Critique my backup system please.

[fishingfromakay]

Hello all. I have recently ran into some hard drive and backup issues but they have been resolved. In an effort to be better prepared for the future I am trying to improve my Backup system and this is what I am thinking.
Have all 3 of my computers use the Apple Time Capsule and once a month copy files/folders to an individual external hard drive for each computer. Does this sound reasonable ? With 3 computers I am trying to avoid the monthly fees of cloud storage if possible.
Thank you for any help/suggestions/comments.

 

[elvisimprsntr]

@fishingfromakay

The key to any backup strategy is automation and implementing a 3-2-1 backup strategy. Anything that requires manual intervention should be avoided, e.g. manually connect up an external drive and copy files.

Most, if not all, NAS appliances support TM or you can DIY your own NAS with enterprise class open source NAS software from https://www.truenas.com Keep in mind RAID is not a backup, RAID is resiliency. Also, never expose any NAS directly to the internet unless you want to be hit with ransomware.

3-2-1 is:
3 - copies (original, plus 2 copies)
2 - different type of backup media
1 - offsite

3-2-1 backup strategy explained: Is it effective?| Definition from TechTarget

This definition explains the 3-2-1 backup strategy, a methodology for backing up and recovering data, and its three steps, applications and shortcomings.

www.techtarget.com

I use Google Drive 15GB free tier for financial, legal, and mission critical files only. TrueNAS has built in support for any number of cloud storage providers, and will encrypt the data in transit and at rest.

 

[Mr_Brightside_@]

https://www.backblaze.com/backup-pricing.html $70/year/machine, could be worth it

 

[glenthompson]

I would use SuperDuper or CCC to copy data to external drives. Gives a different method over Time Machine. If one of the machines is a desktop that can stay on all the time you could hang a big drive off it and share that drive so the other computers could backup to it. Then get one BackBlaze account to backup that machine offsite. That only works if there isn't an issue sharing storage space - privacy concerns, etc.

 

[KaliYoni]

help/suggestions/comments

I maintain backups using Time Machine and Carbon Copy Cloner. The Time Machine drive is always connected. The CCC drive is disconnected most of the time. I do a CCC backup about once a week or before installing an OS update.

I do this for redundancy and to increase the chances of having a clean version of my entire setup in the event of a catastrophic failure or a security breach.

More discussion:

https://forums.macrumors.com/threads/now-that-the-m1-imac-does-not-allow-booting-from-a-clone-is-there-any-advantage-of-ccc.2306894/post-30156566

 

[NoBoMac]

Sounds good to me, as that is kinda what I'm doing.

• Two Time Machine drives that I swap every two weeks
• First of the month, I make a zip of the critical files, encrypt that, upload to three of my cloud accounts
• Once a week, manual copy of most of my home folder to an external drive
• Once a quarter, Applescript that calls rsync command to sync master libraries to copies on external drives (eg. photos, music, podcasts). Also export copies of photos added to the library over past quarter and upload those to my Amazon Drive account.

 

[gilby101]

• Two Time Machine drives that I swap every two weeks
• First of the month, I make a zip of the critical files, encrypt that, upload to three of my cloud accounts
• Once a week, manual copy of most of my home folder to an external drive
• Once a quarter, Applescript that calls rsync command to sync master libraries to copies on external drives (eg. photos, music, podcasts). Also export copies of photos added to the library over past quarter and upload those to my Amazon Drive account.

Glad that works for you. Far too much manual intervention. I prefer:

• Time Machine to external HDD, once per hour.
• Arq backup (daily) to OneDrive cloud storage (but can use many others).

Setup once and it runs for ever - just keep any eye it.

Have all 3 of my computers use the Apple Time Capsule and once a month copy files/folders to an individual external hard drive for each computer. Does this sound reasonable ? With 3 computers I am trying to avoid the monthly fees of cloud storage if possible.

Comments:

• The Time Capsule really is end of life - be prepared for it to die. Replacement can be large HDD attached to an "always on" Mac or a NAS.
• Avoid manual intervention (your once a month activity).
• What are you doing about major disaster (fire, theft, lightning, etc.)?
• OneDrive comes with Office 365 so no incremental cost. And anyway $100 pa is well worth the peace of mind whatever cloud storage you use.

 

[Boyd01]

The Time Capsule really is end of life - be prepared for it to die.

Agreed. I also have a 2tb Time Capsule but no longer use it for backups, just use it as an 802.11ac access point. Twice over the years, I got an error message from the Time Capsule saying it failed an integrity check and I needed to erase it and start all over. That encouraged me to move to a more robust backup strategy. I re-purposed my 2012 quad Mini as a file and time machine server with 20tb of external disks. It continuously backs up my primary Mac.

With 3 computers I am trying to avoid the monthly fees of cloud storage if possible.

For me, this is unavoidable. I have Backblaze continuously backing up three computers - my primary Mac, the fileserver and a media server. What if your house burns down while you're away? Your computers and all your backups would be gone. You could adopt a plan of storing backups offsite but that takes a lot of discipline and even in the best case you would probably lose a few days or even weeks.

One thing that is working very well for me, I replaced my Windows PC with a virtual machine on my Mac. The VM itself contains almost none of my user files, I save everything to my Mac disks where it gets backed up constantly with Time Machine and Backblaze.

Finally, I use Carbon Copy to regularly clone my primary disks to a pair of external SSD's. This would get me up and running quickly in the event of a failure. The media server clones its 4tb SSD to an external hard disk late every night and I periodically rotate the backup disks. I would not want to just "drag and drop" files to an external disk for backups.

 

[satcomer]

You should only use Cloud backups if you live in Flood area near a river or a lake (with all the rain lately the Finder Lake were up an average 4 inches so far this year! If I lived there on I would be worried today!

 

[fishingfromakay]

Wow @elvisimprsntr @Mr_Brightside_@ @glenthompson @KaliYoni @NoBoMac @gilby101 @Boyd01 @satcomer Thank you ALL for the great info,,,lots to digest here for me ( this is a good thing ) gonna take me a little time to look into the cloud services and such and make my plan for going forward. I didn't give any thoughts to things like house fire and that the Time Capsule is getting near the end of its life. Thank you all for your time and effort

 

[Saturn007]

The Time Capsule really is end of life - be prepared for it to die. Replacement can be large HDD attached to an "always on" Mac or a NAS.

What do you suggest for an “NAS” set up?

I use a vintage Time Capsule — works like a charm; regularly back up to several external drives via CCC — easy to do; and use iCloud backup for writing project files that I would hate to lose. I'm one of those who doesn't trust personal financial information to a third party company, so that's out.

But I have read about TC failures and would like to get specific recommendations on what to replace it with — make, model, device, capacity (one Mac has an internal 1 TB drive — so I would have automatic backups.

Given my TC is also a router, I'd appreciate any suggestions for a replacement for that, too.

What I’d probably do is use both TC and a “replacement” NAS in tandem.

 

[elvisimprsntr]

@Saturn007

My kit is as follows:

1. Open source enterprise class firewall from https://www.pfsense.org on an dedicated appliance from https://protectli.com
2. Open source enterprise class NAS software from https://www.truenas.com on 3 Intel based QNAP NAS
3. A pair of enterprise class Engenius EWS377APv3 APs with a wired backhaul

 

[KaliYoni]

What do you suggest for an “NAS” set up?

In case you haven't seen (TidBITS is a Mac troubleshooting and advice site that the owner of MacInTouch, a long running troubleshooting site, sent his online community to when he changed MacInTouch into a blog):

"For a few years now, I’ve been wanting to move more of my data out of the cloud and onto my own local storage. I needed a better solution for local storage for this effort because my old system consisted of multiple external hard drives attached to my iMac, which was messy and made it hard to access files from other devices."

Using a Synology NAS to Escape the Cloud - TidBITS

In an effort to create a centralized but local place to store all his data, Josh Centers bought a Synology DS 920+. So far, the investment has been worth it for him, but it may be more expense and trouble than it’s worth for you.

tidbits.com

 

[bradl]

@fishingfromakay

The key to any backup strategy is automation and implementing a 3-2-1 backup strategy. Anything that requires manual intervention should be avoided, e.g. manually connect up an external drive and copy files.

Most, if not all, NAS appliances support TM or you can DIY your own NAS with enterprise class open source NAS software from https://www.truenas.com Keep in mind RAID is not a backup, RAID is resiliency. Also, never expose any NAS directly to the internet unless you want to be hit with ransomware.

3-2-1 is:
3 - copies (original, plus 2 copies)
2 - different type of backup media
1 - offsite

3-2-1 backup strategy explained: Is it effective?| Definition from TechTarget

This definition explains the 3-2-1 backup strategy, a methodology for backing up and recovering data, and its three steps, applications and shortcomings.

www.techtarget.com

I use Google Drive 15GB free tier for financial, legal, and mission critical files only. TrueNAS has built in support for any number of cloud storage providers, and will encrypt the data in transit and at rest.

This is a good solid solution right here. I am doing something similar:

• 2 Macs, each with their own separate external disk for TM backups. Those go offsite.
• Each Mac is also backed up to my NAS, via TM.
• My NAS (Synology DS213J) is backed up to two separate drives via HyperBackup; one of those drives also goes offsite.

Yes, it may sound redundant, but that is the idea. The key is to have redundancy in case of any catastrophe. That redundancy could be anything as simple as a disk failure to something as complex as fire or flood or any disaster that takes out your house or wherever the hardware resides. In my case, if I lost my house (read: onsite), including my NAS and Macs, after purchasing new hardware, I could recover my data from those disks that are offsite. Doubly so for my NAS; if I recover that, then by extension I would also recover the latest TM backups of my Macs in addition to any other data I have.

So I get resiliency from my NAS without relying on RAID as being my redundancy, multiple targets for my backups which become multiple sources for my restore, plus gives me more avenues to not only cover my bases in case a disk used for backups fail, but also to test my backup processes.

One last thing on this: taking a backup is not the be all/end all here. You are never as secure in your backup strategy as your latest RESTORE. You can take as many backups as you want; but all of them are useless unless you can restore from them. If your restore fails, then all of your backups are wasted space. So you have to test those by restoring every so often. For me, every time a major MacOS release comes out, I wait until the full installer is available, take one last backup onto an external disk and/or my NAS, blow my Mac away, install using the full installer on a USB stick, and either use the NAS or that external disk as my source for a TM restore or restore through Migration Assistant. If that works, then my backup strategy is sound. Everyone backing up their data needs to think of similar.

In case you haven't seen (TidBITS is a Mac troubleshooting and advice site that the owner of MacInTouch, a long running troubleshooting site, sent his online community to when he changed MacInTouch into a blog):

"For a few years now, I’ve been wanting to move more of my data out of the cloud and onto my own local storage. I needed a better solution for local storage for this effort because my old system consisted of multiple external hard drives attached to my iMac, which was messy and made it hard to access files from other devices."

Using a Synology NAS to Escape the Cloud - TidBITS

In an effort to create a centralized but local place to store all his data, Josh Centers bought a Synology DS 920+. So far, the investment has been worth it for him, but it may be more expense and trouble than it’s worth for you.

tidbits.com

This is the exact reason why I went with a NAS instead of anything Cloud based. First comes the potential legal issues that come with storing any data in the Cloud. Second, one has to weigh the options of sensitivity of the data being stored versus the convenience of having access to that data. Most people don't think it's a problem, but again most don't realize how much data they store in cloud-based services: PCI (credit card) data, PHI (Personal health) data, PII (personal identifiable) data, etc. If those are stored on your Mac or PC, and you back that up to the cloud, that data is in the cloud; any breach at that cloud service exposes that data. This is why people have been up in arms about passwords being exposed and using cloud-based SaaS providers like Dashlane, LastPass, etc., which both have had breaches.

And I won't even get into the issue of being protected against searches and seizures of your data at those cloud providers, as I've already brought that up in many a thread (the TLDR: you don't have any protected rights against it).

Because of that, I bought my own NAS (I got tired of building servers to do it), don't have it exposed publicly, and use the cloud services on that to have data copied between any Macs or PCs that connect to it.

BL.

 

[srgz]

I really do not like Time Machine anymore, since Apple made it way less useful and no longer allows TM restores from MacOS installer / Recovery mode boot -- you have to re-install Mac OS and then run Migration Assistant, and restore your TM snapshot using Migration Assistant, which takes 2-3 times longer than the way it used to be.

I've also found that some things don't get restored properly either (kext files, etc)!

If there's one thing I miss about Windows it's being able to make bootable clones of your boot volume quickly and easily.

 

[Analog Kid]

If you want to store offsite but don't want to invest in a cloud account, another option is to just keep a backup drive in a safe deposit box, or an encrypted copy of the drive at your workplace. You don't need to update it that frequently-- the offsite copy is really mostly there for catastrophic events like house fires. If your house burns to the ground, the fact you data is a whole month old isn't high on the list of losses.

 

[dizmonk]

I've decided to keep it simple. Two external drives for TM and Backblaze for off-site.

 

[bradl]

I really do not like Time Machine anymore, since Apple made it way less useful and no longer allows TM restores from MacOS installer / Recovery mode boot -- you have to re-install Mac OS and then run Migration Assistant, and restore your TM snapshot using Migration Assistant, which takes 2-3 times longer than the way it used to be.

I've also found that some things don't get restored properly either (kext files, etc)!

If there's one thing I miss about Windows it's being able to make bootable clones of your boot volume quickly and easily.

Carbon Copy Cloner or SuperDuper should be able to get you what you are looking for on a Mac. Now, I'm not sure how up to date they are (read: M1/Silicon), but they definitely work for Intel Macs.

BL.

 

[Boyd01]

If there's one thing I miss about Windows it's being able to make bootable clones of your boot volume quickly and easily.

Carbon Copy Cloner or SuperDuper should be able to get you what you are looking for on a Mac.

It's not so easy anymore with Carbon Copy if you are running a newer version of MacOS...

"Copying Apple's system is now an Apple-proprietary endeavor; we can only offer "best effort" support for making an external bootable device on macOS Big Sur (and later OSes). We present this functionality in support of making ad hoc bootable copies of the system that you will use immediately (e.g. when migrating to a different disk, or for testing purposes), but we do not support nor recommend making bootable copies of the system as part of a backup strategy."

Creating legacy bootable copies of macOS (Big Sur and later) | Bombich Software

bombich.com

 

[Kaikidan]

This is my solution for backups/NAS:

Lenovo M70q running ubuntu server 20.04 LTS running those disks:

- 4tb (unninportant media files)
- 1Tb (audio)
- 2Tb NAS
- 2Tb Backup of NAS
- 500gb Time machine (running via avahi net something something to be seen as a time machine network drive)

I know that this setup ins't perfect but it's doable until I purchase new HDDs for a proper setup, for now:

- All the random media files that I can afford to lose get dumped on the 4tb disk (I had 2 other 4tb disks fails me in the past already, so this one is the dump)
- My "NAS" with nextcloud/samba uses the 2tb disk which also houses the weekly system backup in case of failure, this disk is rsynced daily to another 2tb disk.
- Time machine for now uses a old 500gb disk that I will upgrade to the 1tb currently used for music as soon as I upgrade that one. (also since my currently music collection is less than 300gb it gets rsynced to the NAS disk weekly

Didn't go with RAID because the system didn't wanted to for some reason , after too much trouble I decided to just rsync things, also with that I can keep backup disks offline and only mount then for the backups if necessary and have a 24h window to recover acidentaly deleted files. also "real" offsite backup is not much of a worry for me here so I can afford to go without it for now. and most important stuff (system, documents, music) are backed up in 2 or 3 disks (like music and system disk -> NAS copy -> Backup disk) and the really really important files goes to icloud too as a kind of "offsite" for the extremelly necessary.

 

[bradl]

This is my solution for backups/NAS:

Lenovo M70q running ubuntu server 20.04 LTS running those disks:

- 4tb (unninportant media files)
- 1Tb (audio)
- 2Tb NAS
- 2Tb Backup of NAS
- 500gb Time machine (running via avahi net something something to be seen as a time machine network drive)

I know that this setup ins't perfect but it's doable until I purchase new HDDs for a proper setup, for now:

- All the random media files that I can afford to lose get dumped on the 4tb disk (I had 2 other 4tb disks fails me in the past already, so this one is the dump)
- My "NAS" with nextcloud/samba uses the 2tb disk which also houses the weekly system backup in case of failure, this disk is rsynced daily to another 2tb disk.
- Time machine for now uses a old 500gb disk that I will upgrade to the 1tb currently used for music as soon as I upgrade that one. (also since my currently music collection is less than 300gb it gets rsynced to the NAS disk weekly

Didn't go with RAID because the system didn't wanted to for some reason , after too much trouble I decided to just rsync things, also with that I can keep backup disks offline and only mount then for the backups if necessary and have a 24h window to recover acidentaly deleted files. also "real" offsite backup is not much of a worry for me here so I can afford to go without it for now. and most important stuff (system, documents, music) are backed up in 2 or 3 disks (like music and system disk -> NAS copy -> Backup disk) and the really really important files goes to icloud too as a kind of "offsite" for the extremelly necessary.

Funny.. you've done what I finally got tired of doing!

I've been a Linux sysadmin since 1993, so I'm used to rolling my own desktops and servers. There was a time where I maintained a Linux box for all of my personal activities (mail, news, browsing, chat, etc.), and a separate windows machine for MS Office, and any gaming I wanted to do (flightsim, the occasional DOOM/Duke Nukem, etc.). I simply got tired of having to maintain everything, including patches, kernel compiles, managing CIFS/SMB, NFS, the entire lot, which is why I went back to Macs and dropped my Linux box. with doing this professionally for almost 30 years, I was getting tired of doing this personally as well. As Synology handles everything that I would normally do, I went that route, since in all honesty, everything Synology has is running on ARM Linux.

Your solution definitely works, and there's no complaints on that. I just got tired of handling all of it myself.

BL.

 

[Kaikidan]

Funny.. you've done what I finally got tired of doing!

I've been a Linux sysadmin since 1993, so I'm used to rolling my own desktops and servers. There was a time where I maintained a Linux box for all of my personal activities (mail, news, browsing, chat, etc.), and a separate windows machine for MS Office, and any gaming I wanted to do (flightsim, the occasional DOOM/Duke Nukem, etc.). I simply got tired of having to maintain everything, including patches, kernel compiles, managing CIFS/SMB, NFS, the entire lot, which is why I went back to Macs and dropped my Linux box. with doing this professionally for almost 30 years, I was getting tired of doing this personally as well. As Synology handles everything that I would normally do, I went that route, since in all honesty, everything Synology has is running on ARM Linux.

Your solution definitely works, and there's no complaints on that. I just got tired of handling all of it myself.

BL.

Yeah, ubuntu is pretty nice...Until it somehow breaks and now you spend the weekend fixing it XD. At some point I wanted a NAS but a synology is pretty expensive here, the lenovo was half the price and has the added bonus of the nice 11gen intel who works pretty nice with plex server on linux, A Synology would be pretty underpowered for a plex server in my case.

Eventually I still want to purchase a pure NAS enclosure for internal network shares and point the server to it when it needs to retrieve files for plex, downloads, etc... since my samba share on the ubuntu server for some reason only goes up to 20mb/s even having a 1gbps router and 700mb of internet connected via cable on the mac and the server. Having a proper NAS doing what a NAS do better and a server doing what a server do better instead of a jack of all trades approach would be nice.

 

[bradl]

Yeah, ubuntu is pretty nice...Until it somehow breaks and now you spend the weekend fixing it XD. At some point I wanted a NAS but a synology is pretty expensive here, the lenovo was half the price and has the added bonus of the nice 11gen intel who works pretty nice with plex server on linux, A Synology would be pretty underpowered for a plex server in my case.

Eventually I still want to purchase a pure NAS enclosure for internal network shares and point the server to it when it needs to retrieve files for plex, downloads, etc... since my samba share on the ubuntu server for some reason only goes up to 20mb/s even having a 1gbps router and 700mb of internet connected via cable on the mac and the server. Having a proper NAS doing what a NAS do better and a server doing what a server do better instead of a jack of all trades approach would be nice.

You may want to look into FreeNAS or TrueNAS to see if it offers better support for you. You can still roll your own hardware with it, but may be able to provide more than the 20Mb/s that Samba is giving you. That may be a limitation in how Ubuntu is implementing SMBFS/CIFS, as I haven't seen that slow of a throughput when I was running it for personal use (Slackware is my distro of personal choice). FreeNAS is running off of FreeBSD, so it may be implemented much better there, especially with FreeBSD's focus on security.

Something to think about if you're not ready to purchase anything Synology yet.

BL.

 

[Saturn007]

Ouch! My head hurts reading all the acronyms, tech jargon, etc. ?

Is there an simple off-the-shelf buy X and run Time Machine or some other app simple solution?

 

[Boyd01]

1. Buy an external USB disk about twice the size of your Mac's internal storage. Set Time Machine to automatically backup.

2. Buy another external disk at least as large as internal storage. Download and run Carbon Copy Cloner frequently (can also be set to automatic if desired).

3. Subscribe to a cloud backup service such as BackBlaze. Install software and set to run automatically.

For items one and two, you could either use a SSD (fast but expensive) or a hard disk (slow but cheap). For additional redundancy, use two disks for each and store one set offsite.