Hi,
Looking for some guidance. I have purchased and setup 2x DS1522+ Units with 10TB Drives in BTRFS SHR2 with about 22TB usable.
I am using COVE to backup via a workstation a cloud drive with approx 5TB. TO bring the data back onsite for a local speed vault copy just to be safe. (not actively used as the clients use cloud storage as hot storage)
Now I want to take that secondary copy living on my primary DS1522+ and have it replicate each night to the secondary DS1522+. I am using different credentials and port #s as I have seen Tom mention for security.
Neither of these devices is accessible over the internet nor will I ever have that need, I simply want 2 solid and safe copies of my clients data just “in case” the worst case scenario ever happens.
My question is, With the primary NAS doing its nightly backup and working just fine, what method would be best to “replicate” the data over to the secondary on a daily basis just in-case the Cloud and primary NAS were ever holding compromised data?
Can I do this in a way that the secondary is Immutable or Read Only ? Should I be using active backup, snapshots, or something else that Synlology can offer?
Bonus question: Both units have the 10G card. Can I simply connect them together via these cards for faster transmission of the replication? Thanks!
It matters what kind of backup strategy you are looking for. If you are needing to keep several days of data then I would do snapshots. That way you can go back to a certain day to do a restore. If you are wanting to only keep the latest backup then a replication would be your choice.
I would absolutely connect both devices directly to each other. That kind of traffic should not be routed though a firewall and will have the best performance.
Thank you xMAXIMUSx. Appreciate your response. I would assume to be safer I should and since its local storage (so less cost) I should keep 30 -60 days of data just to be safe.
So my question is, if I can use snapshots with retention, and enable immutability , if both our cloud provider data and the primary NAS data somehow became encrypted or malicious could a snapshot alone with nothing else be used to replicate the entire 5TB of data for use by my client? Even if it took 1-2 days that’s OK I just want to know that I can restore 100% from a snapshot alone. Thanks!
You absolutely can restore a particular day and get all your data back. If you are referring to ransomware you can easily recover from that with this strategy.
You’ll want to understand the performance implications with snapshots too. Tom has a good video on snapshots on truenas but should apply to your synology.
Thanks Tom, I have seen it and I appreciate the link. I have probably seen every video in the past 3+ yrs lol . I just wanted to make sure I could restore from a snapshot with retention even if I had no access to the original (primary nas) at all and had to rely solely on the secondary nas.
Sounds like your question was resolved. Just want to point out (the obvious) that btrfs snapshots are just directories. You can always do a stealth backup of the snapshot by simply scp or rsync from a remote machine. This would leave very little trace of a second copy, let alone worrying about it being compromised.
