Journey through the Cloud:
Disaster Recovery
Ian Massingham – Technical Evangelist
@IanMmmm
Common use cases & stepping stones into the AWS cloud
Learning from customer journeys
Best practices to bootstrap your pro...
Explore and learn about AWS with a ‘non-production’ use case
Phase systems into ‘live’ DR use with reduced risk
Benefit fr...
Why AWS for disaster recovery?
AWS services that can be employed
Common DR architectures
Customer case studies and example...
Why AWS for Disaster
Recovery?
AWS is used in a variety of ways…
AWS & Disaster Recovery
Fast, secure and cost effective
backup and DR for Oracle Apps
“U...
You might be able to:
Business & technical drivers
Reduce costs
Slash DR budgets by up to 50%
Reduce on-premise
Eliminate ...
DR is part of a wider set of policies and controls…
DR & business continuity
High availability Backup Disaster recovery
Ke...
DR is part of a wider set of policies and controls…
DR & business continuity
It’s not an all or nothing thing
Choose what ...
Each set of IT assets will have different requirements…
DR & business continuity
Recovery Time Objective
(RTO)
How quickly...
Assets will sit on a spectrum of technical complexity…
DR & business continuity
Rebuild when
required from
offsite backup
...
The fundamental economic model…
Utility, on-demand datacenter
Primary Site
Routers
Firewalls
Network
Application Licenses
...
The fundamental economic model…
Utility, on-demand datacenter
Primary Site
Routers
Firewalls
Network
Application Licenses
...
The fundamental economic model…
Utility, on-demand datacenter
Primary Site
Routers
Firewalls
Network
Application Licenses
...
Availability Zone
AWS is global Region
Certifications
SOC 2
ISO 27001
PCI DSS for EC2, S3, EBS,
VPC, RDS, ELB, IAM
FISMA Moderate Compliant
Controls
HIPAA & ITAR...
AWS services that can be
employed
Amazon
Simple
Storage
Service (S3)
AWS Import/Export
AWS Storage
Gateway Service
AWS Direct
Connect
Amazon Virtual
Private...
S3 and Elastic Block Store
AWS storage is ideal for DR
Simple Storage Service
Highly scalable object storage
1 byte to 5TB...
Direct Connect
Dedicated connection between your IT
infrastructure and the AWS datacenters
Extend your network infrastruct...
Common DR architectures
4 main patterns
Common DR architectures
Backup & Restore Pilot light
Warm standby in
AWS
Multi-site solution in
AWS & on-p...
We’ll focus on 2 of them…
Common DR architectures
Backup & Restore Pilot light
Warm standby in
AWS
Multi-site solution in
...
Let’s start with Backup & Restore
Common DR architectures
Backup & Restore Pilot light
Warm standby in
AWS
Multi-site solu...
Advantages to starting a journey with this pattern
Backup & Restore pattern
Simple to get started
Easy starting point for ...
The preparation process…
Backup & Restore pattern
Take backups of
current systems
Store backups
in S3
Move to long term
ar...
The process…
Backup & Restore pattern
Take backups of
current systems
Store backups
in S3
Detail how you will restoring fr...
GlacierLong term durable archive
Long term Glacier archive
Durable
Designed for 99.999999999%
durability of archives
Cost effective
Write-once, read-never....
Logs
accessible from S3
time
Expiry
Logs
✗accessible from S3
Objects
expire and
are deleted
time
Expiry
Logs
Txns
✗accessible from S3
Objects
expire and
are deleted
time
accessible from S3
Object transition to
Glacier invoked
...
Logs
Txns
✗accessible from S3
Objects
expire and
are deleted
time
accessible from S3
Object transition to
Glacier invoked
...
Logs
Txns
✗accessible from S3
Objects
expire and
are deleted
time
accessible from S3
Object transition to
Glacier invoked
...
3-5 hour retrieval time
We assume you won’t access often
Push backups to AWS
Store AMIs for servers
Recover servers during DR
Corporate Data
Center
© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or dist...
Corporate Data
Center
© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or dist...
Corporate Data
Center
© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or dist...
Corporate Data
Center
© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or dist...
Corporate Data
Center
© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or dist...
Corporate Data
Center
© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or dist...
Corporate Data
Center
© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or dist...
Gateway stored
volumes
Data stored locally
Asynchronous backup
EBS snapshots
iSCSI local interface
Up to 1TB volumes
Gatew...
AWS Storage appliances and backup management
RDS and Oracle RMAN
Let’s look at the Pilot Light pattern…
Common DR architectures
Backup & Restore Pilot light
Warm standby in
AWS
Multi-site...
Moving along the DR spectrum…
Pilot light architecture
Build resources
around replicated
dataset
Keep ‘pilot light’ on by ...
Moving along the DR spectrum…
Pilot light architecture
Build resources around
replicated dataset
Keep ‘pilot light’ on by ...
Moving along the DR spectrum…
Pilot light architecture
Build resources around
replicated dataset
Keep ‘pilot light’ on by ...
Pilot light
Stopped
instances
Pilot light
Running
instances
Customer Example
EU region DR site for range of business applications
All running in a Virtual Private Cloud (VPC)
DR provision for applica...
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Buckets
with Objects
Bastion Host
Internet
On...
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Buckets
with Objects
Bastion Host
Internet
On...
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Buckets
with Objects
Bastion Host
Internet
On...
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Buckets
with Objects
Bastion Host
Internet
On...
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Buckets
with Objects
Bastion Host
Internet
On...
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Buckets
with Objects
Bastion Host
Internet
On...
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Buckets
with Objects
Bastion Host
Internet
On...
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Buckets
with Objects
Bastion Host
Internet
On...
Where to learn more
Resources
Disaster Recovery on AWS: aws.amazon.com/disaster-recovery
Architecture Center: aws.amazon.com/architecture
Usin...
Summary
The cloud makes backup and recovery easy
You can get started for pennies per month
The cloud will scale to accommodate all...
AWS Training & Certification
Certification
aws.amazon.com/certification
Demonstrate your skills,
knowledge, and expertise
...
Ian Massingham – Technical Evangelist
@IanMmmm
@AWS_UKI for local AWS events & news
@AWScloud for Global AWS News and Anno...
We typically see customers start by trying our services
Get started now at : aws.amazon.com/getting-started
Design your application for the AWS Cloud
More details on the AWS Architecture Center at : aws.amazon.com/architecture
AWS Journey through the AWS Cloud: Disaster Recovery
Upcoming SlideShare
Loading in...5
×

AWS Journey through the AWS Cloud: Disaster Recovery

1,059

Published on

This webinar discussed the use of the AWS Cloud as a disaster recovery (DR) environment. It also explored how the architectural approaches to DR in the AWS Cloud makes DR and BCP a great scenario for familiarising yourself with AWS before moving on to production application deployments in the cloud.

Published in: Technology

AWS Journey through the AWS Cloud: Disaster Recovery

  1. 1. Journey through the Cloud: Disaster Recovery Ian Massingham – Technical Evangelist @IanMmmm
  2. 2. Common use cases & stepping stones into the AWS cloud Learning from customer journeys Best practices to bootstrap your projects Journey through the cloud
  3. 3. Explore and learn about AWS with a ‘non-production’ use case Phase systems into ‘live’ DR use with reduced risk Benefit from lower costs & only pay for what you use Gain the ability to test DR procedures more frequently Invoke DR whilst testing DR procedures if necessary Disaster Recovery
  4. 4. Why AWS for disaster recovery? AWS services that can be employed Common DR architectures Customer case studies and examples Resources to learn more Agenda
  5. 5. Why AWS for Disaster Recovery?
  6. 6. AWS is used in a variety of ways… AWS & Disaster Recovery Fast, secure and cost effective backup and DR for Oracle Apps “Using AWS has enabled us to move into a whole new market, while lowering our hosting costs by 80 percent” “Using AWS allowed us to implement a disaster recovery strategy at a fraction of the cost” Find  out  more  here  :  aws.amazon.com/solu6ons/case-­‐studies   Galata benefits from increased DR scalability, flexibility and reduced complexity
  7. 7. You might be able to: Business & technical drivers Reduce costs Slash DR budgets by up to 50% Reduce on-premise Eliminate 30%+ of on-premise physical equipment Consolidate sites Eliminate the need to run a secondary site Remove aging technologies Eliminate tape for backup and archive
  8. 8. DR is part of a wider set of policies and controls… DR & business continuity High availability Backup Disaster recovery Keep your applications running 24x7 Make sure your data is safe Get your applications and data back after a major disaster
  9. 9. DR is part of a wider set of policies and controls… DR & business continuity It’s not an all or nothing thing Choose what needs to failover and what does not Some things more important than others Some things will still be working High availability Backup Disaster recovery Keep your applications running 24x7 Make sure your data is protected and can be recovered if it is lost Get your applications and data back after a major disaster
  10. 10. Each set of IT assets will have different requirements… DR & business continuity Recovery Time Objective (RTO) How quickly you need this asset to be recovered? e.g. 1min? 15min? 1hr? 4hrs? 1day? Recovery Point Objective (RPO) How ‘fresh’ the recovery must be for the asset? e.g. zero data loss, 15mins out of date?
  11. 11. Assets will sit on a spectrum of technical complexity… DR & business continuity Rebuild when required from offsite backup Run hot-hot configuration with auto-failover
  12. 12. The fundamental economic model… Utility, on-demand datacenter Primary Site Routers Firewalls Network Application Licenses Operating Systems Hypervisor Servers SAN fabric Primary Storage Backup Archive Secondary Site Routers Firewalls Network Application Licenses Operating Systems Hypervisor Servers SAN fabric Primary Storage Backup Archive
  13. 13. The fundamental economic model… Utility, on-demand datacenter Primary Site Routers Firewalls Network Application Licenses Operating Systems Hypervisor Servers SAN fabric Primary Storage Backup Archive AWS Routers Firewalls Network Application Licenses Operating Systems Hypervisor Servers SAN fabric Snapshot Storage Backup Archive
  14. 14. The fundamental economic model… Utility, on-demand datacenter Primary Site Routers Firewalls Network Application Licenses Operating Systems Hypervisor Servers SAN fabric Primary Storage Backup Archive AWS Routers Firewalls Network Application Licenses Operating Systems Hypervisor Servers SAN fabric Snapshot Storage Backup Archive Secondary site costs
  15. 15. Availability Zone AWS is global Region
  16. 16. Certifications SOC 2 ISO 27001 PCI DSS for EC2, S3, EBS, VPC, RDS, ELB, IAM FISMA Moderate Compliant Controls HIPAA & ITAR Compliant Architecture Physical Security Datacenters in nondescript facilities Physical access strictly controlled Must pass two-factor authentication at least twice for floor access Physical access logged and audited HW, SW, Network Systematic change management Phased updates deployment Safe storage decommission Automated monitoring and self-audit Advanced network protection Built to enterprise security standards http://aws.amazon.com/security
  17. 17. AWS services that can be employed
  18. 18. Amazon Simple Storage Service (S3) AWS Import/Export AWS Storage Gateway Service AWS Direct Connect Amazon Virtual Private Cloud (VPC) Amazon Route 53 Amazon Elastic Compute Cloud (EC2) Amazon Relational Database Service (RDS) Amazon Elastic Block Storage (EBS) Object storage & transfer services Networking services Foundation services
  19. 19. S3 and Elastic Block Store AWS storage is ideal for DR Simple Storage Service Highly scalable object storage 1 byte to 5TB in size 99.999999999% durability Elastic Block Store High performance block storage device Volumes of 1GB to 1TB in size Mount as drives to instances with snapshot/cloning functionalities
  20. 20. Direct Connect Dedicated connection between your IT infrastructure and the AWS datacenters Extend your network infrastructure and VLANs into AWS VPN Connection A Hardware VPN connection connects amazon environment to your datacenter Internet Protocol security (IPsec) VPN connection Commonly used hardware supported Virtual Private Cloud Private, isolated section of the AWS Cloud Launch resources in a virtual network that you define complete control over your virtual networking environment Internet Internet Connecting to AWS
  21. 21. Common DR architectures
  22. 22. 4 main patterns Common DR architectures Backup & Restore Pilot light Warm standby in AWS Multi-site solution in AWS & on-premise
  23. 23. We’ll focus on 2 of them… Common DR architectures Backup & Restore Pilot light Warm standby in AWS Multi-site solution in AWS & on-premise
  24. 24. Let’s start with Backup & Restore Common DR architectures Backup & Restore Pilot light Warm standby in AWS Multi-site solution in AWS & on-premise
  25. 25. Advantages to starting a journey with this pattern Backup & Restore pattern Simple to get started Easy starting point for exploring the AWS cloud Low technical barrier to entry Focus on incorporating cloud into your DR strategy, not on complex technical issues related to hot-hot systems Cost effective Very high levels of data durability at low price Cost of storing snapshots in S3 Archiving possibilities beyond tape using Glacier
  26. 26. The preparation process… Backup & Restore pattern Take backups of current systems Store backups in S3 Move to long term archive in Glacier
  27. 27. The process… Backup & Restore pattern Take backups of current systems Store backups in S3 Detail how you will restoring from backup or recover from archive Move to long term archive in Glacier
  28. 28. GlacierLong term durable archive
  29. 29. Long term Glacier archive Durable Designed for 99.999999999% durability of archives Cost effective Write-once, read-never. Cost effective for long term storage. Pay for accessing data
  30. 30. Logs accessible from S3 time Expiry
  31. 31. Logs ✗accessible from S3 Objects expire and are deleted time Expiry
  32. 32. Logs Txns ✗accessible from S3 Objects expire and are deleted time accessible from S3 Object transition to Glacier invoked ExpiryTransition
  33. 33. Logs Txns ✗accessible from S3 Objects expire and are deleted time accessible from S3 Object transition to Glacier invoked Restoration of object requested for x hrs ExpiryTransition
  34. 34. Logs Txns ✗accessible from S3 Objects expire and are deleted time accessible from S3 Object transition to Glacier invoked Restoration of object requested for x hrs 3-5hrs Object held in S3 RRS for x hrs ExpiryTransition
  35. 35. 3-5 hour retrieval time We assume you won’t access often
  36. 36. Push backups to AWS
  37. 37. Store AMIs for servers
  38. 38. Recover servers during DR
  39. 39. Corporate Data Center © 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Elastic Data Center AWS Storage Gateway AWS Storage Gateway installed on-premise to synchronize local volumes
  40. 40. Corporate Data Center © 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Elastic Data Center AWS Storage Gateway Local volumes created under Storage Gateway
  41. 41. Corporate Data Center © 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Elastic Data Center AWS Storage Gateway Usable with on- premise servers via iSCSI interface
  42. 42. Corporate Data Center © 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Elastic Data Center AWS Storage Gateway Primary on- premise volumes snapshotted, compressed and stored in Amazon S3
  43. 43. Corporate Data Center © 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Elastic Data Center AWS Storage Gateway
  44. 44. Corporate Data Center © 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Elastic Data Center AWS Storage Gateway Snapshot pulled from S3 to restore local volume
  45. 45. Corporate Data Center © 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc. Elastic Data Center AWS Storage Gateway Snapshot pulled from S3 to create cloud instance backed by Volume
  46. 46. Gateway stored volumes Data stored locally Asynchronous backup EBS snapshots iSCSI local interface Up to 1TB volumes Gateway cached volumes Data stored in S3 Recently read data cached Low latency iSCSI local interface Up to 32TB volumes
  47. 47. AWS Storage appliances and backup management
  48. 48. RDS and Oracle RMAN
  49. 49. Let’s look at the Pilot Light pattern… Common DR architectures Backup & Restore Pilot light Warm standby in AWS Multi-site solution in AWS & on-premise
  50. 50. Moving along the DR spectrum… Pilot light architecture Build resources around replicated dataset Keep ‘pilot light’ on by replicating core databases Build AWS resources around dataset and leave in stopped state
  51. 51. Moving along the DR spectrum… Pilot light architecture Build resources around replicated dataset Keep ‘pilot light’ on by replicating core databases Build AWS resources around dataset and leave in stopped state Scale resources in AWS in response to a DR event Start up pool of resources in AWS when events dictate Match current production capacity through auto- scaling policies
  52. 52. Moving along the DR spectrum… Pilot light architecture Build resources around replicated dataset Keep ‘pilot light’ on by replicating core databases Build AWS resources around dataset and leave in stopped state Scale resources in AWS in response to a DR event Start up pool of resources in AWS when events dictate Match current production capacity through auto- scaling policies Switch-over to system in AWS
  53. 53. Pilot light Stopped instances
  54. 54. Pilot light Running instances
  55. 55. Customer Example
  56. 56. EU region DR site for range of business applications All running in a Virtual Private Cloud (VPC) DR provision for applications dependent on Oracle and SQL Server databases Includes DR for Active Directory and Windows file shares
  57. 57. VPC Subnet B Region Availability Zone Client-to-site VPN Site-to-site VPN S3 Buckets with Objects Bastion Host Internet On-premise Data Centre A Remote Desktops AWS Direct Connect On-premise Data Centre B VPC Subnet D VPC Subnet F Databases VPC Subnet E Applications VPC Subnet A SmartSentinel VPC Subnet G File Servers VPC Subnet C Active Directory Proxy Server
  58. 58. VPC Subnet B Region Availability Zone Client-to-site VPN Site-to-site VPN S3 Buckets with Objects Bastion Host Internet On-premise Data Centre A Remote Desktops AWS Direct Connect On-premise Data Centre B VPC Subnet D VPC Subnet F Databases VPC Subnet E Applications VPC Subnet A SmartSentinel VPC Subnet G File Servers VPC Subnet C Active Directory Proxy Server Dual route connectivity
  59. 59. VPC Subnet B Region Availability Zone Client-to-site VPN Site-to-site VPN S3 Buckets with Objects Bastion Host Internet On-premise Data Centre A Remote Desktops AWS Direct Connect On-premise Data Centre B VPC Subnet D VPC Subnet F Databases VPC Subnet E Applications VPC Subnet A SmartSentinel VPC Subnet G File Servers VPC Subnet C Active Directory Proxy Server Active Directory Replication
  60. 60. VPC Subnet B Region Availability Zone Client-to-site VPN Site-to-site VPN S3 Buckets with Objects Bastion Host Internet On-premise Data Centre A Remote Desktops AWS Direct Connect On-premise Data Centre B VPC Subnet D VPC Subnet F Databases VPC Subnet E Applications VPC Subnet A SmartSentinel VPC Subnet G File Servers VPC Subnet C Active Directory Proxy Server Bastion Host
  61. 61. VPC Subnet B Region Availability Zone Client-to-site VPN Site-to-site VPN S3 Buckets with Objects Bastion Host Internet On-premise Data Centre A Remote Desktops AWS Direct Connect On-premise Data Centre B VPC Subnet D VPC Subnet F Databases VPC Subnet E Applications VPC Subnet A SmartSentinel VPC Subnet G File Servers VPC Subnet C Active Directory Proxy Server Database replication
  62. 62. VPC Subnet B Region Availability Zone Client-to-site VPN Site-to-site VPN S3 Buckets with Objects Bastion Host Internet On-premise Data Centre A Remote Desktops AWS Direct Connect On-premise Data Centre B VPC Subnet D VPC Subnet F Databases VPC Subnet E Applications VPC Subnet A SmartSentinel VPC Subnet G File Servers VPC Subnet C Active Directory Proxy Server Application images
  63. 63. VPC Subnet B Region Availability Zone Client-to-site VPN Site-to-site VPN S3 Buckets with Objects Bastion Host Internet On-premise Data Centre A Remote Desktops AWS Direct Connect On-premise Data Centre B VPC Subnet D VPC Subnet F Databases VPC Subnet E Applications VPC Subnet A SmartSentinel VPC Subnet G File Servers VPC Subnet C Active Directory Proxy Server Desktop environments
  64. 64. VPC Subnet B Region Availability Zone Client-to-site VPN Site-to-site VPN S3 Buckets with Objects Bastion Host Internet On-premise Data Centre A Remote Desktops AWS Direct Connect On-premise Data Centre B VPC Subnet D VPC Subnet F Databases VPC Subnet E Applications VPC Subnet A SmartSentinel VPC Subnet G File Servers VPC Subnet C Active Directory Proxy Server Durable data backups
  65. 65. Where to learn more
  66. 66. Resources Disaster Recovery on AWS: aws.amazon.com/disaster-recovery Architecture Center: aws.amazon.com/architecture Using AWS for Disaster Recovery http://media.amazonwebservices.com/AWS_Disaster_Recovery.pdf Backup and Recovery Approaches Using AWS http://media.amazonwebservices.com/AWS_Backup_Recovery.pdf
  67. 67. Summary
  68. 68. The cloud makes backup and recovery easy You can get started for pennies per month The cloud will scale to accommodate all of your data You retain visibility and control of your information
  69. 69. AWS Training & Certification Certification aws.amazon.com/certification Demonstrate your skills, knowledge, and expertise with the AWS platform Self-Paced Labs aws.amazon.com/training/ self-paced-labs Try products, gain new skills, and get hands-on practice working with AWS technologies aws.amazon.com/training Training Skill up and gain confidence to design, develop, deploy and manage your applications on AWS
  70. 70. Ian Massingham – Technical Evangelist @IanMmmm @AWS_UKI for local AWS events & news @AWScloud for Global AWS News and Announcements ©Amazon.com, Inc. and its affiliates. All rights reserved.
  71. 71. We typically see customers start by trying our services Get started now at : aws.amazon.com/getting-started
  72. 72. Design your application for the AWS Cloud More details on the AWS Architecture Center at : aws.amazon.com/architecture
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×