pve 백업 서버
조회 수
11
추천 수
0
mkdir -p /rpool/data/pve-backup
chmod 700 /rpool/data/pve-backup
백업 읽기 전용 계정 + rsync over SSH
/usr/sbin/useradd -m -d /home/pull -s /bin/bash pull
/usr/bin/passwd -l pull
PVE(root) — 계정 pull 생성 + rsync만 sudo 허용
cat >/etc/sudoers.d/pull-rsync <<'EOF'
pull ALL=(root) NOPASSWD: /usr/bin/rsync
EOF
chmod 440 /etc/sudoers.d/pull-rsync
PVE(root) — Mac 공개키 등록
install -d -m 700 -o pull -g pull /home/pull/.ssh
nano /home/pull/.ssh/authorized_keys
chown pull:pull /home/pull/.ssh/authorized_keys
chmod 600 /home/pull/.ssh/authorized_keys
Mac
mkdir -p ~/docker-dev/_files/pve-backup
cat > ~/pull.sh <<'EOF'
#!/bin/sh
mkdir -p "$HOME/docker-dev/_files/pve-backup"
exec /usr/bin/rsync -aH --numeric-ids --partial --delete -e /usr/bin/ssh --rsync-path="sudo -n rsync" pull@pve.elkha.kr:/rpool/data/pve-backup/ "$HOME/docker-dev/_files/pve-backup/"
EOF
chmod +x ~/pull.sh
#!/bin/sh
mkdir -p "$HOME/docker-dev/_files/pve-backup"
exec /usr/bin/rsync -aH --numeric-ids --partial --delete -e /usr/bin/ssh --rsync-path="sudo -n rsync" pull@pve.elkha.kr:/rpool/data/pve-backup/ "$HOME/docker-dev/_files/pve-backup/"
EOF
chmod +x ~/pull.sh
cat > ~/Library/LaunchAgents/pve.pull.plist <<'EOF'
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0"><dict>
<key>Label</key><string>pve.pull</string>
<key>ProgramArguments</key><array><string>/bin/sh</string><string>-lc</string><string>$HOME/pull.sh</string></array>
<key>StartCalendarInterval</key><dict><key>Hour</key><integer>6</integer><key>Minute</key><integer>0</integer></dict>
<key>StandardOutPath</key><string>$HOME/pve.pull.log</string>
<key>StandardErrorPath</key><string>$HOME/pve.pull.err</string>
</dict></plist>
EOF
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0"><dict>
<key>Label</key><string>pve.pull</string>
<key>ProgramArguments</key><array><string>/bin/sh</string><string>-lc</string><string>$HOME/pull.sh</string></array>
<key>StartCalendarInterval</key><dict><key>Hour</key><integer>6</integer><key>Minute</key><integer>0</integer></dict>
<key>StandardOutPath</key><string>$HOME/pve.pull.log</string>
<key>StandardErrorPath</key><string>$HOME/pve.pull.err</string>
</dict></plist>
EOF
# 등록 / 테스트
launchctl unload ~/Library/LaunchAgents/pve.pull.plist 2>/dev/null || true
launchctl load ~/Library/LaunchAgents/pve.pull.plist
launchctl start pve.pull
launchctl unload ~/Library/LaunchAgents/pve.pull.plist 2>/dev/null || true
launchctl load ~/Library/LaunchAgents/pve.pull.plist
launchctl start pve.pull
