VPC storage services overview
The IBM Cloud® Virtual Private Cloud (VPC) provides block storage, file storage, and snapshots solutions to meet your cloud storage needs. Instance storage provides dedicated drives that are directly attached to your virtual server instances. In addition, with the VPC Backup service, you can create scheduled backups of your block storage volumes.
Block Storage for VPC
IBM® Cloud Block Storage for Virtual Private Cloud provides hypervisor-mounted, high-performance data storage for your virtual server instances that you can provision within a VPC. The VPC infrastructure provides rapid scaling across zones and more performance and security.
By using this service, you can:
- Create block storage volumes with maximum storage capacity of 16 TB and a performance level of 48,000 IOPS.
- Create a volume with a predefined IOPS tier profile (3, 5, or 10 IOPS per GB) that best meets your storage requirements. Or you can create a volume with a custom profile, and choose IOPS performance from 100 IOPS to 48,000 IOPS, based on volume size (up to 16 TB).
- Use a boot volume to start a virtual server instance and attach data volumes to the instance.
- Choose customer-managed encryption for your block storage volume, and secure your data with your own encryption keys.
- Use the UI, CLI, API, or Terraform to create volumes, rename volumes, attach, and detach a volume, transfer volumes to a different instance. You can assign access to a volume, access performance metrics or delete the volume.
- You can adjust IOPS up or down, for greater performance or when you want to reduce costs.
- Start with a smaller volume and expand volume capacity later when you need more storage.
Customers with special access to preview the second-generation Block Storage offering can provision block volumes with the new sdp profile. The sdp profile is available in the Dallas, Frankfurt, London, Madrid, Osaka,
Sao Paulo, Sydney, Tokyo, Toronto, and Washington, DC regions in the select availability release.
Second-generation block volumes can be created with capacity in the range of 1 - 32,000 GB. The maximum IOPS that a volume with the sdp profile can support is 64,000. You can also modify the throughput limit in the range of 125-1024
MBps (1000-8192 Mbps). Capacity, IOPS, and throughput values of volumes that are created with the sdp profile can be modified even when the volume is not attached to a virtual server instance.
| Features | First-generation volumes | Second-generation volumes |
|---|---|---|
| Availability | Generally available in all VPC regions for all customers. | In the Select Availability release, available in Dallas, Frankfurt, London, Madrid, Osaka, Sao Paulo, Sydney, Tokyo, Toronto, and Washington, DC for allow-listed customers. |
| Expandable capacity | Yes, up to 16,000 GB | Yes, up to 32,000 GB |
| Adjustable IOPS | Yes, up to 48,000. IOPS depends on capacity range. | Yes, up to 64,000. |
| Adjustable Bandwidth | No. Throughput can be increased by increasing capacity and IOPS. The maximum is 1024 MBps. | Yes, bandwidth can be adjusted to any value between 125 and 1024 MBps. |
| Customer-managed encryption at rest | Yes. | Yes. |
| Importing encrypted custom image for boot volumes | Yes. | Not supported in the Select Availability release. |
| Creating encrypted custom image from boot volume | Yes. | Not supported in the Select Availability release. |
| On-demand snapshots | Yes, up to 750 snapshots per region. | Yes, up to 512 snapshots per region in the beta release. |
| Scheduled snapshots | Yes, up to 750 snapshots per region. | Not supported in the beta release. |
For more information about this service, see About Block Storage for VPC.
Block Storage for VPC snapshots
Block storage snapshots are a regional offering. A snapshot is a point-in-time copy of your block storage volume that you create manually in the console, from the CLI, with the API or Terraform. The initial snapshot is a full copy of the volume. Subsequent snapshots of the same volume are incremental; only those changes are captured that occurred since the last snapshot was taken. Snapshots inherit encryption from the source volume.
You can create, list, view details, and manage snapshots in the console, from the CLI, and with the API or Terraform. You can select a nonbootable snapshot to create a data volume and attach it to a running virtual instance. You can also select a bootable snapshot during instance provisioning to restore its data to a new boot volume to start the instance. You can use the snapshot to create a stand-alone volume and attach it to an instance later.
You can copy the snapshot to another region and use it to provision new volumes in that region, as a BCDR measure or geographic expansion.
You can also share a snapshot with another account and allow the other account to create volumes with the snapshot. To do so, set up cross-account authorization in Cloud Identity and Access Management, and share the CRN of the snapshot with the other account. The other account's authorized storage administrator can use the CRN to create a volume in the console, from the CLI, with the API, or Terraform.
Snapshots are independent of the source block storage volumes. You can delete the original volume and the snapshot persists. However, you cannot delete a snapshot that is being used to hydrate a newly restored storage volume.
You can create a snapshot consistency group that contains snapshots of multiple Block Storage volumes that are attached to the same virtual server instance. You can include or exclude boot volumes. The snapshot consistency group has its own lifecycle, and it keeps references to the member snapshots. So if a member snapshot is deleted or renamed, the consistency group is also updated.
Customer with special access to preview the sdp profile can create snapshots of their second-generation block volumes in Dallas, Frankfurt, London, Madrid, Osaka, Sao Paulo, Sydney, Tokyo, Toronto, and Washington, DC. In this release,
you can create up to 512 snapshots of these volumes. You can even create snapshots when the volumes are unattached.
You can use your snapshots to create other second-generation volumes in the same region. You can't use your second-generation snapshot to create a volume with a first-generation volume profile. Similarly, you can't use first-generation volume's
snapshot to create a volume with the sdp profile. Cross-regional copy of a second-generation snapshot is not supported. Consistency group snapshots of multiple sdp volumes and fast restore snapshots are not supported
either.
| Features | First-generation snapshots | Second-generation snapshots |
|---|---|---|
| Availability | Generally available in all VPC regions for all customers. | In the Select Availability release, available in Dallas (us-south), Frankfurt (eu-de), London (eu-gb), Madrid (eu-es), Osaka (js-osa),
Sao Paulo (br-sao), Sydney (au-sys), Tokyo (jp-tok), Toronto (ca-tor), and Washington (us-east) regions for allow-listed customers. |
| On-demand snapshots | Yes, up to 750 snapshots per region. | Yes, up to 512 snapshots per region in the Select Availability release. |
| Scheduled snapshots | Yes, up to 750 snapshots per region. | Not supported in the Select Availability release. |
| Fast restore clones | Yes. You can cache a copy of your snapshot in any zone of the region. | Not supported in the Select Availability release. |
| Cross-regional copy | Yes, one cross-regional clone per snapshot per region | Not supported in the Select Availability release. |
| Consistency group | Multi-volume snapshots are supported. | Not supported in the Select Availability release. |
First- and second-generation volume profiles are not interchangeable. You can't create a second-generation block volume with a snapshot that was taken of a first-generation volume. You can't use the snapshot with a second-generation volume profile to create a first-generation volume.
For more information, see About Snapshots for VPC.
File Storage for VPC
File Storage for VPC provides NFS-based file storage services. You create file shares in an availability zone within a region. You can share them with multiple virtual server instances within the same zone across multiple VPCs.
By using this service, you can:
- Create file shares and mount targets with maximum storage capacity of 32 TB and a performance level of 96,000 IOPS.
- Create a file share that best meets your storage requirements by using the
dp2profile and specifying the capacity and IOPS that you need. - Use the UI, CLI, API, or Terraform to create file shares and mount targets, rename or delete file shares and mount targets, add mount targets to a file share. You can mount and unmount a file share from virtual server instances, and add supplemental IDs to a file share.
- Adjust IOPS up or down, for greater performance or when you want to reduce costs.
- Start with a smaller file share and expand the capacity later when you need more storage.
- Mount file shares on Red Hat, CentOS, or Ubuntu Linux distributions. Windows OS is not supported.
- Share file shares with other accounts or services.
- Create read-only replicas of your file shares in another zone within your VPC, or another zone in a different region if you have multiple VPCs in the same geography. The replica is updated regularly based on the replication schedule that you specify. You can schedule to replicate your data as often as every 15 minutes. You can fail over to the replica and make it active if an outage occurs at the primary site.
For more information, see About File Storage for VPC.
File Storage for VPC snapshots
File Storage for VPC snapshot is a point-in-time copy of your file share that you create manually in the console, from the CLI, with the API, or Terraform. The initial snapshot is a full copy of the share. Subsequent snapshots of the same share are incremental; only those changes are captured that occurred since the last snapshot was taken. Snapshots inherit encryption from the source share.
You can create, list, view details, and manage snapshots in the console, from the CLI, and with the API or Terraform. You can use the snapshot to create another file share or to retrieve previous versions of files that are stored in the share.
Snapshots are tied to their source share. If you delete the original share and the snapshot is also deleted. However, you cannot delete a snapshot that is being used to hydrate a newly restored file. For more information, see About File Storage for VPC snapshots.
Backup for VPC
The IBM Cloud® provides the means to create backup copies of your block storage volumes and file shares automatically. You can create a backup policy with one or more plans, and associate tags to the policy in the console, from the CLI, with the API or Terraform.
The user-defined tags can be added to block storage volumes, file shares, and virtual server instances. When tags match, the backup policy is applied to the resources, and backup copies of the data are created based on the backup plan. You can set your own retention schedule to automatically delete older backups. This way, you can control how much space is used and how long backups are retained. By using Backup for VPC service, you can prevent data loss, manage risk, and improve data compliance.
Backup jobs that create or delete backup snapshots run according to the backup plan and the retention policy. You can view the status of the backup jobs in the console, from the CLI, with the API, or Terraform. If a job fails, the health status code shows the reason for the failure. You can also set up a connection to Event Notifications and receive notifications to your preferred destinations.
For more information, see About Backup for VPC.
Instance storage
Instance storage is allocated from one or more local SSDs on the server that is hosting the instance. An instance storage disk provides fast, affordable, temporary storage to improve the performance of cloud native workloads with scratch space, caching buffers, or a place for replicated data.
Data that is stored on instance storage is tied directly to the instance lifecycle and is only held temporarily. The instance storage disk is automatically created and destroyed with the instance. However, instance storage data is not lost when an instance is rebooted. For more information, see About instance storage.
Storage for bare metal servers
All profiles of Bare Metal Servers for VPC provide one 0.96 TB SATA M.2 mirrored SSD as the boot disk. Profile bx2d-metal-96x384 provides an extra set of NVMe (Non-Volatile Memory Express) U.2 solid-state drives (SSD) as secondary
local storage. For more information, see the Storage overview for Bare Metal Servers for VPC.
IBM Cloud Object Storage
IBM Cloud® Object Storage is a web-scale platform that stores unstructured data. It provides reliability, security, availability, and disaster recovery without replication. Information that is stored in Object Storage is encrypted and dispersed across multiple geographic locations. It is accessible through the IBM Cloud® console, IBM Cloud Object Storage CLI, and API. For more information, see About IBM Cloud Object Storage.
Within the VPC environment, Object Storage has many uses. For example, you can import and store custom images for your compute instances. In addition, you need Object Storage to collect and store flow logs that summarize the network traffic between two virtual network interface cards (vNICs) within a certain time window.