ESX Virtualization

VMware ESXi, vSphere, VMware Backup, Hyper-V... how-to, videos....

Nakivo Backup and Replication - #1 Backup solution for Virtual, physical, cloud, NAS and SaaS

Menu
  • Certification
      • VCP-DCV vSphere 8
          • vcp2024-125.
        • Close
    • Close
  • VMware
    • Configuration Maximums
    • vSphere
      • vSphere 8.0
      • vSphere 7.0
      • vSphere 6.7
      • vSphere 6.5
      • vSphere 6.0
      • Close
    • VMworld
      • VMware EXPLORE 2024
      • VMware EXPLORE 2023
      • VMware EXPLORE 2022
      • VMworld 2019
      • VMworld 2018
      • VMworld 2017
      • VMworld 2016
      • VMworld 2015
      • VMworld 2014
      • VMworld 2013
      • VMworld 2012
      • VMworld 2011
      • Close
    • Close
  • Microsoft
    • Windows Server 2012
    • Windows Server 2016
    • Windows Server 2019
    • Close
  • Categories
    • Tips – VMware, Microsoft and General IT tips and definitions, What is this?, How this works?
    • Server Virtualization – VMware ESXi, ESXi Free Hypervizor, VMware vSphere Server Virtualization, VMware Cloud and Datacenter Virtualization
    • Backup – Virtualization Backup Solutions, VMware vSphere Backup and ESXi backup solutions.
    • Desktop Virtualization – Desktop Virtualization, VMware Workstation, VMware Fusion, VMware Horizon View, tips and tutorials
    • How To – ESXi Tutorials, IT and virtualization tutorials, VMware ESXi 4.x, ESXi 5.x and VMware vSphere. VMware Workstation and other IT tutorials.
    • Free – Free virtualization utilities, ESXi Free, Monitoring and free backup utilities for ESXi and Hyper-V. Free IT tools.
    • Videos – VMware Virtualization Videos, VMware ESXi Videos, ESXi 4.x, ESXi 5.x tips and videos.
    • Home Lab
    • Reviews – Virtualization Software and reviews, Disaster and backup recovery software reviews. Virtual infrastructure monitoring software review.
    • Close
  • Partners
    • NAKIVO
    • StarWind
    • Zerto
    • Xorux
    • Close
  • This Web
    • News
    • ESXi Lab
    • About
    • Advertise
    • Archives
    • Disclaimer
    • PDFs and Books
    • Close
  • Free
  • Privacy policy

Veeam 321 backup rule becomes 3-2-1-1-0 Backup Rule – Check it out!

By Vladan SEGET | Last Updated: December 21, 2023

Shares

The world is changing. Our backup practices should too. The criticality of an enterprise's data has never been more important than before. Everything is digital. Less and less paper. We're living in a truly digital age. What do we backup, how do we backup, and where do we backup? Those are questions everyone should be able to answer knowing that 1001 ransomware is waiting behind the corner to sneak into your LAN and destroy everything.

That's why 3-2-1 backup rule by Veeam is evolving into something up-to-date to today's conditions and today's risks.

The 3-2-1 Rule as we know it says the following:

  • There should be 3 copies of data
  • On 2 different media
  • With 1 copy being off-site

Ransomware and security flaws, like the recent Apache's log4j Java vulnerability, can put many workloads out of service.

3 : Keep at least 3 copies of your data

When we say 3 copies, it means that in addition to your primary data, you should also have at least two more backups. This is because most likely you won't have problems on 3 hardware devices at the same time, right?

If something happens, you might lose the principal datacenter and the first set of backups (the fastest ones). That's where the secondary backup comes into play and it is very often off site backup (so not affected by the problems in the main datacenter).

With Veeam, you simply configure a backup-copy job is a perfect solution.

2 : Store the backups on 2 different media

You should store one of the copies on internal hard disk drives and the other copy on removable storage media (tapes, external hard disk drives, cloud-storage, …).

The primary backup is usually stored close to the workloads,  internal hard disk drives of a physical server so you can have your secondary backup on internal hard disk drives of another server or SAN device. But those devices shall be separated physically (best not in the same room or building).

1 : Keep at least 1 copy at the remote site

Bad idea is to keep the second copy at the same physical location. If you have fire… all will be destroyed: primary data, primary backup, and secondary backup!

If your company does not have any remote or branch office (or another building, you can save a copy at your service provider in a private cloud (or saving a copy in the public cloud). If using  VEEAM Cloud Connect at a certified Service Provider is a perfect option here.

 

You might be looking for a Tape alternative, and as such, this can be done the “old way” where you'll transport tapes somewhere to a bank locker on regular basis.  You should of course, protect those backups with an encryption key.

 

1 : Store at least 1 of the copies offline

To keep one copy offline, it means that there is no connection (network, USB, tape must be ejected, …) anymore with anything. It's an isolated system. If a hacker has access to your environment and your LAN and WAN or cloud repositories, everything can be wiped out. With offline backup nobody can access it. Not even you. Only if you manually connect the system to the network. We also call this Air-Gapped backups.

It’s also recommended to protect those backups with an encryption key!

Any examples? Yes for sure: External USB-disks, tapes, object storage with immutability (yes, yes, Amazon).

Note: You could also do backups to the cloud with insider protection (like VEEAM Cloud Connect with insider protection). Check the info at the Veeam's site.

0 : ZERO Errors – you should only keep backups without errors

If you don't verify your backups, you are no longer sure that they are healthy. And on let's say weekly basis, you should perform restore tests where you restore your data from the backups and verify if everything is as expected.

Final words

The days that we considered backups only as second-class citizens are over. Today, if your organization does not invest enough money into top-notch backup protection, sooner or later after a hack strikes, someone will be in trouble.

I would not want to be in IT admin's position where all my infrastructure is hacked, encrypted by ransomware and all my backups wiped out because they were simply connected to the same IT infrastructure. Think of it twice before making a decision not good enough and not protecting your backups with all this above. Air-gaped backups and encryption is a must today.

More about Veeam on ESX Virtualization Blog

  • Veeam Backup and Replication 11a Release (New ISO)
  • How to Install and Configure Veeam Backup and Replication Community Edition
  • Veeam Backup and Replication 11 Announced Today
  • Veeam Backup and Replication v11 upcoming details and features
  • Fight Ransomware with Veeam 10 Immutability Feature
Shares
5/5 - (1 vote)

| Filed Under: Server Virtualization Tagged With: Veeam 321 backup rule

About Vladan SEGET

This website is maintained by Vladan SEGET. Vladan is as an Independent consultant, professional blogger, vExpert x16, Veeam Vanguard x9, VCAP-DCA/DCD, ESX Virtualization site has started as a simple bookmarking site, but quickly found a large following of readers and subscribers.

Connect on: Facebook. Feel free to network via Twitter @vladan.

Trackbacks

  1. Install latest Free Veeam Agent on your desktop/laptop via Chocolatey - ESX Virtualization says:
    January 17, 2022 at 6:38 pm

    […] Veeam 321 backup rule becomes 3-2-1-1-0 Backup Rule – Check it out! […]

Private Sponsors

Featured

  • Thinking about HCI? G2, an independent tech solutions peer review platform, has published its Winter 2023 Reports on Hyperconverged Infrastructure (HCI) Solutions.
  • Zerto: One Platform for Disaster Recovery, Backup & Cloud Mobility: Try FREE Hands-On Labs Today!
Click to Become a Sponsor

Most Recent

  • Commvault’s Innovations at RSA Conference 2025 San Francisco
  • VMware ESXi FREE is FREE again!
  • Installation of StarWind VSAN Plugin for vSphere
  • Protect Mixed environments with Nakivo Physical Machine recovery (bare metal)
  • No more FREE licenses of VMware vSphere for vExperts – What’s your options?
  • Tails – Your Private OS on USB Stick
  • StarWind V2V Converter Now has CLI
  • Veeam VHR ISO v2 – 2025 Download and Install
  • Deployment OVA and Installation of Nakivo Backup and Replication for VMware
  • XCP-NG FREE Hypervisor and XO Lite to deploy XOA

Get new posts by email:

 

 

 

 

Support us on Ko-Fi

 

 

Buy Me a Coffee at ko-fi.com

Sponsors

Free Trials

  • DC Scope for VMware vSphere – optimization, capacity planning, and cost management. Download FREE Trial Here.
  • Augmented Inline Deduplication, Altaro VM Backup v9 For #VMware and #Hyper-V – Grab your copy now download TRIAL.

VMware Engineer Jobs

VMware Engineer Jobs

YouTube

…

Find us on Facebook

ESX Virtualization

…

Copyright © 2025 ·Dynamik-Gen · Genesis Framework · Log in