Using the scheduler

The scheduler should already be running in the cluster. If not, go back to installation.

Creating schedules

A snapshot schedule defines:

• A cron-like schedule for taking snapshots
• The set of PVCs that will be selected to snapshot
• The retention policy for the snapshots

Example schedule

Below is an example snapshot schedule to perform hourly snapshots:

---
apiVersion: snapscheduler.backube/v1
kind: SnapshotSchedule
metadata:
  # The name for this schedule. It is also used as a part
  # of the template for naming the snapshots.
  name: hourly
  # Schedules are namespaced objects
  namespace: myns
spec:
  # A LabelSelector to control which PVCs should be snapshotted
  claimSelector:  # optional
  # Set to true to make the schedule inactive
  disabled: false  # optional
  retention:
    # The length of time a given snapshot should be
    # retained, specified in hours. (168h = 1 week)
    expires: "168h"  # optional
    # The maximum number of snapshots per PVC to keep
    maxCount: 10  # optional
  # The cronspec (https://en.wikipedia.org/wiki/Cron#Overview)
  # that defines the schedule. It is interpreted with
  # respect to the UTC timezone. The following pre-defined
  # shortcuts are also supported: @hourly, @daily, @weekly,
  # @monthly, and @yearly
  schedule: "0 * * * *"
  snapshotTemplate:
    # A set of labels can be added to each
    # VolumeSnapshot object
    labels:  # optional
      mylabel: myvalue
    # The SnapshotClassName to use when creating the
    # snapshots. If omitted, the cluster default will
    # be used.
    snapshotClassName: ebs-csi  # optional

Schedule cronspec

The spec.schedule defines when snapshots are to be taken. This field follows the standard 5-tuple cronspec format. While the schedule shortcuts of @hourly, @daily, @weekly, @monthly, and @yearly are supported, they are not recommended due to the potential for many snapshots to be triggered simultaneously. A better approach would be to choose a unique time within the range to trigger the schedule. For example, @hourly is equivalent to 0 * * * *. This means that all schedules using @hourly would trigger at the same time, potentially causing excessive load on the cluster or storage system. A better approach would be to take snapshots at a randomly chosen time with the same frequency, such as 17 minutes after the hour: 17 * * * *. By choosing different offsets for schedules, the load can be spread throughout the hour frequency.

Dates and times specified in the cronspec are relative to the UTC timezone (i.e., a schedule of "0 5 * * *" will create a snapshot once per day at 5:00 AM UTC).

Snapshot retention

The spec.retention field permits specifying how long a snapshot should be retained. The retention can be specified either as a duration or as a maximum number of snapshots (per PVC) to keep. If both are specified, the snapshot will be deleted according to the more restrictive of the two. For example, the hourly schedule shown, above, will keep a maximum of 10 snapshots since that is more restrictive than 168 hours since new snapshots are taken hourly.

Selecting PVCs

The spec.claimSelector is an optional field can be used to limit which PVCs are snapshotted according to the schedule. This field is a metav1.LabelSelector. Please see the kubernetes documentation on label selectors for a full explanation.

The claim selector supports both the simple matchLabels as well as the newer set-based matching. For example, to use matchLabels, include the following:

spec:
  claimSelector:
    matchLabels:
      thislabel: that

Including the above in the schedule would limit the schedule to only PVCs that carry a label of thislabel: that in their metadata.labels list.

Viewing schedules

The existing schedules can be viewed by:

$ kubectl -n myns get snapshotschedules
NAME     SCHEDULE    MAX AGE   MAX NUM   DISABLED   NEXT SNAPSHOT
hourly   0 * * * *   168h      10                   2019-11-01T20:00:00Z

Snapshots

The snapshots that are created by a schedule are named by the following template: <pvc_name>-<schedule_name>-<snapshot_time>

The example, below, shows two snapshots of the PVC named data which were taken by the hourly schedule. The time of these two snapshots is visible in the YYYYMMDDHHMM format, UTC timezone.

$ kubectl -n myns get volumesnapshots
NAME                       AGE
data-hourly-201911011900   82m
data-hourly-201911012000   22m

Quotas & Limiting resource usage

Schedules that lack a retention policy can create a potentially unbounded number of snapshots. This has the potential to exhaust the underlying storage system or to overwhelm the Kubernetes etcd store with objects. To prevent this, it is suggested that ResourceQuotas be used to limit the total number of snapshots that can be created in a namespace.

Object count ouotas are the recommended way to limit Snapshot resources. For example, the following ResourceQuota object will limit the maximum number of snapshots in the specified namespace to 50:

apiVersion: v1
kind: ResourceQuota
metadata:
  name: snapshots
  namespace: default
spec:
  hard:
    count/volumesnapshots.snapshot.storage.k8s.io: "50"

Remember to leave sufficient headroom for old snapshots to be expired asynchronously as well as for other snapshot use-cases.