Embed Size (px)
Citation preview
Data Networking Year 2Data Networking Year 2
Network AdministrationPlanning a Disaster Recovery Plan
Colm Bennett
What is a Disaster Recovery Plan?What is a Disaster Recovery Plan?
● a set of policies and procedures for reacting to a set of policies and procedures for reacting to and recovering from an IT-disabling disasterand recovering from an IT-disabling disaster
● Usually part of a Business Continuity Plan Usually part of a Business Continuity Plan – A BCP will cover more than just the IT sideA BCP will cover more than just the IT side
● Usually a script detailing how to get from Usually a script detailing how to get from certain disaster scenarios back to functioning certain disaster scenarios back to functioning IT systemIT system
Steps in creating a DRPSteps in creating a DRP
● Risk AnalysisRisk Analysis● BudgetBudget● Develop the PlanDevelop the Plan● TestTest
Risk AnalysisRisk Analysis
● Assess your key risks and probabilities of Assess your key risks and probabilities of these risksthese risks– Acts of GodActs of God
● Flood, Wind etcFlood, Wind etc
– AccidentAccident● Overwrite key backup, pull wrong plug etcOverwrite key backup, pull wrong plug etc
– MaliciousMalicious● Virus, arson, theft etcVirus, arson, theft etc
● Establish Business implications of key risksEstablish Business implications of key risks
BudgetBudget
● Based on business implications, establish Based on business implications, establish budget for both prevention and recoverybudget for both prevention and recovery
● Ideally this budget is decided on by Business Ideally this budget is decided on by Business Unit after being presented with Risk Analysis Unit after being presented with Risk Analysis by ITby IT
● IT shouldn't make budget decision in isolation IT shouldn't make budget decision in isolation because they are not close enough to gauge because they are not close enough to gauge real business impact of risksreal business impact of risks
Do PlanDo Plan
● Establish Recovery Time Objectives (RTO) Establish Recovery Time Objectives (RTO) for key systemsfor key systems– How long before they How long before they mustmust be back up be back up
● Establish Recovery Point Objectives (RPO) Establish Recovery Point Objectives (RPO) for key systemsfor key systems– How much data much be recoveredHow much data much be recovered
● e.g. Can we restore accounts to end of last week?e.g. Can we restore accounts to end of last week?
● Based on these benchmarks, create a planBased on these benchmarks, create a plan
Do PlanDo Plan● 3 Key approaches3 Key approaches
– Mix and Match depending on RTO and RTPMix and Match depending on RTO and RTP
● Backup and RestoreBackup and Restore– ID Key DataID Key Data
– Off Site storageOff Site storage
● ReplicationReplication– Backup ServersBackup Servers
– Hot off site etcHot off site etc
● FailoverFailover– Hotswap partsHotswap parts
– Off site WAN clusterOff site WAN cluster
Test It!Test It!
● Absolutely KeyAbsolutely Key● Backups should be restored periodicallyBackups should be restored periodically● Replication sites should be used for real Replication sites should be used for real
businessbusiness● Failover should switch from one to another Failover should switch from one to another
regularlyregularly● Should be updated with feedback from testingShould be updated with feedback from testing
