How Not To Do A Migration

Dec. 13, 2010 12:30 in High Availability, Social Networking

Over the weekend, LinkedIn migrated their data center from Chicago to LA. To do this, LinkedIn offlined their service. In short, this was the wrong way to do it.

LinkedIn initially scheduled the outage to be five hours but it turned out to be much more (the official LinkedIn twitter account asks people to hold on just a bit more at the six hour mark and the official blog post about the migration has a comment from someone claiming the site is still down at the 13 hour mark. In today’s world of highly available computing, there is no reason why this had to happen.

From what I can tell, LinkedIn did a complete exchange of data centers; they apparently shut down the world to test the synchronization between the two sites. This just has me scratching my head. LinkedIn is a rather large enterprise, and I’m sure they have a few bucks they could set aside for a redundant testing environment which would eliminate the need for a complete outage.

Off the top of my head, there are four others ways I would have solved this problem. Check them out after the jump.

Catch Me I’m Falling
LinkedIn uses Oracle and MySQL on the backend (slide 9 of this presentation — I’m a data guy, so that’s my initial focus), although pretty much all of their tech stack listed on the deck would support this approach. Both databases support a high degree of replication and failover capabilities (Oracle more than MySQL, but there’s a slight price difference, too). You would be able to sync up the two data centers in a largely automatic way (assuming the configuration is well executed); you could test by picking a smaller pair of instances (one in Chicago, the other in LA) and switching back and forth a few times to make sure the switched database catches up.
I also happen to know that LinkedIn is one of the big proponents of NoSQL, as they use Voldemort for their NoSQL data persistence layer. I’m only familiar with Voldemort in passing, but one of its claims to fame is its support of partitioning and failover. So, the Oracle/MySQL strategy above is still applicable, so long as Voldemort does what it claims it can do…
Net Result:
Some performance hiccups during the selective switchovers, but the sync process is largely invisible to the user — particularly the Oracle one if you choose the option which mines the redo logs and occurs pretty much entirely out of band to the transactional processing.
Half A Loaf’s Better Than None
Remove a significant fraction (like 33-40%) of the operating hardware in the existing data center(s) and use that fraction to do the necessary testing with the new data center. The remaining hardware continues to serve the site to the existing clients; publish what you’re doing so everyone expects the degraded performance and couple the testing period for a nice long weekend in your major client market (like, say, Thanksgiving weekend). Once the test’s complete, roll the new data center in the the load balancing process and return the test fraction to normal service.
Net result:
Some people are inconvenienced by the lower performance, but the service remains available.
More Than Just Books
Rent space and computation power from Amazon sufficient to host the community during the test and sync process.
Net result:
Aside from a different performance profile, it is unlikely anyone would have even noticed.
Leasing More Than Just Office Furniture
So, you many not want to trust Amazon with your business model (a somewhat understandable position); so lease the hardware from a vendor, stand up a redundant environment in the same data center, fail over to the redundant cluster, test the sync on the original hardware, end the test and use whatever mirroring process you used to stand up the redundant environment to catch the original back up, fail back to the original and off you go. Return the leased hardware to the vendor.
Net Result:
No one would ever notice a thing. Leasing all that hardware would be rather expensive as well as resource intensive.

In the interests of full disclosure, I have no knowledge of LinkedIn’s infrastructure nor of their operational processes. There maybe a very good reason why they elected for the outage, but I’m just not seeing it. If anyone reading this has some insight you’d like to share, please do. I’d like nothing better than to be wrong and learn from LinkedIn’s experience.

– Update –
It’s several days later and LinkedIn is still having problems. But I will give them credit for being upfront about it.

Welcome To My Blog!

Writing about technology, focusing on Oracle, as well as whatever else catches my eye.

Everything written here is my own fault and not necessarily the view of anyone who hires me, employs me, sits near me or otherwise is willing to admit they know me.

Poke around and enjoy what you may find...

Latest Tweets
- At the #Flecktones show. Good to see the old gang together again. http://t.co/QHL6vcpy >> 2012/04/24
- Finished with speaking at #bigDataCamp #FOSE. Went well, if a bit too technical. >> 2012/04/03
- Getting ready to speak at #bigDataCamp #FOSE >> 2012/04/03
- New Blog Post: Speaking At BigDataCamp DC During Fose Tomorrow: Tomorrow, I’ll be giving a lightening talk at th... http://t.co/FG0vUnyP >> 2012/04/02
- And, on that note, I will be speaking at #BigDataCamp DC during #Fose tomorrow on an overview of #NoSQL technologies. http://t.co/cUus19ml >> 2012/04/02
- Wow, if you want some interesting social commentary, search for "selfish" on stock photo sites... >> 2012/04/02
- @AineMcGuire if you wouldn't mind, please shoot me a good email to use for you, and I'll send you the meetup info. Thanks >> 2012/03/01
- RT @newsycombinator: How Not To Sell Software in 2012 http://t.co/a94TRczD >> 2012/03/01
- New Blog Post: MapR, HDFS and Forking Code #strataConf: I was in the exhibition hall of StrataConf talking with ... http://t.co/b3YAlNLp >> 2012/02/29
- Man, I could watch @avinash all day -- very entertaining (and informative) speaker. #strataConf >> 2012/02/29
Categories
- Business (60)
  - Consulting (2)
  - Management (7)
  - Startups (18)
    - Entrepreneurship (1)
    - ResumeEverywhere (3)
- Cloud Computing (5)
- Database (7)
- Education (6)
- Enterprise Architecture (5)
- General Technology (30)
- High Availability (3)
- Idea Factory (9)
- Marketing (12)
- Methodology (2)
- Mobile (3)
- Online Life (41)
  - Social Networking (22)
- Oracle (19)
- Personal Note (6)
- Presentations (16)
  - Collateral (3)
- Security (12)
- Uncategorized (6)
- Virtualization (1)
Tag Cloud
android Apple conferences design development DRM engagement exadata Exalogic Facebook Google grad school Harvard housekeeping HP Idea Factory iPad iPhone LinkedIn making money managing Marketing Microsoft MySpace MySQL NoSQL open source OpenWorld OpenWorld2009 OpenWorld 2010 Oracle PowerPoint presenting press privacy recap recruiting social networking startups Sun Twitter Uncle Larry video walled garden yes I'm a geek
Blogroll
Media
My Other Sites
Reference Links
- ASCII Table
- Oracle Documentation
Stuff I Like
- Dilbert Blog
- PhD Comics
- Slashdot
- TED
- XKCD
My Other Sites
Archives
- April 2012 (1)
- February 2012 (1)
- September 2011 (1)
- May 2011 (8)
- April 2011 (3)
- March 2011 (4)
- February 2011 (2)
- January 2011 (2)
- December 2010 (3)
- November 2010 (3)
- October 2010 (5)
- September 2010 (17)
- August 2010 (2)
- July 2010 (1)
- June 2010 (2)
- May 2010 (7)
- April 2010 (3)
- March 2010 (1)
- February 2010 (4)
- January 2010 (1)
- December 2009 (3)
- November 2009 (3)
- October 2009 (8)
- September 2009 (7)
- August 2009 (18)
- July 2009 (64)
- June 2009 (2)
- May 2009 (8)
- April 2009 (14)
- March 2009 (3)
- February 2009 (1)
My Calendar
Book a meeting with me

Minor Technical Difficulties

We are currently experiencing some minor technical difficulties: Normal service will be resumed shortly…

How Not To Do A Migration

Welcome To My Blog!

Latest Tweets

Categories

Tag Cloud

Blogroll

Media

My Other Sites

Reference Links

Stuff I Like

My Other Sites

Archives

My Calendar