add walkthrough for pv snapshot and restore using aws providers

Author: neogopher

vcluster/deploy/control-plane/container/environment/eks.mdx

@@ -26,7 +26,7 @@ on [Amazon EKS](https://aws.amazon.com/.).
 
 ## Prerequisites
 
-Before staring, ensure you have the following tools installed:
+Before starting, ensure you have the following tools installed:
 
 - `kubectl` installed: Kubernetes command-line tool for interacting with the cluster. See [Install and Set Up kubectl](https://kubernetes.io/docs/tasks/tools/#kubectl) for installation instructions.
 - `vCluster CLI` <InstallCli />

vcluster/manage/backup-restore/volume-snapshots.mdx renamed to vcluster/manage/backup-restore/volume-snapshots/README.mdx

@@ -7,18 +7,18 @@ sidebar_class_name: host-nodes private-nodes
 
 import Tabs from '@theme/Tabs';
 import TabItem from '@theme/TabItem';
-import TenancySupport from '../../_fragments/tenancy-support.mdx';
+import TenancySupport from '../../../_fragments/tenancy-support.mdx';
 
 <TenancySupport hostNodes="true" privateNodes="true" />
 
 :::warning
 This feature is currently in Beta.
-See vCluster [Lifecycle Policy](../../deploy/upgrade/supported_versions#feature-versioning) for more information.
+See vCluster [Lifecycle Policy](../../../deploy/upgrade/supported_versions#feature-versioning) for more information.
 :::
 
 vCluster snapshots enable you to create volume snapshots for PersistentVolumeClaims that are provisioned by CSI drivers. This allows you to protect not only your virtual cluster resources and config, but also your application data.
 
-See [how volume snapshots are created](../../understand/volume-snapshots) if you would like to learn more about volume snapshots and how vCluster creates them.
+See [how volume snapshots are created](../../../understand/volume-snapshots) if you would like to learn more about volume snapshots and how vCluster creates them.
 
 :::important
 Volume snapshots can be created only for PVCs that are provisioned by CSI drivers with [Volume Snapshots](https://kubernetes.io/docs/concepts/storage/volume-snapshots/) support.
@@ -94,12 +94,12 @@ When taking volume snapshots, there are limitations:
 - Volume snapshots cannot be created for PVCs that are not provisioned by CSI drivers with [Volume Snapshots](https://kubernetes.io/docs/concepts/storage/volume-snapshots/) support.
 - Volume snapshots cannot be created for PVCs that are provisioned by CSI drivers that don't support [Volume Snapshots](https://kubernetes.io/docs/concepts/storage/volume-snapshots/).
 - When using host nodes:
-  - Currently volume snapshots are created only for PersistentVolumeClaims that are synced to the vCluster host namespace. This means that, when the [Namespace sync](../../configure/vcluster-yaml/sync/to-host/advanced/namespaces) is enabled, volume snapshots are not created for the PersistentVolumeClaims that are synced to namespaces different than the vCluster host namespace.
+  - Currently volume snapshots are created only for PersistentVolumeClaims that are synced to the vCluster host namespace. This means that, when the [Namespace sync](../../../configure/vcluster-yaml/sync/to-host/advanced/namespaces) is enabled, volume snapshots are not created for the PersistentVolumeClaims that are synced to namespaces different than the vCluster host namespace.
 - When using private nodes:
   - vCluster has to be deployed with `deploy.volumeSnapshotController.enabled` config set to `true`.
   - CSI driver that supports volume snapshots has to be installed in the virtual cluster.
   - The default VolumeSnapshotClass has to be configured for each CSI driver in the virtual cluster. See [Kubernetes Volume Snapshot Classes docs](https://kubernetes.io/docs/concepts/storage/volume-snapshot-classes/) for more details.
-- Volume snapshots are currently not supported for [vCluster standalone](../../deploy/control-plane/binary/).
+- Volume snapshots are currently not supported for [vCluster standalone](../../../deploy/control-plane/binary/).
 
 
 ## Troubleshoot issues

vcluster/manage/backup-restore/volume-snapshots/aws-providers.mdx

@@ -0,0 +1,334 @@
+---
+title: Walkthrough
+sidebar_label: Walkthrough
+---
+
+import Tabs from '@theme/Tabs';
+import TabItem from '@theme/TabItem';
+import TenancySupport from '../../../_fragments/tenancy-support.mdx';
+import Mark from "@site/src/components/Mark";
+import InstallCli from '../../../_partials/deploy/install-cli.mdx';
+import KubeconfigUpdate from '@site/docs/_partials/kubeconfig_update.mdx';
+
+This guide walks you through creating volume snapshots for a vCluster with persistent data and restoring that data from the snapshot. You'll deploy a sample application that writes data to a persistent volume, create a snapshot, simulate data loss, and restore from the snapshot using AWS EBS as the storage provider.
+
+:::info Supported CSI Drivers
+vCluster officially supports volume snapshots with **AWS EBS CSI Driver** and **OpenEBS**. This walkthrough demonstrates the complete end-to-end process using AWS as an example. Similar steps can be adapted for other supported CSI drivers.
+:::
+
+## Prerequisites
+
+Before starting, ensure you have:
+
+- An existing Amazon EKS cluster with the EBS CSI Driver installed. Follow the [EKS deployment guide](../../../deploy/control-plane/container/environment/eks) to set up your cluster.
+- The vCluster CLI installed
+- Completed the [volume snapshots setup](./#setup) based on your chosen tenancy model
+- Configured the default VolumeSnapshotClass for the EBS CSI driver
+- An OCI-compatible registry (such as GitHub Container Registry, Docker Hub, or AWS ECR) or an S3-compatible bucket (AWS S3 or MinIO) for storing snapshots
+
+:::note
+You can skip the CSI driver installation steps in the setup guide as the EBS CSI driver is already installed during EKS cluster creation.
+:::
+
+## Deploy vCluster
+
+Choose the deployment option based on your tenancy model:
+
+<Tabs
+  groupId="tenancy-model"
+  defaultValue="host-nodes"
+  values={[
+    { label: "vCluster with shared host cluster nodes", value: "host-nodes" },
+    { label: "vCluster with private nodes", value: "private-nodes" },
+  ]
+}>
+<TabItem value="host-nodes">
+
+Create a vCluster with default values:
+
+```bash title="Create vCluster"
+vcluster create myvcluster
+```
+
+</TabItem>
+<TabItem value="private-nodes">
+
+For private nodes, you'll need to create an EC2 instance and join it to the vCluster. Follow the [private nodes documentation](../../../deploy/worker-nodes/private-nodes/join) to join the instance as a node in the vCluster.
+
+Create the vCluster with volume snapshot support enabled:
+
+```bash title="Create vCluster with private nodes"
+vcluster create myvcluster --values vcluster.yaml
+```
+
+```yaml title="vcluster.yaml"
+pro: true
+privateNodes:
+  enabled: true
+  autoUpgrade:
+    imagePullPolicy: Never
+controlPlane:
+  service:
+    spec:
+      type: LoadBalancer
+networking:
+  podCIDR: 10.64.0.0/16
+  serviceCIDR: 10.128.0.0/16
+deploy:
+  volumeSnapshotController:
+    enabled: true
+```
+
+</TabItem>
+</Tabs>
+
+## Deploy a demo application
+
+Deploy a sample application in the vCluster. This application writes the current date and time in five-second intervals to a file called `out.txt` on a persistent volume.
+
+```bash title="Deploy application with persistent storage"
+cat <<EOF | kubectl apply -f -
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: ebs-claim
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 4Gi
+---
+apiVersion: v1
+kind: Pod
+metadata:
+  name: app
+spec:
+  containers:
+  - name: app
+    image: public.ecr.aws/amazonlinux/amazonlinux
+    command: ["/bin/sh"]
+    args: ["-c", "while true; do date -u >> /data/out.txt; sleep 5; done"]
+    volumeMounts:
+    - name: persistent-storage
+      mountPath: /data
+  volumes:
+  - name: persistent-storage
+    persistentVolumeClaim:
+      claimName: ebs-claim
+EOF
+```
+
+### Verify the application
+
+Wait until the pod is running and the PVC is in `Bound` state:
+
+```bash title="Check pod status"
+kubectl get pods
+```
+
+Expected output:
+```
+NAME   READY   STATUS    RESTARTS   AGE
+app    1/1     Running   0          37s
+```
+
+```bash title="Check PVC status"
+kubectl get pvc
+```
+
+Expected output:
+```
+NAME        STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   VOLUMEATTRIBUTESCLASS   AGE
+ebs-claim   Bound    pvc-4062a395-e84e-4efd-91c4-8e09cb12d3a8   4Gi        RWO                           <unset>                 42s
+```
+
+Verify that data is being written to the persistent volume:
+
+```bash title="View application data"
+kubectl exec -it app -- cat /data/out.txt | tail -n 3
+```
+
+Expected output:
+```
+Tue Oct 28 13:38:41 UTC 2025
+Tue Oct 28 13:38:46 UTC 2025
+Tue Oct 28 13:38:51 UTC 2025
+```
+
+
+## Create snapshot with volumes
+
+Create a vCluster snapshot with volume snapshots included by using the `--include-volumes` parameter. The vCluster CLI creates a snapshot request in the host cluster, which is then processed in the background by the vCluster snapshot controller.
+
+Disconnect from the vCluster:
+
+```bash title="Disconnect from vCluster"
+vcluster disconnect
+```
+
+Create the snapshot:
+
+```bash title="Create snapshot with volumes"
+vcluster snapshot create myvcluster "oci://ghcr.io/my-user/my-repo:my-tag" --include-volumes
+```
+
+Expected output:
+```
+18:01:13 info Beginning snapshot creation... Check the snapshot status by running `vcluster snapshot get myvcluster oci://ghcr.io/my-user/my-repo:my-tag`
+```
+
+:::note
+Replace `oci://ghcr.io/my-user/my-repo:my-tag` with your own OCI registry or other storage location. Ensure you have the necessary authentication configured for it.
+:::
+
+### Check snapshot status
+
+Monitor the snapshot creation progress:
+
+```bash title="Check snapshot status"
+vcluster snapshot get myvcluster "oci://ghcr.io/my-user/my-repo:my-tag"
+```
+
+Expected output:
+```
+                   SNAPSHOT                | VOLUMES | SAVED |  STATUS   |  AGE
+  -----------------------------------------+---------+-------+-----------+--------
+      oci://ghcr.io/my-user/my-repo:my-tag | 1/1     | Yes   | Completed | 2m51s
+```
+
+Wait until the status shows `Completed` and `SAVED` shows `Yes` before proceeding to the restore step.
+
+## Simulate data loss
+
+To demonstrate the restore functionality, delete the application and its data from the virtual cluster. First, connect to the vCluster:
+
+```bash title="Connect to vCluster"
+vcluster connect myvcluster
+```
+
+Delete the application and PVC:
+
+```bash title="Delete application and PVC"
+cat <<EOF | kubectl delete -f -
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: ebs-claim
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 4Gi
+---
+apiVersion: v1
+kind: Pod
+metadata:
+  name: app
+spec:
+  containers:
+  - name: app
+    image: public.ecr.aws/amazonlinux/amazonlinux
+    command: ["/bin/sh"]
+    args: ["-c", "while true; do date -u >> /data/out.txt; sleep 5; done"]
+    volumeMounts:
+    - name: persistent-storage
+      mountPath: /data
+  volumes:
+  - name: persistent-storage
+    persistentVolumeClaim:
+      claimName: ebs-claim
+EOF
+```
+
+## Restore from snapshot
+
+Restore the vCluster from the snapshot, including the volume data. First, disconnect from the vCluster:
+
+```bash title="Disconnect from vCluster"
+vcluster disconnect
+```
+
+Run the restore command with the `--restore-volumes` parameter. This creates a restore request which is processed by the restore controller, orchestrating the restoration of the PVC from the snapshots:
+
+```bash title="Restore vCluster with volumes"
+vcluster restore myvcluster "oci://ghcr.io/my-user/my-repo:my-tag" --restore-volumes
+```
+
+Expected output:
+```
+17:39:14 info Pausing vCluster myvcluster
+17:39:15 info Scale down statefulSet vcluster-myvcluster/myvcluster...
+17:39:17 info Starting snapshot pod for vCluster vcluster-myvcluster/myvcluster...
+...
+2025-10-27 12:09:35	INFO	snapshot/restoreclient.go:260	Successfully restored snapshot from oci://ghcr.io/my-user/my-repo:my-tag	{"component": "vcluster"}
+17:39:37 info Resuming vCluster myvcluster after it was paused
+```
+
+### Verify the restore
+
+Once the vCluster is running again, connect to it and verify that the pod and PVC have been restored:
+
+```bash title="Connect to vCluster"
+vcluster connect myvcluster
+```
+
+Check that the pod is running:
+
+```bash title="Check pod status"
+kubectl get pods
+```
+
+Expected output:
+```
+NAME   READY   STATUS    RESTARTS   AGE
+app    1/1     Running   0          12m
+```
+
+Check that the PVC is bound:
+
+```bash title="Check PVC status"
+kubectl get pvc
+```
+
+Expected output:
+```
+NAME        STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   VOLUMEATTRIBUTESCLASS   AGE
+ebs-claim   Bound    pvc-c6ebf439-9fe5-4413-9f86-89916c1e4e49   4Gi        RWO                           <unset>                 12m
+```
+
+Verify that the data was successfully restored by checking the log file:
+
+```bash title="Verify restored data"
+kubectl exec -it app -- cat /data/out.txt
+```
+
+Expected output (showing both old and new timestamps):
+```
+...
+Tue Oct 28 13:39:21 UTC 2025
+Tue Oct 28 13:39:26 UTC 2025
+Tue Oct 28 13:39:31 UTC 2025
+Tue Oct 28 13:46:10 UTC 2025
+Tue Oct 28 13:46:15 UTC 2025
+Tue Oct 28 13:46:20 UTC 2025
+```
+
+Notice the gap in timestamps. The earlier timestamps (around 13:39) are from before the deletion, while the later timestamps (13:46) are after the restore. This confirms that the data was successfully recovered from the snapshot, and the application resumed writing new entries.
+
+## Cleanup
+
+To remove the resources created in this tutorial:
+
+Delete the vCluster:
+
+```bash title="Delete vCluster"
+vcluster delete myvcluster
+```
+
+If you created an EKS cluster specifically for this tutorial, you can delete it to avoid ongoing charges:
+
+```bash title="Delete EKS cluster"
+eksctl delete cluster -f cluster.yaml --disable-nodegroup-eviction
+```