GCP GCE
vPlus supports the Google Compute Engine platform by using a VM called “Proxy VM”. The node invokes commands on the GCP to snapshot and attach temporary disks of a specific VM to itself (Proxy VM). The proxy VM is able to read the data from the attached disk snapshots and forward them to the backup provider.
This means that you need to create a Compute Instance (Proxy VM) in each zone from which you want to secure instances.
The vPlus Server can be deployed anywhere, but keep in mind that Nodes need to be able to call the server over HTTP(S) on the port you have specified.
The GCP backup strategies allows you to exclude drives from the backup that you don’t need.
All backup destinations can be used, but keep in mind that you may be charged for transferring data between regions, zones, and external backup providers.
vPlus Node has access to instances only in the projects where service account has access to.
vPlus Node requires the organization ID and service account key to connect to the GCP account.
Typical use scenarios
There are several scenarios for GCP which may be suitable for your case:
Backup GCE to GCS - in this case, after dumping backup, vPlus can push them to the GCS bucket.
Backup GCE to your local backup provider - if you already have a central enterprise backup solution, you may want to use it as a backup provider for GCE instances running in GCP.
Backup GCE to your other cloud provider - If you're using multiple clouds, you also may consider storing data in S3 or Azure backup providers.
Setup considerations
It is assumed that you have working experience with GCE to be able to deploy vPlus components. You also need to have an IAM user with permissions that allow you to deploy an instance and generate a service account access key for vPlus.
Remember to use CentOS 8 as a base image - both for the Server and Nodes. For a typical installation, we recommend 2 virtual processors and 8 GB of RAM. This means that e2-standard-2 should cover general use cases.
You add GCP as a Hypervisor Manager. You need to provide the organization ID and service account keys of a user that has required permissions.
Permissions
Cloud Resource Manager needs to be enabled in a project where proxy vms are located.
Here are the IAM permissions that vPlus needs to have for backup/restore operations.
Adding a hypervisor manager
To properly configure your GCP account, go to vPlus WebUI -> Virtual Environments -> Virtualization Providers -> Create
Enter parameters such as:
Organization ID
Service Account Key
Multi-zone configuration
To secure instances from multiple zones, You need to register additional Nodes. For every zone you want to back up instances from, You need to create a separate Node Configuration. Each Node Configuration needs to be assigned to the correct Hypervisor Cluster (which reflects compute zone from GCP).
First Synchronization Task needs only one Node. After the first scan, You can assign Node Configurations to Hypervisor Clusters, and run the Synchronization Task once again to fetch all instances from other zones.
To assign Node Configurations to Hypervisor Cluster, you need to go to Clusters list in Virtualization Providers tab. Then click on selected Cluster to choose Node Configuration.
Backup strategies
GCP supports two backup and restore strategies:
Disk attachment (full)
Disk attachment with changed block tracking (full/incremental)
In both cases, volume snapshots are kept in GCP only until the vPlus Export task is completed.
Restore
vPlus supports:
restoring instances to different projects
restoring instances to different regions and zones
restoring instances to different machine types (that are available in selected regions)
restoring instances to different subnetworks (that are available in selected project)
restoring disks to different disk types
