AWS Summit Barcelona - Backup & Disaster Recovery
Upcoming SlideShare
Loading in...5
×
 

AWS Summit Barcelona - Backup & Disaster Recovery

on

  • 899 views

 

Statistics

Views

Total Views
899
Views on SlideShare
899
Embed Views
0

Actions

Likes
3
Downloads
86
Comments
0

0 Embeds 0

No embeds

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    AWS Summit Barcelona - Backup & Disaster Recovery AWS Summit Barcelona - Backup & Disaster Recovery Presentation Transcript

    • BACK UP & DISASTER RECOVERY Vadim Zendejas Solutions Architect
    • AGENDA Why AWS for disaster recovery AWS services that can be employed Common DR architectures Customer example Where to go next
    • HOT TOPIC FOR ENTERPRISES
    • HOT TOPIC FOR ENTERPRISES Floods in Europe Hurricane Sandy in USA Typhoons in South East Asia Earthquake in New Zealand Tsunami and flooding in Japan
    • « Everything fails all the time » Werner Vogels CTO of Amazon
    • WHY AWS FOR DISASTER RECOVERY?
    • REDUCE COSTS Reduce DR budgets considerably
    • REDUCE ON-PREMISE Reduce on-premise physical equipment
    • CONSOLIDATE SITES Eliminate the need to run a secondary site
    • REMOVE AGING TECHNOLOGIES Eliminate tape for backup and archive
    • FAST, SECURE AND COST EFFECTIVE BACKUP AND DR FOR ORACLE APPS
    • DR & BUSINESS CONTINUITY
    • DR IS PART OF A WIDER SET OF POLICIES AND CONTROLS HIGH AVAILABILITY Keep your applications running 24x7
    • DR IS PART OF A WIDER SET OF POLICIES AND CONTROLS HIGH AVAILABILITY BACKUP Keep your applications Make sure you data is running 24x7 safe
    • DR IS PART OF A WIDER SET OF POLICIES AND CONTROLS HIGH AVAILABILITY BACKUP DISASTER RECOVERY Keep your applications Make sure you data is Get your applications running 24x7 safe and data back after a major disaster
    • DR IS PART OF A WIDER SET OF POLICIES AND CONTROLS HIGH AVAILABILITY BACKUP DISASTER RECOVERY Keep your applications Make sure you data is Get your applications running 24x7 safe and data back after a major disaster IT’S NOT AN ALL OR NOTHING THING
    • EACH SET OF IT ASSETS WILL HAVE DIFFERENT REQUIREMENTS RECOVERY TIME OBJECTIVE (RTO) RECOVERY POINT OBJECTIVE (RPO) How quickly you need this How fresh the recovery asset to be recovered? must be for the asset? e.g. 1min? 15min? 1hr? e.g. zero data loss, 15mins 4hrs? 1day? out of date?
    • LEVEL OF AVAILABILITY REQUIRED REBUILD WHEN REQUIRED FROM OFFSITE BACKUP RUN HOT-HOT CONFIGURATION WITH AUTOFAILOVER
    • UTILITY, ON-DEMAND DATACENTER PRIMARY SITE SECONDARY SITE Routers Routers Firewalls Firewalls Network Network Application Licenses Application Licenses Operating Systems Operating Systems Hypervisor Hypervisor Servers Servers SAN SAN Primary Storage Primary Storage Backup Backup Archive Archive
    • UTILITY, ON-DEMAND DATACENTER PRIMARY SITE AWS Routers Routers Firewalls Firewalls Network Network Application Licenses Application Licenses Operating Systems Operating Systems Hypervisor Hypervisor Servers Servers SAN SAN Primary Storage Snapshot Storage Backup Backup Archive Archive
    • UTILITY, ON-DEMAND DATACENTER PRIMARY SITE Routers Firewalls Network Application Licenses Operating Systems $ AWS Routers Firewalls Network Application Licenses Operating Systems Hypervisor Hypervisor Servers Servers SAN SAN Primary Storage Snapshot Storage Backup Backup Archive Archive
    • AWS IS GLOBAL US-WEST (Oregon) EU-WEST (Ireland) GOV CLOUD ASIA PAC (Tokyo) US-EAST (Virginia) ASIA PAC (Sydney) US-WEST (N. California) ASIA PAC (Singapore) SOUTH AMERICA (Sao Paulo)
    • BACKUP AND DISASTER RECOVERY SYSTEM FOR ITS REMOTE SALES OFFICES
    • BUILT TO ENTERPRISE SECURITY STANDARDS CERTIFICATIONS PHYSICAL SECURITY HW, SW, NETWORK ISO 27001 Datacenters in nondescript Systematic change SOC 1 Type 2 (formerly facilities management SAS70), SOC 2, SOC 3 Physical access strictly Phased updates deployment PCI DSS Level 1 controlled Safe storage decommission DIACAP, FISMA, FIPS 140-2 Must pass two-factor Automated monitoring and HIPAA & ITAR Compliant authentication at least twice for self-audit Architecture floor access Advanced network protection Physical access logged and audited http://aws.amazon.com/security
    • AWS SERVICES THAT CAN BE EMPLOYED
    • STORAGE & TRANSFER SERVICES NETWORKING SERVICES FOUNDATION SERVICES Amazon Simple Storage Service (S3) AWS Direct Connect Amazon Elastic Compute Cloud (EC2) AWS Import/Export Amazon Virtual Private Cloud (VPC) Amazon Relational Database Service (RDS) AWS Storage Gateway Service Amazon Route 53 Amazon Elastic Block Storage (EBS)
    • AWS STORAGE IS IDEAL FOR DR SIMPLE STORAGE SERVICE ELASTIC BLOCK STORAGE Highly scalable object storage High performance block storage device 1 byte to 5TB in size 1GB to 1TB in size 99.999999999% durability Mount as drives to instances with snapshot/cloning functionalities
    • AWS STORAGE IS IDEAL FOR DR SIMPLE STORAGE SERVICE ELASTIC BLOCK STORAGE Highly scalable object storage High performance block storage device 1 byte to per GB/Month From $0.095 5TB in size 1GB to 1TB GB/Month From $0.10 per in size 99.999999999% durability Mount as drives to instances with snapshot/cloning functionalities
    • LONG TERM ARCHIVE AMAZON GLACIER Long term cold storage From $0.01 per GB/Month 99.999999999% durability
    • NETWORKING OPTIONS Internet Internet DIRECT CONNECT VPN CONNECTION VIRTUAL PRIVATE CLOUD Dedicated connection between your A Hardware VPN connection Private, isolated section of the AWS Cloud IT infrastructure and the AWS connects amazon environment to Launch resources in a virtual network that datacenters your datacenter you define Extend your network infrastructure Internet Protocol security (IPsec) Complete control over your virtual and VLANs into AWS Commonly used hardware supported networking environment
    • DISASTER RECOVERY SOLUTION TO BACKUP AND STORE CRITICAL MEDICAL IMAGE DATA
    • COMMON DR ARCHITECTURES
    • 4 MAIN PATTERNS Backup & Restore Pilot light Hot standby in AWS Multi-site solution in AWS & onpremise
    • BACKUP & RESTORE PATTERN
    • ADVANTAGES TO STARTING A JOURNEY WITH THIS PATTERN SIMPLE TO GET STARTED Very high levels of data durability Easy starting point for exploring the at low price AWS cloud COST EFFECTIVE Cost of storing snapshots in S3 Low technical barrier to entry Archiving possibilities beyond Focus on incorporating cloud into tape using Glacier your DR strategy, not on complex technical issues related to hot-hot systems
    • THE PREPARATION PROCESS TAKE BACKUPS OF CURRENT SYSTEMS
    • THE PREPARATION PROCESS TAKE BACKUPS OF CURRENT SYSTEMS STORE BACKUPS IN S3
    • THE PREPARATION PROCESS TAKE BACKUPS OF CURRENT SYSTEMS STORE BACKUPS IN S3 MOVE TO LONG TERM ARCHIVE IN GLACIER
    • THE PROCESS TAKE BACKUPS OF CURRENT SYSTEMS STORE BACKUPS IN S3 MOVE TO LONG TERM ARCHIVE IN GLACIER DETAIL HOW YOU WILL BE RESTORING FROM BACKUP OR RECOVER FROM ARCHIVE
    • PUSH BACKUPS TO AWS
    • STORE AMIS FOR SERVERS
    • RECOVER SERVERS DURING DR
    • AWS STORAGE GATEWAY AND BACKUP MANAGEMENT
    • RDS AND ORACLE RMAN
    • RESTORE TIMES REDUCED FROM 15 TO 2½ HOURS
    • PILOT LIGHT ARCHITECTURE
    • MOVING ALONG THE DR SPECTRUM BUILD RESOURCES AROUND REPLICATED DATASET Keep pilot light on by replicating core databases Build AWS resources around dataset and leave in stopped state
    • MOVING ALONG THE DR SPECTRUM BUILD RESOURCES AROUND REPLICATED DATASET SCALE RESOURCES IN AWS IN RESPONSE TO A DR EVENT Keep pilot light on by replicating Start up pool of resources in AWS core databases when events dictate Build AWS resources around dataset Match current production capacity and leave in stopped state through auto-scaling policies
    • MOVING ALONG THE DR SPECTRUM BUILD RESOURCES AROUND REPLICATED DATASET SCALE RESOURCES IN AWS IN RESPONSE TO A DR EVENT Keep pilot light on by replicating Start up pool of resources in AWS core databases when events dictate Build AWS resources around dataset Match current production capacity and leave in stopped state through auto-scaling policies SWITCH-OVER TO SYSTEM IN AWS
    • PILOT LIGHT Database replication Stopped instances
    • PILOT LIGHT Running instances
    • DR AND TESTING ENVIRONMENT REDUCING IT OVERHEAD AND INCREASING AVAILABILITY
    • HOT STANDBY ARCHITECTURE
    • WHY USE HOT STAND BY? LOW RESTORING TIME EXPECTED CONSISTENT DATA SET When the Recovery Time Objective And when the Recovery Point has a low time for recovery policy Objective has a higher level of consistency expected
    • HOT STANDBY
    • HOT STANDBY Redirect traffic
    • MULTI-SITE SOLUTION ON AWS AND ON PREMISE ARCHITECTURE
    • OBJECTIVES OF A MULT-SITE SOLUTION DOWNTIME IS CRITICAL SCALABILITY IS REQUIRED When almost no downtime is When primary site can not handle expected heavy loads
    • MULTI-SITE SOLUTION
    • MULTI-SITE SOLUTION Health Checkups
    • CUSTOMER EXAMPLE
    • EU region DR site for range of business applications All running in a Virtual Private Cloud (VPC) DR provision for applications dependent on Oracle and SQL Server databases Includes DR for Active Directory and Windows file shares
    • On-premise Data Centre A Internet On-premise Data Centre B AWS Direct Connect Active Directory Bastion Host SmartSentinel Client-to-site VPN VPC Subnet A Remote Desktops VPC Subnet D Proxy Server Site-to-site VPN VPC Subnet B Applications VPC Subnet C Databases VPC Subnet E VPC Subnet F Availability Zone Region S3 Buckets with Objects File Servers VPC Subnet G
    • On-premise Data Centre A On-premise Data Centre B Dual route connectivity Internet AWS Direct Connect Active Directory Bastion Host SmartSentinel Client-to-site VPN VPC Subnet A Remote Desktops VPC Subnet D Proxy Server Site-to-site VPN VPC Subnet B Applications VPC Subnet C Databases VPC Subnet E VPC Subnet F Availability Zone Region S3 Buckets with Objects File Servers VPC Subnet G
    • On-premise Data Centre A On-premise Data Centre B Active Directory Replication Internet AWS Direct Connect Active Directory Bastion Host SmartSentinel Client-to-site VPN VPC Subnet A Remote Desktops VPC Subnet D Proxy Server Site-to-site VPN VPC Subnet B Applications VPC Subnet C Databases VPC Subnet E VPC Subnet F Availability Zone Region S3 Buckets with Objects File Servers VPC Subnet G
    • On-premise Data Centre A Bastion Host Internet On-premise Data Centre B AWS Direct Connect Active Directory Bastion Host SmartSentinel Client-to-site VPN VPC Subnet A Remote Desktops VPC Subnet D Proxy Server Site-to-site VPN VPC Subnet B Applications VPC Subnet C Databases VPC Subnet E VPC Subnet F Availability Zone Region S3 Buckets with Objects File Servers VPC Subnet G
    • On-premise Data Centre A Internet On-premise Data Centre B AWS Direct Connect Active Directory Bastion Host SmartSentinel Client-to-site VPN VPC Subnet A Proxy Server Site-to-site VPN VPC Subnet B VPC Subnet C Database replication Remote Desktops VPC Subnet D Applications Databases VPC Subnet E VPC Subnet F Availability Zone Region S3 Buckets with Objects File Servers VPC Subnet G
    • On-premise Data Centre A Internet On-premise Data Centre B AWS Direct Connect Active Directory Bastion Host SmartSentinel Client-to-site VPN VPC Subnet A Proxy Server Site-to-site VPN VPC Subnet B VPC Subnet C Application images Remote Desktops VPC Subnet D Applications Databases VPC Subnet E VPC Subnet F Availability Zone Region S3 Buckets with Objects File Servers VPC Subnet G
    • On-premise Data Centre A Internet On-premise Data Centre B AWS Direct Connect Active Directory Bastion Host SmartSentinel Client-to-site VPN VPC Subnet A Remote Desktops VPC Subnet D Proxy Server Site-to-site VPN VPC Subnet B Applications VPC Subnet C Databases VPC Subnet E VPC Subnet F Availability Zone Region Durable data backups S3 Buckets with Objects File Servers VPC Subnet G
    • WHERE TO GO NEXT
    • RICH PARTNER ECOSYSTEM TECHNOLOGY AND SERVICES ORGANIZATIONS
    • http://aws.amazon.com/backup-storage http://aws.typepad.com http://aws.amazon.com/whitepapers
    • INFRASTRUCTURE IS NO LONGER A BARRIER
    • NO UP-FRONT EXPENSE On-Premise $ $ $ $ $ Physical Space Power Network Servers Certification Amazon Web Services 0 $ To get started
    • THE CLOUD MAKES BACKUP AND RECOVERY EASY ✔
    • YOU CAN GET STARTED FOR CENTS PER MONTH
    • THE CLOUD WILL SCALE TO ACCOMMODATE ALL OF YOUR DATA
    • FOCUS ON YOUR BUSINESS
    • aws.amazon.com get started on the free tier