Merge branch 'main' into dependabot/github_actions/actions/stale-10.1.1

site/content/docs/main/data-movement-backup-pvc-configuration.md

@@ -75,3 +75,13 @@ timeout (data movement prepare timeout value is 30m by default).
 if the volume is not readOnly.
 - If any of the above problems occur, then the DataUpload CR is `canceled` after timeout, and the backupPod and backupPVC will be deleted, and the backup
 will be marked as `PartiallyFailed`.
+
+## Related Documentation
+
+- [Node-agent Configuration](supported-configmaps/node-agent-configmap.md) - Complete reference for all configuration options
+- [Node-agent Concurrency](node-agent-concurrency.md) - Configure concurrent operations per node
+- [Node Selection for Data Movement](data-movement-node-selection.md) - Configure which nodes run data movement
+- [Data Movement Pod Resource Configuration](data-movement-pod-resource-configuration.md) - Configure pod resources
+- [BackupPVC Configuration](data-movement-backup-pvc-configuration.md) - Configure backup storage
+- [RestorePVC Configuration](data-movement-restore-pvc-configuration.md) - Configure restore storage
+- [Cache PVC Configuration](data-movement-cache-volume.md) - Configure restore data mover storage

site/content/docs/main/data-movement-cache-volume.md

@@ -42,5 +42,14 @@ Take Kopia repository and the above cache PVC configuration for example:
 To enable both the node-agent configMap and backup repository configMap, specify the flags in velero installation by CLI:
 `velero install --node-agent-configmap=<ConfigMap-Name> --backup-repository-configmap=<ConfigMap-Name>`
 
+## Related Documentation
+
+- [Node-agent Configuration](supported-configmaps/node-agent-configmap.md) - Complete reference for all configuration options
+- [Node-agent Concurrency](node-agent-concurrency.md) - Configure concurrent operations per node
+- [Node Selection for Data Movement](data-movement-node-selection.md) - Configure which nodes run data movement
+- [Data Movement Pod Resource Configuration](data-movement-pod-resource-configuration.md) - Configure pod resources
+- [BackupPVC Configuration](data-movement-backup-pvc-configuration.md) - Configure backup storage
+- [RestorePVC Configuration](data-movement-restore-pvc-configuration.md) - Configure restore storage
+- [Cache PVC Configuration](data-movement-cache-volume.md) - Configure restore data mover storage
 
 [1]: backup-repository-configuration.md

site/content/docs/main/data-movement-node-selection.md

@@ -258,3 +258,13 @@ volumeBindingMode: Immediate
 Because the StorageClass volumeBindingMode is `Immediate`, although `ignoreDelayBinding` is set to `false`, restorePVC will not be created according to the target Pod.
 
 The restorePod will be assigned to nodes, which instance type is `Standard_B4ms`.
+
+## Related Documentation
+
+- [Node-agent Configuration](supported-configmaps/node-agent-configmap.md) - Complete reference for all configuration options
+- [Node-agent Concurrency](node-agent-concurrency.md) - Configure concurrent operations per node
+- [Node Selection for Data Movement](data-movement-node-selection.md) - Configure which nodes run data movement
+- [Data Movement Pod Resource Configuration](data-movement-pod-resource-configuration.md) - Configure pod resources
+- [BackupPVC Configuration](data-movement-backup-pvc-configuration.md) - Configure backup storage
+- [RestorePVC Configuration](data-movement-restore-pvc-configuration.md) - Configure restore storage
+- [Cache PVC Configuration](data-movement-cache-volume.md) - Configure restore data mover storage

site/content/docs/main/data-movement-pod-resource-configuration.md

@@ -123,6 +123,16 @@ kubectl create cm node-agent-config -n velero --from-file=node-agent-config.json
 
 **Note**: If the specified priority class doesn't exist in the cluster when data mover pods are created, the pods will fail to schedule. Velero validates the priority class at startup and logs a warning if it doesn't exist, but the pods will still attempt to use it.
 
+## Related Documentation
+
+- [Node-agent Configuration](supported-configmaps/node-agent-configmap.md) - Complete reference for all configuration options
+- [Node-agent Concurrency](node-agent-concurrency.md) - Configure concurrent operations per node
+- [Node Selection for Data Movement](data-movement-node-selection.md) - Configure which nodes run data movement
+- [Data Movement Pod Resource Configuration](data-movement-pod-resource-configuration.md) - Configure pod resources
+- [BackupPVC Configuration](data-movement-backup-pvc-configuration.md) - Configure backup storage
+- [RestorePVC Configuration](data-movement-restore-pvc-configuration.md) - Configure restore storage
+- [Cache PVC Configuration](data-movement-cache-volume.md) - Configure restore data mover storage
+
 [1]: csi-snapshot-data-movement.md
 [2]: file-system-backup.md
 [3]: https://kubernetes.io/docs/concepts/workloads/pods/pod-qos/

site/content/docs/main/data-movement-restore-pvc-configuration.md

@@ -28,3 +28,13 @@ A sample of `restorePVC` config as part of the ConfigMap would look like:
 **Note:** 
 - If `ignoreDelayBinding` is set, the restored volume is provisioned in the storage areas associated to an arbitrary node, if the restored pod cannot be scheduled to that node, e.g., because of topology constraints, the data mover restore still completes, but the workload is not usable since the restored pod cannot mount the restored volume
 - At present, node selection is not supported for data mover restore, so the restored volume may be attached to any node in the cluster; once node selection is supported and enabled, the restored volume will be attached to one of the selected nodes only. In this way, node selection and `ignoreDelayBinding` can work together even though the environment is with topology constraints
+
+## Related Documentation
+
+- [Node-agent Configuration](supported-configmaps/node-agent-configmap.md) - Complete reference for all configuration options
+- [Node-agent Concurrency](node-agent-concurrency.md) - Configure concurrent operations per node
+- [Node Selection for Data Movement](data-movement-node-selection.md) - Configure which nodes run data movement
+- [Data Movement Pod Resource Configuration](data-movement-pod-resource-configuration.md) - Configure pod resources
+- [BackupPVC Configuration](data-movement-backup-pvc-configuration.md) - Configure backup storage
+- [RestorePVC Configuration](data-movement-restore-pvc-configuration.md) - Configure restore storage
+- [Cache PVC Configuration](data-movement-cache-volume.md) - Configure restore data mover storage

site/content/docs/main/node-agent-concurrency.md

@@ -79,3 +79,13 @@ spec:
       - args:
         - --node-agent-configmap=<ConfigMap name>
 ```
+
+## Related Documentation
+
+- [Node-agent Configuration](supported-configmaps/node-agent-configmap.md) - Complete reference for all configuration options
+- [Node-agent Concurrency](node-agent-concurrency.md) - Configure concurrent operations per node
+- [Node Selection for Data Movement](data-movement-node-selection.md) - Configure which nodes run data movement
+- [Data Movement Pod Resource Configuration](data-movement-pod-resource-configuration.md) - Configure pod resources
+- [BackupPVC Configuration](data-movement-backup-pvc-configuration.md) - Configure backup storage
+- [RestorePVC Configuration](data-movement-restore-pvc-configuration.md) - Configure restore storage
+- [Cache PVC Configuration](data-movement-cache-volume.md) - Configure restore data mover storage

site/content/docs/main/node-agent-prepare-queue-length.md

@@ -42,6 +42,16 @@ spec:
         - --node-agent-configmap=<configMap name>
 ```
 
+## Related Documentation
+
+- [Node-agent Configuration](supported-configmaps/node-agent-configmap.md) - Complete reference for all configuration options
+- [Node-agent Concurrency](node-agent-concurrency.md) - Configure concurrent operations per node
+- [Node Selection for Data Movement](data-movement-node-selection.md) - Configure which nodes run data movement
+- [Data Movement Pod Resource Configuration](data-movement-pod-resource-configuration.md) - Configure pod resources
+- [BackupPVC Configuration](data-movement-backup-pvc-configuration.md) - Configure backup storage
+- [RestorePVC Configuration](data-movement-restore-pvc-configuration.md) - Configure restore storage
+- [Cache PVC Configuration](data-movement-cache-volume.md) - Configure restore data mover storage
+
 [1]: csi-snapshot-data-movement.md
 [2]: file-system-backup.md
 [3]: node-agent-concurrency.md

site/content/docs/main/supported-configmaps/_index.md

@@ -0,0 +1,10 @@
+---
+layout: docs
+title: Supported ConfigMaps
+---
+
+Here's a list of ConfigMaps that Velero support, but their life cycle control are out of Velero's scope.
+
+* [node-agent ConfigMap][1]
+
+[1]: node-agent-configmap.md

site/content/docs/main/supported-configmaps/node-agent-configmap.md

@@ -0,0 +1,542 @@
+---
+title: "Node-agent Configuration"
+layout: docs
+---
+
+## Glossary
+**Data Mover Pods**: Data Mover Pods are:
+* Pods launched by Velero built-in data mover to run the data transfer during [CSI Snapshot Data Movement](../csi-snapshot-data-movement.md), i.e., DataUpload pod and DataDownload pod.
+* Pods launched by Velero to run the data transfer during [File System backup](../file-system-backup.md), i.e., PodVolumeBackup pod and PodVolumeRestore pod.
+
+## Overview
+The Velero node-agent is a DaemonSet that hosts modules for completing backup and restore operations, including file system backup/restore and CSI snapshot data movement. This document provides comprehensive configuration options for the ConfigMap provisioned by node-agent's `--node-agent-configmap` parameter.
+
+Node-agent puts advanced configurations of Data Mover Pods into a ConfigMap that contains JSON configuration. The ConfigMap should be created in the same namespace where Velero is installed, and its name is specified using the `--node-agent-configmap` parameter.
+
+## Creating and Managing the ConfigMap
+
+**Notice**: The ConfigMap's life cycle control is out of the scope of Velero.
+Users need to create and maintain the ConfigMap themselves.
+
+**Important**: The node-agent server checks configurations at startup time. After editing the ConfigMap, restart the node-agent DaemonSet for changes to take effect.
+`kubectl rollout restart -n <velero-namespace> daemonset/node-agent`
+
+To create the ConfigMap:
+1. Save your configuration to a JSON file
+2. Create the ConfigMap:
+```bash
+kubectl create cm <ConfigMap-Name> -n velero --from-file=<json-file-name>
+```
+
+### Specify during install
+The ConfigMap name can be specified during Velero installation:
+```bash
+velero install --node-agent-configmap=<ConfigMap-Name>
+```
+
+### Specify after install
+To apply the ConfigMap to the node-agent DaemonSet:
+```bash
+kubectl edit ds node-agent -n velero
+```
+
+Add the ConfigMap reference to the container arguments:
+```yaml
+spec:
+  template:
+    spec:
+      containers:
+      - args:
+        - --node-agent-configmap=<ConfigMap-Name>
+```
+
+## Configuration Sections
+### Load Concurrency (`loadConcurrency`)
+
+Controls the concurrent number of Data Mover Pods per node to optimize resource usage and performance.
+
+The configurations work for PodVolumeBackup, PodVolumeRestore, DataUpload, and DataDownload pods.
+
+#### Configuration Options
+- **`globalConfig`**: Set default concurrent number applied to all nodes.
+- **`perNodeConfig`**: Set different concurrent numbers for specific nodes using label selectors.
+- **`prepareQueueLength`**: Set the max number of intermediate backup/restore pods under pending status.
+
+#### Global Configuration
+Sets a default concurrent number applied to all nodes:
+```json
+{
+  "loadConcurrency": {
+    "globalConfig": 2
+  }
+}
+```
+
+#### Per-node Configuration
+Specify different concurrent numbers for specific nodes using label selectors:
+```json
+{
+  "loadConcurrency": {
+    "globalConfig": 2,
+    "perNodeConfig": [
+      {
+        "nodeSelector": {
+          "matchLabels": {
+            "kubernetes.io/hostname": "node1"
+          }
+        },
+        "number": 3
+      },
+      {
+        "nodeSelector": {
+          "matchLabels": {
+            "beta.kubernetes.io/instance-type": "Standard_B4ms"
+          }
+        },
+        "number": 5
+      }
+    ]
+  }
+}
+```
+
+- **Range**: Starts from 1 (no concurrency per node), no upper limit
+- **Priority**: Per-node configuration overrides global configuration
+- **Conflicts**: If a node matches multiple rules, the smallest number is used
+- **Default**: 1 if not specified
+
+**Use Cases:**
+- Increase concurrency on nodes with more resources
+- Reduce concurrency on nodes with limited resources or critical workloads
+- Prevent OOM kills and resource contention
+
+#### PrepareQueueLength
+The prepare queue length controls the maximum number of `DataUpload`/`DataDownload`/`PodVolumeBackup`/`PodVolumeRestore` CRs under the preparation statuses but are not yet processed by any node, which means the CR corresponding pod is pending state.
+
+If there are thousands of intermediate backup/restore pods, and without this control, they start at the same time, then causing a big burden on the k8s API server.
+
+```json
+{
+  "loadConcurrency": {
+    "prepareQueueLength": 10
+  }
+}
+```
+
+- **Range**: Starts from 1 (for all node-agent pods), no upper limit
+- **Scope**: This parameter controls all PVB, PVR, DataUpload, and DataDownload pods pending number. It applies to all node-agent pods.
+- **Default**: No limitation if not specified
+
+**Use Cases:**
+- Prevent too much workload pods are created, but cannot start.
+- Limit resource consumption from intermediate objects (PVCs, VolumeSnapshots, etc.)
+- Prevent resource exhaustion when backup/restore concurrency is limited
+- Balance between parallelism and resource usage
+
+**Affected CR Phases:**
+- DataUpload/DataDownload CRs in `Accepted` or `Prepared` phases
+- PodVolumeBackup/PodVolumeRestore CRs in preparation phases
+
+### Node Selection (`loadAffinity`)
+Constrains which nodes can run Data Mover Pods for CSI Snapshot Data Movement using affinity and anti-affinity rules.
+
+The configurations work for DataUpload, and DataDownload pods.
+
+For detailed information, see [Node Selection for Data Movement](../data-movement-node-selection.md).
+
+Example:
+
+```json
+{
+  "loadAffinity": [
+    {
+      "nodeSelector": {
+        "matchLabels": {
+          "beta.kubernetes.io/instance-type": "Standard_B4ms"
+        },
+        "matchExpressions": [
+          {
+            "key": "kubernetes.io/hostname",
+            "values": ["node-1", "node-2", "node-3"],
+            "operator": "In"
+          },
+          {
+            "key": "critical-workload",
+            "operator": "DoesNotExist"
+          }
+        ]
+      }
+    }
+  ]
+}
+```
+
+#### Configuration Options
+- **`nodeSelector`**: Specify DataUpload and DataDownload pods can run on which nodes.
+- **`storageClass`**: Filter DataUpload and DataDownload pods on the PVC's StorageClass. If not set, its corresponding `nodeSelector` applies to all DataUpload and DataDownload pods.
+
+**Important Limitations:**
+- Only the first element without `storageClass` parameter in the `loadAffinity` array is used for general node selection
+- Additional elements are only considered if they have a `storageClass` field
+- To combine multiple conditions, use both `matchLabels` and `matchExpressions` in a single element
+
+**Use Cases:**
+- Prevent data movement on nodes with critical workloads
+- Run data movement only on nodes with sufficient resources
+- Ensure data movement runs only on nodes where storage is accessible
+- Comply with topology constraints
+
+
+#### Storage Class Specific Selection
+Configure different node selection rules for specific storage classes:
+* For StorageClass `fast-ssd`, the first match is chosen, which is nodes with label `"environment": "production"`.
+* For StorageClass `hdd`, the nodes with label `"environment": "backup"` are chosen. 
+
+```json
+{
+  "loadAffinity": [
+    {
+      "nodeSelector": {
+        "matchLabels": {
+          "environment": "production"
+        }
+      },
+      "storageClass": "fast-ssd"
+    },
+    {
+      "nodeSelector": {
+        "matchLabels": {
+          "environment": "staging"
+        }
+      },
+      "storageClass": "fast-ssd"
+    },
+    {
+      "nodeSelector": {
+        "matchLabels": {
+          "environment": "backup"
+        }
+      },
+      "storageClass": "hdd"
+    }
+  ]
+}
+```
+
+### Pod Resources (`podResources`)
+Configure CPU and memory resources for Data Mover Pods to optimize performance and prevent resource conflict.
+
+The configurations work for PodVolumeBackup, PodVolumeRestore, DataUpload, and DataDownload pods.
+
+```json
+{
+  "podResources": {
+    "cpuRequest": "1000m",
+    "cpuLimit": "2000m",
+    "memoryRequest": "1Gi",
+    "memoryLimit": "4Gi"
+  }
+}
+```
+
+**Use Cases:**
+- Limit resource consumption in resource-constrained clusters
+- Guarantee resources for time-critical backup/restore operations
+- Prevent OOM kills during large data transfers
+- Control scheduling priority relative to production workloads
+
+**Values**: Must be valid Kubernetes Quantity expressions
+**Validation**: Request values must not exceed limit values
+**Default**: BestEffort QoS if not specified
+**Failure Handling**: Invalid values cause the entire `podResources` section to be ignored
+
+For detailed information, see [Data Movement Pod Resource Configuration](../data-movement-pod-resource-configuration.md).
+
+
+### Priority Class (`priorityClassName`)
+
+Configure the Data Mover Pods' PriorityClass.
+
+The configurations work for PodVolumeBackup, PodVolumeRestore, DataUpload, and DataDownload pods.
+
+#### Configuration Options
+- **`priorityClassName`**: The name of the PriorityClass to assign to backup/restore pods
+
+Configure pod priority to control scheduling behavior:
+
+**High Priority** (e.g., `system-cluster-critical`):
+- ✅ Faster scheduling and less likely to be preempted
+- ❌ May impact production workload performance
+
+**Low Priority** (e.g., `low-priority`):
+- ✅ Protects production workloads from resource competition
+- ❌ May delay backup operations or cause preemption
+
+```json
+{
+  "priorityClassName": "low-priority"
+}
+```
+
+**Use Cases:**
+- Control scheduling priority of backup/restore operations
+- Protect production workloads from resource competition
+- Ensure critical backups are scheduled quickly
+
+### Backup PVC Configuration (`backupPVC`)
+
+Configure intermediate PVCs used during data movement backup operations for optimal performance.
+
+The configurations work for DataUpload pods.
+
+For detailed information, see [BackupPVC Configuration for Data Movement Backup](../data-movement-backup-pvc-configuration.md).
+
+#### Configuration Options
+- **`storageClass`**: Alternative storage class for backup PVCs (defaults to source PVC's storage class)
+- **`readOnly`**: This is a boolean value. If set to `true` then `ReadOnlyMany` will be the only value set to the backupPVC's access modes. Otherwise `ReadWriteOnce` value will be used.
+- **`spcNoRelabeling`**: This is a boolean value. If set to true, then `pod.Spec.SecurityContext.SELinuxOptions.Type` will be set to `spc_t`. From the SELinux point of view, this will be considered a `Super Privileged Container` which means that selinux enforcement will be disabled and volume relabeling will not occur. This field is ignored if `readOnly` is `false`.
+
+**Use Cases:**
+- Use read-only volumes for faster snapshot-to-volume conversion
+- Use dedicated storage classes optimized for backup operations
+- Reduce replica count for intermediate backup volumes
+- Comply with SELinux requirements in secured environments
+
+**Important Notes:**
+- Ensure specified storage classes exist and support required access modes
+- In SELinux environments, always set `spcNoRelabeling: true` when using `readOnly: true`
+- Failures result in DataUpload CR staying in `Accepted` phase until timeout (30m default)
+
+#### Storage Class Mapping
+`storageClass` specifies alternative storage class for backup PVCs (defaults to source PVC's storage class).
+
+Configure different backup PVC settings per source storage class:
+```json
+{
+  "backupPVC": {
+    "fast-storage": {
+      "storageClass": "backup-storage-1"
+    },
+    "slow-storage": {
+      "storageClass": "backup-storage-2"
+    }
+  }
+}
+```
+
+#### ReadOnly and SPC Configuration
+
+Create BackupPVC in ReadOnly mode, which can avoid full data clone during backup process in some storage providers, such as Ceph RBD.
+
+```json
+{
+  "backupPVC": {
+    "source-storage-class": {
+      "storageClass": "backup-optimized-class",
+      "readOnly": true,
+      "spcNoRelabeling": true
+    }
+  }
+}
+```
+
+### Restore PVC Configuration (`restorePVC`)
+
+Configure intermediate PVCs used by Data Mover Pods during CSI Snapshot Data Movement restore.
+
+The configurations work for DataDownload pods.
+
+```json
+{
+  "restorePVC": {
+    "ignoreDelayBinding": true
+  }
+}
+```
+
+For detailed information, see [RestorePVC Configuration for Data Movement Restore](../data-movement-restore-pvc-configuration.md).
+
+#### Configuration Options
+- **`ignoreDelayBinding`**: Ignore `WaitForFirstConsumer` binding mode constraints
+
+**Use Cases:**
+- Improve restore parallelism by not waiting for pod scheduling
+- Enable volume restore without requiring a pod to be mounted
+- Work around topology constraints when you know the environment setup
+
+**Important Notes:**
+- Use only when you understand your cluster's topology constraints
+- May result in volumes provisioned on nodes where workload pods cannot be scheduled
+- Works best with node selection to ensure proper node targeting
+
+### Privileged FS Backup and Restore (`privilegedFsBackup`)
+
+Add `privileged` permission in PodVolumeBackup and PodVolumeRestore created pod's `SecurityContext`, because in some k8s environments, mounting HostPath volume needs privileged permission to work.
+
+The configurations work for PodVolumeBackup, and PodVolumeRestore pods.
+
+#### Configuration Options
+- **`privilegedFsBackup`**: Boolean value to enable privileged security context for file system backup/restore pods
+
+```json
+{
+  "privilegedFsBackup": true
+}
+```
+
+**Use Cases:**
+- Enable file system backup in environments requiring privileged container access
+- Support HostPath volume mounting in restricted Kubernetes environments
+- Comply with security policies that restrict container capabilities
+
+**Important Notes:**
+- In v1.17+, PodVolumeBackup and PodVolumeRestore run as independent pods using HostPath volumes
+- Required when cluster security policies restrict HostPath volume mounting
+
+For detailed information, see [Enable file system backup document](../customize-installation.md#enable-file-system-backup)
+
+### Cache PVC Configuration (`cachePVC`)
+
+Configure intermediate PVCs used for CSI Snapshot Data Movement restore operations to cache the downloaded data.
+
+The configurations work for DataDownload pods.
+
+For detailed information, see [Cache PVC Configuration for Data Movement Restore](../data-movement-cache-volume.md).
+
+#### Configuration Options
+- **`thresholdInGB`**: Minimum backup data size (in GB) to trigger cache PVC creation during restore
+- **`storageClass`**: Storage class used to create cache PVCs.
+
+**Use Cases:**
+- Improve restore performance by caching downloaded data locally
+- Reduce repeated data downloads from object storage
+- Optimize restore operations for large volumes
+
+**Important Notes:**
+- Cache PVC is only created when restored data size exceeds the threshold
+- Ensure specified storage class exists and has sufficient capacity
+- Cache PVCs are temporary and cleaned up after restore completion
+
+```json
+{
+  "cachePVC": {
+    "thresholdInGB": 1,
+    "storageClass": "cache-optimized-storage"
+  }
+}
+```
+
+## Complete Configuration Example
+Here's a comprehensive example showing how all configuration sections work together:
+
+```json
+{
+  "loadConcurrency": {
+    "globalConfig": 2,
+    "prepareQueueLength": 15,
+    "perNodeConfig": [
+      {
+        "nodeSelector": {
+          "matchLabels": {
+            "kubernetes.io/hostname": "node1"
+          }
+        },
+        "number": 3
+      }
+    ]
+  },
+  "loadAffinity": [
+    {
+      "nodeSelector": {
+        "matchLabels": {
+          "node-type": "backup"
+        },
+        "matchExpressions": [
+          {
+            "key": "critical-workload",
+            "operator": "DoesNotExist"
+          }
+        ]
+      }
+    },
+    {
+      "nodeSelector": {
+        "matchLabels": {
+          "environment": "staging"
+        }
+      },
+      "storageClass": "fast-ssd"
+    }
+  ],
+  "podResources": {
+    "cpuRequest": "500m",
+    "cpuLimit": "1000m",
+    "memoryRequest": "1Gi",
+    "memoryLimit": "2Gi"
+  },
+  "priorityClassName": "backup-priority",
+  "backupPVC": {
+    "fast-storage": {
+      "storageClass": "backup-optimized-class",
+      "readOnly": true,
+      "spcNoRelabeling": true
+    },
+    "slow-storage": {
+      "storageClass": "backup-storage-2"
+    }
+  },
+  "restorePVC": {
+    "ignoreDelayBinding": true
+  },
+  "privilegedFsBackup": true,
+  "cachePVC": {
+      "thresholdInGB": 1,
+      "storageClass": "cache-optimized-storage"
+  }
+}
+```
+
+This configuration:
+- Allows 2 concurrent operations globally, 3 on worker `node1`
+- Allows up to 15 operations in preparation phases
+- Runs Data Mover Pods only on backup nodes without critical workloads
+- Uses fast storage nodes for fast-ssd storage class operations
+- Limits pod resources to prevent cluster overload
+- Uses backup-priority PriorityClass for backup operations
+- Optimizes backup PVCs with read-only access and dedicated storage classes
+- Ignores delay binding for faster restores
+- Enable privileged permission for PodVolume pods
+- Enable cache PVC for file system restore
+- The cache threshold is 1GB and use dedicated StorageClass
+
+## Troubleshooting
+
+### Common Issues
+
+1. **ConfigMap not taking effect**: Restart node-agent DaemonSet after changes
+2. **Invalid resource values**: Check logs for validation errors; entire section ignored on failure
+3. **Storage class not found**: Ensure specified storage classes exist in the cluster
+4. **SELinux issues**: Set `spcNoRelabeling: true` when using `readOnly: true`
+5. **Node selection not working**: Verify node labels and check only first loadAffinity element is used
+
+### Validation
+
+To verify your configuration is loaded correctly:
+```bash
+kubectl logs -n velero -l app=node-agent | grep -i config
+```
+
+To check current node-agent configuration:
+```bash
+kubectl get cm <ConfigMap-Name> -n velero -o yaml
+```
+
+## Related Documentation
+For detailed information on specific configuration sections:
+- [Node-agent Concurrency](../node-agent-concurrency.md)
+- [Node Selection for Data Movement](../data-movement-node-selection.md)
+- [Data Movement Pod Resource Configuration](../data-movement-pod-resource-configuration.md)
+- [BackupPVC Configuration for Data Movement Backup](../data-movement-backup-pvc-configuration.md)
+- [RestorePVC Configuration for Data Movement Restore](../data-movement-restore-pvc-configuration.md)
+- [Node-agent Prepare Queue Length](../node-agent-prepare-queue-length.md)
+- [Cache PVC Configuration for Data Movement Restore](../data-movement-cache-volume.md)

site/data/docs/main-toc.yml

@@ -119,6 +119,8 @@ toc:
         url: /output-file-format
       - page: API types
         url: /api-types
+      - page: Supported ConfigMap
+        url: /supported-configmaps
       - page: Support process
         url: /support-process
       - page: For maintainers