IM B19 Cloud based DR - Home - VOXvox.veritas.com/legacyfs/online/veritasdata/IM B19.pdfIM B19 –...
Transcript of IM B19 Cloud based DR - Home - VOXvox.veritas.com/legacyfs/online/veritasdata/IM B19.pdfIM B19 –...
IM B19 – Cloud based DR
Andreas Bechter Regional Product Manager NetBackup EMEA
SYMANTEC VISION 2012
Cloud based DR
To whom it could be interesting today
• Small to Mid Size companies with no second DR site
• Requirements to have a copy offsite
• Requirements to validate data in a DR test every 6-12 months
Market observations:
• New IT Projects are often done with Virtual Machines
• New Services at the Service Provider level are becoming available (vCloud)
SYMANTEC VISION 2012
Cloud based DR
I postulate, for an Enterprise with PetaByte of data a full DR from the cloud through the wire is not possible over the wire today. Selective DR is.
Key is the wire speed / bandwidth and this has increased constantly over the past years.
SYMANTEC VISION 2012
“Because something does not fully work today it does not mean you can ignore it.”
Andreas Bechter, VISION 2012 Barcelona – Quote me on this
Think backup about 25 years, “internet” connection speed was measured in baud, most information was text based only.
Today: We do live streams of huge amounts of data, webex, video conferencing, video clips, news, etc.
1988/1989
SYMANTEC VISION 2012
Disaster Recovery plan Are you prepared to handle a disaster?
Cost of Downtime
Average time to recover from a disaster 18.5 hours
Average data lost during a disaster 4.8 hours
Average cost of a disaster $ 145,000/hour
Source: Forrester/DR Journal Nov 2010
Causes of Downtime
Source: Symantec/DR Annual Survey 2010
Power Outage (70%)
Cyber Attacks (63%)
Tsunami (44%)
System Upgrades (72%) Fire (69%)
Configuration Management (72%)
SYMANTEC VISION 2012
Challenges
Provision and image backup server
Provision and image target servers and load applications
Failure occurs
Obtain most recent backup images
Restore backup images to target server
Disaster Recovery plan Manual recovery increases downtime and costs
Manually bring up applications in correct sequence
Validate data and that applications are running correctly
Make DNS changes to allow user access to applications
Normal operations resume
00:00:00 04:00:00
Personnel unavailable?
Operator error?
Missing patch?
Wrong configuration?
Coordination between IT teams?
Incident recognition? Problem diagnosis?
SYMANTEC VISION 2012
Application Availability
Data Availability
Disaster Recovery Readiness
SYMANTEC VISION 2012
Disaster Recovery readiness Are We Prepared?
Detecting problems is difficult
* 2010 Symantec Disaster Recovery Survey
System upgrades are the leading cause of downtime – 72%* and potential problems aren’t obvious
Testing is expensive
Testing is infrequent and results are subpar
• 20% of large enterprises test less than once a year* • Nearly a third of DR tests fail*
Large enterprises say DR tests are disruptive: • 24% say DR tests impact revenues* • Nearly 59% say DR tests disrupt employees*
SYMANTEC VISION 2012
What is the Cloud?
“X as a Service” Types of Clouds –Software as a Service (SaaS)
• Salesforce.com
• Google Apps
–Platform as a Service (PaaS) • Google App Engine
• Force.com
– Infrastucture as a Service (IaaS) • Amazon EC2
• Rackspace
• Savvis
SYMANTEC VISION 2012
Security Considerations of Each Type of Cloud
• Least extensibility and greatest amount of security responsibility taken on by the cloud provider
Software (SaaS)
• Lies somewhere in the middle, with extensibility and security features which must be leveraged by the customer
Platform as a Service (PaaS)
• Greatest extensibility and least amount of security responsibility taken on by the cloud provider
Infrastructure (IaaS)
SYMANTEC VISION 2012
What This Means To Security
Amazon EC2 - IaaS
The lower down the stack the Cloud
provider stops, the more security you
are tactically responsible for
implementing & managing yourself.
Salesforce - SaaS
Google AppEngine - PaaS
SYMANTEC VISION 2012
Gartner Group, 2010
Virtualization forms the foundation for
building private clouds. Security must
change to support both.
SYMANTEC VISION 2012
Security - Before and After the Journey
DMZ Extranet PCI
Internet
VDI
Traditional View
DMZ Extranet PCI VDI
Internet Cloud View
SYMANTEC VISION 2012
Cloud Security Reference Architecture
SYMANTEC VISION 2012
vCloud Director enables delivery of infrastructure as a service
Builds on vSphere and scales up to 10,000 VMs and 25 vCenter Servers
Increase business agility by empowering
users to rapidly deploy services on-
demand with self-service portals
Improve security and compliance within
multi-tenant environments with strong
access controls and vShield security
Reduce costs by more efficiently
delivering resources and by consolidating
and standardizing your infrastructure
SYMANTEC VISION 2012
New abstractions enable resource elasticity & lower costs VMware vCloud Director
Organization: Marketing Organization: Finance
Organization VDCs Catalogs Organization VDCs Catalogs
VMware vSphere
VMware vCenter Server
Resource Pools Datastores Port Groups
(Go
ld)
(Bro
nze)
Provider Virtual Datacenters
(Sil
ver)
Users & Policies Users & Policies
SYMANTEC VISION 2012
Symantec Backup Exec Symantec NetBackup
Windows Applications
Windows & Linux OS Support
Small to Medium Business
UNIX Applications
Enterprise Windows Applications
Heterogeneous OS Support
Enterprise to Large Enterprise Data Center
NetBackup Target Market [EB]
Backup Exec Target Market [TB]
Remote Office
Desktop & Laptops
Unified Data Protection – Physical & Virtual Unified Data Protection – Physical & Virtual
V-Ray
One Size Does Not Fit All:
SYMANTEC VISION 2012
Number of Servers
20+ Servers
3 Servers or less
Backup Exec Family – The Right Solution for Any Problem
Backup Exec.Cloud
Backup Exec 2012 Small
Business Edition
Backup Exec 3600 Appliance
Backup Exec 2012
Backup Exec 2012
V-Ray Edition
10 Servers
Backup Exec 2012 Capacity Licensing
SYMANTEC VISION 2012
Protect Data in the Cloud with Backup Exec.cloud
SYMANTEC VISION 2012
Key Benefits for Small Customers
Simplifies Backup • Automates backup • Easy to get started • Anywhere, anytime management • Powerful data history
Achieve Predictable costs • Automated subscription licensing, priced per GB of
storage space • Customers pay only for the backup space they need • No per-user licensing fee
Recover with Ease • Should disaster strike, the business can get up and
running by restoring critical files from anywhere • Self-service design lets users restore their own files
Backup Exec.cloud
SYMANTEC VISION 2012
Backup Simplified: No Hardware Required – Just the Internet!
SYMANTEC VISION 2012
Easy for You to Deploy
Choose from several flexible deployment options:
– Instant Deployment
–Email based deployment
–Redistributable package
SYMANTEC VISION 2012
When is Online Backup the Recommended Solution with BE.Cloud…
• Small or remote offices, but no onsite staff or hardware?
– Protect file, Exchange, and SQL Servers at those locations without investing in hardware
– Remotely manage and deploy automatic backup for workstations/laptops
• Mobile Workers?
– Automate backup for these employees, and enable their users to recover files from any internet-connected machine.
• Preferernce: SaaS, subscription or pay-as-you-go pricing
– Offers predictable costs and scalable backup that doesn’t charge per-user licensing fees
Customer
• Less than 50 users • 1-2 Servers, 10 PCs or less
per location • 200GB per server • 10-15 GB per PC
SYMANTEC VISION 2012
Number of Servers
20+ Servers
3 Servers or less
Backup Exec Family – The Right Solution for Any Problem
Backup Exec.Cloud
Backup Exec 2012 Small
Business Edition
Backup Exec 3600 Appliance
Backup Exec 2012
Backup Exec 2012
V-Ray Edition
10 Servers
Backup Exec 2012 Capacity Licensing
SYMANTEC VISION 2012
“No Hardware Disaster Recovery” with P2V – New!
Convert to Virtual (P2V) – Parallel data streams
– One stream to media server
– Other stream to hypervisor
– Result is full VM (not just the virtual disk)
25
Protected Server Backup Exec 2012
Server Hypervisor
Backup to Virtual (B2V) – Serial data streams – Backup stream to media server – Conversion job runs after or on
different schedule – Result is full VM (not just the
virtual disk)
Protected Server Backup Exec 2012
Server Hypervisor
Parallel Data Streams
Backup Stream Convert Stream
Backup Stream Convert Stream
Serial Data Streams
Symantec V-Ray
SYMANTEC VISION 2012
Granular Recovery for Physical and Virtual
26
VMware Server Running Application
Servers
Backup Exec 2012 Server
+ Virtual Agent
Single-pass Backup of Virtual Guest Systems 1 Restore granular
Exchange, SQL, SharePoint, and Active Directory Data in Seconds: • Individual Mailboxes • E-mails • Private or Public
Folders • Calendar Items • Tasks • User Accounts or
Attributes • SQL Databases
2
Symantec V-Ray
SYMANTEC VISION 2012
When things get a little bigger
Backup-to-the-Cloud und DeDup-to-the-Cloud mit NetBackup 7.5 und Backup Exec 2012
SYMANTEC VISION 2012
What companies care about:
• Smooth functioning of their mission critical systems. No disruptions
• Automatic data backup & archiving without manual intervention
• Least amount of storage and hardware usage and costs savings
• Fast backup and recovery process
NetBackup top selling points • High availability data protection platform and DR ensure no
disruptions to the business critical systems
• Appliances provides simplified data protection management experience
• Deduplication, Virtualization and Cloud technology help in efficient usage of storage and hardware and thereby reduce costs
• Replication Director and Accelerator ensure fast backup and recovery process as the software enables less bandwidth usage
Cloud Common NetBackup Appliances Enterprise Vault BackupExec
Vision: To help our customers put their data in the cloud, safe and secure, visible and available from anywhere, when need, at a fraction of the current cost of ownership.
Enterprise Vault
Cloud Common NetBackup Appliances Enterprise Vault BackupExec
What needs to come together
Encryption & KMS
De-Duplication
NBU Appliance
Cloud Storage
Delivery Vehicles
Backup Exec NetBackup
Archiv
Common Technologies
Needs to Scale for Cloud
Will use Inline-Dedupe
WAN Acceleration
Cloud Common NetBackup Appliances Enterprise Vault BackupExec
Feature / Function
x Cloud plugin for Nirvanix AVAILABEL !
x Cloud plugin for Amazon S3 AVAILABLE !
x Cloud plugin for AT&T AVAILABLE !
x Cloud plugin for Rackspace AVAILABLE !
x Cloud Encryption and Key Management AVAILABLE !
x Metering AVAILABLE !
x Bandwidth Throttling AVAILABLE !
x NBU UI, Reporting and Configuration Management AVAILABLE !
x Configuration Management AVAILABLE !
SYMANTEC VISION 2012
Gateway to Business Continuity Service
Leverage NetBackup Appliance with
optimized Duplication
Use Bare Metal Restore for P2V, V2V, AND
P2P disaster recovery into recovery
centers
Business Continuity Service
(SunGard)
Geographical Replication
for Redundancy and local availability
Business Continuity Service
(SunGard)
Auto Image Replication
P2V, V2V, P2P
Example:
SYMANTEC VISION 2012
Gateway to Business Continuity Service
Leverage NetBackup Appliance with AIR
as gateway to business continuity
service
Use BMR for P2V, V2V, AND P2P
disaster recovery into recovery centers
Image Sharing of Cloud Images to manage
single shared copy of data
Multi tenant portal used by Iaas to perform
P2V and V2V, BMR DR in cloud
Partnerships with Cloud Providers
Recovered Machines/Applications
near line cloud storage
Multi Tenant Self Service
Self Service Portal for Cloud DR
Backup to cloud Storage
DR to cloud
Example:
SYMANTEC VISION 2012
Full View of the Deployment Scenarios NetBackup Master/Media
NetBackup Appliance
NetBackup Client
Storage Service
World Wide Dedup
SYMANTEC VISION 2012
Dual Domain P2V DR User Story
36
Production Data Center
NBU
Master
Domain A
DR Domain
NBU BMR
Master
Domain B
NBU
Media
Server
NBU
Media
Server
36
OST
Appliance
or PureDisk
Device Notifies
NBU
OST
Appliance or
PureDisk
Image
Image
OST
Optimized
Duplication
NBU Clients
Physical/Virt
ual
Back
up
Import
image
Client
System
Configura
tion
backup
Import client
system info
NB client
which drives
conversion
Create Clients
Virtual Instances
Virtual Environment
Hypervisor Server:
(VMWARE ESX or
vCenter)
SYMANTEC VISION 2012
DR from Cloud Storage – What is needed
7
• Information Management
6
• Global Visibility and Availability
5
• Optimized Restore
4
• Optimized Data Transfer
3
• Data Reduction / Cost reduction
2
• Security
1
• Cloud Connectors
• Client Side
Encryption
• SSL Communication
• Server Side Encryption
• Integrated KMS + GUIs
• Optimized Synthetics
for incremental
forever
• Write side Buffering
• Read side Buffering
• Integration with Backup
Acceleration techniques
• Image Sharing for Cloud
• Remote Office
• Restore from Anywhere
• Petabyte storage cache
• Optimized image migration
• WAN Optimization
• Multi-streamed operation
• Optimized Image Migration
• Infinite Capacity
Cloud Deduplication
• World Wide Deduplication
• Non-Content Aware
Storage Life Cycle
Mgmt.
• Broad market player
support
• Client Side
Compression
Bandwidth Fully Integrated Experience
SYMANTEC VISION 2012
Overview of Cloud Features in 7.5
• Amazon Web Services S3
• AT&T Synaptic Storage
• Rackspace CloudFiles
Expand Customer Choice
• New Cloud Configuration Wizard
• Embed KMS Server configuration within Cloud Configuration Wizard
Improve End User Experience
• Add Throttling
• Add Metering & Reporting in OpsCenter
• Enable Accelerator
Address Network & Reporting Needs
SYMANTEC VISION 2012
Expanded Customer Choice
• Addition of 3 new cloud storage partners
• Requires only user name and password from the partner to configure storage target from NBU Administration GUI
SYMANTEC VISION 2012
Improved End User Experience
• New Cloud Configuration Wizard
– Storage Server
– Disk Pools
– Disk Volumes
• Wizard is “Provider Aware “
• Integration of KMS Server into Wizard
SYMANTEC VISION 2012
Configuration Details – Launching the Wizard
SYMANTEC VISION 2012
Configuration Details – Select Provider
SYMANTEC VISION 2012
Configuration Details – Enter Credentials
1
2
SYMANTEC VISION 2012
Configuration Details – Link to Partner Site
1
SYMANTEC VISION 2012
Configuration Details – Option to Add Cloud Encryption
1
2
SYMANTEC VISION 2012
Configuration Details – Adding Cloud Encryption
1
2
If user checks encryption option, wizard checks if “nbkms” service/daemon is running. If not, it assumes that kms db is not created . It accepts inputs from user to create empty database for kms.
SYMANTEC VISION 2012
Media Server Configuration Encryption, Metering, and Throttling
1
2
3
4
1 KMS Server name will be
placed here in read only
mode. (non-editable
textbox).
2 The Metering Sampling
Interval is the time interval
when the metering data
should be polled.
3 Total Available Bandwidth
is the total bandwidth the
Media Server has to the
Cloud.
SYMANTEC VISION 2012
Predicting and Preparing for the Future
SYMANTEC VISION 2012
Cloud
• Information is moving to the cloud – with less control
• Infrastructure will be hybrid public and private cloud
• Need to monitor/protect data entering and leaving the cloud
• Flexible deployment options with centralized control
What’s Coming What it Means
Backup-to-the-Cloud und DeDup-to-the-Cloud mit NetBackup 7.5 und Backup Exec 2012 50
Summary
• Virtualization is a key technology on the road to the
Cloud
• Leveraging Cloud for DR has a limited use case today
but will become more powerful with future available
bandwidth
• NetBackup is ready today and will continue to bridge out
with new interesting capabilities into the cloud space
Thank you!
Copyright © 2011 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. This document is provided for informational purposes only and is not intended as advertising. All warranties relating to the information in this document, either express or implied, are disclaimed to the maximum extent allowed by law. The information in this document is subject to change without notice.
Andreas Bechter