HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 70 guests online
 
Free Business and Tech Magazines and eBooks

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Otherarrow DR Plans - Best Practices?
EH-Net
May 21, 2013, 03:24:33 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: DR Plans - Best Practices?  (Read 7492 times)
0 Members and 1 Guest are viewing this topic.
lorddicranius
Sr. Member
****
Offline Offline

Posts: 447



View Profile WWW
« on: April 19, 2011, 12:44:03 PM »
I just had a curious question as to how other companies plan their DR in regards to recovering failed servers.  What are the best practices when it comes to this?

Example: a server is backed up to hard drive on another server on-site (copy #1).  This backup server then archives copies of all the backups to a hard drive that can be taken off-site (copy #2).  Then this backup server also syncs to another server at a remote location (copy #3).  The idea of creating another backup that can be taken off-site (just in case the hard drive that was archived to fails) is being tossed around now.

That's one backup on-site, 2 copies that are physically walked out of the building, and one synced to a remote location.  Where does one draw the line? Huh
Logged
GSEC, eCPPT, Sec+
R3B005t
Newbie
*
Offline Offline

Posts: 43


View Profile
« Reply #1 on: April 19, 2011, 01:27:24 PM »
Well there are a few different strategies.  We employ several, we have an alternate out of state DR site that contains the following.  We have a LUND with our core servers that replicates across the wan, we have secondary bes servers set up with replication, our exchange environment is clustered with nodes existing at multi-sites.  We also have routine nightly and weekly backups that are stored off sight at a secure location.  Did I mention that we also have client machines doing differential backups.
Logged
ajohnson
Recruiters
Hero Member
*
Offline Offline

Posts: 1057


aka dynamik


View Profile WWW
« Reply #2 on: May 06, 2011, 08:09:45 PM »
This is what risk assessments are for. It doesn't sound like there is really a plan, course of action, or any formalized process. What are your ultimately trying to achieve? What is the impact of lost data and/or downtime? You're just going to be grasping at straws if you don't sit down and figure out what you're really trying to achieve. Who knows, you may even find a better way of doing what you need to when you start brainstorming...
Logged
WIP: GCFA | www.infosiege.net | @infosiege

The day you stop learning is the day you start becoming obsolete.
3xban
Hero Member
*****
Offline Offline

Posts: 605


View Profile WWW
« Reply #3 on: June 19, 2011, 10:07:31 PM »
The big question is... If something fails, can you bring it back up?  How long can you be down before it hurts business?  What systems are you replicating?  Are you hoping to restore from bare metal?  Is there any virtualization in use on the network?  Ok, so that is more than one question.  But like dynamik recommended, you need to have a formal risk assessment done before planning your DR.  That will make it much easier if you know what needs to be up in a certain amount of time.  Then you are spinning your wheels on less critical systems.

And of course testing testing testing, once you have the plan in place.  Its no good if you don't test.
Logged
Certs: GCWN
(@)Dewser
lorddicranius
Sr. Member
****
Offline Offline

Posts: 447



View Profile WWW
« Reply #4 on: June 20, 2011, 02:18:23 AM »
Thanks for the tips guys.  Some great questions that I need to be thinking about.  To do list: risk assessment.
Logged
GSEC, eCPPT, Sec+
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.059 seconds with 22 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.