Cross-Region Disaster Recovery Practices

TDMQ for Apache Pulsar

Release Notes and Announcements

Release Notes

Cluster Version Updates

Announcements

Official Launch of TDMQ for Apache Pulsar

TDMQ for Apache Pulsar's Support for CAM Authorization at All Resource Levels

Suspension of Feature Update for Tencent Cloud SDK

Product Introduction

Comparison with Apache Pulsar

Purchase Guide

Product Selection

Billing Overview

Purchase Methods

Pricing Overview

Virtual Cluster Billing

Pro Cluster

Getting Started

Using SDK to Send and Receive Normal Messages

Resource Creation and Preparation

Downloading and Running Demo

Using Message Retry and Dead Letter Queue

Using Share Subscription Mode to Consume Messages

Developer Guide

How It Works

Pulsar Topic and Partition

Pulsar Multi-AZ Deployment

Message Storage Principle and ID Generation Rule

Message Replica and Storage Mechanisms

Best Practices

Automatically create Topic

Subscription Mode

Scheduled Message and Delayed Message

Message Filtering

Message Retry and Dead Letter Mechanisms

Client Connection and Producer/Consumer

Operation Guide

Cluster Management

Direct Connection/Cross-Region Access

Namespace

Topic Management

Subscription Management

Producer Management

Message Query and Trace

Monitoring and Alarms

Cluster Monitoring

Topic Monitoring

Alarm Configuration

Connecting to Prometheus

Monitoring and Alarm Practices

Permission Management

Permission Management Overview

Pulsar Instance Permission Management

Granting Sub-Account Access Permissions

Granting Sub-Account Operation-Level Permissions

Granting Sub-Account Resource-Level Permissions

Granting Sub-Account Tag-Level Permissions

Role and Authentication

JWT Authentication Configuration

Tag Management

Cross-Region Replication

Cross-Region Replication/Feature Description

Cross-Region Disaster Recovery Practices

Cluster Migration

Single Write and Multiple Read Migration Solution

Cluster Migration Capability Description

Practical Tutorial

Transaction Reconciliation

API Documentation

Making API Requests

Message APIs

Cluster APIs

DescribePulsarProInstanceDetail

DescribePulsarProInstances

DescribeRabbitMQNodeList

DescribeClusters

DescribeClusterDetail

Namespace APIs

ModifyEnvironmentAttributes

DescribeEnvironments

DescribeEnvironmentAttributes

DeleteEnvironments

CreateEnvironment

DescribeEnvironmentRoles

DeleteRocketMQNamespace

Topic APIs

CMQ Message APIs

ClearCmqSubscriptionFilterTags

ClearCmqQueue

CMQ Management APIs

UnbindCmqDeadLetter

RewindCmqQueue

ModifyCmqTopicAttribute

ModifyCmqSubscriptionAttribute

ModifyCmqQueueAttribute

DescribeCmqTopics

DescribeCmqTopicDetail

DescribeCmqSubscriptionDetail

DescribeCmqQueues

DescribeCmqQueueDetail

Other APIs

Environment Role APIs

ModifyRole

ModifyEnvironmentRole

DescribeRoles

DeleteEnvironmentRoles

CreateRole

CreateEnvironmentRole

DeleteRoles

TDMQ for RabbitMQ APIs

CreateRabbitMQUser

CreateRabbitMQVirtualHost

DeleteRabbitMQUser

DeleteRabbitMQVirtualHost

DescribeRabbitMQUser

DescribeRabbitMQVirtualHost

ModifyRabbitMQUser

ModifyRabbitMQVirtualHost

CreateRabbitMQVipInstance

DeleteRabbitMQVipInstance

DescribeRabbitMQVipInstances

RocketMQ APIs

DescribeRocketMQVipInstanceDetail

DescribeRocketMQMsg

ModifyRocketMQTopic

ModifyRocketMQNamespace

ModifyRocketMQGroup

ModifyRocketMQCluster

DescribeRocketMQTopics

DescribeRocketMQNamespaces

DescribeRocketMQGroups

DescribeRocketMQClusters

DescribeRocketMQCluster

DeleteRocketMQTopic

DeleteRocketMQGroup

DeleteRocketMQCluster

CreateRocketMQTopic

CreateRocketMQNamespace

CreateRocketMQGroup

CreateRocketMQCluster

TDMQ for RocketMQ APIs

ModifyRocketMQInstanceSpec

DescribeRocketMQVipInstances

Production and Consumption APIs

DescribeSubscriptions

DeleteSubscriptions

CreateSubscription

ResetMsgSubOffsetByTimestamp

DescribePublishers

DescribePublisherSummary

ResetRocketMQConsumerOffSet

Data Types

Error Codes

SDK Documentation

SDK Overview

Apache Pulsar TCP Protocol

FAQs

Traffic Throttling Mechanism Description

TDMQ Policy

Data Processing and Security Agreement

Service Level Agreement

General References

Message Type

Retry Letter Topic and Dead Letter Topic

Glossary

DocumentationTDMQ for Apache PulsarOperation GuideCross-Region ReplicationCross-Region Disaster Recovery Practices

Cross-Region Disaster Recovery Practices

Download PDF

Last updated: 2024-12-02 17:25:44

Cross-Region Disaster Recovery Practices

Last updated: 2024-12-02 17:25:44

Download PDF

Cross-Region Disaster Recovery
Message middleware is a vital component in the technical architecture of business systems. While TDMQ for Apache Pulsar already supports disaster recovery across multiple availability zones, it introduces the Cross-region disaster recovery solution to address region-level disasters. This solution enables customers to quickly migrate their business operations, ensuring uninterrupted continuity.
The following document provides an overview of the cross-region disaster recovery solution.
﻿
Under normal circumstances, business operations in Region A access the Pulsar server. Users need to complete two main actions:
1. Establish cross-city network connectivity using Cloud Connect Network (CCN) to enable cross-region VPC communication.
2. Synchronize metadata between the two regions via the Pulsar console, including namespaces, Topics, subscriptions, and roles.
When an exception occurs, the TDMQ for Apache Pulsar console provides a domain name parsing switch feature. This feature redirects the domain name originally used in Region A to the disaster recovery cluster in Region B. This avoids the need for clients to modify access point addresses, enabling seamless access to the Region B cluster and ensuring business continuity.
Once the exception in Region A is resolved, users need to determine whether to write back the messages generated in Region B to Region A to ensure message integrity. If a write-back is needed, please contact our after-sales team for assistance. Afterward, users can switch the access point domain name parsing back to the Region A cluster from Region B. Once the switch is completed, clients can resume normal access to Region A.
Operation Guide
Configuring Disaster Recovery Features
1. In the backup region, create a professional cluster. On the cluster purchase page, enable the Cross-region Replication switch and select the cluster to be backed up;
2. Configure the cluster metadata synchronization linkage through the console:
Replication linkage name: Define a name for the synchronization linkage.
Linkage type: Select metadata.
Source cluster selection: Choose the Pulsar cluster for disaster recovery backup.
Target cluster selection: Select the pre-created disaster recovery cluster in a different region. Only clusters with the same cluster ID will be displayed.
Replication level: Choose between cluster-level and namespace-level replication.
Cluster level: Suitable for cold backups at the cluster level.
Namespace Level: Suitable for scenarios where clusters in both regions are actively used, with different namespaces distributed across regions. Regions act as mutual primary and backup for each other.
Establishing CCN
Use Cloud Connect Network to link the production region and the backup region, creating a network access channel. This ensures that, in the event of a disaster, clients in the production region can access the backup cluster across regions.
For detailed configuration steps, see CCN Operation Guide and perform the following operations:
1. Create a Cloud Connect Network instance
2. Associating a Network Instance
When Disaster Occurs
Users can decide to switch client access to the backup region:
1. If the console is available: Initiate a domain name parsing switch via the console;
2. If the console is unavailable: Contact the after-sales architect to request a switch, which will be initiated by the TDMQ service.
After Disaster Recovery
Users can decide to switch client access back to the original region cluster:
1. Evaluate whether messages need to be written back to the original region. If write-back is required, contact our after-sales team for assistance.
2. Initiate a domain name switch-back via the console to restore normal client access to the original region.
Notes
1. Supported Scope
This feature is supported only in professional clusters.
2. Message Write-Back
Message write-back is a prerequisite assessment when switching traffic back to the original region. It aims to prevent data loss and ensure data integrity. Be sure to decide whether to perform a write-back before initiating the domain name switch-back.
User-provided information:
The list of Topics to be migrated, including details such as cluster ID, namespace, or specific Topic lists.
The start and end time. Messages sent within this time range, based on the publishTime field in the message header, will be identified as data to be migrated.
Impacts of message write-back:
A large number of duplicate messages may occur. The server does not account for the complex state machine of offset synchronization between the source and target clusters. All migrated messages are treated as new messages, even if identical messages already exist in the historical data. They will be regarded as separate messages. If duplicate messages impact your business, it is recommended to implement idempotent processing on the client side.
A small number of messages may arrive out of order.
3. About Roles
The source cluster should have at least one Role, which does not need to be bound to a namespace. This ensures that during synchronization, the Role and Token remain consistent with the disaster recovery cluster.
4. CCN Configuration
When you configure CCN, the VPC CIDRs of the two regions should not overlap. For example, use 10.0.0.0/16 for Guangzhou and 10.1.0.0/16 for Shanghai. This ensures that CCN can link the two VPCs without IP conflicts.
5. Domain Name Switch Effectiveness Time
The domain name switch takes approximately 5 seconds to 5 minutes to become effective. This duration includes two parts: domain name parsing switch and client disconnection and reconnection to the new cluster’s Broker.
6. Post-Switch Actions During a Disaster
After traffic is switched to the disaster recovery cluster during a disaster, avoid making metadata changes on the backup cluster, such as modifying namespace attributes or creating Topics.
﻿

Was this page helpful?

You can also Contact Sales or Submit a Ticket for help.

Yes

tencent cloud

New User Offers

Next-Generation CDN：EdgeOne

Elasticsearch Service free trial

Free Tier

Tencent Cloud Startup Program

Special Offers

Lighthouse Special Offers

Cloud Object Storage Special Offers

Featured Products

New Products

Education

Tencent Cloud Online Education Solutions

Gaming

Gaming Solution

Game Media Solutions

E-commerce

E-commerce retail solutions

Audio & Video

Audio/Video Solution

LVB Recording Solution

Interactive Classroom Solution

Interactive Live Streaming Solution

Audio Chat Social Networking Solution

Financial Services

Financial Services Solution

Compute

Cloud Virtual Machine

Auto Scaling

Batch Compute

CVM Dedicated Host

Database

TencentDB for MySQL

TencentDB for Redis®

TencentDB for CTSDB

TDSQL for MySQL

Data Transfer Service

TencentDB for MongoDB

TencentDB for PostgreSQL

TencentDB for SQL Server

Video Service

Cloud Streaming Services

Video on Demand

Media Processing Service

Cloud Application Rendering

Cloud Contact Center

Game Multimedia Engine

Chat

Real-time Communication

Tencent Effect SDK

AI and Machine Learning

Image Creation Large Model

Face Fusion

eKYC

Optical Character Recognition

Video Creation Large Model

Industry Applications

Tencent HealthCare Omics Platform

Container and Middleware

TDMQ for CKafka

Serverless Cloud Function

Tencent Kubernetes Engine

Tencent Kubernetes Engine for Serverless

Networking

Cloud Load Balancer

Virtual Private Cloud

Direct Connect

Cloud Connect Network

NAT Gateway

VPN Connection

Bandwidth Package

Anycast Internet Acceleration

Elastic Network Interface

Flow Logs

Global Application Acceleration Platform

Security

Captcha

Cloud Workload Protection Platform

Data Security Governance Center

Key Management Service