Architecting for high availability
Application and network errors can render the system unavailable to the user. Multi-availability zone deployments are used for building high-availability applications at the AWS region level. For implementing fault tolerance for region level failures, we have to deploy our application in availability zones spanning across different regions. If we use multiple regions, we have to use Route 53 for failover. If the primary region goes down, Route 53 fails over to the secondary region.
Increasing load on system can also cause system availability issues, but the autoscaling feature can help us solve the problem by autoscaling the number of servers during a spike in load. The number of servers is automatically reduced when the load comes back to normal levels. Detailed explanation on autoscaling is in Chapter 3, Managing AWS Resources Using AWS CloudFormation.
Building loosely coupled applications can also help avoid single points of failure. We can use Simple Queue Service (SQS) to build loosely coupled applications. Using the SQS queue size as a parameter, we can auto-scale our EC2 instances. For RDS high availability, we can configure a multi availability zone-deployment option. This will deploy the primary and secondary database instances in two different availability zones.
How to do it…
Here, we list the commands required for configuring high availability across two different regions using Route 53:
- Create an instance in the first region. Before launching the EC2 instance, create the required VPC, subnets, key pairs, and security groups in this region.
$ aws ec2 run-instances --image-id [ImageId] --count [InstanceCount] --instance-type [InstanceType] --key-name [KeyPairName] --security-group-ids [SecurityGroupIds] --subnet-id [SubnetId]
The parameters used in this command are described as follows:
[ImageId]: This option gives the ID of the image[InstanceCount]: This parameter provides the number of instances to create[InstanceType]: This parameter provides the type of EC2 instance[KeyPairName]: This gives a key/pair name for authentication[SecurityGroupIds]: This option provides the security group ID[SubnetId]: This parameter provides the ID of subnet where you want to launch your instance
- Create an instance in the second region. Before launching the EC2 instance, create the required VPC, subnets, key pairs, and security groups in this region:
$ aws ec2 run-instances --image-id [ImageId] --count [InstanceCount] --instance-type [InstanceType] --key-name [KeyPairName] --security-group-ids [SecurityGroupIds] --subnet-id [SubnetId]
The parameters used in this command are described as follows:
[ImageId]: This parameter provides the ID of the image[InstanceCount]: This option gives the number of instances to create[InstanceType]: This one gives the type of EC2 instance[KeyPairName]: This parameter provides a key/pair name for authentication[SecurityGroupIds]: This option gives a security group ID[SubnetId]: This parameter provides the ID of the subnet where you want to launch your instance
- Create an AWS hosted zone in Route 53 service.
The following command will return the name server records. Record the name server records and the hosted zone ID for the further usage.
$ aws route53 create-hosted-zone --name [Name] --caller-reference [CallReference]
The parameters used in this command are described as follows:
[Name]: This parameter gives the name of the domain[CallReference]: This parameter gives a unique string that identifies the request and that allows failedcreate-hosted-zonerequests to be retried without the risk of executing the operation twice
Change the name servers records with your domain registrar.
Note
Use the following link to understand how to change name servers with GoDaddy:
https://support.godaddy.com/help/article/664/setting-nameservers-for-your-domain-names
- Create health checks for previously created instances in the first region by performing the following steps:
- First create a
virginiahc.jsonfile with the following JSON. The IP address used is the public IP address of EC2 instance.{ "IPAddress":"54.173.200.169", "Port":8080, "Type":"HTTP", "ResourcePath":"/index.html", "RequestInterval":30, "FailureThreshold":3 } - Execute the following command for the first region:
$ aws route53 create-health-check --caller-reference [CallReference] --health-check-config [HealthCheckConfig]
The parameters used in this command are described as follows:
[CallReference]: This is a unique string that identifies the request and that allows failedcreate-health-checkrequests to be retried without the risk of executing the operation twice[HealthCheckConfig]: This option gives the health check configurationSyntax:
file://virginiahc.json
- Create health check by running the following command. Record the health check ID for further usage.
$ aws route53 create-health-check --caller-reference 2014-11-29-17:03 --health-check-config file://virginiahc.json
- First create a
- Create health checks for previously created instances in second region by performing the following steps:
- Create a second
singaporehc.jsonfile with the following JSON. The IP address used is the public IP address of EC2 instance.{ "IPAddress":"54.169.85.163", "Port":8080, "Type":"HTTP", "ResourcePath":"/index.html", "RequestInterval":30, "FailureThreshold":3 } - Execute the following command for the second region:
$ aws route53 create-health-check --caller-reference [CallReference] --health-check-config [HealthCheckConfig]
The parameters used in this command are described as follows:
[CallReference]: A unique string that identifies the request and that allows failedcreate-health-checkrequests to be retried without the risk of executing the operation twice[HealthCheckConfig]: This option provides the health check configurationSyntax:
file:// singaporehc.json
- Create health check by running the following command. Record the health check ID for further usage.
$ aws route53 create-health-check --caller-reference 2014-11-29-17:04 --health-check-config file://singaporehc.json
- Create a second
- Add a primary and secondary record set to the Route 53-hosted zone by performing the following steps:
- Create a
recordset.jsonfile with the following JSON. In primary record set, replace health check ID and IP address with first region health check ID and EC2 public IP address accordingly. In secondary record set, replace health check ID and IP address with second region health check ID and EC2 public IP address accordingly.{ "Comment":"Creating Record Set", "Changes":[ { "Action":"CREATE", "ResourceRecordSet":{ "Name":"DNS Domain Name", "Type":"A", "SetIdentifier":"PrimaryRecordSet", "Failover":"PRIMARY", "TTL":300, "ResourceRecords":[ { "Value":"54.173.200.169" } ], "HealthCheckId":"<your first region's health check id>" } }, { "Action":"CREATE", "ResourceRecordSet":{ "Name":" DNS Domain Name", "Type":"A", "SetIdentifier":"SecondaryRecordSet", "Failover":"SECONDARY", "TTL":300, "ResourceRecords":[ { "Value":"54.169.85.163" } ], "HealthCheckId":"<your second region's health check id>" } } ] } - Execute the following command to add record set:
$ aws route53 change-resource-record-sets --hosted-zone-id [HostedZoneId] --change-batch [ChangeBatch]
The parameters used in this command are described as follows:
[HostedZoneId]: This option provides the Route 53-hosted zone ID[ChangeBatch]: A complex type that contains an optional comment and the changes elementSyntax:
file://recordset.json
- Add the record set to the hosted zone by running the following command:
$ aws route53 change-resource-record-sets --hosted-zone-id Z3DYG8V5Z07JP8 --change-batch file://recordset.json
- Create a
- Test the failover configuration by stopping the server in the primary region. You can stop your first region EC2 instance by running the
aws ec2 stop-instancescommand.
