Networker
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Networker] backup of nas shares...

2008-01-10 14:34:32
Subject: Re: [Networker] backup of nas shares...
From: Matthew Huff <mhuff AT OX DOT COM>
To: NETWORKER AT LISTSERV.TEMPLE DOT EDU
Date: Thu, 10 Jan 2008 14:31:02 -0500 
There are two issues that I know of that people have run into in the
backup and restore using NFS/CIFS from a client:

1) Devices like NetApp support both NFS & Cifs. The qtrees may have
authorization acls stored either in NFS or CIFS format, or both. Backing
the device up via a NFS client might cause it to loose the Windows ACLS,
and vice versa.

2) The client itself has to have the right permissions, which has two
problems. One is maintaining that account and making sure it has the
permisiones to backup the files including in NFS/CIFS mixed ACL
evironment can be challenging, secondly having the machine mount the NAS
device with that type of privs opens up huge security holes that a
HIPPA/SOX auditor would love to whack you over the head with.




----
Matthew Huff       | One Manhattanville Rd
OTA Management LLC | Purchase, NY 10577
www.otaotr.com     | Phone: 914-460-4039
aim: matthewbhuff  | Fax:   914-460-4139

-----Original Message-----
From: EMC NetWorker discussion [mailto:NETWORKER AT LISTSERV.TEMPLE DOT EDU] On
Behalf Of A Darren Dunham
Sent: Thursday, January 10, 2008 2:21 PM
To: NETWORKER AT LISTSERV.TEMPLE DOT EDU
Subject: Re: [Networker] backup of nas shares...

On Thu, Jan 10, 2008 at 12:49:04PM -0500, Matthew Huff wrote:
> Yes, mounting the share to a server is the only way, but it has issues
> such as performance, permissions and acl restores.

I don't recall issues with permissions/ACLs.  But I do dislike it purely
from a data tracking issue.  If you think about your data in terms of
the nas server, you'll have to track the bakcups in terms of the backup
client that mounts it instead.

-- 
Darren Dunham                                           ddunham AT taos DOT com
Senior Technical Consultant         TAOS            http://www.taos.com/
Got some Dr Pepper?                           San Francisco, CA bay area
         < This line left intentionally blank to confuse you. >

To sign off this list, send email to listserv AT listserv.temple DOT edu and
type "signoff networker" in the body of the email. Please write to
networker-request AT listserv.temple DOT edu if you have any problems with this
list. You can access the archives at
http://listserv.temple.edu/archives/networker.html or
via RSS at http://listserv.temple.edu/cgi-bin/wa?RSS&L=NETWORKER

To sign off this list, send email to listserv AT listserv.temple DOT edu and 
type "signoff networker" in the body of the email. Please write to 
networker-request AT listserv.temple DOT edu if you have any problems with this 
list. You can access the archives at 
http://listserv.temple.edu/archives/networker.html or
via RSS at http://listserv.temple.edu/cgi-bin/wa?RSS&L=NETWORKER
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Networker] backup of nas shares..., A Darren Dunham
Next by Date:  Re: [Networker] backup of nas shares..., A Darren Dunham
Previous by Thread:  Re: [Networker] backup of nas shares..., A Darren Dunham
Next by Thread:  Re: [Networker] backup of nas shares..., A Darren Dunham
Indexes:  [Date] [Thread] [Top] [All Lists]