[Ended] Round 2 | Technical Document Scavenger Hunt
  

Sangfor Jojo Lv5Posted 2024-Sep-18 11:35




Dear members,
We are excited to announce the launch of our Technical Document Scavenger Hunt! This activity aims to encourage all users to dive deeper into our newly published technical document in the Knowledge Base, enhancing your understanding and engagement with the material.

By participating, you'll not only sharpen your skills but also have the chance to collaborate and share insights with fellow users.

We hope this scavenger hunt will not only enrich your knowledge but also spark engaging discussions. Happy hunting, and may the best reader win!


1. Activity Rules                                                                                                                     

1)  All community users are invited to participate in the scavenger hunt.
2)  There will be a total of 4 questions related to the Sangfor Managed Cloud Services aDR Deployment Guide
3)  Participants must submit their answers via the designated platform by September 23rd.
4)  Winners will be announced next Tuesday on the community platform.


2. Activity Duration                                                                                                               

Sept. 18th - Sept. 23rd


3. How to Participate                                                                                                                                                                                                                  
1) Browse the Questions:
We have provided a list of questions based on the content of the document. Your goal is to find the
answers within the text.

2) Read the Document:
Start by simply reading the catalog. Taking your second reading thoroughly with the given questions
which will make you read more efficiently.

3) Use the Search Function:
Most digital documents have a search feature. Use keywords from the questions to quickly locate
relevant sections.

4) Submit Your Answers:
Once you have your answers, post them in the designated thread by the deadline.

5) Collaborate:
Feel free to discuss your findings in the forum and win 100 coins. Sharing thoughts and interpretations can lead to a deeper understanding and may help others in their search.



4.  Rewards                                                                                                                             

Correct Answers: 100 coins for each correct answer.

All Correct: An additional 100 coins for those who answer all questions correctly.


5. Scavenger Hunt Questions                                                                                               

Q1: When a failover happens, what can the aDR customer do if he accesses the service by IP address?
Q2: Which categories can be divided from the VMs in the on-premises site?
Q3: What key action can be done when the DR link has small bandwidth, but the backup data volume is great?
Q4: Is it possible to use HDD/SSD to store the seed files?



Read this document:
Sangfor Managed Cloud Services aDR Deployment Guide


6. How to Reply This Post                                                                                                   

Answer the above four questions starting with the following format which will make us work efficiently.

Q1: xxxxx
Q2: xxxxx
Q3: xxxxx
Q4: xxxxx


7. Answers Announced                                                                                                         

Q1: Provide a channel to access the new IP address.

Q2: VMs protected by aDR and VMs without aDR protection.

Q3: Using replica seeds.

Q4: No. by default there is not free disk slot in the HCI nodes of MCS, so it is suggested to use portable storage device with USB interface to store and transport the seed files.

Congratulations to the following participants on getting coins!


----------------------------------------------------------------------------------------------------------------------------------------------------------------------
Recommended Reading:

Mohammed Asif C Lv1Posted 2024-Sep-24 14:10
  
Q1: we need to publish the dr server or create vpn tunnel and access the sever by dr local ip. Also there is another option by configuring Load Balancer.
Q2: Vcpu, ram, HDD, Virtula Network Interface
Q3: Configure traffic shapping.
Q4: Yes, its possible.
Sheikh_Shani Lv2Posted 2024-Sep-24 02:47
  
Q # 2

ANS

Now in allMCS sites,the SCC is 2.2.32EN , SCP is 6.9.32EN, and HCI is 670R3EN with patches. In the following table, we list matched the SCP version and HCI
   
MCS site
   
On-Premises site
SCC
2.2.32
HCI   version
SCP   version
SCP
6.9.32
HCI
670R3EN   with patches
HCI   version = 670R3EN
SCP6861   or SCP690EN or SCP691EN
HCI   version = 690 EN
SCP690EN   or SCP691EN
HCI   version = 691EN
SCP691EN




















version when planning for Hybrid Cloud for MCSand on-premises SCP/HCI.

The new version SCC 2.6 will bereleasedin Q4 2024. Each MCS site will be upgrade to SCC 2.6 later, its SCP and HCI will be upgrade too. Only after the upgrade, on-premises SCP 6.10 and HCI 6.10 will be supported accordingly.

   
HCI
   
670R3EN   with patches
HCI   version = 670R3EN
SCP6861   or SCP690EN or SCP691EN
HCI   version = 690 EN
SCP690EN   or SCP691EN
HCI   version = 691EN
SCP691EN
  
                                                         
  
   
  
The on-premises SCP and HCI version must be in the compatibility list, otherwise the aDR can’t be setup between MCS site and On-premises site, must ask HQ to confirm about the on-premises SCP and HCI version if not sure about this.
  

Sheikh_Shani Lv2Posted 2024-Sep-24 02:39
  
Q # 1
ANS

1.1 Service Access Method
  
No matter where the end users come from, they access the service by IP address orDNS Domain name. When recovery atthe secondary site or migration to the primary site is implemented,the customer needs to act immediately to keep the accessibility of the service for the end users.
  
   
Method
   
Keyactionsfor aDR customer when failover happens
   
By IP address
   
Provide a channel to access the new IP address.
   
By Domain Name
   
Change DNS resolver record.
1.1 VM DependencyRelationship
  
The VMs in the on-premises site can be divided into two categories: VMs protected by aDR and those VMs without aDR protection. We need to know their dependencies, as listed in the table below.
  
   
VM Categories
   
VM Dependency
VMsprotected by aDR
1.The boot order and data access directionbetweenthem.
VMs without aDR protection
1.Is there any data access to VM protected by aDR or   vice versa
  
For example, Figure 8 shows 4 VMsonthe on-premises site. The web serverand the db server are protected by aDR,while the HRS server and PLM serverare notprotected by aDR.
  
The web server depends on the db server, and the db server must boot first and be ready before the web server can provide service.
In Figure 9,suppose the unprotected PLM server also accesses the db server.When the db server failovers to the MCS site, and the userwants to access the PLM server to get data from the db server, a second VPN connection is required.
1.1 Failover Policy
We need to design a failover policy for all the VMs with DR enabled. Usually, we would choose full failover or partial failover.
   
Failover policy
   
Details description
Full failover
If any aDR-protected VMserror, failover all of them   to the MCS site.
Partial failover
If any aDR-protected VMs error, failover only those   VMs in the error status to the MCS site.

For example,in Figure 10, when the web server error,a full failover will make both web server and db serverfailover to the MCS site. While in partial failover, only web server is failover to the MCS site, as shown in Figure 11.

                                                  
Zonger Lv5Posted 2024-Sep-23 19:37
  
Q1: The aDR feature automatically updates the DNS record to point to the secondary IP address allowing the customer to seamlessly transition to the backup network without interruption. As a result, the customer can continue to access the service without any disruption even if they are accessing it by IP address.

Q2: The VMs on-premises site can be divided into three categories:
Infrastructure VMs
Application VMs
Edge VMs.

Q3: Implementing data deduplication and compression can achieve through deduplication storage, compression algorithms or cloud-based backup solutions. Reducing data transfer volume ensures efficient DR link handling and reliable disaster recovery.

Q4: Yes. Seed files can be stored on external storage devices such as HDDs or SSDs which can be connected to the Sangfor device via USB or SATA interfaces.
Newbie676033 Lv1Posted 2024-Sep-23 13:48
  
Q1) When a failover happens, what can the aDR customer do if they access the service by IP address?
A) When failover occurs, the aDR customer needs to provide a channel for accessing the new IP address. If the users access the service via IP address, an additional site-to-site VPN or SSL VPN must be configured to allow end users to reach the new IP address.

Q2) Which categories can be divided from the VMs in the on-premises site?
A) The VMs in the on-premises site can be divided into two categories:

a) VMs protected by aDR: These have specific dependencies like boot order and data access direction.
b) VMs without aDR protection: These might have dependencies on aDR-protected VMs for data access​.

Q3) What key action can be done when the DR link has small bandwidth, but the backup data volume is great?
A) When the DR link has small bandwidth and the backup data volume is large, it is recommended to use replica seeds. This involves exporting the VM data to a disk (such as an HDD or NAS), transporting the disk to the secondary site, and importing the data. Only the incremental data will need to be transmitted later​.

Q4) Is it possible to use HDD/SSD to store the seed files?
A) While it is possible to use HDD/SSD to store seed files, it is not recommended due to limited disk slot availability in HCI nodes. Instead, it is suggested to use portable storage devices with a USB interface to store and transport seed files​.
Ghostlying Lv2Posted 2024-Sep-20 11:00
  
Q1: Provide a channel to access the new IP address
Q2: VMs protected by aDR & those VMs without aDR protection
Q3: recommend using replica seeds
Q4: Using HDD/SSD to store the seed files is not recommended.
ilham Lv1Posted 2024-Sep-20 10:59
  
Q1 : Provide a channel to access the new IP address
Q2 : VMs protected by aDR and VMs without aDR protection
Q3 : Using Replica Seeds
Q4 : Yes, it is Possible
Christ Lee Lv2Posted 2024-Sep-20 10:17
  
Q1: Provide a channel to access the new IP address
Q2: VMs protected by aDR & those VMs without aDR protection
Q3: recommend using replica seeds
Q4: Using HDD/SSD to store the seed files is not recommended.
You suggest using a portable storage device with a USB interface to store and transport the seed files,
as there is an available USB interface on the HCI nodes of MCS.
If you decide to use Seed files,  better inform and confirm with the HQ team in advance.
Chana T Lv1Posted 2024-Sep-19 16:31
  
Q1: Provide a channel to access the new IP address.
Q2: VMs protected by aDR and those VMs without aDR protection
Q3: using replica seeds
Q4: it is not recommended to use HDD/SSD to store the seed files.
Newbie517762 Lv5Posted 2024-Sep-19 12:34
  
Q1: When a failover happens and the aDR customer accesses the service by IP address, they need to provide a channel to access the new IP address. This ensures that users can continue to access the service without interruption.

Q2: The VMs in the on-premises site can be divided into two categories:
1. VMs protected by aDR - These are the virtual machines that have disaster recovery protection enabled.
2. VMs without aDR protection - These are the virtual machines that do not have disaster recovery protection.

Q3: When the DR link has small bandwidth but the backup data volume is great, it is recommended to use replica seeds. This approach helps to manage the initial data replication more efficiently, especially when dealing with large data volumes.

Q4: It is not recommended to use HDD/SSD to store the seed files because, by default, there are no free disk slots in the HCI nodes of MCS. Instead, it is suggested to use a portable storage device with a USB interface to store and transport the seed files, as there is an available USB interface on the HCI nodes of MCS.