Performing a Failover
Scenarios
Disaster recovery site servers are created using the most current data and billed based on the server billing standards. If servers are still running during a failover, the system synchronizes all the server data before failover is performed to the disaster recovery site servers. Data written to the servers during the failover may not be synchronized to the disaster recovery site. If one of the servers to be failed over fails, data on the server may fail to be synchronized and some data may be lost.
After a failover, data is not automatically synchronized from the disaster recovery site to the production site, and protection is disabled for protected instances. To start data synchronization from the disaster recovery site to the production site, perform a reverse reprotection.
- Failover is a high-risk operation. After a failover, services are started at the disaster recovery site. At this time, you must ensure that production site services are stopped. Otherwise, services may be conflicted or interrupted and data may be damaged because both sites are providing services. If you just want to verify and analyze the disaster recovery site data, perform disaster recovery drills instead.
- During a failover in a V2C scenario, an ECS used for system conversion will be created, with a name suffix VMwareToCloud. Do not perform any operation on this ECS. Or, the failover may fail. This ECS will be automatically deleted after the failover is complete.
- If NIC switchover is enabled, after a failover, SDRS automatically stops the production site server and changes the server status to Planned stop. If NIC switchover is disabled, the production site server status remains unchanged before and after a failover.
- After a failover, the production site server stops providing services. Or, new data will be overwritten after a reverse synchronization.
Prerequisites
- Initial synchronization is completed for the protected instance, and the status of the protected instance is Synchronization finished or Failover failed.
- Protected instance services are running at the production site.
- All services on production site server are stopped, and all data has been flushed to disks.
Precautions
During a failover, a primary NIC is configured for each disaster recovery site server. If a production site server uses a secondary NIC, you need to manually bind a secondary NIC for the corresponding disaster recovery site server on the server details page.
Procedure
- Log in to the management console.
- Click Service List and choose Storage > Storage Disaster Recovery Service.
The Storage Disaster Recovery Service page is displayed.
- Choose Asynchronous Replication. In the right pane, locate the replica pair housing the protected instance you want to perform a failover and click the number in the Protected Instances column.
The Protection Groups tab page is displayed.
- In the navigation tree, choose the target protection group.
The protection group details page is displayed.
- In the Protected Instances area, locate the target protected instance, and click Execute Failover in the Operation column.
- Configure the disaster recovery site server.
- Click Next. On the displayed page, confirm the disaster recovery server information and click Submit.
- The protected instance status changes to Executing failover. After the failover is complete, the status changes to Failover completed.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot