TrueNAS Open Storage Logo
TrueNAS.com Products Enterprise Support Community Support Truenas Security Get TrueNAS Enterprise Download TrueNAS Community Edition About TrueNAS Careers
TrueNAS Open Storage Logo
F-Series
F-Series

All-Flash NVMe Performance.

H-Series
H-Series

Big business performance. Entry level pricing.

Mini Series
Mini Series

Home Labs, Small Office & SMB Applications.

M-Series
M-Series

All-Flash or Hybrid Enterprise Performance.

R-Series
R-Series

Single Controller Storage Appliances.

TrueNAS Enterprise Icon
TrueNAS Enterprise

Mission Critical Storage. 24×7 Enterprise Support.

TrueCommand Icon
TrueCommand

Manage Your TrueNAS Fleet All From One Place.

Use Cases

Analytics Backup & Archival Cloud Data Mobility File Sharing
iX-Storj Media & Entertainment Surveillance Veeam Backup Virtualization

Industry

Audio Broadcasting Gaming Healthcare Manufacturing Media & Entertainment
Automotive Education Government MSP Research & AI

Support

Enterprise Support

For customers with active support contracts.

Community Support

For peer-to-peer, open-source support.

Resources

Case Studies Documentation Apps TrueNAS Security FAQ ZFS Overview
TrueNAS Blog Solution Guides Datasheets Software Status Videos TrueCommand Cloud
TrueNAS Community Edition Community Forum Discord TrueNAS GitHub TrueNAS Merch Store
About TrueNAS Awards Careers Contact Us Our Clients Reviews
Contact Icon
Contact an Enterprise Specialist

Speak with an enterprise storage specialist to find the right solutions for your business needs.

TrueNAS Enterprise Icon
TrueNAS Enterprise

Enterprise-grade storage appliances designed for business and mission-critical environments.

TrueNAS Community Edition Icon
Download TrueNAS Community Edition

Test Drive TrueNAS in Your Environment.

  1. Documentation Hub
  2. /
  3. Solutions
  4. /
  5. Integrations
  6. /
  7. Veeam Immutability
Edit page

Veeam Immutability

  5 minute read.

TrueNAS Enterprise systems can act as S3-compatible object storage for Veeam Backup & Replication Immutability.

Immutability is a feature of Veeam Backup & Replication. When configured with storage solutions such as TrueNAS, it prevents modifying or deleting data for a specified period of time. Set the the immutability period based on your needs. After this period expires, backed up data can be modified or deleted again.

The immutability feature increases data security, protects data from losses incurred through malware, attacks, or other harmful actions by bad actors, and can protect configuration backups. Veeam makes this feature available to work with a number of storage options such as S3 or S3-compatible object repositories.

How does Veeam Immutability work?

Veeam protects a backup chain and all the restore points of this chain for the specified immutability period. The immutability period is the number of days you have to respond to malicious actions. During this period you can roll back to the earlier state of your backup chain. Rolling back requires running Veeam PowerShell. See Rolling Back Immutable Data for more information.

For more detailed information on Veeam Immutability, see How Immutability Works.

What is required to configure Veeam Immutability?

  • Obtain and apply the TrueNAS Enterprise license for VMs and Applications to your TrueNAS Enterprise system.
  • Deploy the MinIO Enterprise app. You can deploy the MinIO Enterprise app as S3 object storage or configure a cluster to use for S3 object storage. To deploy a cluster follow the instructions in the MinIO MNMD tutorial. A cluster consists of four systems (nodes), each with four datasets (representing drives in the cluster configuration).
  • Verify the MinIO service shows your MinIO app deployment as a single or clustered configuration. The correct number of nodes and drives for a cluster configuration is four nodes and 12 drives.
  • Set up and configure Veeam Immutability. Configure a new bucket and the immutability settings to use the MinIO app in TrueNAS as the S3-compatible object storage.

Configuring TrueNAS and the MinIO Enterprise App

This guide describes the process of configuring a Veeam Immutability solution.

Before you begin, acquire and install/apply the Enterprise VM & Apps License for a single system or if a cluster, for four TrueNAS systems in the Multi-Node Multi Disk (MNMD) cluster configuration. You can apply the same license to each of the cluster systems.

Follow the instructions in the MinIO Enterprise tutorial for a single system deployment, or MinIO Enterprise MNMD tutorial to install and deploy the MinIO enterprise train app in a MNMD configuration. TrueNAS and MinIO provide the S3 compatible object storage for Veeam.

Configuring Veeam for Immutability

Open Veeam Backup & Replication Console, go to Backup Infrastructure and click on Backup Repositories. See Adding S3 Compatible Object Storage for detailed instructions.

Create a new bucket for the S3-compatible object storage repository. Enable object locking on this bucket when you create it. See Creating a Bucket for more information.

To create multiple child buckets automatically while creating the S3 object storage, click Automatic bucket creation disabled on the New Object Storage Repository > Bucket screen to show the Create new buckets automatically option. Select to have Veeam automatically create child buckets.

Click on Object Storage, and choose S3 Compatible. The New Object Storage Repository wizard opens.

On the Account screen, select or enter the IP address and port number for the TrueNAS server in Service Point. Enter as IP address:port number. Select the region where the TrueNAS server is located in Region. Browse to select the certificate used for MinIO in the TrueNAS server cluster.

Select the connection type in Connection Mode. Select Direct to instantly move data of processed VMs to object storage repositories. This requires specifying access permissions. Select Through gateway server to have Veeam Backup & Replication use a gateway server to transfer data from processed VMs or file share to object storage repositories (default setting).

Credentials should show the certificate for the TrueNAS system. If TrueNAS uses a self-signed certificate, a certificate security alert dialog opens. Click Continue to close the dialog. ClickNext.

Select the bucket created for this repository where you want to store backup data. Add a new folder to the bucket. You must add at least one folder. Optionally, select Limit object storage consumption to x TB and/or Make recent backups immutable for x days to enable them and set the measurement for each option. Click Next.

If not already shown, specify the server you want to use as the mount server. Veeam uses this during restore operations to mount VM disks directly from objects located in the object storage repositories. If not listed, click Add New. See Adding Windows Servers for instructions. Select the folder to keep the cache created during mount operations from the Instant recovery write cache folder dropdown list. Enter the NFS service settings if desired and enter the ports Veeam should suer for the NFS service. See Specifying Mount Server Settings for more information.

Veeam automatically installs additional components if needed. Click Next, review the configuration, and then click Finish.

Create a new backup job in Veeam if desired. See Creating Immutable Configuration Backups for more information.

Have more questions?

For further discussion or assistance, see these resources:

Found content that needs an update?  You can suggest content changes directly! To request changes to this content, click the Feedback button located on the middle-right side of the page (might require disabling ad blocking plugins).