Forum Discussion

phantom2000's avatar
phantom2000
Copper Contributor
Feb 02, 2023

ASR Failover network architecture

I'm new to Azure and I have requirement to set up disaster recovery for an on-prem server. I am aware of the process in replicating the server to the cloud. However, I am not able to grasp how networ...
Backup and Recovery
failover
Site Recovery
VPN
infocloud's avatar
infocloud
Copper Contributor
Feb 17, 2023

phantom2000 

 

When configuring a disaster recovery (DR) solution for an on-premises server with Azure Site Recovery (ASR), it is essential to ensure that the networking architecture is set up correctly to support failover and failback. This involves creating a network architecture that allows for seamless connectivity between the on-premises network and the Azure network in the event of a disaster.

Here are a few key points to consider:

  1. Establishing connectivity: In order to provide connectivity between on-premises and Azure networks, a site-to-site (S2S) VPN should be set up. This allows for secure communication between the on-premises network and Azure virtual network (VNet).

  2. Creating subnets: When setting up the Azure VNet, ensure that subnets are created for the resources that will be created within Azure, such as the ASR target virtual machine. This VNet should be on a different subnet than the on-premises network. It is also recommended to create a subnet specifically for the VPN gateway.

  3. Configuring routing: Once the S2S VPN is set up, you will need to configure routing between the on-premises network and the Azure VNet. This is usually done using a VPN gateway, which can be set up in Azure to route traffic to and from the on-premises network.

  4. Configuring failover: In the event of a disaster, the Azure virtual machine will failover to the Azure VNet. During failover, the Azure virtual machine will be assigned a private IP address from the Azure VNet, which will allow it to communicate with the on-premises network via the S2S VPN.

  5. Configuring failback: Once the on-premises network is restored, the Azure virtual machine will need to failback to the on-premises network. During this process, the routing will need to be reconfigured to ensure that traffic flows correctly between the on-premises network and the Azure VNet.

In summary, the key to establishing a successful DR solution with ASR is to create a network architecture that allows for secure connectivity between the on-premises network and the Azure VNet via a site-to-site VPN. Once this is set up, routing can be configured to ensure that the Azure virtual machine can communicate with the on-premises network during failover and failback.

 

Resources