Advanced Architecture Design for Cloud-Based Disaster Recovery WHITE PAPER

Similar documents
VMware vcloud Air. Enterprise IT Hybrid Data Center TECHNICAL MARKETING DOCUMENTATION

vsphere Replication for Disaster Recovery to Cloud vsphere Replication 8.1

vsphere Replication for Disaster Recovery to Cloud

vsphere Replication for Disaster Recovery to Cloud

VMware vrealize Suite and vcloud Suite

vsphere Replication for Disaster Recovery to Cloud vsphere Replication 6.5

VMware vcloud Air User's Guide

VMware vcloud Air Accelerator Service

Installing and Configuring vcloud Connector

vcloud Air - Dedicated Disaster Recovery User's Guide

How to Use a Tomcat Stack on vcloud to Develop Optimized Web Applications. A VMware Cloud Evaluation Reference Document

vsphere Replication 6.5 Technical Overview January 08, 2018

What s New with VMware vcloud Director 8.0

VMware vcloud Air Key Concepts

VMware vsphere Data Protection 5.8 TECHNICAL OVERVIEW REVISED AUGUST 2014

Installing and Configuring vcloud Connector

1V0-602.exam. Number: 1V0-602 Passing Score: 800 Time Limit: 120 min. Vmware 1V VMware Certified Associate 6 Hybrid Cloud Fundamentals

What s New in VMware vsphere Availability

Monitoring Hybrid Cloud Applications in VMware vcloud Air

vcloud Air - Virtual Private Cloud OnDemand User's Guide

CONFIDENTLY INTEGRATE VMWARE CLOUD ON AWS WITH INTELLIGENT OPERATIONS

VMware vcloud Director Infrastructure Resiliency Case Study

DISASTER RECOVERY- AS-A-SERVICE FOR VMWARE CLOUD PROVIDER PARTNERS WHITE PAPER - OCTOBER 2017

What s New in VMware vcloud Automation Center 5.1

Customer Onboarding with VMware NSX L2VPN Service for VMware Cloud Providers

VMWARE HORIZON CLOUD WITH VMWARE IDENTITY MANAGER QUICK START GUIDE WHITE PAPER MARCH 2018

Disaster Recovery-to-the- Cloud Best Practices

WHITE PAPER SEPTEMBER 2017 VCLOUD DIRECTOR 9.0. What s New

VMware vcloud Architecture Toolkit Hybrid VMware vcloud Use Case

TECHNICAL WHITE PAPER AUGUST 2017 REVIEWER S GUIDE FOR VIEW IN VMWARE HORIZON 7: INSTALLATION AND CONFIGURATION. VMware Horizon 7 version 7.

REVISED 6 NOVEMBER 2018 COMPONENT DESIGN: VMWARE IDENTITY MANAGER ARCHITECTURE

ARCHITECTURAL OVERVIEW REVISED 6 NOVEMBER 2018

CLOUD PROVIDER POD. for VMware. Release Notes. VMware Cloud Provider Pod January 2019 Check for additions and updates to these release notes

Certified Reference Design for VMware Cloud Providers

VMware vsphere Data Protection Evaluation Guide REVISED APRIL 2015

Using VMware vsphere Replication. vsphere Replication 6.5

vcloud Air - Dedicated Disaster Recovery Release Notes

Dedicated Hosted Cloud with vcloud Director

CLOUD PROVIDER POD RELEASE NOTES

VMware View Upgrade Guide

BC/DR Strategy with VMware

Getting Started with ESX Server 3i Installable Update 2 and later for ESX Server 3i version 3.5 Installable and VirtualCenter 2.5

Storage Considerations for VMware vcloud Director. VMware vcloud Director Version 1.0

Getting Started with ESXi Embedded

HARNESSING THE HYBRID CLOUD TO DRIVE GREATER BUSINESS AGILITY

How to Lift-and-Shift a Line of Business Application onto Google Cloud Platform

Microsoft E xchange 2010 on VMware

VMware vcloud Director for Service Providers

vcloud Director Administrator's Guide

Deploying VMware Identity Manager in the DMZ. SEPT 2018 VMware Identity Manager 3.3

What s New in VMware vcloud Director 8.20

Workload Mobility and Disaster Recovery to VMware Cloud IaaS Providers

VMware vfabric Data Director Installation Guide

VVD for Cloud Providers: Scale and Performance Guidelines. October 2018

7 Things ISVs Must Know About Virtualization

VMWARE CLOUD FOUNDATION: INTEGRATED HYBRID CLOUD PLATFORM WHITE PAPER NOVEMBER 2017

vshield Administration Guide

Migration WordPress to Azure using Azure Site Recovery (ASR)

WHITE PAPER SEPTEMBER VMWARE vsphere AND vsphere WITH OPERATIONS MANAGEMENT. Licensing, Pricing and Packaging

Asigra Cloud Backup Provides Comprehensive Virtual Machine Data Protection Including Replication

Deploying VMware Identity Manager in the DMZ. JULY 2018 VMware Identity Manager 3.2

What s New in VMware vsphere Storage Appliance 5.1 TECHNICAL MARKETING DOCUMENTATION V 1.0/UPDATED JULY 2012

Using VMware vrealize Orchestrator with VMware vcloud Availability for vcloud Director Version 1.0 April 2017

VMware Identity Manager Connector Installation and Configuration (Legacy Mode)

Getting Started with ESX Server 3i Embedded ESX Server 3i version 3.5 Embedded and VirtualCenter 2.5

TECHNICAL WHITE PAPER - MAY 2017 MULTI DATA CENTER POOLING WITH NSX WHITE PAPER

The vsphere 6.0 Advantages Over Hyper- V

Redefining Networking with Network Virtualization

VMware vcloud Networking and Security Overview

Introducing VMware Validated Design Use Cases

REVISED 6 NOVEMBER 2018 COMPONENT DESIGN: UNIFIED ACCESS GATEWAY ARCHITECTURE

Copyright 2015 EMC Corporation. All rights reserved. Published in the USA.

VMware vfabric Data Director Installation Guide

VMWARE PIVOTAL CONTAINER SERVICE

CLOUD PROVIDER POD RELEASE NOTES

VMWARE SERVICE PROVIDER PROGRAM PRODUCT USAGE GUIDE Q2

VMware vcloud Director Configuration Maximums vcloud Director 9.1 and 9.5 October 2018

10 QUESTIONS, 10 ANSWERS. Get to know VMware Cloud on AWS The Best-in-Class Hybrid Cloud Service

VMware Site Recovery Technical Overview First Published On: Last Updated On:

VMware AppCatalyst Technical Preview June 2015 TECHNICAL WHITE PAPER

Achieving Digital Transformation: FOUR MUST-HAVES FOR A MODERN VIRTUALIZATION PLATFORM WHITE PAPER

SOLUTION BRIEF Enterprise WAN Agility, Simplicity and Performance with Software-Defined WAN

vcloud Director Administrator's Guide

vcloud Air - Virtual Private Cloud OnDemand Networking Guide

VMware vsphere 5.0 Evaluation Guide

Zerto Virtual Replication Release Notes Version 3.0U5

VMware Workspace ONE Quick Configuration Guide. VMware AirWatch 9.1

Architecting a Hybrid Database Strategy with Microsoft SQL Server and the VMware Cloud Provider Program

Introducing VMware Validated Design Use Cases. Modified on 21 DEC 2017 VMware Validated Design 4.1

vcloud Director Administrator's Guide vcloud Director 8.10

VMWARE VSPHERE FEATURE COMPARISON

STREAMLINING THE DELIVERY, PROTECTION AND MANAGEMENT OF VIRTUAL DESKTOPS. VMware Workstation and Fusion. A White Paper for IT Professionals

What s New in VMware vsphere 5.1 VMware vcenter Server

vcenter Server Installation and Setup Update 1 Modified on 30 OCT 2018 VMware vsphere 6.7 vcenter Server 6.7

Multi-Machine Guide vcloud Automation Center 5.2

Introducing VMware Validated Designs for Software-Defined Data Center

VMWARE CLOUD FOUNDATION: THE SIMPLEST PATH TO THE HYBRID CLOUD WHITE PAPER AUGUST 2018

HOW MIDSIZE ORGANIZATIONS CAN MEET COMPLIANCE REQUIREMENTS AND ENHANCE CYBERSECURITY WITH MICRO-SEGMENTATION WHITE PAPER FEBRUARY 2018

Introducing VMware Validated Designs for Software-Defined Data Center

White P C aper Title Here arbonite Cloud Migration Te T c e hnica ic l a G l g uide VM VM

Transcription:

Advanced Architecture Design for Cloud-Based Disaster Recovery WHITE PAPER

Introduction Disaster Recovery (DR) is a fundamental tool for mitigating IT and business risks. But because it is perceived as expensive and complicated, only a minority of even Tier 1 and Tier 2 applications are protected by DR. New virtual hybrid cloud services some purpose-built for DR have changed the technical and business landscape. The purpose of this report is to update perceptions of DR cost and complexity, and chart a path toward wider adoption. This paper is part of a project to design and build a full-scale hybrid architecture using VMware vcloud Air. Specifically, it shows how organizations can replicate their virtual machines to a disaster-recovery virtual data center in vcloud Air, to protect more of their applications from data loss and downtime without the burdens of building and managing their own tertiary DR sites. The brief covers both basic and advanced topics related to vcloud Air Disaster Recovery environments: The advantages and basics of setting up and migrating to a vcloud Air hybrid cloud Disaster Recovery environment. How and where to set up resources to run supporting infrastructure such as Active Directory and DNS. Data Seeding, using a live cloned copy of a virtual machine to reduce the time needed to replicate it. Configuring multiple machines for vcloud Air Disaster Recovery replication. Setting up native failback via reverse replication. This paper assumes that the reader is familiar with vcloud Air and knows how to access vcloud Air resources. vcloud Air Disaster Recovery Overview and Installation Managed-services approaches to DR services can be expensive, because instead of reducing the complexity of the underlying environment, they often try to overpower it by applying human resources. This causes problems during recovery, because complexity slows down recovery processes and it s difficult to scale up or re-deploy staff quickly enough to cope with an emergency. vcloud Air Disaster Recovery was designed for simplicity. This not only holds down costs, it allows planning, maintenance, management, and emergency response to be carried out by an organization s own teams. For organizations that prefer a managed-services model, VMware s worldwide network of partners offers services to meet any requirement. Because vcloud Air Disaster Recovery is based on VMware vsphere, it supports the industry s widest range of certified operating systems (90+) and applications (more than 5,000). It requires no tricky virtual machine conversions vital in a real disaster when you need your applications back right away. In a disaster, you may run your applications on vcloud Air as long as you need, and then transfer your virtual machines and data back to your own site at your convenience. Working with vcloud Air Disaster Recovery is simple: 1. Download and install the replication virtual appliance into your supported vsphere environment. 2. Connect the replication appliance to your vcloud Air Disaster Recovery environment. 3. Specify the virtual machines to protect in your vsphere environment with their recovery point objective(s). 4. Start replication. Alternately, you can also ship VMware a disk containing your virtual machines to seed the initial replication process. After seeding, only the changes (deltas) are replicated to vcloud Air. More information about the installation and configuration for vcloud Air Disaster Recovery can be found in the VMware vcloud Air Disaster Recovery User s Guide. WHITE PAPER / 2

Setting up Supporting Infrastructure Most enterprise applications rely on a domain controller or directory service for authentication. Most physical Disaster Recovery environments run these infrastructure services like Active Directory and DNS on machines that are kept hot and always on at the DR site. As a best practice, domain controllers aren t replicated, because the DR site has a different IP address range. Instead, the DR environment is treated as simply another site in Active Directory, and certain applications and resources are kept running there waiting for failed-over machines to use them. But vcloud Air Disaster Recovery resources are not always on. To keep standby costs low, a virtual machine replica is only on storage until a failure or test failover the machines don t use any compute and memory resources until then. As a result, infrastructure services like Active Directory or DNS should not be running inside a Disaster Recovery environment. There are several options for running these pilot light services on machines outside your vcloud Air Disaster Recovery subscription: 1. Connect to an existing physical site by VPN. 2. Cross-connect to a cage in a vcloud Air location where those resources may already be running. 3. Purchase a vcloud Air Virtual Private Cloud or vcloud Air Dedicated Cloud subscription to run the services and set up a cloud-to-cloud VPN, or leverage vcloud Air Virtual Private Cloud OnDemand to run the services and setup a cloud-to-cloud VPN. 1. VPN from Physical Site This option only works if you already have two or more physical sites running these infrastructure services. With just one site, the services you need would be running on the infrastructure you are protecting so if the site goes down, your services do, too. But if you have two sites and are protecting only one of them into vcloud Air, you can use the other site to run your services as shown in Figure 1: Figure 1: Arranging for Active Directory and DNS services by VPN from a physical site. WHITE PAPER / 3

2. Cross-Connect to a Cage With vcloud Air, you can arrange to stand up your own physical infrastructure in a co-location arrangement at the same data centers as the vcloud Air Disaster Recovery environment. vcloud Air then offers an add-on option of cross-connect the ability to wire from your vcloud Air resources directly to your cage with a highspeed private connection. The directory services can be running in your cage as a secondary site along with other workloads and the failed over workloads in vcloud Air Disaster Recovery can point to the cage when they are recovered. Figure 2: Cross-connect option from customer data center cage. 3. Cloud-to-Cloud VPN with Virtual Private Cloud, Dedicated Cloud or Virtual Private Cloud OnDemand This final option is particularly good if you are planning to add infrastructure-as-a-service resources with vcloud Air, or plan to connect new standard vcloud Air resources back to your on-premises data center with basic services provided from the cloud. Once you have these in place, you are already set up to configure a cloud-to-cloud VPN. Figure 3: Cloud-to-cloud option. WHITE PAPER / 4

This is the setup used in the tutorial video series available on the tutorials page. The benefit of this last approach is you can run these resources in any vcloud Air location and connect them together as well as back to your own premises. Network Considerations Some network considerations apply when configuring VPN connections and Active Directory Sites and Services: For VPN, the endpoint networks cannot be the same. VPN mappings must use the correct vcloud Air Edge Gateway firewall rules to allow traffic to pass. Networks in the vcloud Air Disaster Recovery environment should be defined as a new Site with the proper domain controller assigned. Support Infrastructure Conclusions As shown, there are multiple ways to provide always-on support infrastructure for cloud Disaster Recovery resources. The intent here is not to give step-by-step configuration instructions for every possible setup, but to illustrate concepts you can apply to your own environment. Zero-Downtime Seeding for Replication Depending on the size of the virtual machine and the available network bandwidth, the initial replication or transfer of data to Disaster Recovery environments can take a long time. Data seeding can reduce it considerably, but there is a trade-off. Data seeding for vcloud Air Disaster Recovery is usually done using the vcloud Connector copy feature, which requires that the machine be powered off before it can be copied. This section documents an alternative approach: first cloning the machine while running, using VMware vcloud Connector to copy it, and then configuring the replication seed from the cloned-and-copied version. Three options are compared: 1. Full replication from the ground up 2. Standard seeding: vcloud Connector copy of the powered-off machine with data-seed replication. This option requires copying the machine to a vcloud Air Disaster Recovery catalog, and then deploying it to the cloud. 3. Live clone of the machine in VMware vcenter under a temporary name, then copying it into vcloud Air Disaster Recovery under the original name, followed by data seeding. This also requires copying it to the catalog, then deploying to the cloud. 1. Full Replication In the test case, initial sync over the Internet transferred about 14GB of data, the usage of the virtual machine on disk. It runs a checksum on the entire disk, configured in this case for 50GB, but only transfers what is actually in use. Figure 4 shows the full amount of data transferred. The entire process took 68 minutes to transfer 14GB of data. Figure 4: Full replication in progress. WHITE PAPER / 5

2. Seeding by vcloud Connector Copy Here the machine was shut down, copied to the vcloud Air Catalog, then deployed to the cloud for use as a seed. When using this approach, please note: Unlike the unique identifiers assigned when machines are replicated from scratch, vcloud Connector leaves it up to the user to create templates and vapp names in VMware vcloud Director. From scratch machines are owned by System, but those deployed from templates or vcloud Connector copies are owned by the user specified in vcloud Director. Stopping replication does not remove the seeded virtual machine from vcloud Air Disaster Recovery the way it does for a ground-up replication. The seeded virtual machine will remain deployed to the cloud and in the catalog until they are removed. This approach significantly reduced the amount of data transferred for the seed only about 7.32MB. The checksum process still takes time to complete on the entire machine, so the total time needed for synchronization, at 71 minutes, was about the same but with much less data transfer over the wire. Figure 5: Seeding by vcloud Connector copy, in progress. 3. Live vsphere Clone With vcloud Connector Data Seed This final approach is similar to the preceding one, except that it starts with a vsphere live clone of the running machine. Then, as before, vcloud Connector copied the live clone up to vcloud Air Disaster Recovery and deployed it for use as a seed. The expectation is that the initial sync will be comparable to the preceding method, but because live cloning allows export of the copies using Offline Data Transfer, it eliminates downtime. The approach is straightforward: 1. Take a live clone of the virtual machine in vsphere, with no customization, not even powered-on. Keep the original virtual machine powered on and running. 2. Use vcloud Connector Copy or Offline Data Transfer to offload the cloned data to vcloud Air Disaster Recovery 3. Deploy the vcloud Connector Copy machine imported into template to the cloud for use as a seed. With ODT, this is done for you. 4. Configure VMware vsphere Replication using data seeding for every cloned and imported machine. This will initiate synchronization on the changed data between the live virtual machine and the seeded clone. 5. Repeat the process for every virtual machine that needs a seed. 6. Remove the vsphere clones from disk. In practice, the data for each machine would usually be sent to the ODT appliance and on to VMware for import to the cloud. If there are on-premises storage limitations, this might need to be done in batches: clone and copy each batch to the appliance, delete the clones, and repeat. WHITE PAPER / 6

You can see in Figure 6 that the initial sync is similar to the other approaches. The initial sync time took 65 minutes, but it transferred a total of 617 MB of data. Figure 6: Seeding by live vsphere clone, in progress. This workaround lets you seed replications using Offline Data Transfer without the need to power off the source machine. Please note that this works with vcloud Air Disaster Recovery because although vsphere Replication validates disk UUID values when making vcenter-to-vcenter replications, it ignores them for replications to vcloud Air. Configuring Multiple Machines for Replication vcloud Air Disaster Recovery allows you to configure multiple machines for replication. The following example assumes you have set up the correct version of vsphere Replication Appliance for replication to vcloud Air, and you have a vcloud Air Disaster Recovery account. Please also note: You must select machines of the same OS type. If you select Windows and Linux, for example, the Linux machines may fail to configure because Windows supports Guest Quesicing under Microsoft Volume Shadow (Copy) Service. All machines will begin replicating at about the same time, staggered slightly according to when their configuration steps finish. This can push a lot of data over your networks if there are too many machines in a group. Every machine in a group will initially be set up with the same Recovery Point Objective (RPO). You can adjust machines later by changing their individual settings. You can use vsphere tags to group machines according to RPO, OS type, or other logical groupings. Once tagged, you can sort them to configure the replication. WHITE PAPER / 7

Configuration Process Highlighting the group you want and right-click to select Configure Replication as shown in Figure 7: Figure 7: Selecting a group of machines for replication. After a validation check, continue configuration using the normal options for a Cloud Provider. When you finish, the task pane will show all selected machines configuring: Figure 8: Multiple machine configuration in progress. You can also use multi-select to stop replication on multiple machines at once. Only re-configure, stop, and pause options not failover and test are available when you multi-select. You may call the failover options on multiple machines through scripts using the vcloud Air API extensions. WHITE PAPER / 8

Multi-select configuration also works for Data Seeding, producing a side-by-side selection in which you may choose and match sources to destination seeds. This is shown in Figure 9. Note that many of the same limits apply, for example that all selections will initially use the same RPO. Figure 9: Multiple machine configuration in progress. Setting up Failback with Reverse Replication Once you have initiated a failover to a vcloud Air Disaster Recovery, you may want to fail-back to your on-premises vsphere environment when that site is operational again. This is easily achieved by using the incoming replication option in the vsphere Replication appliance. The example shown here assumes you have already performed a failover to vcloud Air Disaster Recovery and have a new on-premises vsphere environment without any existing virtual machines: 1. Select the Incoming Replications in vsphere Replication Monitor area of the vsphere Web Client and click the Configure replication from Cloud Provider configure button. This will display the Configure replication from Cloud Provider Wizard. 2. Walk through the same configuration steps as you would to configure replication to a cloud provider. Once you have access to your vcloud Air Disaster Recovery environment, you are prompted with a set of virtual machines that are hosted in your cloud. WHITE PAPER / 9

3. Select the virtual machines you want to replicate from vcloud Air back to your on-premises environment. 4. Pick a target data store on-premises that is attached to your vsphere hosts. WHITE PAPER / 10

5. Specify your Recovery Point Objective. 6. Confirm your settings, and click Finish. WHITE PAPER / 11

You will then see a task appear in vcenter confirming that the configuration is being performed. Once the replication has been completed, you will see that the status shows a Green OK, indicating the initial full sync has completed and that replication was successful. Conclusions Assuring continuity of applications and data through enterprise-grade Disaster Recovery practices is a prerequisite for any full-scale enterprise hybrid architecture using VMware vcloud Air or any cloud infrastructure-as-a-service solution. The examples reviewed here extend the vcloud Air use cases to include Disaster Recovery in the cloud, with 1. Clear, simplified setup and migration processes. 2. Multiple options to support the DR environment with Active Directory, DNS, and other infrastructure services. Efficient data seeding alternatives to reduce initial migration time. 3. Multiple-machine configuration protocols to reduce administrative burdens. 4. Easy to deploy failback replication to move workloads back on-premises. vcloud Air is an enterprise-ready hybrid cloud solution, ready now to meet the most demanding requirements. WHITE PAPER / 12

VMware, Inc. 3401 Hillview Avenue Palo Alto CA 94304 USA Tel 877-486-9273 Fax 650-427-5001 www.vmware.com Copyright 2015 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. VMware products are covered by one or more patents listed at http://www.vmware.com/go/patents. VMware is a registered trademark or trademark of VMware, Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies. Item No: VMW7874-WP-ADV-ARCHIT-CLD-BASED-DISTR-RCVRY-USLET-101 07/15

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback