Disaster recovery for supporting services
This article describes disaster recovery for supporting services in a Managed Cloud PaaS 2.0 environment. The following core Azure Technologies and services are deployed and/or configured when DR services are initially deployed or when your infrastructure is recovered during a complete site failover. The size and instance count of these resources are replicated to a secondary data center, but only App Services and Azure SQL have their files/data backed up and restored. The other services do not have their data replicated because it is transient or is not required for a successful restore.
|
Technology |
Service/function |
Description |
|---|---|---|
|
Front-End application services (Compute) |
Azure App Service is an HTTP-based service hosting web applications, REST APIs, and mobile backends. It is a fully managed platform as a service (PaaS) offering that integrates Microsoft Azure websites, mobile services, and other services into a single service. | |
|
Database services |
Azure SQL is a family of SQL Server database engine products in the cloud comprising of a fully managed database in Azure SQL Database, a fully managed instance in Azure SQL Managed Instance, or SQL Server installed to a virtual machine in Azure. | |
|
Data replication services |
Geo-replication is an Azure SQL database feature that allows you to create a readable secondary database in the same region or cross-region and fail over to the secondary database in case of an outage for a long time on the primary database server. Geo-replication uses the Always-on feature to replicate committed transactions to the secondary database asynchronously. | |
|
Data backup services |
SQL database backup |
Traditional data backup services for SQL on Azure databases. |
|
Data backup services |
Azure App service backup |
Traditional data backup services for Azure App service hosting plans |
|
Traffic management services |
Azure Front Door (Standard or Premium) |
Azure Front Door is a cloud CDN service that provides a scalable and secure entry point for fast delivery of global web applications. It combines capabilities from a traditional CDN, global load balancing, dynamic site acceleration, and security, including Azure Web Application Firewall (WAF) and DDoS (subject to additional purchase). |
|
Traffic management services |
Azure Web Application Firewall (WAF) is a cloud-native service that provides centralized protection for web applications against common exploits and vulnerabilities. | |
|
Traffic management services |
Azure Traffic Manager is a DNS-based traffic load balancer. This service allows you to distribute traffic to your public-facing applications across the global Azure regions. Traffic Manager also provides your public endpoints with high availability and quick responsiveness. | |
|
Traffic management services |
Azure Virtual Network peering is a feature that enables users to connect two virtual networks for resource sharing in one region or across regions in Microsoft Azure. It allows the traffic of one virtual network to communicate to another virtual network privately through IPv4 addresses. When they are peered, the virtual networks appear as one for connectivity purposes, and traffic between virtual machines in the peered virtual networks is routed through the Microsoft backbone infrastructure, through private IP addresses only. | |
|
Caching services |
Contains user session data, which typically expires before a Sitecore site can be restored, so it is not included as part of the DR strategy. Redis cache will be scaled up post-DR failover at the customer’s request. | |
|
Key management |
Azure Key Vault is a cloud-based security service offered by Microsoft as part of the Azure platform. It provides a secure and centralized storage solution for cryptographic keys and secrets, such as passwords, certificates, and keys used for encryption. | |
|
Message queueing |
Azure Service Bus is a fully managed enterprise message broker that allows for communication between decoupled systems. It offers a reliable and secure platform for asynchronous transfer of data and state and supports a variety of messaging patterns, including queuing, publish/subscribe, and request/response. With Service Bus, you can create messaging entities such as queues, topics, and subscriptions. | |
|
Azure data services |
An Azure storage account is a container that groups a set of Azure storage services together, including blobs, queues, tables, and files with disk images. It provides a unique namespace for Azure storage data that is accessible from anywhere in the world over HTTP or HTTPS. | |
|
Domain name services |
Azure DNS is a hosting service for DNS domains that provides name resolution using Microsoft Azure infrastructure. By hosting your domains in Azure, you can manage your DNS records using the same credentials, APIs, tools, and billing as your other Azure services. |