The following sections explain the Disaster Recovery model in detail.
Overview
Having a robust Disaster Recovery (DR) plan in place helps you recover from a failure of the production environment and continue using the application. Adeptia recommends you that you have the DR environment ready as a failover if anything unpredictable happens to your application, storage, or the database.
The illustration given below depicts the DR model recommended by Adeptia.
This can be achieved by having a two zone deployment of the application that share the same database for Read/Write purpose. In an ideal condition, all the requests are handled and processed in the production environment. The application in DR environment does not perform any kind of processing, nor does it interact with the database.
The following description gives you an idea about all the components of the DR model and thus the achieved infrastructure.
- Region 1 and Region 2 are the physical locations of the Kubernetes Cluster where the production and DR environment are set up respectively.
- Production environment governs the Adeptia Connect application that is in action and executes all the requests. It also has a storage and two databases (Primary Database and Sync Database).
- DR environment has another copy of the Adeptia Connect application and a storage. The application in the DR environment remains inactive until the application in the production environment goes down and there is a need to switch to the DR environment. This environment is connected to the same database being used in the production environment. However, the application deployed here neither interacts nor stores any data in the database until it gets active and starts processing the requests in the face of a disaster.
- Database is shared by both the environments. This model has a Primary Database synced to a Sync Database. When the Primary Database fails, the Sync Database takes over.
- Storage in production environment is synced to the storage in the DR environment that comes into picture when the application in the DR environment is in use.
Deploying the application in production and DR environments
The DR model encapsulates the environments – Production and DR – to be set up in Kubernetes Clusters located in two different zones in the cloud.
You can deploy the application and the databases in the production environment by following the standard steps and prerequisites described on this page. Additionally, ensure that,
- You have set the required DNS records to point to the production environment so as to send all the requests from an end user to this environment for processing.
While deploying the application in DR environment, you need to take the following prerequisites into account in addition to the standard ones prescribed for the regular deployment.
In the listener section of the global values.yaml file, set the value for the environment variable replicaCount to 0 (zero) to avoid processing of data in the DR environment.
- In the global values.yaml file, set the value for the environment variable QUARTZ_STATUS_ONBOOTUP to pause. This pauses the Scheduler.
- Ensure that the application version is same as that in the production environment.
Upgrading the environments
The prerequisites for upgrading the production and DR environments remain the same as that for the deployment of the application discussed in this section.
Switching from PROD to DR Environment
You may want to switch from production to DR environment based on your business requirement. To achieve this, follow the steps given below.
Important!
Before you follow the steps to switch from production to DR environment, install azcopy CLI on the client you use for accessing the Kubernetes cluster.
Steps to switch from PROD to DR environment
Scale down the Runtime and Listener deployments in the PROD environment by running two commands in the following formats.
kubectl scale --replicas=0 deployment <Release Name>-ac-runtime -n <namespace>
kubectl scale --replicas=0 deployment <Release Name>-ac-listener -n <namespace>
Pause Scheduler in the PROD environment
https://<webapp_Gateway_URL>/event/schedulerservice?_dc=1670999141899&query=Pause&page=1&start=0&limit=25
Scale down Rabbit MQ statefulset in the PROD environment
kubectl scale --replicas=0 statefulset <Release Name>-ac-rabbitmq -n <namespace>
- Scale down Rabbit MQ statefulset in the DR environment
kubectl scale --replicas=0 statefulset <Release Name>-ac-rabbitmq -n <namespace>
Initiate Failover for the storage account using below steps:
>> These failover steps are not mandatory. These steps are mandatory only when the Azure File Share is not accessible due to any failure.
>> As per Microsoft guideline, the time it takes to failover after initiation can vary though typically less than one hour.
Login into your Azure Portal.
Go to the Storage Account being used in the PVC of Prod environment.
Within that storage account go to Data Management > Redundancy section.
Click Prepare for failover and follow the instruction given on the screen. The failover process starts.
Once the Account Failover process completes the data from secondary region will be accessible from the existing end point of the storage account.
- Copy web/repository folder from PROD to DR environment
./azcopy sync "https://[account].file.core.windows.net/[PVC]/web/repository/?[SAS]" "https://[account].file.core.windows.net/[PVC]/web/repository/?[SAS]" --recursive=true
For Example:./azcopy sync "https://fxxxxxxxxxxxxxxxxxxxxx1b6a.file.core.windows.net/pvc-e38eca50-xxxx-xxxx-xxxx-828efd6d49df/web/repository/?sv=2021-06-08&ss=bfqt&srt=sco&sp=rwdlacupiytfx&se=2024-03-06T01:18:24Z&st=2023-03-05T17:18:24Z&spr=https,http&sig=VxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxaXBmSAKm4%3D" "https://fxxxxxxxxxxxxxxxxxxx3aeb.file.core.windows.net/pvc-1a6f1c1b-xxxx-xxxx-xxxx-44ff485d707f/web/repository/?sv=2021-06-08&ss=bfqt&srt=sco&sp=rwdlacupiytfx&se=2024-03-06T01:25:19Z&st=2023-03-05T17:25:19Z&spr=https,http&sig=vxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxGazWA%3D" --recursive=true
Copy recovery folder from PROD to DR environment
./azcopy sync "https://[account].file.core.windows.net/[PVC]/recovery/?[SAS]" "https://[account].file.core.windows.net/[PVC]/recovery/?[SAS]" --recursive=true
For Example:./azcopy sync "https://fxxxxxxxxxxxxxxxxxxxxx1b6a.file.core.windows.net/pvc-e38eca50-xxxx-xxxx-xxxx-828efd6d49df/recovery/?sv=2021-06-08&ss=bfqt&srt=sco&sp=rwdlacupiytfx&se=2024-03-06T01:18:24Z&st=2023-03-05T17:18:24Z&spr=https,http&sig=VxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxaXBmSAKm4%3D" "https://fxxxxxxxxxxxxxxxxxxx3aeb.file.core.windows.net/pvc-1a6f1c1b-xxxx-xxxx-xxxx-44ff485d707f/recovery/?sv=2021-06-08&ss=bfqt&srt=sco&sp=rwdlacupiytfx&se=2024-03-06T01:25:19Z&st=2023-03-05T17:25:19Z&spr=https,http&sig=vxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxGazWA%3D" --recursive=true
- Copy reprocessing folder from PROD to DR environment
./azcopy sync "https://[account].file.core.windows.net/[PVC]/reprocessing/?[SAS]" "https://[account].file.core.windows.net/[PVC]/reprocessing/?[SAS]" --recursive=true
For Example:
./azcopy sync "https://fxxxxxxxxxxxxxxxxxxxxx1b6a.file.core.windows.net/pvc-e38eca50-xxxx-xxxx-xxxx-828efd6d49df/web/reprocessing/?sv=2021-06-08&ss=bfqt&srt=sco&sp=rwdlacupiytfx&se=2024-03-06T01:18:24Z&st=2023-03-05T17:18:24Z&spr=https,http&sig=VxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxaXBmSAKm4%3D" "https://fxxxxxxxxxxxxxxxxxxx3aeb.file.core.windows.net/pvc-1a6f1c1b-xxxx-xxxx-xxxx-44ff485d707f/reprocessing/?sv=2021-06-08&ss=bfqt&srt=sco&sp=rwdlacupiytfx&se=2024-03-06T01:25:19Z&st=2023-03-05T17:25:19Z&spr=https,http&sig=vxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxGazWA%3D" --recursive=true - Copy Rabbitmq PVC content from PROD to DR environment
./azcopy sync "https://[account].file.core.windows.net/[PVC]/?[SAS]" "https://[account].file.core.windows.net/[PVC]/?[SAS]" --recursive=true --mirror-mode=true
For Example:
./azcopy sync "https://fxxxxxxxxxxxxxxxxxxxxx1b6a.file.core.windows.net/pvc-ef345e9d-xxxx-xxxx-xxxx-54e38de9cbd1/?sv=2021-06-08&ss=bfqt&srt=sco&sp=rwdlacupiytfx&se=2024-03-06T01:18:24Z&st=2023-03-05T17:18:24Z&spr=https,http&sig=VxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxaXBmSAKm4%3D" "https://fxxxxxxxxxxxxxxxxxxx3aeb.file.core.windows.net/pvc-4a47fa22-xxxx-xxxx-xxxx-f6538dfff1a7/?sv=2021-06-08&ss=bfqt&srt=sco&sp=rwdlacupiytfx&se=2024-03-06T01:25:19Z&st=2023-03-05T17:25:19Z&spr=https,http&sig=vxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxGazWA%3D" --recursive=true --mirror-mode=true - Scale up RabbitMQ statefulset in the DR environment
kubectl scale --replicas=1 statefulset <Release Name>-ac-rabbitmq -n <namespace> - Scale up Listener in the DR environment
kubectl scale --replicas=1 deployment <Release Name>-ac-runtime -n <namespace> - Resume Scheduler in the DR environment
https://<webapp_Gateway_URL>/event/schedulerservice?_dc=1670999141899&query=Resume&page=1&start=0&limit=25 - Update DNS record to route all request to DR environment
Switching back from DR to PROD Environment
Scale down Runtime and Listener deployments in the DR environment.
Pause Scheduler in the DR environment
Scale down Rabbit MQ statefulset in the DR environment
Scale down Rabbit MQ statefulset in the PROD environment
Copy web/repository folder from DR to PROD environment
Copy recovery folder from DR to PROD environment
Copy reprocessing folder from DR to PROD environment
Copy Rabbitmq PVC content from DR to PROD environment
Scale up RabbitMQ statefulset in the PROD environment.
Scale up Listener in the PROD environment
Resume Scheduler in the PROD environment
Update DNS record to route all request to PROD environment
Using DR to recover from a failure
Adeptia's DR model helps you recover from a failure. Adeptia's DR model covers the following two scenarios and the action steps you need to perform to address the failure and recover the infrastructure, application, and the data with a quick turnaround time.
When the production application goes down
Follow the steps given in the Switching from PROD to DR environment section.
When the Primary Database fails
Perform the following step to switch to the Sync Database:
- Update the DNS records to point to the Sync Database.
Switching back to the Primary Database
Once the Primary Database is restored, you need to do the followings to switch back to it from the Sync Database:
- Ensure that the Primary Database is connected and performing Read/Write operations.
- Replicate the data from the Sync Database to the Primary Database.
- Update the DNS records to point to the Primary Database.
When the Storage is not accessible
Follow the steps below to point to secondary storage location:
Login into your Azure Portal.
Go to the Storage Account being used.
Initiate “Account Failover”. The failover process starts.
Once the Account Failover process completes the data from secondary region will be accessible from the existing end point of the storage account.
Appendix A: Getting Shared Access Signature (SAS) of your Azure Storage Account
Login into your Azure Portal
Go the Storage Account
Within the Storage account go to Security + Networking > Shared Access Signature
Enable the required permission as show below:
Update the expiry date/time as per your need.
In the Allowed Protocol enable HTTP and HTTPS both.
Click Generate SAS and Connection String as shown below:
Use the File Service SAS URL.