You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/private-5g-core/reliability-private-5g-core.md
+22-14Lines changed: 22 additions & 14 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -11,16 +11,22 @@ ms.date: 01/31/2022
11
11
12
12
# Reliability for Azure Private 5G Core
13
13
14
-
This article describes reliability support in Azure Private 5G Core. It covers both regional resiliency with availability zones and cross-region resiliency with disaster recovery. For an overview of reliability in Azure, see [Azure reliability](/azure/architecture/framework/resiliency/overview).
15
-
16
-
See [Products available by region](https://azure.microsoft.com/explore/global-infrastructure/products-by-region/?products=private-5g-core) for the Azure regions where Azure Private 5G Core is available.
14
+
This article describes reliability support in Azure Private 5G Core. It covers both regional resiliency with [availability zones](#availability-zone-support) and [cross-region disaster recovery and business continuity](#cross-region-disaster-recovery-and-business-continuity). For an overview of reliability in Azure, see [Azure reliability](/azure/architecture/framework/resiliency/overview).
17
15
18
16
## Availability zone support
19
17
18
+
[!INCLUDE [Availability zone description](../reliability/includes/reliability-availability-zone-description-include.md)]
19
+
20
+
20
21
The Azure Private 5G Core service is automatically deployed as zone-redundant in Azure regions that support availability zones, as listed in [Availability zone service and regional support](../reliability/availability-zones-service-support.md). If a region supports availability zones then all Azure Private 5G Core resources created in a region can be managed from any of the availability zones.
21
22
22
23
No further work is required to configure or manage availability zones. Failover between availability zones is automatic.
23
24
25
+
26
+
### Prerequisites
27
+
28
+
See [Products available by region](https://azure.microsoft.com/explore/global-infrastructure/products-by-region/?products=private-5g-core) for the Azure regions where Azure Private 5G Core is available.
29
+
24
30
### Zone down experience
25
31
26
32
In a zone-wide outage scenario, users should experience no impact because the service will move to take advantage of the healthy zone automatically. At the start of a zone-wide outage, you may see in-progress ARM requests time-out or fail. New requests will be directed to healthy nodes with zero impact on users and any failed operations should be retried. You'll still be able to create new resources and update, monitor and manage existing resources during the outage.
@@ -29,15 +35,17 @@ In a zone-wide outage scenario, users should experience no impact because the se
29
35
30
36
The application ensures that all cloud state is replicated between availability zones in the region so all management operations will continue without interruption. The packet core is running at the Edge and is unaffected by the zone failure, so will continue to provide service for users.
31
37
32
-
## Disaster recovery: cross-region failover
38
+
39
+
## Cross-region disaster recovery and business continuity
40
+
41
+
[!INCLUDE [introduction to disaster recovery](../reliability/includes/reliability-disaster-recovery-description-include.md)]
33
42
34
-
Azure Private 5G Core is only available in multi-region (3+N) geographies. The service automatically replicates SIM credentials to a backup region in the same geography. This means that there's no loss of data in the event of region failure. Within four hours of the failure, all resources in the failed region are available to view through the Azure portal and ARM tools but will be read-only until the failed region is recovered. the packet running at the Edge continues to operate without interruption and network connectivity will be maintained.
35
43
36
-
### Cross-region disaster recovery in multi-region geography
44
+
Azure Private 5G Core is only available in multi-region (3+N) geographies. The service automatically replicates SIM credentials to a backup region in the same geography. This means that there's no loss of data in the event of region failure. Within four hours of the failure, all resources in the failed region are available to view through the Azure portal and ARM tools but will be read-only until the failed region is recovered. The packet core running at the Edge continues to operate without interruption and network connectivity will be maintained.
37
45
38
46
Microsoft is responsible for outage detection, notification and support for the Azure cloud aspects of the Azure Private 5G Core service.
39
47
40
-
####Outage detection, notification, and management
48
+
### Outage detection, notification, and management
41
49
42
50
Microsoft monitors the underlying resources providing the Azure Private 5G Core service in each region. If those resources start to show failures or health monitoring alerts that aren't restricted to a single availability zone then Microsoft will move the service to another supported region in the same geography. This is an Active-Active pattern. The service health for a particular region can be found on [Azure Service Health](https://status.azure.com/status) (Azure Private 5G Core is listed in the **Networking** section). You'll be notified of any region failures through normal Azure communications channels.
43
51
@@ -55,7 +63,7 @@ Note that this will cause an outage of your packet core service and interrupt ne
55
63
56
64
In advance of a disaster recovery event, you must back up your resource configuration to another region that supports Azure Private 5G Core. When the region failure occurs, you can redeploy the packet core using the resources in your backup region.
57
65
58
-
#####Preparation
66
+
#### Preparation
59
67
60
68
There are two types of Azure Private 5G Core configuration data that need to be backed up for disaster recovery: mobile network configuration and SIM credentials. We recommend that you:
61
69
@@ -74,7 +82,7 @@ For security reasons, Azure Private 5G Core will never return the SIM credential
74
82
<br></br>
75
83
Your Azure Private 5G Core deployment may make use of Azure Key Vaults for storing [SIM encryption keys](./security.md#customer-managed-key-encryption-at-rest) or HTTPS certificates for [local monitoring](./security.md#access-to-local-monitoring-tools). You must follow the [Azure Key Vault documentation](../key-vault/general/disaster-recovery-guidance.md) to ensure that your keys and certificates will be available in the backup region.
76
84
77
-
#####Recovery
85
+
#### Recovery
78
86
In the event of a region failure, first validate that all the resources in your backup region are present by querying the configuration through the Azure portal or API (see [Move resources to a different region](./region-move-private-mobile-network-resources.md)). If all the resources aren't present, stop here and don't follow the rest of this procedure. You may not be able to recover service at the edge site without the resource configuration.
79
87
80
88
The recovery process is split into three stages for each packet core:
@@ -102,7 +110,7 @@ Take a copy of the **packetCoreControlPlanes.platform** values you stored in [Pr
102
110
103
111
You should follow your normal process for validating a new site install to confirm that UE connectivity has been restored and all network functionality is operational. In particular, you should confirm that the site dashboards in the Azure portal show UE registrations and that data is flowing through the data plane.
104
112
105
-
#####Failed region restored
113
+
#### Failed region restored
106
114
107
115
When the failed region recovers, you should ensure the configuration in the two regions is in sync by performing a backup from the active backup region to the recovered primary region, following the steps in [Preparation](#preparation).
108
116
@@ -113,13 +121,13 @@ You must also check for and remove any resources in the recovered region that ha
113
121
114
122
You then have two choices for ongoing management:
115
123
116
-
1. Use the operational backup region as the new primary region and use the recovered region as a backup. No further action is required.
117
-
1. Make the recovered region the new active primary region by following the instructions in [Move resources to a different region](./region-move-private-mobile-network-resources.md) to switch back to the recovered region.
124
+
- Use the operational backup region as the new primary region and use the recovered region as a backup. No further action is required.
125
+
- Make the recovered region the new active primary region by following the instructions in [Move resources to a different region](./region-move-private-mobile-network-resources.md) to switch back to the recovered region.
118
126
119
-
#####Testing
127
+
#### Testing
120
128
121
129
If you want to test your disaster recovery plans, you can follow the recovery procedure for a single packet core at any time. Note that this will cause a service outage of your packet core service and interrupt network connectivity to your UEs for up to four hours, so we recommend only doing this with non-production packet core deployments or at a time when an outage won't adversely affect your business.
122
130
123
131
## Next steps
124
132
125
-
-[Resiliency in Azure](/azure/availability-zones/overview)
133
+
-[Reliability in Azure](/azure/reliability/overview)
0 commit comments