The Object Storage Repository cannot be used on its own but has to be configured as Capacity Tier in the Scale-out Backup Repository.
Do not configure any tiering or lifecycle rules on object storage buckets used for Veeam Object Storage Repositories. This is currently not supported.
And here is why:
- Tiering and lifecycle rules in object storages are based on object age. However, with Veeam’s implementation even a very old block could still be relevant for the latest offloaded backup file when the block was not changed between the restore points. An object storage vendor can not know which blocks are still relevant and which not and thus can not make proper tiering decisions.
- The vendor APIs for the different storage products are not transparent. E.g. accessing Amazon S3 or Amazon Glacier requires the use of different APIs. When tiering/lifecycle management is done on cloud provider side Veeam is not aware of what happened and cannot know how to access which blocks.
Do not delete manually from an object storage bucket used for a Veeam Object Repository. Veeam will take care of deleting old objects based on your configured retention period in the backup or backup copy job.
You can safely delete everything manually when the Object Storage Repository is decommissioned completely (unconfigured in VBR).
Create an own bucket and own user where possible for the Object Storage Repository and limit the user account to have only the required access on the object storage bucket.
For an extra layer of security the access to public object storage can be piped through a VPN connection to an internal object storage service endpoint in a private cloud network.
When using public cloud object storage always consider all costs.
Putting data to the object storage requires API PUT calls. These calls normally are priced based on thousand or ten thousand calls.
For data at rest the used resources are normally priced by GB/month.
Do never forget prices for restores. These prices do include API requests (GET) but also the egress traffic cost from the cloud datacenter which can be immense depending on how much data is required to be pulled from the cloud. Veeam tries to leverage the locally available data blocks to reduce cost, but blocks which are not present on premises have to be downloaded.
In general the API cost is only a fraction of the cost of storing or retrieving data in daily operations and thus not too much effort should be put into API cost estimation.
- Veeam Help Center: Object Storage Repository