Journey Through the AWS Cloud; Disaster Recovery
-
Upload
amazon-web-services -
Category
Technology
-
view
1.147 -
download
0
description
Transcript of Journey Through the AWS Cloud; Disaster Recovery
![Page 1: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/1.jpg)
Journey through the Cloud:
Disaster Recovery
Ryan Shu3leworth – Technical Evangelist @ryanAWS
![Page 2: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/2.jpg)
Common use cases & stepping stones into the AWS cloud Learning from customer journeys
Best pracFces to bootstrap your projects
Journey through the cloud
![Page 3: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/3.jpg)
Explore AWS for a ‘non-‐producFon’ use case Phase systems into ‘live’ DR use with relaFve ease
Choose your success objecFves for a cloud project ‘out of band’
Disaster recovery
![Page 4: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/4.jpg)
Why AWS for disaster recovery? AWS services that can be employed Common DR architectures Customer example Where to go next
Agenda
![Page 5: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/5.jpg)
Why AWS for Disaster Recovery?
![Page 6: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/6.jpg)
AWS is used in a variety of ways…
AWS & Disaster Recovery
Backup and disaster recovery system for its remote sales offices
Fast, secure and cost effec@ve backup and DR for Oracle Apps
Disaster recovery solu@on to backup and store cri@cal medical image data
DR and tes@ng environment reducing IT overhead and increasing availability
![Page 7: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/7.jpg)
You might be able to:
Business & technical drivers
Reduce costs
Slash DR budgets by up to 50%
Reduce on-‐premise
Eliminate 30%+ of on-‐premise physical equipment
Consolidate sites
Eliminate the need to run a secondary site
Remove aging technologies
Eliminate tape for backup and
archive
![Page 8: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/8.jpg)
DR is part of a wider set of policies and controls…
DR & business conFnuity
High availability Backup Disaster recovery
Keep your applica@ons running 24x7
Make sure you data is safe Get your applica@ons and data back aPer a major
disaster
![Page 9: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/9.jpg)
DR is part of a wider set of policies and controls…
DR & business conFnuity
It’s not an all or nothing thing Choose what needs to failover and what does not
Some things more important than others Some things will s@ll be working
High availability Backup Disaster recovery
Keep your applica@ons running 24x7
Make sure you data is safe Get your applica@ons and data back aPer a major
disaster
![Page 10: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/10.jpg)
Each set of IT assets will have different requirements…
DR & business conFnuity
Recovery Time ObjecFve (RTO)
How quickly you need this asset to be
recovered? e.g. 1min? 15min? 1hr? 4hrs? 1day?
Recovery Point ObjecFve (RPO)
How ‘fresh’ the recovery must be for the
asset? e.g. zero data loss, 15mins out of date?
![Page 11: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/11.jpg)
Assets will sit on a spectrum of technical complexity…
DR & business conFnuity
Rebuild when required from offsite backup
Run hot-‐hot configuraFon with
auto-‐failover
![Page 12: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/12.jpg)
The fundamental economic model…
UFlity, on-‐demand datacenter
Primary Site
Routers Firewalls Network
Applica@on Licenses Opera@ng Systems
Hypervisor Servers SAN
Primary Storage Backup Archive
Secondary Site
Routers Firewalls Network
Applica@on Licenses Opera@ng Systems
Hypervisor Servers SAN
Primary Storage Backup Archive
![Page 13: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/13.jpg)
The fundamental economic model…
UFlity, on-‐demand datacenter
Primary Site
Routers Firewalls Network
Applica@on Licenses Opera@ng Systems
Hypervisor Servers SAN
Primary Storage Backup Archive
AWS Routers Firewalls Network
Applica@on Licenses Opera@ng Systems
Hypervisor Servers SAN
Snapshot Storage Backup Archive
![Page 14: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/14.jpg)
The fundamental economic model…
UFlity, on-‐demand datacenter
Primary Site
Routers Firewalls Network
Applica@on Licenses Opera@ng Systems
Hypervisor Servers SAN
Primary Storage Backup Archive
AWS Routers Firewalls Network
Applica@on Licenses Opera@ng Systems
Hypervisor Servers SAN
Snapshot Storage Backup Archive
Secondary site costs
![Page 15: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/15.jpg)
Availability Zone
AWS is global Region
![Page 16: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/16.jpg)
Cer6fica6ons
SOC 1 Type 2 (formerly SAS70)
ISO 27001
PCI DSS for EC2, S3, EBS, VPC, RDS, ELB, IAM
FISMA Moderate Compliant Controls
HIPAA & ITAR Compliant Architecture
Physical Security
Datacenters in nondescript faciliFes
Physical access strictly controlled
Must pass two-‐factor authenFcaFon at least twice
for floor access
Physical access logged and audited
HW, SW, Network
SystemaFc change management
Phased updates deployment
Safe storage decommission
Automated monitoring and self-‐audit
Advanced network protecFon
Built to enterprise security standards
http://aws.amazon.com/security
![Page 17: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/17.jpg)
AWS services that can be
employed
![Page 18: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/18.jpg)
Amazon Simple Storage
Service (S3)
AWS Import/Export
AWS Storage Gateway Service
AWS Direct Connect
Amazon Virtual Private Cloud
(VPC)
Amazon Route 53
Amazon Elastic Compute Cloud
(EC2)
Amazon Relational Database Service (RDS)
Amazon Elastic Block
Storage (EBS)
Object storage & transfer services
Networking services FoundaFon services
![Page 19: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/19.jpg)
S3 and Elas@c Block Store
AWS storage is ideal for DR
Simple Storage Service
Highly scalable object storage
1 byte to 5TB in size
99.999999999% durability
ElasFc Block Store
High performance block storage device
1GB to 1TB in size
Mount as drives to instances with snapshot/cloning func@onali@es
![Page 20: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/20.jpg)
0.000
250.000
500.000
750.000
1000.000
1 Trillion
750k+ peak transacFons per second
Objects in S3
![Page 21: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/21.jpg)
Direct Connect Dedicated connec@on between your IT
infrastructure and the AWS datacenters
Extend your network infrastructure and VLANs into AWS
VPN ConnecFon A Hardware VPN connec@on connects
amazon environment to your datacenter
Internet Protocol security (IPsec) VPN connec@on
Commonly used hardware supported
Virtual Private Cloud Private, isolated sec@on of the AWS Cloud
Launch resources in a virtual network that you
define complete control over your virtual networking
environment
Internet
Internet
Networking options
![Page 22: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/22.jpg)
Common DR architectures
![Page 23: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/23.jpg)
4 main paherns
Common DR architectures
Backup & Restore Pilot light
Warm standby in AWS
Mul6-‐site solu6on in AWS & on-‐
premise
![Page 24: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/24.jpg)
We’ll focus on 2 of them…
Common DR architectures
Backup & Restore Pilot light
Warm standby in AWS
Mul6-‐site solu6on in AWS & on-‐
premise
![Page 25: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/25.jpg)
Let’s start with Backup & Restore
Common DR architectures
Backup & Restore Pilot light
Warm standby in AWS
Mul6-‐site solu6on in AWS & on-‐
premise
![Page 26: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/26.jpg)
Advantages to star@ng a journey with this pahern
Backup & Restore pa3ern
Simple to get started
Easy star@ng point for exploring the AWS cloud
Low technical barrier to entry
Focus on incorpora@ng cloud into your DR strategy, not on complex technical issues related to hot-‐hot systems
Cost effecFve
Very high levels of data durability at low price
Cost of storing snapshots in S3
Archiving possibili@es beyond tape using Glacier
![Page 27: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/27.jpg)
The prepara@on process…
Backup & Restore pa3ern
Take backups of current systems
Store backups in S3
Move to long term archive in Glacier
![Page 28: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/28.jpg)
The process…
Backup & Restore pa3ern
Take backups of current systems
Store backups in S3
Detail how you will restoring from backup or recover from archive
Move to long term archive in Glacier
![Page 29: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/29.jpg)
Push backups to AWS
![Page 30: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/30.jpg)
Store AMIs for servers
![Page 31: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/31.jpg)
Recover servers during DR
![Page 32: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/32.jpg)
Glacier Long term cold storage
From $0.01 per GB/Month
99.999999999% durability
Long term archive Amazon Glacier
![Page 33: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/33.jpg)
AWS Storage Gateway and backup management
![Page 34: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/34.jpg)
RDS and Oracle RMAN
![Page 35: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/35.jpg)
Let’s look at the Pilot Light pahern…
Common DR architectures
Backup & Restore Pilot light
Warm standby in AWS
Mul6-‐site solu6on in AWS & on-‐
premise
![Page 36: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/36.jpg)
Moving along the DR spectrum…
Pilot light architecture
Build resources around replicated dataset
Keep ‘pilot light’ on by replica@ng core
databases
Build AWS resources around dataset and leave in stopped state
![Page 37: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/37.jpg)
Moving along the DR spectrum…
Pilot light architecture
Build resources around replicated dataset
Keep ‘pilot light’ on by replica@ng core
databases
Build AWS resources around dataset and leave in stopped state
Scale resources in AWS in response to a DR event
Start up pool of resources in AWS when
events dictate
Match current produc@on capacity through auto-‐scaling polcies
![Page 38: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/38.jpg)
Moving along the DR spectrum…
Pilot light architecture
Build resources around replicated dataset
Keep ‘pilot light’ on by replica@ng core
databases
Build AWS resources around dataset and leave in stopped state
Scale resources in AWS in response to a DR event
Start up pool of resources in AWS when
events dictate
Match current produc@on capacity through auto-‐scaling policies
Switch-‐over to system in AWS
![Page 39: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/39.jpg)
Pilot light
Stopped instances
![Page 40: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/40.jpg)
Pilot light
Running instances
![Page 41: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/41.jpg)
Customer example
![Page 42: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/42.jpg)
EU region DR site for range of business applicaFons
All running in a Virtual Private Cloud (VPC)
DR provision for applicaFons dependent on Oracle and SQL Server databases
Includes DR for AcFve Directory and Windows file shares
![Page 43: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/43.jpg)
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Bucketswith Objects
Bastion Host
Internet
On-premiseData Centre A
RemoteDesktops
AWS Direct Connect
On-premiseData Centre B
VPC Subnet D VPC Subnet F
Databases
VPC Subnet E
Applications
VPC Subnet A
SmartSentinel
VPC Subnet G
FileServers
VPC Subnet C
ActiveDirectory
Proxy Server
![Page 44: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/44.jpg)
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Bucketswith Objects
Bastion Host
Internet
On-premiseData Centre A
RemoteDesktops
AWS Direct Connect
On-premiseData Centre B
VPC Subnet D VPC Subnet F
Databases
VPC Subnet E
Applications
VPC Subnet A
SmartSentinel
VPC Subnet G
FileServers
VPC Subnet C
ActiveDirectory
Proxy Server
Dual route connectivity
![Page 45: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/45.jpg)
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Bucketswith Objects
Bastion Host
Internet
On-premiseData Centre A
RemoteDesktops
AWS Direct Connect
On-premiseData Centre B
VPC Subnet D VPC Subnet F
Databases
VPC Subnet E
Applications
VPC Subnet A
SmartSentinel
VPC Subnet G
FileServers
VPC Subnet C
ActiveDirectory
Proxy Server
Active Directory Replication
![Page 46: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/46.jpg)
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Bucketswith Objects
Bastion Host
Internet
On-premiseData Centre A
RemoteDesktops
AWS Direct Connect
On-premiseData Centre B
VPC Subnet D VPC Subnet F
Databases
VPC Subnet E
Applications
VPC Subnet A
SmartSentinel
VPC Subnet G
FileServers
VPC Subnet C
ActiveDirectory
Proxy Server
Bastion Host
![Page 47: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/47.jpg)
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Bucketswith Objects
Bastion Host
Internet
On-premiseData Centre A
RemoteDesktops
AWS Direct Connect
On-premiseData Centre B
VPC Subnet D VPC Subnet F
Databases
VPC Subnet E
Applications
VPC Subnet A
SmartSentinel
VPC Subnet G
FileServers
VPC Subnet C
ActiveDirectory
Proxy Server
Database replication
![Page 48: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/48.jpg)
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Bucketswith Objects
Bastion Host
Internet
On-premiseData Centre A
RemoteDesktops
AWS Direct Connect
On-premiseData Centre B
VPC Subnet D VPC Subnet F
Databases
VPC Subnet E
Applications
VPC Subnet A
SmartSentinel
VPC Subnet G
FileServers
VPC Subnet C
ActiveDirectory
Proxy Server
Application images
![Page 49: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/49.jpg)
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Bucketswith Objects
Bastion Host
Internet
On-premiseData Centre A
RemoteDesktops
AWS Direct Connect
On-premiseData Centre B
VPC Subnet D VPC Subnet F
Databases
VPC Subnet E
Applications
VPC Subnet A
SmartSentinel
VPC Subnet G
FileServers
VPC Subnet C
ActiveDirectory
Proxy Server
Desktop environments
![Page 50: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/50.jpg)
VPC Subnet B
Region
Availability Zone
Client-to-site VPN Site-to-site VPN
S3 Bucketswith Objects
Bastion Host
Internet
On-premiseData Centre A
RemoteDesktops
AWS Direct Connect
On-premiseData Centre B
VPC Subnet D VPC Subnet F
Databases
VPC Subnet E
Applications
VPC Subnet A
SmartSentinel
VPC Subnet G
FileServers
VPC Subnet C
ActiveDirectory
Proxy Server
Durable data backups
![Page 51: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/51.jpg)
Where to go next
![Page 52: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/52.jpg)
Technology and services organisa@ons
Rich partner ecosystem
![Page 53: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/53.jpg)
h3p://aws.amazon.com/backup-‐storage
h3p://aws.typepad.com
h3p://aws.amazon.com/whitepapers
![Page 54: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/54.jpg)
Summary
![Page 55: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/55.jpg)
The cloud makes backup and recovery easy
You can get started for pennies per month
The cloud will scale to accommodate all of your data
You retain visibility and control of your informaFon
![Page 56: Journey Through the AWS Cloud; Disaster Recovery](https://reader033.fdocuments.us/reader033/viewer/2022042813/548592545806b59a588b47e1/html5/thumbnails/56.jpg)
aws.amazon.com get started on the free Fer