Sat, May
7 New Articles

Can You Overcome an IT Outage?

High Availability / Disaster Recovery
  • Smaller Small Medium Big Bigger
  • Default Helvetica Segoe Georgia Times


“The greatest obstacle to discovery is not ignorance. It is the illusion of knowledge.”

I’ve seen the great quote above attributed to a number of famous scientists, from Stephen Hawking to Albert Einstein. It does sound like a science quote. It was, in fact, stated by Daniel Boorstin, who was the Librarian of the United States Congress from 1975 to 1987. I would modify that statement to make it relevant in the 21st century IT world: The greatest obstacle to business resiliency is not the lack of a high availability or disaster recovery solution, but the untested illusion of having either.

Recently, British Airways had a catastrophic systems outage that shut down all travel at Heathrow and Gatwick airports and subsequently affected the travel of 75,000 people worldwide. British Airways released a statement saying, “There was a total loss of power at the data centre. The power then returned in an uncontrolled way, causing physical damage to the IT servers. It was not an IT issue; it was a power issue.”

British Airways CEO Alex Cruz stated that the power supply failure affected systems for check-in, booking, baggage handling, customer contact centers, and more. Once the power surge occurred, failing over to the backup system did not work.

British Airways operates data centers at two sites. Assuming one site is a primary and the other a secondary is just that: an assumption. It’s entirely possible that each data center provides completely different service. Nobody has asked so far if they had a power surge in both locations. It’s obvious the answer would very likely be no, but it would be a great question to ask just to hear the answer.

If they did have a primary and a secondary site, a number of questions come to mind. Why didn’t the failover to backup systems at the secondary site work? Do they test that type of failover? How often? When was the last time they did it? Have they had success until now? If so, what changed?

If the site affected by the power surge contained the backup computer systems, then that leads to more questions. Why are the primary and backup systems in the same physical location? Are they in the same rack? Are they virtualized servers on the same hardware?

Personally, and this is entirely speculation, I would imagine the most likely scenario is that the primary and backup systems affected by the outage are at least in the same building…or were at the time. Remember Occam’s Razor: “Pluralitas non est ponenda sine necessitate,” or “Entities should not be multiplied unnecessarily.” In practice, it means that the simplest or most obvious explanation is usually the likely one. Don’t make mysteries where none exist. Most likely, British Airways had all affected systems (both primary and secondary) in one data center that had some kind of power issue. Potentially, they had the backup systems in another data center, but when they went to cut over to the backup, it failed because the backup site was inadequate, or not properly tested, or perhaps both. Either way, whatever the plan was, and that’s assuming they had a plan, it did not achieve the desired result of a redundant system.

Cruz went on to provide much hubris in stating, “This will not happen again at British Airways.” I’d like to bring that statement down to a far different level of technical sophistication, more commonly known as “keeping it real.” If I were the CEO or CIO, then I would want to know exactly what happened and what the plan would be to ensure that this event was not reproducible. Has anyone in the media asked, “What could have been done to prevent this?” That right there is the question of the day. This separates good IT from not-so-good IT, or a good business from a not-so-good business. If a restaurant sent out a plate with a Band-Aid in the middle of it, the question of how to prevent that in the future would spawn solutions such as wearing latex gloves to prep food and having the server eyeball every plate that goes out. The primary solution is to prevent a bandage-adorned chicken parmesan from getting into the hands of the customer, and the secondary solution is to provide a backup in case the primary fails. That translates well for just about any business or IT problem.

In my years as a technician or in IT management, I’ve seen a number of events that would make your hair curl. I’m sure you have, too.

I once worked for a company with a propane generator to power the computer systems. In case of a power outage, the UPS would carry us over until the generator kicked in. They tested the generator every week for about 18 months. During those tests, the generator ran for approximately 30 seconds and then shut off. It never ran long enough or hot enough to blow the motor. The first time they lost power, the generator lasted for maybe 10 minutes and then ground to a stiff halt because nobody was assigned the job to add motor oil, let alone check the level. Since nobody was assigned the job, the only person accountable was the outsourced project manager who’d been long gone. That generator failure caused three days of systems outage because most of the servers went down hard, and it was disk drive replacements and backup tapes for the loyal IT staff.

Then there was the time when we moved server rooms and the young buck we just hired was tasked with plugging all the server gear into the brand-new UPS with dual power supplies. He learned a lesson that day after he plugged everything into one side of the UPS and we powered all the servers up. Can you say UPS breaker overload? The systems all went down hard, with a number of disk drive failures. IBM had to make a late-night DASD delivery. Yours truly had to rebuild the system from tapes once again. You want to talk about disaster recovery testing? At that shop, we had so many disasters that we didn’t even need to test, although we did it regularly.

Another company I know had an air conditioning system on the roof. It was rated to perform in -10 Celsius. I live in Canada. We have snow. It gets really cold. I’ve been out in -10 with shorts on to run to the mail box. The air conditioning would usually work until it got to -20 and then it would just seize up. Or the snow would pile up against the air conditioner intake and it would just suffocate it. They lived with this problem, air conditioning outage after outage, while leaving the techs to coordinate industrial fans to blow the hot air out of the room until the weather warmed up. Machines can function at 29 degrees Celsius, but they’re not happy when they do.

I recall a compatriot in a sister company who had an 8’x8’ server room with a rubber dust protector on the bottom of the door, effectively sealing the room to be airtight…and perhaps watertight. They had a rack of servers with a tarp above it, protecting the rack from the sprinkler system 18” above the tarp. My thought at the time was “Forget the tarp. How long would it take the room to fill with water high enough to reach the rack’s power supply?” You could just see that disaster coming.

To be fair, no business can plan for everything. There are events that defy the anticipation of most professional planners. If you take the events of September 11, 2001, you will find that there are circumstances that even the best teams could not plan enough to overcome. Data centers in Lower Manhattan could operate for a few days on generator power in the aftermath of the World Trade Center attacks; however, no one predicted that fuel delivery into the city would be a major security concern until it was, subsequently causing fuel shortages. As well, data centers had issues with overheating generators due to the extremely poor air quality caused by the destruction of the twin towers. The shock and chaos following the events of that day further compounded any of the clinical-sounding logistical concerns we write about in hindsight, but when we talk about it, I guarantee you the emotion of that day still consumes the voice of anyone with a heart.

Good planners learn from every disaster and apply that knowledge and experience moving forward. Data centers all over the world, whether they’re a major cloud hosting provider or a small server room of a hospital, not to mention utility services like power and water or even trucking/logistics operators, have learned lessons and applied knowledge to plan for disasters not unlike what happened on 9/11 or natural disasters like the tsunami in Fukushima, Japan.

In the last few weeks, we’ve seen tremendous issues caused by malicious code. The Wannacry incident was the biggest outbreak in history, with about 300,000 machines infected. When the rubber meets the road, it’s not a virus issue. It’s a disaster recovery issue. You can get further by planning for disaster recovery than you can by fighting malware, unpatched systems, and poor user training. The disaster recovery effort starts with a breakdown of any or all three of the aforementioned vulnerabilities. Antiviral software is for the most part a reactive solution. Patching is a reactive solution to a software or operating system vulnerability. User training is proactive; however, it is the largest struggle to overcome. Even if you get a high amount of computer or even security literacy in your organization, all you need is one mistake to set forth a chain of events, especially if that user has higher-than-desired authority on the network or systems. Humans will make mistakes, but we need to ensure we are properly protecting our businesses with antiviral software and regular patching to compensate as much as we can for that.

A properly tested disaster recovery solution must be in place to ensure that you can get your business up and running. The question of “if” or “how” we can get it back shouldn’t have to be asked. You need to know the “if” and the “how.” Furthermore, you need a secondary “how” in case the primary fails. The question of “when” is dependent on your organization’s tolerance for downtime.

Again: “There was a total loss of power at the data centre. The power then returned in an uncontrolled way, causing physical damage to the IT servers. It was not an IT issue; it was a power issue.”

Replace “power” in “power issue” with “cooling,” “water,” or “fire.” These are common concerns in any data center. It’s quite obvious to see the weak argument. This is an IT executive management issue. And in any large and publicly visible organization, IT must be aligned with the business enough to foresee and overcome the loss of a data center due to common operational concerns such as electricity, air conditioning, flood, or fire.

Steve Pitcher
Steve Pitcher works with iTech Solutions, an IBM Premier Business Partner. He is a specialist in IBM i and IBM Power Systems solutions since 2001. Feel free to contact him directly This email address is being protected from spambots. You need JavaScript enabled to view it..


Support MC Press Online

$0.00 Raised:

Book Reviews

Resource Center

  • SB Profound WC 5536 Have you been wondering about Node.js? Our free Node.js Webinar Series takes you from total beginner to creating a fully-functional IBM i Node.js business application. You can find Part 1 here. In Part 2 of our free Node.js Webinar Series, Brian May teaches you the different tooling options available for writing code, debugging, and using Git for version control. Brian will briefly discuss the different tools available, and demonstrate his preferred setup for Node development on IBM i or any platform. Attend this webinar to learn:

  • SB Profound WP 5539More than ever, there is a demand for IT to deliver innovation. Your IBM i has been an essential part of your business operations for years. However, your organization may struggle to maintain the current system and implement new projects. The thousands of customers we've worked with and surveyed state that expectations regarding the digital footprint and vision of the company are not aligned with the current IT environment.

  • SB HelpSystems ROBOT Generic IBM announced the E1080 servers using the latest Power10 processor in September 2021. The most powerful processor from IBM to date, Power10 is designed to handle the demands of doing business in today’s high-tech atmosphere, including running cloud applications, supporting big data, and managing AI workloads. But what does Power10 mean for your data center? In this recorded webinar, IBMers Dan Sundt and Dylan Boday join IBM Power Champion Tom Huntington for a discussion on why Power10 technology is the right strategic investment if you run IBM i, AIX, or Linux. In this action-packed hour, Tom will share trends from the IBM i and AIX user communities while Dan and Dylan dive into the tech specs for key hardware, including:

  • Magic MarkTRY the one package that solves all your document design and printing challenges on all your platforms. Produce bar code labels, electronic forms, ad hoc reports, and RFID tags – without programming! MarkMagic is the only document design and print solution that combines report writing, WYSIWYG label and forms design, and conditional printing in one integrated product. Make sure your data survives when catastrophe hits. Request your trial now!  Request Now.

  • SB HelpSystems ROBOT GenericForms of ransomware has been around for over 30 years, and with more and more organizations suffering attacks each year, it continues to endure. What has made ransomware such a durable threat and what is the best way to combat it? In order to prevent ransomware, organizations must first understand how it works.

  • SB HelpSystems ROBOT GenericIT security is a top priority for businesses around the world, but most IBM i pros don’t know where to begin—and most cybersecurity experts don’t know IBM i. In this session, Robin Tatam explores the business impact of lax IBM i security, the top vulnerabilities putting IBM i at risk, and the steps you can take to protect your organization. If you’re looking to avoid unexpected downtime or corrupted data, you don’t want to miss this session.

  • SB HelpSystems ROBOT GenericCan you trust all of your users all of the time? A typical end user receives 16 malicious emails each month, but only 17 percent of these phishing campaigns are reported to IT. Once an attack is underway, most organizations won’t discover the breach until six months later. A staggering amount of damage can occur in that time. Despite these risks, 93 percent of organizations are leaving their IBM i systems vulnerable to cybercrime. In this on-demand webinar, IBM i security experts Robin Tatam and Sandi Moore will reveal:

  • FORTRA Disaster protection is vital to every business. Yet, it often consists of patched together procedures that are prone to error. From automatic backups to data encryption to media management, Robot automates the routine (yet often complex) tasks of iSeries backup and recovery, saving you time and money and making the process safer and more reliable. Automate your backups with the Robot Backup and Recovery Solution. Key features include:

  • FORTRAManaging messages on your IBM i can be more than a full-time job if you have to do it manually. Messages need a response and resources must be monitored—often over multiple systems and across platforms. How can you be sure you won’t miss important system events? Automate your message center with the Robot Message Management Solution. Key features include:

  • FORTRAThe thought of printing, distributing, and storing iSeries reports manually may reduce you to tears. Paper and labor costs associated with report generation can spiral out of control. Mountains of paper threaten to swamp your files. Robot automates report bursting, distribution, bundling, and archiving, and offers secure, selective online report viewing. Manage your reports with the Robot Report Management Solution. Key features include:

  • FORTRAFor over 30 years, Robot has been a leader in systems management for IBM i. With batch job creation and scheduling at its core, the Robot Job Scheduling Solution reduces the opportunity for human error and helps you maintain service levels, automating even the biggest, most complex runbooks. Manage your job schedule with the Robot Job Scheduling Solution. Key features include:

  • LANSA Business users want new applications now. Market and regulatory pressures require faster application updates and delivery into production. Your IBM i developers may be approaching retirement, and you see no sure way to fill their positions with experienced developers. In addition, you may be caught between maintaining your existing applications and the uncertainty of moving to something new.

  • LANSAWhen it comes to creating your business applications, there are hundreds of coding platforms and programming languages to choose from. These options range from very complex traditional programming languages to Low-Code platforms where sometimes no traditional coding experience is needed. Download our whitepaper, The Power of Writing Code in a Low-Code Solution, and:

  • LANSASupply Chain is becoming increasingly complex and unpredictable. From raw materials for manufacturing to food supply chains, the journey from source to production to delivery to consumers is marred with inefficiencies, manual processes, shortages, recalls, counterfeits, and scandals. In this webinar, we discuss how:

  • The MC Resource Centers bring you the widest selection of white papers, trial software, and on-demand webcasts for you to choose from. >> Review the list of White Papers, Trial Software or On-Demand Webcast at the MC Press Resource Center. >> Add the items to yru Cart and complet he checkout process and submit

  • Profound Logic Have you been wondering about Node.js? Our free Node.js Webinar Series takes you from total beginner to creating a fully-functional IBM i Node.js business application.

  • SB Profound WC 5536Join us for this hour-long webcast that will explore:

  • Fortra IT managers hoping to find new IBM i talent are discovering that the pool of experienced RPG programmers and operators or administrators with intimate knowledge of the operating system and the applications that run on it is small. This begs the question: How will you manage the platform that supports such a big part of your business? This guide offers strategies and software suggestions to help you plan IT staffing and resources and smooth the transition after your AS/400 talent retires. Read on to learn: