
server from scratch to do it.
Creating your backup strategy
So, where to start? Start by outlining a backup and recovery plan that describes the servers and the data that need to be backed up. Ask yourself the following questions:
-
How important is the role that the server is performing? -
How important is the data stored on the server? -
Is the data unique, or are there multiple masters available? -
How often does the data change? -
How much data in total is there to back up? -
How long does each backup take? -
How quickly do you need to recover the data? -
How much historical data do you need to store? -
Do you have the equipment needed to perform backups? -
Do you need to store backups off site? -
Who will be responsible for performing backups?
The answers to these questions will help you develop your backup and
recovery plan. Often you’ll find that your current resources aren’t
enough and that you need to obtain additional backup equipment. It might
be one of the ultimate ironies in administration, but you often need
more justification for backup equipment than for any other type of
equipment. Fight to get the backup resources you need, and do so without
reservation. If you have to make incremental purchases over a period of
several months to get the backup equipment and supplies, do so without
hesitation.
Backup strategy considerations
In most cases, your backup strategy should involve performing some
type of backup of every server daily and full backups of these servers
at least once a week. You should also regularly inspect the backup log
files and periodically perform test restores of the data to ensure that
data is being properly written to the backup media.
Plan separate backup strategies for system files and data files.
-
System files are used by
the operating system and applications. These files change when you
install new components, service packs, or patches. They include system
state data.
Note
For systems that aren’t domain controllers, the system-state data
includes essential boot files, key system files, and the COM+ class
registration database, as well as the registry data. For domain
controllers, the Active Directory database and System Volume (Sysvol)
files are included as well, and this data typically changes on a daily
basis.
-
Data files are created
by applications and users. Application files contain configuration
settings and data. User files contain the daily work of users and can
include documents, spreadsheets, media files, and so on. These files
change every day.
Administrators often back up an entire machine and dump all the data
into a single backup. There are several problems with this strategy.
First, on non–domain controllers, system files don’t change that often,
but data files change frequently. Second, you typically need to recover
data files more frequently than system files. You recover data files
when documents are corrupted, lost, or accidentally deleted and can’t be
recovered using other means, such as Previous Versions. You recover
system files when you have serious problems with a system and typically
are trying to restore the whole machine. Sometimes, however, rather than
restore a failed server, it might be faster and easier to set up a new
server that provides the same services. For example, with a domain
controller that doesn’t perform any operations master roles, you might
be able to set up a new domain controller from media faster than you can restore the original failed domain controller.
Look at the timing
of backups as well. With earlier releases of Windows, you are often
concerned about the time that backups are performed. You want backups to
be performed when the system’s usage is low, so that more resources are
available and few files are locked and in use. With the advances in backup technology made possible by the Shadow
Copy API built into Windows Server, the backup time is less of a
concern than it was previously. Any backup programs that implement the
Shadow Copy API allow you to back up files that are open or locked. This
means that you can perform backups when applications are using files
and no longer have to worry about backups failing because files are
being used.
Selecting the optimal backup techniques
When it comes to backup, there is no such thing as a
one-size-fits-all solution. Often you’ll implement one backup strategy
for one system and a different backup strategy for a different system.
It all comes down to the importance of the data, the frequency of
changes to it, and how much data there is to back up on each server. But
don’t overlook the importance of recovery speed. Different backup strategies
take longer to recover than others, and there might be differing levels
of urgency involved in getting a system or service back online. Because
of this, I recommend a multipronged backup strategy that is optimized
on a per-server basis.
Key services running on a system have backup
functions that are unique. Implement and use those backup mechanisms as
your first line of defense against failure. Remember that a backup of
the system state includes a full backup of a server’s registry, and that
system configuration includes the configuration of all services running
on a system. However, if a specific service fails, it is much easier
and faster to recover that specific service than to try to recover the
whole server. You’ll have fewer problems, and it is less likely that
something will go wrong.
Specific backup and recovery techniques for key services are as follows:
-
With Dynamic Host Configuration Protocol (DHCP), you should
periodically back up the DHCP configuration and the DHCP database . -
With the Windows Internet Naming Service (WINS), you should periodically back up the WINS database. -
With Domain Name System (DNS), your backup strategy depends on
whether you are using Active Directory–integrated zones, standard zones,
or both. When you are using Active Directory–integrated zones, DNS
configuration data is stored in Active Directory. By default, when you
are using standard zones, DNS configuration data is stored in the
%SystemRoot%\System32\DNS folder and backups of zone data are stored in
the %SystemRoot%\System32\DNS\Backup folder. -
With Group Policy, you should periodically back up the Group Policy Object (GPO) configuration . -
With file servers, you should implement the Volume Shadow Copy Service (VSS) for all network file shares.
This makes it easier to restore previous versions of files. In
addition, you should back up all user data files on the file server
regularly.
The availability, scalability,
are your next line of defense. Take the time to develop plans and
procedures that can help you through everything from a power outage to
the worst-case scenario. Don’t forget that when you use BitLocker without Network Unlock, protected computers are locked until you provide the necessary recovery
password. When a computer is locked, you must use the recovery password
from a USB flash drive, or use the function keys to enter the recovery
password. F1 through F9 represent the digits 1 through 9, and F10
represents 0.
Finally, you also need to perform regular backups of both system and
user data. Most backup programs, including Windows Backup, which is
included in Windows Server 2012, support several types of backup jobs.
The type of backup job determines how much data is backed up and what
the backup program does when it performs a backup.
Understanding backup types
The basic types of backups include the following:
-
Normal A normal
backup is a full backup of all the files and folders you select,
regardless of the archive attribute’s setting. When a file is backed up,
the archive attribute is turned off. -
Copy
A copy backup is a
full backup of all files and folders you select, regardless of the
archive attribute’s setting. Unlike a normal backup, the archive
attribute on files isn’t turned off by the backup. This means that you
can use a copy backup to create an additional or supplemental backup of a
system without interfering with the existing backup strategy. -
Incremental An
incremental backup is used to create a backup of all files that have
changed since the last normal or incremental backup. As such, an
incremental backup is a partial backup. The backup program uses the
archive attribute to determine which files should be backed up and turns
off the archive attribute after backing up a file. This means that each incremental backup contains only the most recent changes. -
Differential A
differential backup is used to create a backup of all files that have
changed since the last normal backup. Like an incremental backup, in a
differential backup, the backup program uses the archive attribute to
determine which files should be backed up. However, the backup program
does not change the archive attribute. This means that each differential
backup contains all changes. -
Daily
A daily backup uses
the modification date on a file rather than the archive attribute. If a
file has been changed on the day the backup is performed, the file will
be backed up. This technique doesn’t change the archive attributes of
files and is useful when you want to perform an extra backup without
interfering with the existing backup strategy.
As part of your backup strategy, you’ll probably want to perform normal backups on a weekly basis and supplement this with daily, differential, or incremental backups. The advantage of normal
backups is that they are a complete record of the files you select. The
disadvantage of normal backups is that they take longer to make and use
more storage space than other types of backups. Incremental and differential
backups, on the other hand, use less space and are faster because they
are partial backups. The disadvantage is that the recovery of systems
and files using incremental and differential backups is slower than when you only have to perform a recovery from a normal backup. To see why, consider the following backup and recovery examples:
-
Normal backup with daily incremental backups
You perform a normal backup every Sunday and incremental
backups Monday through Saturday. Monday’s incremental backup contains
changes since Sunday. Tuesday’s incremental backup contains changes
since Monday, and so on. If a server malfunctions on Thursday and you
need to restore the server from backup, you do this by restoring the
normal backup from Sunday, the incremental backup from Monday, the
incremental backup from Tuesday, and the incremental backup from
Wednesday—in that order. -
Normal backup with daily differential backups
You perform a normal backup every Sunday and differential
backups Monday through Saturday. Monday’s differential backup contains
changes since Sunday, as does Tuesday’s differential backup, Wednesday’s
differential backup, and so on. If a server malfunctions on Thursday
and you need to restore the server from backup, you do this by restoring
the normal backup from Sunday and then the differential backup from
Wednesday.
Using media rotation and maintaining additional media sets
As part of your backup strategy, you might also want to use copy
backups to create extended backup sets for monthly and quarterly use.
You might also want to use a media rotation scheme to ensure that you
always have a current copy of your data as well as several previous data
sets. Although tapes traditionally have been used for backups, more and
more organizations have been using disk backup instead of tape backup
as disk drives have become more affordable. With disks, you can use a
rotation schedule similar to the one you use with tapes.
The point of a media rotation scheme is to reuse media in a
consistent and organized manner. If you use a media rotation scheme,
monthly and quarterly media sets can simply be media sets that you are
rotating to off-site storage. Consider the following media rotation
scenarios:
-
Media rotation with three weekly media sets and one monthly media set
In a 24/7 environment, you use a total of 14 tapes or disks as a media
set. Seven of those tapes or disks contain your normal weekly backups
for a set of servers. The other seven tapes or disks contain your daily
incremental backups for that set of servers—one tape or disk for each
day of the week. Three weekly media sets are maintained on site. Once a
month, you rotate the previous week’s media set to offsite storage. -
Media rotation with three weekly media sets, one monthly media set, and one quarterly media set
In a 9-to-5
environment, you use a total of 14 tapes or disks as a media set. Nine
of those tapes or disks contain your normal weekly backups for a set of
servers. The other five tapes or disks contain your daily incremental
backups for that set of servers—one tape or disk for each workday. Three
weekly media sets are maintained on site. Once a month, you rotate the
previous week’s media set to off-site storage. Once a quarter, you
rotate the previous week’s media set to off-site storage.
|