News
11/29/2012
11:36 AM
George Crump
George Crump
Commentary
Connect Directly
RSS
E-Mail
50%
50%

Managing The Multi-Vendor Backup

Backup management applications go a step beyond monitoring, but they remain limited. It's time to develop a framework-driven approach.

In recent columns I have covered the challenges of consolidating to a single backup application for the enterprise. In short, no single application can do it all, and the capabilities of application-specific backups are still too compelling. I've also discussed consolidating to the backup appliance, but this leaves gaps in monitoring and managing the mixed environment. There is software available to provide this management overview. In this column I'll discuss what to expect -- and what not to expect -- from these products.

There is a big difference between managing and monitoring. Monitoring basically lets you know that something is wrong, but to fix whatever went wrong means launching the offending application's GUI. Also, tasks like adding new clients, scheduling and performing restorations can't be done from the monitoring product. An application that manages the environment does more than simply let you know that something is wrong -- it also lets you fix the problem directly from the management application. This includes the ability to add new clients, change backup schedules and execute restores. A management application can eliminate the need for the backup administrator to be an expert at the various backup applications' interfaces.

[ Before you can assess a vendor's storage deduplication ability, you need to understand the process. Read about it at Measuring The State Of Primary Storage Deduplication. ]

There are several good monitoring applications available that can give you a dashboard that shows how your various backup applications are running. If you are running multiple enterprise backup applications, these programs can alert you to problems and errors. Some even provide a help desk workflow capability. But as I discussed in Managing The VMware Data Protection Problem, many of these monitoring solutions have largely ignored the VMware-specific backup products. This is particularly problematic because selecting a backup product for the virtualized environment is a key point of backup application splintering. A few companies are now closing this gap by providing monitoring intelligence across both enterprise applications and virtualization-specific backup products.

Applications that monitor backup are mature and provide a sense of control over the mixed backup application problem. They are also relatively cost-effective and easy to install. However, since most lack the ability to do anything beyond monitoring, specific changes need to be made through the application. That means that the backup administrator must learn each individual application's interface and terminology.

Management applications attempt to go a step further by actually interfacing with the backup application, either through a series of APIs or, more commonly, by controlling it through the command line. The problem with management applications is that they support a limited number of applications, and they exert a relatively low level of control over the applications. They also tend to be expensive. Few management applications can control all of an enterprise's backup applications, which explains why monitoring programs are more popular: they are more complete and more cost-effective.

In the webinar The Four Things That Are Breaking Enterprise Backup, I discussed the need for an alternative to current backup monitoring and managing products. These framework products would turn backup applications into service engines, allowing different products to share capabilities. For example, if the developer of an application-specific backup product wants to add tape support, they could get it from this framework instead of developing it themselves.

We're starting to see the beginnings of such framework-driven products now, from larger IT suppliers with multiple backup hardware and software products. The first step is to use these products to better integrate and leverage their backup investments. Over time, they could open up and allow other vendors to leverage these frameworks.

From SDN to network overlays, emerging technologies promise to reshape the data center for the age of virtualization. Also in the new, all-digital The Virtual Network issue of Network Computing: Open Compute rethinks server design. (Free registration required.)

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading, September 16, 2014
Malicious software is morphing to be more targeted, stealthy, and destructive. Are you prepared to stop it?
Flash Poll
Title Partner’s Role in Perimeter Security
Title Partner’s Role in Perimeter Security
Considering how prevalent third-party attacks are, we need to ask hard questions about how partners and suppliers are safeguarding systems and data.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-4973
Published: 2014-09-23
The ESET Personal Firewall NDIS filter (EpFwNdis.sys) driver in the Firewall Module Build 1183 (20140214) and earlier in ESET Smart Security and ESET Endpoint Security products 5.0 through 7.0 allows local users to gain privileges via a crafted argument to a 0x830020CC IOCTL call.

CVE-2014-5392
Published: 2014-09-23
XML External Entity (XXE) vulnerability in JobScheduler before 1.6.4246 and 7.x before 1.7.4241 allows remote attackers to cause a denial of service and read arbitrary files or directories via a request containing an XML external entity declaration in conjunction with an entity reference.

CVE-2014-6646
Published: 2014-09-23
The bellyhoodcom (aka com.tapatalk.bellyhoodcom) application 3.4.23 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CVE-2014-6647
Published: 2014-09-23
The ElForro.com (aka com.tapatalk.elforrocom) application 2.4.3.10 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CVE-2014-6648
Published: 2014-09-23
The iPhone4.TW (aka com.tapatalk.iPhone4TWforums) application 3.3.20 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Best of the Web
Dark Reading Radio