Journey Through the Cloud: Disaster Recovery
 

Journey Through the Cloud: Disaster Recovery

on

  • 1,252 views

This complementary presentation discusses the use of AWS as a disaster recovery (DR) environment and how the architectural approaches to DR in the AWS cloud make a perfect learning ground for more ...

This complementary presentation discusses the use of AWS as a disaster recovery (DR) environment and how the architectural approaches to DR in the AWS cloud make a perfect learning ground for more complex production application deployments.

In this webinar we introduce differing architectural patterns for using AWS as a disaster recovery platform and how AWS can make a cost effective part of your overall business continuity planning. By discussing a customer use-case end to end, we'll highlight key lessons learned to help you on your journey into the AWS cloud.

Statistics

Views

Total Views
1,252
Views on SlideShare
1,243
Embed Views
9

Actions

Likes
3
Downloads
69
Comments
0

1 Embed 9

https://twitter.com 9

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

Journey Through the Cloud: Disaster Recovery Journey Through the Cloud: Disaster Recovery Presentation Transcript

  • Journey through the Cloud:Disaster RecoveryRyan Shuttleworth – Technical Evangelist@ryanAWS
  • Common use cases & stepping stones into the AWS cloudLearning from customer journeysBest practices to bootstrap your projectsJourney through the cloud
  • Explore AWS for a ‘non-production’ use casePhase systems into ‘live’ DR use with relative easeChoose your success objectives for a cloud project ‘out of band’Disaster recovery
  • Why AWS for disaster recovery?AWS services that can be employedCommon DR architecturesCustomer exampleWhere to go nextAgenda
  • Why AWS for Disaster Recovery?
  • AWS is used in a variety of ways…AWS & Disaster RecoveryBackup and disaster recoverysystem for its remote sales officesFast, secure and cost effectivebackup and DR for Oracle AppsDisaster recovery solution to backupand store critical medical image dataDR and testing environment reducingIT overhead and increasing availability
  • You might be able to:Business & technical driversReduce costsSlash DR budgets by up to 50%Reduce on-premiseEliminate 30%+ of on-premisephysical equipmentConsolidate sitesEliminate the need to run asecondary siteRemove agingtechnologiesEliminate tape for backup andarchive
  • DR is part of a wider set of policies and controls…DR & business continuityHigh availability Backup Disaster recoveryKeep your applicationsrunning 24x7Make sure your data is safe Get your applications anddata back after a majordisaster
  • DR is part of a wider set of policies and controls…DR & business continuityIt’s not an all or nothing thingChoose what needs to failover and what does notSome things more important than othersSome things will still be workingHigh availability Backup Disaster recoveryKeep your applicationsrunning 24x7Make sure your data is safe Get your applications anddata back after a majordisaster
  • Each set of IT assets will have different requirements…DR & business continuityRecovery TimeObjective (RTO)How quickly you need this asset to berecovered?e.g. 1min? 15min? 1hr? 4hrs? 1day?Recovery PointObjective (RPO)How ‘fresh’ the recovery must be for theasset?e.g. zero data loss, 15mins out of date?
  • Assets will sit on a spectrum of technical complexity…DR & business continuityRebuild whenrequired fromoffsite backupRun hot-hotconfiguration withauto-failover
  • The fundamental economic model…Utility, on-demand datacenterPrimary SiteRoutersFirewallsNetworkApplication LicensesOperating SystemsHypervisorServersSANPrimary StorageBackupArchiveSecondary SiteRoutersFirewallsNetworkApplication LicensesOperating SystemsHypervisorServersSANPrimary StorageBackupArchive
  • The fundamental economic model…Utility, on-demand datacenterPrimary SiteRoutersFirewallsNetworkApplication LicensesOperating SystemsHypervisorServersSANPrimary StorageBackupArchiveAWSRoutersFirewallsNetworkApplication LicensesOperating SystemsHypervisorServersSANSnapshot StorageBackupArchive
  • The fundamental economic model…Utility, on-demand datacenterPrimary SiteRoutersFirewallsNetworkApplication LicensesOperating SystemsHypervisorServersSANPrimary StorageBackupArchiveAWSRoutersFirewallsNetworkApplication LicensesOperating SystemsHypervisorServersSANSnapshot StorageBackupArchiveSecondarysite costs
  • Availability ZoneAWS is global Region
  • CertificationsSOC 2ISO 27001PCI DSS for EC2, S3, EBS, VPC,RDS, ELB, IAMFISMA Moderate CompliantControlsHIPAA & ITAR CompliantArchitecturePhysical SecurityDatacenters in nondescriptfacilitiesPhysical access strictlycontrolledMust pass two-factorauthentication at least twicefor floor accessPhysical access logged andauditedHW, SW, NetworkSystematic changemanagementPhased updates deploymentSafe storage decommissionAutomated monitoring andself-auditAdvanced network protectionBuilt to enterprise security standardshttp://aws.amazon.com/security
  • AWS services that can beemployed
  • AmazonSimpleStorageService (S3)AWS Import/ExportAWS StorageGateway ServiceAWS DirectConnectAmazon VirtualPrivate Cloud(VPC)AmazonRoute 53Amazon ElasticCompute Cloud(EC2)Amazon RelationalDatabase Service (RDS)AmazonElastic BlockStorage (EBS)Object storage &transfer servicesNetworking services Foundation services
  • S3 and Elastic Block StoreAWS storage is ideal for DRSimple Storage ServiceHighly scalable object storage1 byte to 5TB in size99.999999999% durabilityElastic Block StoreHigh performance block storage device1GB to 1TB in sizeMount as drives to instances withsnapshot/cloning functionalities
  • Direct ConnectDedicated connection between your ITinfrastructure and the AWS datacentersExtend your network infrastructure andVLANs into AWSVPN ConnectionA Hardware VPN connection connectsamazon environment to your datacenterInternet Protocol security (IPsec) VPNconnectionCommonly used hardware supportedVirtual Private CloudPrivate, isolated section of the AWS CloudLaunch resources in a virtual network that youdefinecomplete control over your virtual networkingenvironmentInternetInternetNetworking options
  • Common DR architectures
  • 4 main patternsCommon DR architecturesBackup & Restore Pilot lightWarm standby inAWSMulti-site solutionin AWS & on-premise
  • We’ll focus on 2 of them…Common DR architecturesBackup & Restore Pilot lightWarm standby inAWSMulti-site solutionin AWS & on-premise
  • Let’s start with Backup & RestoreCommon DR architecturesBackup & Restore Pilot lightWarm standby inAWSMulti-site solutionin AWS & on-premise
  • Advantages to starting a journey with this patternBackup & Restore patternSimple to get startedEasy starting point for exploring theAWS cloudLow technical barrier to entryFocus on incorporating cloud into yourDR strategy, not on complex technicalissues related to hot-hot systemsCost effectiveVery high levels of data durability atlow priceCost of storing snapshots in S3Archiving possibilities beyond tapeusing Glacier
  • The preparation process…Backup & Restore patternTake backups ofcurrent systemsStore backupsin S3Move to long termarchive in Glacier
  • The process…Backup & Restore patternTake backups ofcurrent systemsStore backupsin S3Detail how you will restoring from backup orrecover from archiveMove to long termarchive in Glacier
  • GlacierLong term durable archive
  • Long term Glacier archiveDurableDesigned for 99.999999999%durability of archivesCost effectiveWrite-once, read-never. Cost effective forlong term storage. Pay for accessing data
  • Logsaccessible from S3timeExpiry
  • Logs✗accessible from S3Objectsexpire andare deletedtimeExpiry
  • LogsTxns✗accessible from S3Objectsexpire andare deletedtimeaccessible from S3Objecttransition toGlacier invokedExpiryTransition
  • LogsTxns✗accessible from S3Objectsexpire andare deletedtimeaccessible from S3Objecttransition toGlacier invokedRestoration ofobject requestedfor x hrsExpiryTransition
  • LogsTxns✗accessible from S3Objectsexpire andare deletedtimeaccessible from S3Objecttransition toGlacier invokedRestoration ofobject requestedfor x hrs3-5hrsObject held in S3RRS for x hrsExpiryTransition
  • 3-5 hour retrieval timeWe assume you won’t access often
  • Push backups to AWS
  • Store AMIs for servers
  • Recover servers during DR
  • Corporate DataCenter© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc.Elastic DataCenterAWS StorageGatewayAWS StorageGateway installedon-premise tosynchronize localvolumes
  • Corporate DataCenter© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc.Elastic DataCenterAWS StorageGatewayLocal volumescreated underStorageGateway
  • Corporate DataCenter© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc.Elastic DataCenterAWS StorageGatewayUsable with on-premiseservers viaiSCSI interface
  • Corporate DataCenter© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc.Elastic DataCenterAWS StorageGatewayPrimary on-premise volumessnapshotted,compressed andstored in AmazonS3
  • Corporate DataCenter© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc.Elastic DataCenterAWS StorageGateway
  • Corporate DataCenter© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc.Elastic DataCenterAWS StorageGatewaySnapshotpulled from S3to restore localvolume
  • Corporate DataCenter© 2012 Amazon.com, Inc. and its affiliates. All rights reserved. May not be copied, modified or distributed in whole or in part without the express consent of Amazon.com, Inc.Elastic DataCenterAWS StorageGatewaySnapshotpulled from S3to create cloudinstancebacked byVolume
  • Gateway storedvolumesData stored locallyAsynchronous backupEBS snapshotsiSCSI local interfaceUp to 1TB volumesGateway cachedvolumesData stored in S3Recently read data cachedLow latencyiSCSI local interfaceUp to 32TB volumes
  • AWS Storage appliances and backup management
  • RDS and Oracle RMAN
  • Let’s look at the Pilot Light pattern…Common DR architecturesBackup & Restore Pilot lightWarm standby inAWSMulti-site solutionin AWS & on-premise
  • Moving along the DR spectrum…Pilot light architectureBuild resources aroundreplicated datasetKeep ‘pilot light’ on by replicating coredatabasesBuild AWS resources around dataset andleave in stopped state
  • Moving along the DR spectrum…Pilot light architectureBuild resources aroundreplicated datasetKeep ‘pilot light’ on by replicating coredatabasesBuild AWS resources around dataset andleave in stopped stateScale resources in AWS inresponse to a DR eventStart up pool of resources in AWS whenevents dictateMatch current production capacity throughauto-scaling polcies
  • Moving along the DR spectrum…Pilot light architectureBuild resources aroundreplicated datasetKeep ‘pilot light’ on by replicating coredatabasesBuild AWS resources around dataset andleave in stopped stateScale resources in AWS inresponse to a DR eventStart up pool of resources in AWS whenevents dictateMatch current production capacity throughauto-scaling policiesSwitch-over to system in AWS
  • Pilot lightStoppedinstances
  • Pilot lightRunninginstances
  • Customer example
  • EU region DR site for range of business applicationsAll running in a Virtual Private Cloud (VPC)DR provision for applications dependent on Oracle and SQL Server databasesIncludes DR for Active Directory and Windows file shares
  • VPC Subnet BRegionAvailability ZoneClient-to-site VPN Site-to-site VPNS3 Bucketswith ObjectsBastion HostInternetOn-premiseData Centre ARemoteDesktopsAWS Direct ConnectOn-premiseData Centre BVPC Subnet D VPC Subnet FDatabasesVPC Subnet EApplicationsVPC Subnet ASmartSentinelVPC Subnet GFileServersVPC Subnet CActiveDirectoryProxy Server
  • VPC Subnet BRegionAvailability ZoneClient-to-site VPN Site-to-site VPNS3 Bucketswith ObjectsBastion HostInternetOn-premiseData Centre ARemoteDesktopsAWS Direct ConnectOn-premiseData Centre BVPC Subnet D VPC Subnet FDatabasesVPC Subnet EApplicationsVPC Subnet ASmartSentinelVPC Subnet GFileServersVPC Subnet CActiveDirectoryProxy ServerDual routeconnectivity
  • VPC Subnet BRegionAvailability ZoneClient-to-site VPN Site-to-site VPNS3 Bucketswith ObjectsBastion HostInternetOn-premiseData Centre ARemoteDesktopsAWS Direct ConnectOn-premiseData Centre BVPC Subnet D VPC Subnet FDatabasesVPC Subnet EApplicationsVPC Subnet ASmartSentinelVPC Subnet GFileServersVPC Subnet CActiveDirectoryProxy ServerActive DirectoryReplication
  • VPC Subnet BRegionAvailability ZoneClient-to-site VPN Site-to-site VPNS3 Bucketswith ObjectsBastion HostInternetOn-premiseData Centre ARemoteDesktopsAWS Direct ConnectOn-premiseData Centre BVPC Subnet D VPC Subnet FDatabasesVPC Subnet EApplicationsVPC Subnet ASmartSentinelVPC Subnet GFileServersVPC Subnet CActiveDirectoryProxy ServerBastionHost
  • VPC Subnet BRegionAvailability ZoneClient-to-site VPN Site-to-site VPNS3 Bucketswith ObjectsBastion HostInternetOn-premiseData Centre ARemoteDesktopsAWS Direct ConnectOn-premiseData Centre BVPC Subnet D VPC Subnet FDatabasesVPC Subnet EApplicationsVPC Subnet ASmartSentinelVPC Subnet GFileServersVPC Subnet CActiveDirectoryProxy ServerDatabasereplication
  • VPC Subnet BRegionAvailability ZoneClient-to-site VPN Site-to-site VPNS3 Bucketswith ObjectsBastion HostInternetOn-premiseData Centre ARemoteDesktopsAWS Direct ConnectOn-premiseData Centre BVPC Subnet D VPC Subnet FDatabasesVPC Subnet EApplicationsVPC Subnet ASmartSentinelVPC Subnet GFileServersVPC Subnet CActiveDirectoryProxy ServerApplication images
  • VPC Subnet BRegionAvailability ZoneClient-to-site VPN Site-to-site VPNS3 Bucketswith ObjectsBastion HostInternetOn-premiseData Centre ARemoteDesktopsAWS Direct ConnectOn-premiseData Centre BVPC Subnet D VPC Subnet FDatabasesVPC Subnet EApplicationsVPC Subnet ASmartSentinelVPC Subnet GFileServersVPC Subnet CActiveDirectoryProxy ServerDesktopenvironments
  • VPC Subnet BRegionAvailability ZoneClient-to-site VPN Site-to-site VPNS3 Bucketswith ObjectsBastion HostInternetOn-premiseData Centre ARemoteDesktopsAWS Direct ConnectOn-premiseData Centre BVPC Subnet D VPC Subnet FDatabasesVPC Subnet EApplicationsVPC Subnet ASmartSentinelVPC Subnet GFileServersVPC Subnet CActiveDirectoryProxy ServerDurable databackups
  • Where to go next
  • Technology and services organisationsRich partner ecosystem
  • http://aws.amazon.com/backup-storagehttp://aws.typepad.comhttp://aws.amazon.com/whitepapers
  • Summary
  • The cloud makes backup and recovery easyYou can get started for pennies per monthThe cloud will scale to accommodate all of your dataYou retain visibility and control of your information
  • aws.amazon.com