To DR or Not To DR



Most organizations these days look at strategies and ways of implementing a "working" DR solution. Often a DR plan of action is a manual process based on multiple approvals at each level from Incident Management Teams to Product Ownership teams.

What if there was a way to keep an active DR running where failure of a primary site would seamlessly transfer the traffic to the secondary site. In fact if the DR is active or warm then the only manual bit would be disabling the primary site via DNS.
A few tips and tricks that would help in a simple implementation of a warm DR for an application hosted on AWS.

AMI 
  • Make sure that the AMIs are built across both the primary and secondary region. 
  • The fastest way to build multi-region AMIs would be to use different builds for each region using the same configuration management code altering the "REGION" parameter each time. This would make the AMIs consistent and available in each region.
PACKAGE REPOSITORY
  • The application packages/RPMs should be available and ready to be used across both the regions. 
  • If the packages are hosted in private S3 buckets then the application packages need to be uploaded to the S3 buckets in each region.
DEPLOYMENT
  • As a part of deployment, the application deployment code should take REGION as one of the parameters.
  • Each region should be deployed to during the scheduled deployment. A deployment would be successful only if both regions are successfully deployed to.
DNS
  • The best way to implement DNS in this case would be weighted.
  • Equal weights should be applied for both the site, ideally. But this could be left to the discretion of the business owners.
  • Each DNS entry should have a health check which would dictate whether the site is healthy for traffic or not. This would allow traffic to be shifted across sites automatically based on the health check.
  • If health checks aren't configured then the DNS switch would be a manual process.
DATABASE REPLICATION
  • Last but not the least, keeping the databases replicated would be the most important step in the DR strategy.
  • MySQL databases are easier to replicate as AWS provides auto-replication for MySQL. This makes it easier to create an active DR.
  • PostgreSQL is tricky business. Since AWS does not provide auto replication for PostgreSQL DBs, the replication would need to be manual in an event of DR. This needs to be a two way process. First between the primary and secondary sites to update the secondary site and when the primary site comes back up, to update the primary site.

Location: Sydney NSW, Australia

Comments

  1. Nagendra Reddy15 June 2016 at 11:06

    useful information with nice info-graphic.The info of DNS here clarify doubts on DNS in my
    devops online training. Thank You.

    ReplyDelete
  2. joe connors8 November 2016 at 03:15

    Thanks for sharing all the insformation about DevOps. DevOps offers the best career growth for all those people who are highly skilled in it. The investments in this field are huge owing to its prominence. Also, many companies are in need of qualified DevOps trained people and so, better knowledge in this field helps in getting better job opportunities among the most reputed companies.

    DevOps Course in Hyderabad

    ReplyDelete
  3. a1 trainings29 December 2016 at 00:01

    Thank you for giving information about devops. Excellent blog
    DevOps Online training
    Learning DevOps Online

    ReplyDelete
  4. SATHYA TECH12 April 2017 at 22:58

    This comment has been removed by the author.

    ReplyDelete
  5. SATHYA TECH12 April 2017 at 22:58

    thank you for provide valuable information.one of the recommanded blog

    best regards
    sathya technologies
    best Devops training in hyderabad
    Devops training in hyderabad
    Devops training in ameerpet

    ReplyDelete
  6. SATHYA TECH12 April 2017 at 22:59

    thank you for provide valuable information.one of the recommanded blog

    best regards
    sathya technologies

    ReplyDelete
  7. Unknown17 April 2017 at 03:18

    Thanks for sharing the very useful info about DevOps and keep updating........

    ReplyDelete
  8. Data science 30 April 2017 at 23:04

    Thanks for posting such a great article.you done a great job.
    Devops Online Training
    Devops Online Training in Hyderabad

    ReplyDelete
  9. Unknown27 May 2017 at 05:57

    Very useful Devops Practice Blog.Intellipaat is one of the best DevOps Training Online institute in Bangalore and providing IT End-to-End training with real-time hands-on exposure through the IT Experts to the students.Thank you.

    ReplyDelete
  10. Unknown30 May 2017 at 03:53

    Thanks for this valuable information .i was really learn about content how impact on devops Jobs in Hyderabad statistics but i get the answer of most of my queries.

    ReplyDelete
  11. Unknown9 June 2017 at 00:22

    Good article,By this i learn about devops. Keep place this of aricle.
    Thanks for information.
    best devops training institute in hyderabad

    ReplyDelete

Post a Comment

Popular posts from this blog

High Availability NAT for AWS VPC with Multiple Private Subnets.

Image
VPCs have become the de-facto architectural choice when deploying enterprise applications. They are highly secure, keep your infrastructure logically separated which when combined with the power that AWS has to offer become highly available and robust. The one thing, however, that still feels like a point of failure are the NAT instances that need to be created for all private subnet outbound connectivity to the internet or any service that is external to the VPC. This brings us to create a sort of NAT failover mechanism. High Availability for Amazon VPC NAT Instances by Jinesh Varia offers a solution for a simple VPC that has active NATs per private subnet and each keeps pinging the other till one of them loses connectivity. The active NAT, at that moment, "takes over" the route for the failed NAT. An edge case to this solution is when you have private subnets per AZ and there is a loss of connectivity between AZs. We were faced with the same issue, which brought the t
Read more

Load Balancer with SSL offloading - nginx + HAProxy

Image
HAProxy and nginx can be configured together to work as an SSL offloader and a load balancer. Listed below are the steps to achieve the same on a centOS instance. Assume 192.168.1.1 and 192.168.1.2 running web servers on port 80 and 192.168.1.3 running haproxy on port 8181. Starting with HAPROXY set up. 1.  Install haproxy.        yum install -y haproxy 2.  Edit the haproxy configuration to update the backend web servers and keep it at the basic log level.     global   log 127.0.0.1   local2   chroot          /var/lib/haproxy   pidfile         /var/run/haproxy.pid   maxconn         4096   user            haproxy   group           haproxy   daemon   defaults                      mode            http   log             global   option          httplog   option          dontlognull   option          http-server-close   option          forwardfor except 127.0.0.0/8   option          redispatch   retries         3   timeout         http-request    20s   timeout        
Read more