Connecting Compute Cloud VMs to Cloud Backup
To back up your Yandex Compute Cloud VM using Cloud Backup, you need to connect it to this service and set it up properly.
To connect your VM to Cloud Backup, make sure it has one of the supported operating systems installed. For more information on connecting VMs, see this guide.
For the connection to work properly, assign a service account with the backup.editor
role to your VM and configure network access for the VM.
After connecting to Cloud Backup, add the VM to the backup policy.
VM configuration requirements
A VM's minimum configuration required to install and correctly run the Cloud Backup agent is as follows:
- Free disk space:
- For Linux-based VMs: 2 GB.
- For Windows-based VMs: 1.2 GB.
- RAM: For backups, 1 GB of RAM is required per TB of a backup. The amount of RAM used depends on the volume and type of data being handled by the agent.
Supported operating systems
You can automatically install the Cloud Backup agent when creating a VM from Yandex Cloud Marketplace images:
Linux-based images
Windows-based images
- Kosmos VM 2022 based on Windows Server 2022 Datacenter
- Kosmos VM 2019 based on Windows Server 2019 Datacenter
- Kosmos VM 2016 on Windows Server 2016 Datacenter
- Kosmos VM RDS (5 licenses)
- Kosmos VM RDS (10 licenses)
- Kosmos VM RDS (50 licenses)
- Kosmos BD WEB 2019
- Kosmos BD Standard 2019
- Kosmos VM Visio Pro 2021
Note
Install Ubuntu or CentOS from a public image (a Yandex Cloud Marketplace product). When creating a VM, you can select the OS directly or use an image or disk snapshot from a different VM if its OS was also installed from a public image.
Installing the agent on your own
You can install the Cloud Backup agent yourself:
For a complete list of supported operating systems, see the backup provider documentation
If you have issues while installing the agent, contact
Going forward, Cloud Backup will support Ubuntu 22.04.
Service accounts
Service account is a special account on behalf of which VM backups are created and uploaded to a Cloud Backup storage.
When you create a VM for which you want to set up backups in Cloud Backup, you need to link to it a service account with the backup.editor
role.
You can assign the role to an existing service account or create a service account with relevant roles.
VM network access permissions
For the Cloud Backup agent to exchange data with the backup provider servers, make sure the VM is granted network access to the IP addresses of Cloud Backup resources based on the following table:
Port range | Protocol | Destination name | CIDR blocks |
---|---|---|---|
80 |
TCP |
CIDR |
213.180.193.0/24 |
80 |
TCP |
CIDR |
213.180.204.0/24 |
443 |
TCP |
CIDR |
84.47.172.0/24 |
443 |
TCP |
CIDR |
84.201.181.0/24 |
443 |
TCP |
CIDR |
178.176.128.0/24 |
443 |
TCP |
CIDR |
213.180.193.0/24 |
443 |
TCP |
CIDR |
213.180.204.0/24 |
7770-7800 |
TCP |
CIDR |
84.47.172.0/24 |
8443 |
TCP |
CIDR |
84.47.172.0/24 |
44445 |
TCP |
CIDR |
51.250.1.0/24 |
To provide network access, assign the VM a public IP or use a route table that allows internet access via a NAT gateway or a custom router.
The VM's security group rules must allow access to the specified resources. You can add the rules to an existing security group or create a new group with the rules.