Recommended backup policy — Full backup every week, incremental backup every day.
Alternative solutions
A set of tools to perform HA PostgreSQL with fail and switchover, automated backups.
Aidbox
Create ConfigMap with all required config and database connection
This ConfigMap example uses our default Aidbox Configuration Project Template. It's recommended to clone this template and bind your Aidbox installation with it.
When Aidbox starts for the first time, resolving all the dependencies takes longer. If you encounter startupProbe failure, you might want to consider increasing the initialDelaySeconds and failureThreshold under the startupProbe spec in the config above.
To verify that Aidbox started correctly you can check the logs:
- set of continuous and progressive delivery solutions for Kubernetes
Aidbox supports all popular managed Postgresql databases. Supported versions - 13 and higher. See more details in this article — .
For a self-managed solution, we recommend using the . This image contains all required extensions, backup tools, and pre-build replication support. Read more information in the documentation — .
To streamline the deployment process, our DevOps engineers have prepared that you may find helpful.
For backups and WAL archiving we recommend a cloud-native solution . Full information about its configuration and usage is on this .
— WAL-G can store backups in S3, Google Cloud Storage, Azure, or a local file system.
— A Template for PostgreSQL HA with ZooKeeper, ETCD or Consul.
— The Postgres Operator delivers an easy-to-run HA PostgreSQL clusters on Kubernetes.
First, you must get an Aidbox license on the .
You might want to use the prepared by our DevOps engineers to make the deployment experience smoother.
All additional information about HA Aidbox configuration can be found in this article — .
A Cluster must have an Installed.
Our recommendation is to use the . As an alternative, you can use .
More additional information about Ingress in k8s can be found in this documentation —
Ingress-nginx — is an Ingress controller for Kubernetes using as a reverse proxy and load balancer.
To provide a secure HTTPS connection you can use paid SSL certificates, issued for your domain, or use LetsEncrypt-issued certificates. In the case of using LetsEcrypt, we recommend Operator
General logging & audit information can be found in this article —
ElasticSearch —
Loki —
DataDog —
You can install ECK using the
For monitoring our recommendation is to use the
— High-Performance Open Source Time Series Database.
— highly available Prometheus setup with long-term storage capabilities.
— highly available, multi-tenant, long-term storage for Prometheus.
Aidbox metrics has integration with Grafana, which can generate dashboards and upload them to Grafana —
— Prometheus exporter for hardware and OS metrics exposed by *NIX kernels
— is a simple service that listens to the Kubernetes API server and generates metrics about the state of the objects
— container usage metrics
— Prometheus exporter for PostgreSQL server metrics
allow you to define alert conditions based on Prometheus expression language expressions and to send notifications about firing alerts to an external service.
All other integrations you can find on the
— Kubernetes-native security toolkit.
— UI extension for Lens which provides visibility into Trivy reports