Amazon Route 53 Resource Replication with Arpio
Jump to:
Route 53 Private Hosted Zones
Arpio can replicate private hosted zones with their resource record sets, including resource records and alias targets.
The following attributes are translated if the attribute and private hosted zone are manually selected into the recovery environment:
|
Attribute |
Translation |
|
Amazon VPC |
Translated to the corresponding VPC that Arpio manages in the recovery environment. |
The following Alias Target and CNAME attributes are translated to the corresponding alias targets and CNAME attributes in the recovery environment:
|
Attribute |
Translation |
|
VPC Endpoints |
Translated to the corresponding regional public DNS of the VPC endpoint in the recovery environment. If the name of the VPC Endpoint in the resource record set points to a VPC endpoint hostname, Arpio will translate the name in the resource record set to resolve to the appropriate region. |
|
Classic Load Balancers |
Translated to the corresponding canonical hosted zone name id in the recovery environment. |
|
Application and Network Load Balancers |
Translated to the corresponding canonical hosted zone id in the recovery environment. |
|
Elastic Beanstalk Environments |
Translated to the corresponding CNAME attribute in the recovery environment. |
The following CNAME attributes are translated to the corresponding CNAME attributes in the recovery environment:
|
Attribute |
Translation |
|
Amazon ElastiCache |
Replication Groups: Translated to the corresponding node group reader or primary endpoint address in the recovery environment. Cache Cluster: Translated to the corresponding configuration endpoint address or the corresponding cache node endpoint address in the recovery environment. |
|
RDS Instance |
Translated to the corresponding endpoint address in the recovery environment. |
|
Amazon Aurora |
Translated to the corresponding endpoint, reader endpoint, or custom endpoint in the recovery environment. |
|
FSx File System for Windows |
Translated to the corresponding DNS name of the file system in the recovery environment. |
|
EFS File System |
Translated to the corresponding DNS of the file system in the recovery environment. |
Route 53 Profiles
The Route53 Profiles service currently only has one resource, "Profile", which Arpio can replicate. Route53 Profiles profiles are expensive to run, so resources are only replicated when your application is in failover or failover test mode.
Arpio supports replicating profiles that have been shared into the primary account from a different account using AWS Resource Access Manager. The original profile being shared must also be part of an Arpio application. During a failover or test, both the application with the original profile, and the application with the shared profile must be restored together.
Profile
| Attribute | Translation |
| Associations | The ARNs of the VPCs associated to the profile are replaced with the ARNs of the VPCs replicated into the recovery environment. |
| Resource Associations | The ARNs of firewall rules, firewall rule groups, interface VPC Endpoints, and private hosted zones associated to the profile are replaced with the arns of the replicated versions of these resources |
Resources automatically discovered and included in recovery points when a Profile is selected for replication:
- VPCs associated to this policy
- Any firewall rules, firewall rule groups, interface VPC Endpoints, and private hosted zone associated to this policy
- Any RAM resource shares that share this resource
Route 53 Resolver
Resolver Configuration
Arpio replicates Route 53 resolver configurations to the recovery environment during application failover and during tests. These are replicated alongside the VPCs that they are scoped to and are not shown in the UI as standalone resources.
Resolver DNSSEC Configuration
Arpio replicates Route 53 DNSSEC configurations to the recovery environment during application failover and during tests. These are replicated alongside the VPCs that they are scoped to and are not shown in the UI as standalone resources.
Resolver Endpoint
Arpio replicates Route 53 resolver endpoints to the recovery environment during application failover and during tests. Both inbound and outbound endpoints are supported.
The following attributes are translated during replication:
|
Attribute |
Translation |
|
Host VPC ID |
Translated to the corresponding VPC in the recovery environment. |
|
IP Addresses |
Translated to IPs within the range of the corresponding subnet in the recovery environment. |
|
Security Group IDs |
Translated to the corresponding security group that Arpio manages in the recovery environment. |
The following resources are automatically selected into recovery points when a resolver endpoint is selected:
- The host VPC
- Subnets referenced in the IP Addresses list
- Security groups listed in Security Group IDs
Resolver Firewall Configuration
Arpio replicates Route 53 resolver firewall configurations to the recovery environment during application failover and during tests. These are replicated alongside the VPCs that they are scoped to and are not shown in the UI as standalone resources.
Resolver Firewall Domain List
Arpio replicates Route 53 firewall domain lists to the recovery environment during application failover and during tests.
No attributes require translation. No additional resources are selected when a firewall domain list is selected.
Resolver Firewall Rule Group
Arpio replicates Route 53 firewall rule groups to the recovery environment during application failover and during tests.
The following attributes are translated during replication:
|
Attribute |
Translation |
|
Firewall Rules |
The domain list ID of each firewall rule is translated to the corresponding firewall domain list ID in the recovery environment. |
|
Associations |
Translated to the corresponding VPC that Arpio manages in the recovery environment. |
The following resources are automatically selected into recovery points when a resolver firewall group is selected:
- Associated VPCs
- Domain lists referenced by firewall rules
Resolver Query Log Configuration
Arpio replicates Route 53 query log configurations to the recovery environment during application failover and during tests.
The following attributes are translated during replication:
|
Attribute |
Translation |
|
Associated VPCs |
Translated to the corresponding VPC in the recovery environment. |
|
Destination |
Translated to the ARN of the corresponding log group in the recovery environment. |
The following resources are automatically selected into recovery points when a resolver query log config is selected:
- Associated VPCs
- Log group referenced in DestinationArn
Resolver Rule
Arpio replicates Route 53 resolver rules to the recovery environment during application failover and during tests.
Arpio also supports replicating rules that have been shared into the primary account from a different account using AWS Resource Access Manager. The original resource must also be part of an Arpio application. During a failover or test, both applications must be restored together.
The following attributes are translated during replication:
|
Attribute |
Translation |
|
Associated VPCs |
Translated to the corresponding VPC in the recovery environment. |
|
Resolver Endpoint |
Translated to the corresponding resolver endpoint that Arpio manages in the recovery environment. |
The following resources are automatically selected into recovery points when a resolver endpoint is selected:
- Resolver Endpoint (unless this rule is shared from another account)
- Resource Access Manager Share (if this rule is shared by or with this account).