14
Mon, Oct
6 New Articles

What's Available to Protect Your Data in the Power AIX World

Typography
  • Smaller Small Medium Big Bigger
  • Default Helvetica Segoe Georgia Times

A 10,000-foot view shows that you have two major categories of data protection for your Power AIX: Disaster Recovery (DR) products and High Availability (HA) products.

 

Do you know that the HA solutions are most often used for normal maintenance? And that the most common cause of an outage is human? Sloppy network people taking down the network without letting users know, software bugs, and operator errors cause more than 50 percent of outages. Many people purchase HA products so that they can do their daily backups on the target.

 

One misconception is that HA products replace DR products. The truth is that DR can stand alone, but HA products need DR products to offer a complete solution. You may ask why. A real-life example illustrates that. Google has many redundant copies of the information they store for us, which is another way to say they use HA to protect our data. But back in February 2011, Google was hit with a bug that deleted all the email for .02 percent of their customer's Gmail accounts. The problem was replicated across all servers that had data for the affected users. As a result, Google had to use tape backups to restore their customers' data.

 

Everyone needs DR, so we'll start with that.

Disaster Recovery (DR) Solutions

DR products come in different flavors, including tape, vaulting, disk-based backup appliances, and hybrid (disk and tape) backup appliances.

 

  • Tape has been the mainstay of DR for decades, and it still is the least expensive and most prevalent DR solution. When you add the time it takes to handle the tape, the transportation cost to send the tape to your offsite storage, and the offsite storage cost itself, the overall cost goes up dramatically. Tape technology continues to improve, increasing both the reliability and density of tape. LTO 5 holds 3 TB compressed, has a transfer speed of 410 MB/s, and provides encryption. Tape is a good choice for long-term storage and for small shops.

 

  • Vaulting solutions (or today's cloud solutions) are a step up from saving to tape. All vaulting solutions save the backup data to offsite storage daily, reducing exposure risk and transportation cost. Many vaulting products use database logging to reduce the amount of data lost down to a few hours. They perform a full save once a day and then save the logs every few hours. Years ago when I worked at a pump company, we created a process to read and apply journal entries. It worked great, but by the time we restored the system and the libraries from the last save and applied the entries it took up to two days! Too many people think of vaulting as their HA, but you can lose too much data and it takes too long to restore data for vaulting to be considered anything but a DR product. Vaulting is a good alternative to tape and you get the benefit of less data loss, but you need to factor in your recovery time objective (RTO).

 

  • Disk-based backup appliances allow you to back up to disk and eliminate tape. This is one of the fastest-growing DR solutions. Backup appliances also reduce the time it takes to perform saves, thus shortening daily backup window downtime. Many backup appliances offer the ability to replicate to another device offsite. You could even build your own procedure to change receivers every few hours and save them to your backup appliance. Next, you would have to create a program to apply the journal entries. If you've been there and done that, save yourself the headaches and use a vaulting solution or move to HA. Backup appliances compete well against vaulting solutions, unless you want to use the journal management and apply features of vaulting.

 

  • Hybrid (disk and tape) backup appliances are a much more robust offering because they combine the benefits of disk and tape. You can back up to the appliance's disk, release the host, and then write to tape or disk from the appliance at a convenient time, either locally or remotely. You can download your data to another hybrid appliance, SAN, NAS, tape drive, or even other servers. It combines the advantages of backup appliances with many of the features of vaulting solutions and adds a lot of its own features. This solution is particularly suitable for larger accounts with many servers.

 

Is DR Enough?

For many companies, "Yes." But for more and more companies, "No!"

 

I ask my customers, "Can you easily reproduce the changes that will have been made since the last save?" If they say yes, I ask them how. The industry term for the point in time you will be able to recover to is recovery point objective (RPO), and you have to consider it carefully. In many companies, productivity improvements from leveraging the Internet have often come at the price of audit trails. If you lose your system, chances are that order data, move tickets, time and attendance, and shipping documents will all have disappeared, with no way to recover them. How do your customers input their orders? Are your work orders all online? What documents are retained in shipping?

 

The next question you need to ask is how long you can be down, or Recovery Time Objective (RTO). Tape will have to be retrieved from your offsite location, and after the system is restored, users will have to enter the missing data. Vaulting solutions cut the RPO down to a few hours, but you still have to perform the same recovery process as with tape, and then you have to apply the journal or logs. Vaulting reduces your RPO, which is a great thing, but your RTO could be much longer when you add the time it takes to apply the logs. Backup devices don't themselves improve RPO, but they do reduce the RTO because you don't have to go get the tapes.

 

Another consideration is legal requirements. In the United States alone, you have Sarbanes-Oxley, HIPAA, GLBA, SEC, PCI, banking, and many other standards. Stockholders have expectations. Your users have expectations, and even your customers do. You could suffer financial penalties, damage to your company's reputation, decreased stock value, and even criminal charges that can be filed against you.

 

Each year, fewer companies can risk using only DR products, so let's talk about HA.

High Availability (HA) Solutions

HA products all perform the same functions. They group at least two servers (nodes) together, creating a replication group (cluster). The production server (active node) sends all changes to the target server (passive node) as they are made. HA products control which node is acting as the active node, directing the users to this node, and passive node, replicating the data from the active node to each passive node.

 

Power AIX HA products are based on hardware (storage-based) or on software to replicate the data.

 

Storage-Based Replication

Storage-based replication, or clustering, is the most common HA solution for the AIX. In simple terms, storage-based replication allows two or more SAN or NAS units to keep each other in sync ("mirrored") using either shared-everything topology or shared-disk topology.

 

Shared-everything technology allows for a "no switching" operation because all servers or nodes can access and update the data at the same time. Nodes are in the active mode when users make updates directly to them and are in passive mode when they are receiving data from another node. Roles switch dynamically and require no intervention. Built-in locking operations ensure that only one node can update or write at the same time. HA software controls which server users are reassigned to when a failure occurs, and the data flows automatically.

 

Shared-disk technology allows the HA software to specify which node is allowing users to access the node (active), and the rest of the nodes are in passive mode. The data flows from the user into the active node, and the active node pushes the data to the cluster's passive nodes.

 

Software-Based Replication

Software-based replication uses features built into the operating system to capture the changes that are made on the production system. The HA solution then sends the data to the target system and applies the changes. Vendors often refer to this as "mirroring," but to be fair they are "replicating" the data and changes. The data is not stored in the same location, as many storage-based products do, and that also allows them to use different storage devices on the target than on the production system. Logs allow these solutions to be storage-independent, allowing you to easily change storage devices at the active or passive site.

 

In addition to normal replication and protections, the software can provide for recovering your replicated data from a point in time. Software-based replication products have extensive audits to verify that the target is the same as the source. Requirements vary, but you are expected to run the audits to ensure the integrity of your data. With storage-based replication, if these features exist, they are built into the SAN and performed automatically.

 

Storage-Based or Software-Based?

Which is better: storage-based or software-based? It depends. Hardware replication requires less user intervention, but it also requires expensive SAN or NAS, has to be the same on every node, and in general costs more. Software replication allows more choice in what is replicated, and it offers features that are not available with storage-based products.

The Ultimate Question

Finally, ask yourself this question: When the CEO goes to the board to explain why you were down for two days, how you lost eight hours of data (including orders), and why your best customer pulled their orders after you missed a shipment because you didn't have a way to recover the lost orders, is he going to say that the RTO and RPO were agreed on and your recovery was within guidelines?

 

We know what will really happen, and I don't want it to happen to you. If you can't get management to agree to HA, then get your recovery objectives in writing and get a written sign off. If you can't protect your company, at least protect yourself.

 

Robert T. Seal, president of iSam Blue, is a business continuity, high availability, and disaster recovery expert. He worked on the initial design and development of the first function-rich, low-cost high availability solution, iTera HA, now owned by Vision Solutions. Seal founded iSam Blue in 2009 to help companies across North America implement business continuity solutions to safeguard their business.

BLOG COMMENTS POWERED BY DISQUS

LATEST COMMENTS

Support MC Press Online

$

Book Reviews

Resource Center

  • SB Profound WC 5536 Have you been wondering about Node.js? Our free Node.js Webinar Series takes you from total beginner to creating a fully-functional IBM i Node.js business application. You can find Part 1 here. In Part 2 of our free Node.js Webinar Series, Brian May teaches you the different tooling options available for writing code, debugging, and using Git for version control. Brian will briefly discuss the different tools available, and demonstrate his preferred setup for Node development on IBM i or any platform. Attend this webinar to learn:

  • SB Profound WP 5539More than ever, there is a demand for IT to deliver innovation. Your IBM i has been an essential part of your business operations for years. However, your organization may struggle to maintain the current system and implement new projects. The thousands of customers we've worked with and surveyed state that expectations regarding the digital footprint and vision of the company are not aligned with the current IT environment.

  • SB HelpSystems ROBOT Generic IBM announced the E1080 servers using the latest Power10 processor in September 2021. The most powerful processor from IBM to date, Power10 is designed to handle the demands of doing business in today’s high-tech atmosphere, including running cloud applications, supporting big data, and managing AI workloads. But what does Power10 mean for your data center? In this recorded webinar, IBMers Dan Sundt and Dylan Boday join IBM Power Champion Tom Huntington for a discussion on why Power10 technology is the right strategic investment if you run IBM i, AIX, or Linux. In this action-packed hour, Tom will share trends from the IBM i and AIX user communities while Dan and Dylan dive into the tech specs for key hardware, including:

  • Magic MarkTRY the one package that solves all your document design and printing challenges on all your platforms. Produce bar code labels, electronic forms, ad hoc reports, and RFID tags – without programming! MarkMagic is the only document design and print solution that combines report writing, WYSIWYG label and forms design, and conditional printing in one integrated product. Make sure your data survives when catastrophe hits. Request your trial now!  Request Now.

  • SB HelpSystems ROBOT GenericForms of ransomware has been around for over 30 years, and with more and more organizations suffering attacks each year, it continues to endure. What has made ransomware such a durable threat and what is the best way to combat it? In order to prevent ransomware, organizations must first understand how it works.

  • SB HelpSystems ROBOT GenericIT security is a top priority for businesses around the world, but most IBM i pros don’t know where to begin—and most cybersecurity experts don’t know IBM i. In this session, Robin Tatam explores the business impact of lax IBM i security, the top vulnerabilities putting IBM i at risk, and the steps you can take to protect your organization. If you’re looking to avoid unexpected downtime or corrupted data, you don’t want to miss this session.

  • SB HelpSystems ROBOT GenericCan you trust all of your users all of the time? A typical end user receives 16 malicious emails each month, but only 17 percent of these phishing campaigns are reported to IT. Once an attack is underway, most organizations won’t discover the breach until six months later. A staggering amount of damage can occur in that time. Despite these risks, 93 percent of organizations are leaving their IBM i systems vulnerable to cybercrime. In this on-demand webinar, IBM i security experts Robin Tatam and Sandi Moore will reveal:

  • FORTRA Disaster protection is vital to every business. Yet, it often consists of patched together procedures that are prone to error. From automatic backups to data encryption to media management, Robot automates the routine (yet often complex) tasks of iSeries backup and recovery, saving you time and money and making the process safer and more reliable. Automate your backups with the Robot Backup and Recovery Solution. Key features include:

  • FORTRAManaging messages on your IBM i can be more than a full-time job if you have to do it manually. Messages need a response and resources must be monitored—often over multiple systems and across platforms. How can you be sure you won’t miss important system events? Automate your message center with the Robot Message Management Solution. Key features include:

  • FORTRAThe thought of printing, distributing, and storing iSeries reports manually may reduce you to tears. Paper and labor costs associated with report generation can spiral out of control. Mountains of paper threaten to swamp your files. Robot automates report bursting, distribution, bundling, and archiving, and offers secure, selective online report viewing. Manage your reports with the Robot Report Management Solution. Key features include:

  • FORTRAFor over 30 years, Robot has been a leader in systems management for IBM i. With batch job creation and scheduling at its core, the Robot Job Scheduling Solution reduces the opportunity for human error and helps you maintain service levels, automating even the biggest, most complex runbooks. Manage your job schedule with the Robot Job Scheduling Solution. Key features include:

  • LANSA Business users want new applications now. Market and regulatory pressures require faster application updates and delivery into production. Your IBM i developers may be approaching retirement, and you see no sure way to fill their positions with experienced developers. In addition, you may be caught between maintaining your existing applications and the uncertainty of moving to something new.

  • LANSAWhen it comes to creating your business applications, there are hundreds of coding platforms and programming languages to choose from. These options range from very complex traditional programming languages to Low-Code platforms where sometimes no traditional coding experience is needed. Download our whitepaper, The Power of Writing Code in a Low-Code Solution, and:

  • LANSASupply Chain is becoming increasingly complex and unpredictable. From raw materials for manufacturing to food supply chains, the journey from source to production to delivery to consumers is marred with inefficiencies, manual processes, shortages, recalls, counterfeits, and scandals. In this webinar, we discuss how:

  • The MC Resource Centers bring you the widest selection of white papers, trial software, and on-demand webcasts for you to choose from. >> Review the list of White Papers, Trial Software or On-Demand Webcast at the MC Press Resource Center. >> Add the items to yru Cart and complet he checkout process and submit

  • Profound Logic Have you been wondering about Node.js? Our free Node.js Webinar Series takes you from total beginner to creating a fully-functional IBM i Node.js business application.

  • SB Profound WC 5536Join us for this hour-long webcast that will explore:

  • Fortra IT managers hoping to find new IBM i talent are discovering that the pool of experienced RPG programmers and operators or administrators with intimate knowledge of the operating system and the applications that run on it is small. This begs the question: How will you manage the platform that supports such a big part of your business? This guide offers strategies and software suggestions to help you plan IT staffing and resources and smooth the transition after your AS/400 talent retires. Read on to learn: