Skip to content
This repository has been archived by the owner on Jan 25, 2022. It is now read-only.

petergeneric/ebs-snapshotd

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

31 Commits

daemon

daemon

 
 

.gitignore

.gitignore

 
 

.travis.yml

.travis.yml

 
 

COPYRIGHT.txt

COPYRIGHT.txt

 
 

Readme.md

Readme.md

 
 

pom.xml

pom.xml

 
 

Repository files navigation

EBS Snapshotd

Manages EBS snapshots in an automated fashion.

Principle

Volumes/Snapshot associations are called Durable Volumes. EBS Snapshotd associates a profile with a Durable Volume, applying rules for:

  • when to create a new snapshot
  • when to discard existing snapshots

The above decisions are governed by the state of the system (which is quite conservative, refusing to modify the system if there are snapshots or volumes in error states) as well as the following parameters for a Backup Profile:

  • The snapshot creation interval (the system will create a snapshot if the oldest snapshot is > this age.). May be set to 0 to disable automatic snapshots.
  • The minimum backup snapshots to hold
  • The snapshot expire time (snapshots older than this may be deleted, as long as deleting them would not take us below the minimum snapshot count). May be set to 0 to disable automatic snapshot discard.

Building

This code is built with Maven (sorry - I hate maven too but it makes it easy to pull in the dependencies). To build, simply run 

mvn clean install

To produce an eclipse project, run: 

mvn eclipse:clean eclipse:eclipse --downloadJavadocs=true --downloadSources=true

Running

Once built, extract the one-jar.jar produced (cp daemon/target/snapshotd-*.one-jar.jar ./ebs-snapshotd.jar)

Next, create a conf directory and run the following: 

cp daemon/conf/log4j.properties ./conf/log4j.properties
cp daemon/conf/example-backup.properties ./conf/backup.properties

backup.properties contains a definition of the region (us-east-1 by default) and the backup profile (named "default", taking a snapshot every 1 minute, keeping snapshots for 2 minutes (with a minimum of 3 snapshots kept)).

Next, you should get your AWS access key and secret access key (I recommend an IAM credential - see the suggested policy further down). Write your access key and secret access key to conf/aws.properties as: 

accessKey=abc
secretAccessKey=abc

Finally, run with 

java -jar ebs-snapshotd.jar

It will display any actions taken

IAM Policy

It is highly recommended that this service be given an IAM credential with a limited access policy. The following policy covers all the actions required:

{
  "Statement": [
    {
      "Sid": "Stmt1332601316876",
      "Action": [
        "ec2:CreateSnapshot",
        "ec2:CreateTags",
        "ec2:DeleteSnapshot",
        "ec2:DescribeSnapshots",
        "ec2:DescribeVolumes"
      ],
      "Effect": "Allow",
      "Resource": [
        "*"
      ]
    }
  ]
}
{
  "Statement": [
    {
      "Sid": "Stmt1332601471828",
      "Action": [
        "sns:Publish"
      ],
      "Effect": "Allow",
      "Resource": [
        "*"
      ]
    }
  ]
}

Note: the second Statement above is for Amazon SNS; if you do not wish to receive notifications when a snapshot is created/deleted then this policy is not required. You should be sure not to specify the sns.topic property in your backup.properties in this case.

About

EBS Snapshot Daemon

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository

Languages