ONTAP Discussions

Recover Netapp base config (aggrs, vols, SVMs, igroups, name spaces etc)

mip1

Hello All - We are looking to recover NetApp base config (aggrs, vols, SVMs, igroups, name spaces etc) without any user data.

 

Idea is that in cyber attack scenario where no disk data can be trusted (including any snap locked data), NetApp disks are wiped off, NetApp base config (without user data) is restored and then user data is restored from tapes using NDMP.

Reason for tape restore and not going for typical DR solution where whole config\data is replicated offsite is to have air gap between backup config\user data to ensure no penetration of malicious code in cyber attack scenario.

 

We have tried to restore NetApp cluster base config using config backup restore but it didn't yield the required results. Config restore didn't restore aggr\vol\smvs\igroups\name space etc. 

 

Has anyone done this before or got any idea about this?

 

 

1 ACCEPTED SOLUTION

AlexDawson

Hi there!

 

We have a config backup for ONTAP 8.3+ as detailed at https://docs.netapp.com/ontap-9/topic/com.netapp.doc.dot-cm-cmpr-950/TOC__system__configuration__backup.html?cp=4_2_25_2_0 - you should also review out "Statement of Volatility" for your platform at https://mysupport.netapp.com/info/web/ECMP1132988.html

 

With Snaplock operating in Compliance mode, data is very heavily protected - I suggest you have a review of https://www.netapp.com/us/media/tr-4526.pdf and https://link.springer.com/referenceworkentry/10.1007%2F978-1-4899-7993-3_305-3 and work with your NetApp team to help understand if your requirements are effort beyond that which is necessary.

 

Hope this helps!

View solution in original post

1 REPLY 1

AlexDawson

Hi there!

 

We have a config backup for ONTAP 8.3+ as detailed at https://docs.netapp.com/ontap-9/topic/com.netapp.doc.dot-cm-cmpr-950/TOC__system__configuration__backup.html?cp=4_2_25_2_0 - you should also review out "Statement of Volatility" for your platform at https://mysupport.netapp.com/info/web/ECMP1132988.html

 

With Snaplock operating in Compliance mode, data is very heavily protected - I suggest you have a review of https://www.netapp.com/us/media/tr-4526.pdf and https://link.springer.com/referenceworkentry/10.1007%2F978-1-4899-7993-3_305-3 and work with your NetApp team to help understand if your requirements are effort beyond that which is necessary.

 

Hope this helps!

View solution in original post

Announcements
NetApp on Discord Image

We're on Discord, are you?

Live Chat, Watch Parties, and More!

Explore Banner

Meet Explore, NetApp’s digital sales platform

Engage digitally throughout the sales process, from product discovery to configuration, and handle all your post-purchase needs.

NetApp Insights to Action
I2A Banner
Public