Solved

How best to implement a Disaster Recovery Site

Posted on 2006-06-16
3
910 Views
Last Modified: 2010-10-30
Hi,

I have been asked to set up a disaster recovery site for my work and would like to talk through the different options available with some experts. We are wanting the DR site to be in as near to ready state as possible without over the top spending (realising that in the event of a disaster, it will take our staff time to move to the new building and get themselves sorted out)

I am planning on having two Global Domain controllers at our main site with an Exchange box (all on Win 2003) and 1 Global DC at the remote site with another Exchange box. We are only a small company with 12 members of staff,

We will connect the two sites via a site-site VPN and do daily backups of data from our SAN snapshot at the main site to the NAS at the remote site. To start with this will be via tape, but ultimately we would like unattended backup via the vpn.

What worries me most is the Exchange servers. I take it I can't have them both online at the same time with identical data/mailboxes and am prepared to take over a tape in the event of a disaster. But what is the best way of doing this and how do other people deal with the MX records pointing to these servers? Currently our main MX record held by our ISP points to main site Exchange and the second MX record points to the ISP's server. In the past when we have had problems with our leased line, their server takes over and then pushes mail over to us when we are back up again.


thanks,

0
Comment
Question by:Letterpart
3 Comments
 
LVL 4

Assisted Solution

by:averyb
averyb earned 250 total points
ID: 16920521
DR Planning is so much fun.  Ugh. The first thing that you might want to rethink is "prepared to take over a tape in the event of a disaster."  Chances are in the event of a disaster, you will not have a tape since the disaster would most likely involve a good bit of destruction to your facility--or you wouldn't need to fail over to the backup site.  To  be honest--the you part of that statement is also questionable.  The plans I'm putting in place for my firm assume I will not be around to execute them.

By Global Domain Controllers, do you mean Global Catalog servers?  If so, then you probably only want one of them per site.  
This link has lots of information about Exchange and Global Catalog servers--http://support.microsoft.com/?kbid=875427

Print out http://support.microsoft.com/?id=255504, so you can have your remote DC seize all the FSMO roles.  Start a DR Procedure Manual Binder.  Store it at the remote site and have electronic copies available to key personnel as well.  Document every button click.  Times like these, calm, collected thinking can be hard to come by.

Depending on how secure things are at the backup site, you might want to consider moving your primary Exchange server to the backup site.  You're still connecting to it over a secure link.  If the bandwidth is there, then that could be a good solution.  You don't need to worry about Exchange recovery since the server was untouched by the disaster.  Obviously you'd have to be prepared to conduct an Exchange recovery in case the backup site was destroyed.

Document any steps necessary to get your Exchange server at the backup site and your ISP talking and add it to your binder.

Your backup plans leave you exposed for up to 24 hours.  If your backup runs at midnight, and your primary site goes belly up at 11:59 pm then you loose an entire day of data.  You might need to do incremental backups during the day and ftp them or something to the backup site to narrow that window down.

If your primary site went away your ISP would hold the email for you until your secondary Exchange server could download it.  There really isn't a reason to change MX records at your ISP in case of disaster.  That arrangement would work fine for the time being.  People sending you email would know nothing of your problems.  

Can't help on the exchange specific issues.
0
 

Accepted Solution

by:
JasonLattin earned 250 total points
ID: 16922829
For our exchange server we use an application called Double Take.

http://www.nsisoftware.com/what-we-offer/double-take/

It allows us to have our main exchange server up and have it replicated real time to our disaster recovery site.  You can have it configured to ping the main server, and if the ping does not respond, have it take over exchange responsibilities.  Or you can have it be a manual process where you can tell it when to take over.  We have tested this out in house and it works great.  We actually have real time replication on site as well, so that if we just have hardware issues, the in house replication server can take over.  Then when we fix the main server, it can fail back to the main server.  It also does DNS updates, to update your records on your internal DNS servers for traffic looking for the main server to be directed to the replication server.  As for the MX records for the disaster recovery site, we use MX Logic for filtering our SPAM emails.  Our ISP points to MX Logic.  MX Logic is configured to point to our servers.  We are able to go to MX Logic site and change the IP addresses to our public site, with about a 10 minute turn around time.  

Here are some more links that might help.

Microsoft guide to Exchange DR...
http://www.microsoft.com/technet/prodtechnol/exchange/guides/DROpsGuide/f9a66c19-b1e0-46c4-a6a1-276a569a08bf.mspx?mfr=true

Disaster Recovery from MSEXCHANGE.org
http://www.msexchange.org/pages/search.asp?query=disaster+recovery

Petri's site is FULL of helpful Exchange info. I have referred to some of his information a few times over the last few weeks and one of their "how-To's" even got me through an issue that I couldn't figure out because Microsoft left out a step in their documents.
http://www.petri.co.il/forums/
0
 
LVL 1

Author Comment

by:Letterpart
ID: 17138138
Thanks for your answers and links guys.

splitting points.

0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A brief overview to explain gateways, default gateways and static routes OR NO - you CANNOT have two default gateways on the same server, PC or other Windows-based network device. In simple terms a gateway is formed when a computer such as a serv…
Have you ever set up your wireless router at home or in the office to find that you little pop-up bubble in the bottom right-hand corner of Windows read "IP Conflict - One of more computers on the network have been assigned the following IP address"…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

792 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question