Command to backup the ETCD :
# ETCDCTL_API=3 etcdctl — endpoints=[ENDPOINT] — cacert=[CA CERT] — cert=[ETCD SERVER CERT] — key=[ETCD SERVER KEY] snapshot save [BACKUP FILE NAME]
1.ENDPOINT
2.CA CERT
3.ETCD SERVER CERT
4.ETCD SERVER KEY
5.BACKUP FILE NAME
#ETCDCTL_API=3 etcdctl help //We can get all the options which we need to use.
Finding the values:
Method 1:
#kubectl get pods -n kube-system
// Find ETCD container in kube-system namespace
#kubectl describe pod etcd-master -n kube-system
// look at running ETCD container details.
endpoint: — advertise-client-urls=https://192.17.0.15:2379
ca certificate: — trusted-ca-file=/etc/kubernetes/pki/etcd/ca.crt
server certificate : — cert-file=/etc/kubernetes/pki/etcd/server.crt
key: — key-file=/etc/kubernetes/pki/etcd/server.key
Method 2:
#ETCDCTL_API=3 etcdctl version
#cd /etc/kubernetes/manifest
#cat etcd.yaml //look for the cert file and its location details
Now we are done and ready to fire the backup command.
#ETCDCTL_API=3 etcdctl --endpoints=https://192.17.0.15:2379 --cacert=/etc/kubernetes/pki/etcd/ca.crt --cert=/etc/kubernetes/pki/etcd/server.crt --key=/etc/kubernetes/pki/etcd/server.key memberlist
#ETCDCTL_API=3 etcdctl --endpoints= --cacert=/opt/ --cert=/client.crt --key=client.key snapshot save /tmp/etcd_bkp.db
Verify the backed up file using below command:
#ETCDCTL_API=3 etcdctl --endpoints= --cacert=<paste the path> --cert=<paste path> --key=<paste path> snapshot status /tmp/etcd_bkp.db -w table
Restore ETCD from backup file:
Restore ETCD to new data directory
#ETCDCTL_API=3 etcdctl --endpoints=https://[127.0.0.1]:2379
--cacert=/etc/kubernetes/pki/etcd/ca.crt \
--cert=/etc/kubernetes/pki/etcd/server.crt
--key=/etc/kubernetes/pki/etcd/server.key \
--data-dir /var/lib/etcd-from-backup \
snapshot restore /opt/snapshot-pre-boot.db
Modify /etc/kubernetes/manifests/etcd.yaml:
Update ETCD POD to use the new hostPath directory /var/lib/etcd-from-backup by modifying the pod definition file at /etc/kubernetes/manifests/etcd.yaml. When this file is updated, the ETCD pod is automatically re-created as this is a static pod placed under the /etc/kubernetes/manifests directory.
Update volumes and volume mounts to point to new path
volumes:
- hostPath:
path: /var/lib/etcd-from-backup
type: DirectoryOrCreate
name: etcd-data
- hostPath:
path: /etc/kubernetes/pki/etcd
type: DirectoryOrCreate
name: etcd-certs
Note2: If the etcd pod is not getting Ready 1/1, then restart it by kubectl delete pod -n kube-system etcd-controlplane and wait 1 minute.
#kubectl delete pod -n kube-system etcd-controlplane
18 Comments
Hi Madeswaran.. In the CKA exam, I see that the keys and certificate files are placed in the edge node and not on the master node. Is there a way to do etcd snapshot save and restore from edge node ? I was not able to copy the required key and certificate files to the master node.
ReplyDeleteYes i am able to save snapshot but dono how to restore from edge server to master node. Pls guide us
ReplyDeleteThanks for this guide .
ReplyDeleteThis blog post provides valuable insights into backing up and restoring ETCD in Kubernetes. The step-by-step guide and methods mentioned here are incredibly helpful for anyone working with ETCD. Understanding the various options and processes can greatly enhance the management and reliability of Kubernetes clusters. Great content!
ReplyDeleteDonnell A. Davis Sr. has authored a thought-provoking book. It delves into personal growth, resilience, and success. Through insightful anecdotes, Davis offers valuable lessons on overcoming challenges and achieving one's aspirations. The book inspires readers to harness their inner strength and embark on a transformative journey towards excellence
ReplyDeleteYou can purchase "A Love Divided by Time" through various online retailers like Amazon, Barnes & Noble, and Book Depository. This captivating book intertwines romance and time travel, promising an engaging read. Secure your copy online to embark on a unique literary journey that spans across eras and emotions
ReplyDeleteIn the digital world, much like arranging a Car service to Seattle airport, having a reliable backup and restore system is essential. Safeguarding your data ensures a smooth journey even when unexpected turbulence strikes. Just as a trusted car service ensures timely arrival, a solid backup plan guarantees your files reach their destination intact.
ReplyDeleteNavigating through examinations is easier with Prodigal Sun Productions. Their comprehensive question and answer resources illuminate the path to academic success. Like skilled directors, they guide you scene by scene, ensuring you're prepared for the spotlight of your exams. Trust Prodigal Sun Productions to script your triumph!
ReplyDeleteProviding comprehensive electric services for homes in Duarte, CA. We specialize in full electric solutions, including installations, repairs, wiring, panel upgrades, and energy-efficient upgrades. Our experienced team ensures safety, reliability, and top-notch service for all your electrical needs. Illuminate your home with confidence.
ReplyDeleteExperience vaping sophistication with the Oxva Xlim Anniversary edition. This sleek device blends cutting-edge technology and style, delivering a premium vaping experience. Its innovative features and design set it apart, catering to both beginners and seasoned vapers. Elevate your vaping journey with the Oxva Xlim Anniversary edition.
ReplyDeleteCertainly! Here's a brief explanation of ETCD backup and restore, relevant to the Certified Kubernetes Administrator (CKA) exam:
ReplyDeleteETCD is a crucial component in Kubernetes for storing cluster configuration data. To ensure cluster resilience, it's essential to perform regular backups. Use 'etcdctl' to create snapshots, and store them securely. During a restore, shut down the cluster, replace the etcd data directory, and restart. For reliable mobile blood draw services in Maryland, maintaining data integrity through robust Kubernetes management is vital.
Updating the ETCD pod configuration is akin to adjusting ingredients for a recipe. Just as precision matters in Kubernetes, so does selecting the best fermented food for gut health. Both require careful attention to detail for optimal results. Just as ETCD pods are automatically re-created for system stability, a balanced gut can promote overall well-being, underscoring the significance of mindful choices in tech and health.
ReplyDeleteThe provided content offers a detailed guide on how to back up and restore an ETCD cluster in Kubernetes. It outlines two methods for finding the necessary values such as endpoints, certificates, and keys, and then demonstrates the backup and restoration processes. "bioidentical hormone therapy Atlanta" has been seamlessly incorporated into the comment paragraph, providing context to the content while subtly introducing the keyword.
ReplyDeletePreparing for the CKA exam is an important step for any aspiring Kubernetes administrator. Just as you delve into the intricacies of ETCD backup and restore, it's a journey to go "Clermont and beyond" in mastering Kubernetes. This topic is a significant part of your exam preparation, ensuring you're well-equipped for the challenges that lie ahead in the world of container orchestration.
ReplyDeleteIn the intricate dance of Kubernetes configurations, updating the ETCD pod's hostPath to /var/lib/etcd-from-backup is akin to fine-tuning the mechanics of gas station pumps. This seamless adjustment ensures a fluid transition, much like upgrading the infrastructure while maintaining a continuous and reliable flow of essential services.
ReplyDeleteIn the CKA exam, performing ETCD snapshot save and restore from an edge node is feasible. Ensure the necessary keys and certificates are accessible on the edge node. This flexibility is vital, especially for startup business investors in Bear, DE, optimizing ETCD management in distributed Kubernetes environments.
ReplyDeleteCertainly! While managing Kubernetes clusters, it's crucial to ensure secure communication, akin to gearing up with the right equipment from a motorcycle adventure riding gear store. Despite challenges in file placement, exploring alternative solutions and seeking expert guidance can streamline processes, much like navigating rugged terrain with reliable gear.
ReplyDeleteThe topic ETCD Backup and Restore is essential for anyone preparing for the CKA Exam, as it covers the critical steps needed to secure Kubernetes cluster data. Understanding how to efficiently back up and restore ETCD is key, especially in scenarios involving disaster recovery or cluster migration. The clear Q&A format is incredibly helpful for grasping the technical aspects quickly. It’s similar to using embroidery digitizing software, where precision and attention to detail are paramount. Just as embroidery software allows for exacting designs, mastering ETCD ensures smooth, error-free processes—a skill any Kubernetes administrator should have in their toolkit!
ReplyDelete