{"id":14064,"date":"2016-05-17T19:20:54","date_gmt":"2016-05-17T15:20:54","guid":{"rendered":"http:\/\/www.msp360.com\/blog\/?p=14064"},"modified":"2020-12-18T15:42:09","modified_gmt":"2020-12-18T11:42:09","slug":"how-to-improve-amazon-s3-data-protection-using-cross-region-replication","status":"publish","type":"post","link":"https:\/\/www.msp360.com\/resources\/blog\/how-to-improve-amazon-s3-data-protection-using-cross-region-replication\/","title":{"rendered":"How to Improve Amazon S3 Data Protection Using Cross-Region Replication"},"content":{"rendered":"

By default, Amazon S3 stores multiple copies of your data inside different facilities within one AWS Region. In case of region-level disaster like tornado, flood or earthquake all these facilities will experience outage and despite all precautions your crucial data may be lost. Consequences are catastrophic, especially in case of user-generated content that can\u2019t be easily reproduced.<\/p>\n

This article explains how to Configure Cross-Region Replication between buckets in different AWS Regions to achieve region-level data protection.How to Enable Amazon S3 Cross-Region Replication<\/h2>\n

Please before enabling cross-region replication, mind that:<\/p>\n

1. Cross region replication is not free. You will be billed according to the prices in the selected region
\n2. Before implementing Cross-Region Replication, make sure files you want to replicate are allowed by AWS<\/a>.<\/p>\n

Login to your AWS console and choose Amazon S3:\u00a0https:\/\/s3.console.aws.amazon.com\/s3\/<\/p>\n

Choose the needed bucket and click it<\/p>\n

Click properties and enable\u00a0Versioning. Cross-region replications works only with this feature enabled\"\"<\/p>\n

Go to\u00a0Management tab, find Replication in the sub-menu, and click\u00a0Add a Rule.\u00a0This will begin the cross-region replication setup\"\"<\/p>\n

Select your source bucket. You can select a bucket, a given prefix or a tag to replicate only the needed parts of data in the bucket\"\"<\/p>\n

You need a bucket in a different region to perform replication. Choose the existing one or create a new one\"\"Additionally you can choose\u00a0different storage class for replication. That helps if you want to spend less for additional copies of your files.<\/p>\n

Further reading<\/span> Amazon S3 Storage Classes Explained<\/a><\/p>\n

You need to select or create IAM role, that will allow automatic replication from one bucket to another.<\/p>\n

\"\"<\/p>\n

Here is the basic rule that can be applied:<\/p>\n

{\r\n   \"Version\":\"2012-10-17\",\r\n   \"Statement\":[\r\n      {\r\n         \"Effect\":\"Allow\",\r\n         \"Action\":[\r\n            \"s3:GetReplicationConfiguration\",\r\n            \"s3:ListBucket\"\r\n         ],\r\n         \"Resource\":[\r\n            \"arn:aws:s3:::source-bucket\"\r\n         ]\r\n      },\r\n      {\r\n         \"Effect\":\"Allow\",\r\n         \"Action\":[\r\n            \"s3:GetObjectVersion\",\r\n            \"s3:GetObjectVersionAcl\"\r\n         ],\r\n         \"Resource\":[\r\n            \"arn:aws:s3:::source-bucket\/*\"\r\n         ]\r\n      },\r\n      {\r\n         \"Effect\":\"Allow\",\r\n         \"Action\":[\r\n            \"s3:ReplicateObject\",\r\n            \"s3:ReplicateDelete\"\r\n         ],\r\n         \"Resource\":\"arn:aws:s3:::destination-bucket\/*\"\r\n      }\r\n   ]\r\n}\r\n<\/pre>\n
Replication works for objects that are only created after enabling Cross-Region Replication.<\/p>\n
Conclusion<\/h2>\n
Enabling Cross-Region replication will improve the protection of your data in case of the disaster that affects the whole region. You can also use replication to minimize latency for accessing objects for users from different AWS region.<\/p>\n","protected":false},"excerpt":{"rendered":"
By default, Amazon S3 stores multiple copies of your data inside different facilities within one AWS Region. In case of region-level disaster like tornado, flood or earthquake all these facilities will experience outage and despite all precautions your crucial data may be lost. Consequences are catastrophic, especially in case of user-generated content that can\u2019t be […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[883,877],"tags":[],"class_list":["post-14064","post","type-post","status-publish","format-standard","hentry","category-backup-and-dr-articles","category-blog-articles"],"acf":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.msp360.com\/resources\/wp-json\/wp\/v2\/posts\/14064","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.msp360.com\/resources\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.msp360.com\/resources\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.msp360.com\/resources\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.msp360.com\/resources\/wp-json\/wp\/v2\/comments?post=14064"}],"version-history":[{"count":0,"href":"https:\/\/www.msp360.com\/resources\/wp-json\/wp\/v2\/posts\/14064\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.msp360.com\/resources\/wp-json\/wp\/v2\/media?parent=14064"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.msp360.com\/resources\/wp-json\/wp\/v2\/categories?post=14064"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.msp360.com\/resources\/wp-json\/wp\/v2\/tags?post=14064"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}