配置阿里云#

1
// backup_policy
2
{
3
  "Version": "1",
4
  "Statement": [
5
    {
6
      "Effect": "Allow",
7
      "Action": [
8
        "oss:ListBuckets",
9
        "oss:ListObjects",
10
        "oss:DeleteObject",
11
        "oss:PutObject",
12
        "oss:GetObject"
13
      ],
14
      "Resource": [
15
        "acs:oss:oss-<regionId>:<accountId>:<bucketName>",
16
        "acs:oss:oss-<regionId>:<accountId>:<bucketName>/*"
17
      ]
18
    }
19
  ]
20
}

配置 rclone#

1. 下载rclone

   1
   sudo -v ; curl https://rclone.org/install.sh | sudo bash
   

2. 新增rclone config

   1
   root@yellow-story-1:~# rclone config
   2
   2025/06/30 03:48:49 NOTICE: Config file "/root/.config/rclone/rclone.conf" not found - using defaults
   3
   No remotes found, make a new one?
   4
   n) New remote
   5
   s) Set configuration password
   6
   q) Quit config
   7
   n/s/q> n
   8
   
   9
   Enter name for new remote.
   10
   name> alioss
   11
   
   12
   Option Storage.
   13
   Type of storage to configure.
   14
   Choose a number from below, or type in your own value.
   15
   ...
   16
    4 / Amazon S3 Compliant Storage Providers including AWS, Alibaba, ArvanCloud, Ceph, ChinaMobile, Cloudflare, DigitalOcean, Dreamhost, Exaba, FlashBlade, GCS, HuaweiOBS, IBMCOS, IDrive, IONOS, LyveCloud, Leviia, Liara, Linode, Magalu, Mega, Minio, Netease, Outscale, Petabox, RackCorp, Rclone, Scaleway, SeaweedFS, Selectel, StackPath, Storj, Synology, TencentCOS, Wasabi, Qiniu and others
   17
      \ (s3)
   18
   ...
   19
   Storage> 4
   20
   
   21
   Option provider.
   22
   Choose your S3 provider.
   23
   Choose a number from below, or type in your own value.
   24
   Press Enter to leave empty.
   25
   ...
   26
    2 / Alibaba Cloud Object Storage System (OSS) formerly Aliyun
   27
      \ (Alibaba)
   28
   ...
   29
   provider> 2
   30
   
   31
   Option env_auth.
   32
   Get AWS credentials from runtime (environment variables or EC2/ECS meta data if no env vars).
   33
   Only applies if access_key_id and secret_access_key is blank.
   34
   Choose a number from below, or type in your own boolean value (true or false).
   35
   Press Enter for the default (false).
   36
    1 / Enter AWS credentials in the next step.
   37
      \ (false)
   38
    2 / Get AWS credentials from the environment (env vars or IAM).
   39
      \ (true)
   40
   env_auth> (默认，直接回车)
   41
   
   42
   Option access_key_id.
   43
   AWS Access Key ID.
   44
   Leave blank for anonymous access or runtime credentials.
   45
   Enter a value. Press Enter to leave empty.
   46
   access_key_id> （输入刚刚获取的 access_key_id）
   47
   
   48
   Option secret_access_key.
   49
   AWS Secret Access Key (password).
   50
   Leave blank for anonymous access or runtime credentials.
   51
   Enter a value. Press Enter to leave empty.
   52
   secret_access_key> （输入刚刚获取的 secret_access_key）
   53
   
   54
   Option endpoint.
   55
   Endpoint for OSS API.
   56
   Choose a number from below, or type in your own value.
   57
   Press Enter to leave empty.
   58
    1 / Global Accelerate
   59
      \ (oss-accelerate.aliyuncs.com)
   60
    2 / Global Accelerate (outside mainland China)
   61
      \ (oss-accelerate-overseas.aliyuncs.com)
   62
    3 / East China 1 (Hangzhou)
   63
      \ (oss-cn-hangzhou.aliyuncs.com)
   64
    4 / East China 2 (Shanghai)
   65
      \ (oss-cn-shanghai.aliyuncs.com)
   66
    5 / North China 1 (Qingdao)
   67
      \ (oss-cn-qingdao.aliyuncs.com)
   68
    6 / North China 2 (Beijing)
   69
      \ (oss-cn-beijing.aliyuncs.com)
   70
    7 / North China 3 (Zhangjiakou)
   71
      \ (oss-cn-zhangjiakou.aliyuncs.com)
   72
    8 / North China 5 (Hohhot)
   73
      \ (oss-cn-huhehaote.aliyuncs.com)
   74
    9 / North China 6 (Ulanqab)
   75
      \ (oss-cn-wulanchabu.aliyuncs.com)
   76
   10 / South China 1 (Shenzhen)
   77
      \ (oss-cn-shenzhen.aliyuncs.com)
   78
   11 / South China 2 (Heyuan)
   79
      \ (oss-cn-heyuan.aliyuncs.com)
   80
   12 / South China 3 (Guangzhou)
   81
      \ (oss-cn-guangzhou.aliyuncs.com)
   82
   13 / West China 1 (Chengdu)
   83
      \ (oss-cn-chengdu.aliyuncs.com)
   84
   14 / Hong Kong (Hong Kong)
   85
      \ (oss-cn-hongkong.aliyuncs.com)
   86
   15 / US West 1 (Silicon Valley)
   87
      \ (oss-us-west-1.aliyuncs.com)
   88
   16 / US East 1 (Virginia)
   89
      \ (oss-us-east-1.aliyuncs.com)
   90
   17 / Southeast Asia Southeast 1 (Singapore)
   91
      \ (oss-ap-southeast-1.aliyuncs.com)
   92
   18 / Asia Pacific Southeast 2 (Sydney)
   93
      \ (oss-ap-southeast-2.aliyuncs.com)
   94
   19 / Southeast Asia Southeast 3 (Kuala Lumpur)
   95
      \ (oss-ap-southeast-3.aliyuncs.com)
   96
   20 / Asia Pacific Southeast 5 (Jakarta)
   97
      \ (oss-ap-southeast-5.aliyuncs.com)
   98
   21 / Asia Pacific Northeast 1 (Japan)
   99
      \ (oss-ap-northeast-1.aliyuncs.com)
   100
   22 / Asia Pacific South 1 (Mumbai)
   101
      \ (oss-ap-south-1.aliyuncs.com)
   102
   23 / Central Europe 1 (Frankfurt)
   103
      \ (oss-eu-central-1.aliyuncs.com)
   104
   24 / West Europe (London)
   105
      \ (oss-eu-west-1.aliyuncs.com)
   106
   25 / Middle East 1 (Dubai)
   107
      \ (oss-me-east-1.aliyuncs.com)
   108
   endpoint> （选取oss bucket的地域）
   109
   
   110
   （后面的配置默认即可）
   

3. 检测rclone是否配置成功

   1
   rclone ls alioss:/<bucketName>
   

4. 新建备份脚本

   1
   #!/bin/bash
   2
   
   3
   # ========================= 传参校验 =========================
   4
   if [ -z "$1" ]; then
   5
       echo "用法: $0 <machine_name>"
   6
       exit 1
   7
   fi
   8
   
   9
   MACHINE_NAME="$1"
   10
   
   11
   # ========================= 配置 =========================
   12
   SOURCE_DIR="/root/projects"
   13
   TARGET_DIR="alioss:/<bucketName>/backup/data/${MACHINE_NAME}/root/projects"
   14
   LOG_FILE="/root/rclone/rclone_sync_log.txt"
   15
   EXCLUDE_PATTERNS=(
   16
       "--exclude" "/*/.well-known/"
   17
       "--exclude" "/*/cache/"
   18
       "--exclude" ".user.ini"
   19
   )
   20
   
   21
   # ========================= 初始化日志文件 =========================
   22
   mkdir -p "$(dirname "$LOG_FILE")"
   23
   touch "$LOG_FILE"
   24
   
   25
   # ========================= 日志函数 =========================
   26
   log_and_echo() {
   27
       local time_str
   28
       time_str=$(date "+%Y-%m-%d %H:%M:%S")
   29
       echo "$time_str - $1" | tee -a "$LOG_FILE"
   30
   }
   31
   
   32
   # ========================= 开始备份 =========================
   33
   echo "======================== 开始 ========================" | tee -a "$LOG_FILE"
   34
   log_and_echo "网站备份开始（机器名: $MACHINE_NAME）"
   35
   
   36
   # 检查源目录
   37
   if [ ! -d "$SOURCE_DIR" ]; then
   38
       log_and_echo "错误：源目录 $SOURCE_DIR 不存在"
   39
       exit 1
   40
   fi
   41
   
   42
   if [ ! -r "$SOURCE_DIR" ]; then
   43
       log_and_echo "错误：源目录 $SOURCE_DIR 不可读"
   44
       exit 1
   45
   fi
   46
   
   47
   # 检查目标存储可达性
   48
   if ! rclone lsd "$TARGET_DIR" > /dev/null 2>&1; then
   49
       log_and_echo "错误：目标目录 $TARGET_DIR 不可访问或配置错误"
   50
       exit 1
   51
   fi
   52
   
   53
   # 执行同步备份
   54
   log_and_echo "开始执行 rclone 同步到 $TARGET_DIR"
   55
   rclone sync "$SOURCE_DIR" "$TARGET_DIR" -v "${EXCLUDE_PATTERNS[@]}" --delete-excluded --retries 10 >> "$LOG_FILE" 2>&1
   56
   
   57
   log_and_echo "网站备份结束"
   58
   echo "======================== 结束 ========================" | tee -a "$LOG_FILE"
   

5. 定时运行备份脚本

   1
   crontab -e
   2
   # 0 3 * * * <your backup script path> <your machine name>
   

6. 查看运行日志

   1
   tail -n 100 /root/rclone/rclone_sync_log.txt
   

参考文章#

1. rclone增量备份脚本