ONTAP Discussions

Recover Netapp base config (aggrs, vols, SVMs, igroups, name spaces etc)

mip1
1,603 Views

Hello All - We are looking to recover NetApp base config (aggrs, vols, SVMs, igroups, name spaces etc) without any user data.

 

Idea is that in cyber attack scenario where no disk data can be trusted (including any snap locked data), NetApp disks are wiped off, NetApp base config (without user data) is restored and then user data is restored from tapes using NDMP.

Reason for tape restore and not going for typical DR solution where whole config\data is replicated offsite is to have air gap between backup config\user data to ensure no penetration of malicious code in cyber attack scenario.

 

We have tried to restore NetApp cluster base config using config backup restore but it didn't yield the required results. Config restore didn't restore aggr\vol\smvs\igroups\name space etc. 

 

Has anyone done this before or got any idea about this?

 

 

1 ACCEPTED SOLUTION

AlexDawson
1,505 Views

Hi there!

 

We have a config backup for ONTAP 8.3+ as detailed at https://docs.netapp.com/ontap-9/topic/com.netapp.doc.dot-cm-cmpr-950/TOC__system__configuration__backup.html?cp=4_2_25_2_0 - you should also review out "Statement of Volatility" for your platform at https://mysupport.netapp.com/info/web/ECMP1132988.html

 

With Snaplock operating in Compliance mode, data is very heavily protected - I suggest you have a review of https://www.netapp.com/us/media/tr-4526.pdf and https://link.springer.com/referenceworkentry/10.1007%2F978-1-4899-7993-3_305-3 and work with your NetApp team to help understand if your requirements are effort beyond that which is necessary.

 

Hope this helps!

View solution in original post

1 REPLY 1

AlexDawson
1,506 Views

Hi there!

 

We have a config backup for ONTAP 8.3+ as detailed at https://docs.netapp.com/ontap-9/topic/com.netapp.doc.dot-cm-cmpr-950/TOC__system__configuration__backup.html?cp=4_2_25_2_0 - you should also review out "Statement of Volatility" for your platform at https://mysupport.netapp.com/info/web/ECMP1132988.html

 

With Snaplock operating in Compliance mode, data is very heavily protected - I suggest you have a review of https://www.netapp.com/us/media/tr-4526.pdf and https://link.springer.com/referenceworkentry/10.1007%2F978-1-4899-7993-3_305-3 and work with your NetApp team to help understand if your requirements are effort beyond that which is necessary.

 

Hope this helps!

Public