Professional Documents
Culture Documents
June 2021
H18832
Revisions
Revisions
Date Description
June 2021 Initial release
Acknowledgments
Author: Charu
The information in this publication is provided “as is.” Dell Inc. makes no representations or warranties of any kind with respect to the information in this
publication, and specifically disclaims implied warranties of merchantability or fitness for a particular purpose.
Use, copying, and distribution of any software described in this publication requires an applicable software license.
This document may contain certain words that are not consistent with Dell's current language guidelines. Dell plans to update the document over
subsequent future releases to revise these words accordingly.
This document may contain language from third party content that is not under Dell's control and is not consistent with Dell's current guidelines for Dell's
own content. When such third party content is updated by the relevant third parties, this document will be revised accordingly.
Copyright © 2021 Dell Inc. or its subsidiaries. All Rights Reserved. Dell Technologies, Dell, EMC, Dell EMC and other trademarks are trademarks of Dell
Inc. or its subsidiaries. Other trademarks may be trademarks of their respective owners. [6/28/2021] [Technical White Paper] [H18832]
Table of contents
Revisions.............................................................................................................................................................................2
Acknowledgments ...............................................................................................................................................................2
Table of contents ................................................................................................................................................................3
Executive summary .............................................................................................................................................................5
Audience .............................................................................................................................................................................5
1 Introduction ...................................................................................................................................................................6
1.1 DDVE cloud features ..........................................................................................................................................6
1.2 Architecture overview .........................................................................................................................................7
2 Deploying DDVE on Azure ...........................................................................................................................................8
2.1 Prerequisites to deploy DDVE on Azure ............................................................................................................8
2.1.1 Setup the network environment ..........................................................................................................................8
2.1.2 Enable VNet service endpoint to Azure storage .................................................................................................8
2.1.3 Create a container in Azure hot blob storage .....................................................................................................8
2.1.4 Get storage account access key ......................................................................................................................12
2.1.5 Prepare the SSH key pair .................................................................................................................................12
2.1.6 Understanding compute and storage requirements .........................................................................................12
2.2 Deploying DDVE on Azure ...............................................................................................................................13
3 Configuring DDVE on Azure .......................................................................................................................................20
4 Best Practices.............................................................................................................................................................25
4.1 Supportability ....................................................................................................................................................25
4.2 Azure Licensing ................................................................................................................................................25
4.3 Power Control ...................................................................................................................................................25
4.4 Storage best practices ......................................................................................................................................25
4.4.1 Data disk limitations ..........................................................................................................................................25
4.4.2 Expanding DDVE on block storage ..................................................................................................................25
4.4.3 Expanding DDVE on hot blob storage ..............................................................................................................25
4.4.4 Hot blob storage location ..................................................................................................................................26
4.4.5 Create separate account for each DDVE .........................................................................................................26
4.4.6 Disk caching .....................................................................................................................................................26
4.4.7 Converting from evaluation to production .........................................................................................................26
4.5 Security best practices .....................................................................................................................................26
4.6 Network best practices .....................................................................................................................................26
5 Conclusion ..................................................................................................................................................................27
A Technical support and resources ...............................................................................................................................28
Executive summary
Dell EMC PowerProtect DD Virtual Edition (DDVE) is a software defined data protection solution which brings
efficient and reliable data protection to remote and branch office, entry-level, and cloud environments. This
white paper discusses the prerequisites, how to deploy and configure PowerProtect DDVE on Microsoft Azure.
Audience
This white paper is intended for Dell Technologies customers, partners and employees looking for options to
protect the workloads hosted on Azure cloud using Dell EMC PowerProtect DDVE.
1 Introduction
DDVE is a software-defined data protection solution of PowerProtect DD series appliance, with all the core
differentiating features of DD series.
DDVE runs the DD Operating System (DDOS) and includes the DD System Manager graphical user interface
(GUI) and the DDOS command line interface (CLI) for performing system operations.
DDVE can be deployed on any standard hardware, converged or hyperconverged, and runs in VMware
vSphere, Microsoft Hyper-V, KVM, as well as in-cloud with Amazon Web Services(AWS)(cloud and gov cloud),
VMware Cloud(VMC), Azure(cloud and gov cloud) and Google Cloud Platform(GCP). DDVE is also certified
with VxRail™ and Dell PowerEdge servers.
DDVE scales up to 256 TB (in-cloud AWS, Azure, and Google Cloud) and up to 96 TB (on-premises) per
instance.
Supported DD protocols:
• DD Boost over IP
• DD Boost FS
Supported DD features:
1. To keep data traffic between DDVE and Azure storage within the Azure infrastructure, it is
recommended to create an Azure storage service endpoint. The service endpoint keeps DDVE from
depending on a NAT Gateway or Public IP address to access the hot blob container.
2. Dell Technologies recommends a VPN connection to replicate data from an on-premises host to DDVE
in the cloud or the opposite way. This approach keeps data transfers secure.
3. DDVE is categorized as a backend server. It must be kept in a private subnet with a private address.
Never set a public IP address for DDVE.
4. The storage account must be in the same region where the DDVE instance is running. A separate hot
blob storage account with a container is required for each DDVE.
5. All DDVE instances must be secured with the appropriate security group entries.
Note:
• Typically, SSH (Port 22) or HTTPS (Port 443) is used for DDVE inbound access.
• HTTPS (443) must be allowed for outbound Azure hot blob container access for DDVE.
• TCP ports 2049 and 2051 are used for DD Boost and replication purposes.
• Resource group
• Virtual network
• Subnets
• Network Security groups
• Service endpoint for connectivity to Microsoft.Storage
Steps:
• On the Basics page, provide details for subscription, resource group, storage account name and
region.
• On the Advanced page, configure the security settings and select the access tier as Hot.
• On the Networking page, configure network connectivity and network routing details.
2. Create a new hot blob container as the backup storage for the DDVE. Ensure that the container is empty.
• Navigate to the new storage account and to the Blob service section.
• Select Containers and click + Container. Type a name for the container.
• Set the public access level to Private (no anonymous access) and click Create.
recommended as a performance-optimized solution. Select the appropriate DDVE virtual machine instance type
according to capacity and workload.
Note:
5. On the Disks page, configure the disk storage for the DDVE.
• OS disk type: Select Standard HDD or Premium SSD based on the requirements.
• Encryption Type: Select (Default) Encryption at-rest with a platform-managed key. If one want
to encrypt the disk at-rest with one’s own managed key, see https://docs.microsoft.com/en-
us/azure/virtual-machines/linux/diskencryption.
• Enable Ultra Disk compatibility: Select No. DDVE does not support this option. For more details,
see https://docs.microsoft.com/en-us/azure/virtual-machines/disks-types#ultra-disk.
• Host Caching: Select None.
• For Data Disks, NVRAM disk is added automatically during deployment. Metadata disks can be
added by clicking on Create and attach a new disk or can be added after deployment.
7. On the Management page, configure monitoring and management options for DDVE.
• Boot diagnostics: Select On if is required to capture the serial console output of the DDVE to help
diagnose a startup issue.
• System assigned managed Identify: Select Off.
• Enable auto-shutdown: Select Off.
8. On the Advanced page, this version of the DDVE does not support these options.
9. On the Tags page, a tag can be created or assigned to the DDVE from a resource management and billing
perspective.
10. On the Review+Create page, verify that the configuration summary for creating the DDVE is correct.
• Managed disk is recommended. Azure also enables to convert unmanaged disks to managed
disks.
• It is not necessary to shut down the virtual machine before adding metadata disks.
• The metadata disk is not usually resized. To add more storage to the virtual machine, a new virtual
disk can be created.
• Metadata disk capacity—The required metadata capacity varies based on workload. Dell EMC
recommends that metadata capacity be equal to 10% of the total DDVE capacity, which is sufficient
for most workloads. If the workload is using a higher deduplication ratio, consider adding more
metadata disks.
• Licensed capacity—Ensure that the DDVE instance can support the licensed capacity. If the new
licensed capacity is more than the supported capacity of the DDVE instance, upgrade the DDVE
instance.
For more details on adding metadata disks, converting metadata disk types, resizing the DDVE instance refer
Dell EMC PowerProtect DDVE in the Azure Cloud Installation and Administration Guide
Steps to configure Azure hot blob storage and create a file system:
2. Accept the End User License Agreement (EULA). The Configuration wizard opens.
3. To replace licenses, select Licenses and click Yes (otherwise, the pre-installed 500-GB evaluation license
is used.)
Note: The DDVE pre-installed evaluation license provides 45 days of limited access to DDVE software for
evaluation purposes and may only be used in a non-production environment.
ddve-7-6-05container
ddvetrial1
8. Optional: Import the Baltimore CyberTrust Root certificate to communicate with Azure Object Store.
10. Review the summary and click Submit to create the file system and enable it.
11. Review the File System creation complete list and click OK.
12. Read about new components that are available in different releases, then click Close.
13. Select Data Management > File System to view space usage and availability details for the hot blob
storage and the local metadata storage.
14. To configure or update the eLicense on DDVE, select Licenses > Replace licenses.
15. To relaunch the configuration wizard, select Maintenance > System > Configure System.
4 Best Practices
4.1 Supportability
Azure supports interactive serial console, which can help to debug boot up and networking issues, troubleshoot
malfunctioning instance, interact with Grand Unified Bootloader (GRUB), and perform other troubleshooting
tasks. It is recommended to do the following.
5 Conclusion
DDVE can be easily deployed on Azure platform and can protect the applications running on the cloud
environments. DDVE can be up and running in minutes and delivers increased transactional and operational
efficiencies along with high-speed and variable length deduplication.
Storage and data protection technical white papers and videos provide expertise that helps to
ensure customer success with Dell EMC storage and data protection products.