Contact Us 1-800-596-4880
  1. Homepage
  2. Omni Gateway (1.13)
  3. Omni Gateway Reference Architecture
  4. High Availability and Disaster Recovery

  5. Self Managed Omni Gateway High Availability, Disaster Recovery, and Multi-Region Deployments

Self Managed Omni Gateway High Availability, Disaster Recovery, and Multi-Region Deployments

Install Omni Gateway in multiple regions to reduce latency and ensure live failover. You can configure most implementations with either multiple Omni Gateways or multiple Omni Replicas. Depending on which you choose, there are different considerations for Redis Shared-Storage, policies, and logging. To learn more about Omni Replicas, see Omni Replicas.

All the following diagrams show Omni Gateway running in Connected Mode. For Omni Gateway running in Local Mode, the only difference is that Anypoint Platform isn’t present in the deployment model. This doesn’t affect how information flows between Omni Gateway and the upstream and downstream services.

The implementation diagrams use Kubernetes terminology, but you can extend the architecture to other technology stacks that have the appropriate network controls applied.

Implementation 1: High Availability with the Same APIs in Two Separate Regions

Implementation 1 provides high availability for non-region-specific traffic. The DNS service is configured for active-active failover, meaning each region services traffic at all times.

Implementation 1A: Cross-Regional Omni Gateway

In this implementation:

  • A single Omni Gateway has Omni Replicas distributed across multiple regions.

  • Omni Gateway is registered once in Anypoint Platform and deployed across multiple regions and availability zones.

  • Logs and metrics for each Omni Gateway are consolidated in Anypoint Platform.

  • The DNS service is configured for active-active failover to direct traffic to any region at all times.

  • APIs deployed to the Gateway are available in all regions and availability zones.

  • API configurations, including upstream services and policies are the same for all regions. Upstream services must be region-agnostic, meaning either the DNS is local or it lacks any reference to the region.

  • The Redis cluster must be replicated across regions or Redis shared storage can’t be used. Redis replication is required when traffic isn’t region-specific.

  • The only cross-regional traffic is Redis synchronization.

In the following diagram, Omni Replicas in different regions and availability zones have distinct Kubernetes deployments:

A detailed view of implementation 1A, which contains the necessary services to support high availability in for Omni Replicas deployed in different regions

Implementation 1B: Region-Specific Omni Gateway

In this implementation:

  • Each region has a distinct Omni Gateway with all resources as independent entities.

  • A separate Omni Gateway is registered for each region.

  • Each region-specific API instance has distinct metrics, alerts, and logs in Anypoint Platform.

  • Policies are region specific even if the configuration is similar across regions.

  • The DNS service is configured for active-active failover to direct traffic to any region at all times.

  • API deployments are specific to each Omni Gateway. For each API a region supports, you must deploy an API instance to the region’s Omni Gateway.

  • API Groups can share contracts (access requests) across regions. An API Group might not be required for your configuration.

  • Redis shared storage does not require synchronization.

  • There is no cross-regional traffic.

In the following diagram, all APIs are duplicated and don’t require identical configurations:

A detailed view of implementation 1B, which contains the necessary services to support high availability for region-specific Omni Gateways

Implementation 2: Disaster Recovery for APIs

This implementation is similar to Implementation 1A: Cross-Regional Omni Gateway. However, the DNS service is active-passive, so the standby region only receives traffic if the primary region becomes unhealthy. This implementation is less complex to configure than implementation 1A.

Redis synchronization is not required if a cache loss during failover is acceptable.

In the following diagram, Omni Replicas in different availability zones have distinct Kubernetes deployments. Region B provides high availability but receives traffic only if region A is unhealthy:

A detailed view of implementation 2, which contains the necessary services to enable disaster recovery for APIs on Omni Gateway

Implementation 3: Direct Traffic to the Closest Region

In both Implementation 3A: Direct Traffic to APIs With the Same Policies and Implementation 3B: Direct Traffic to APIs With the Different Policies, Omni Gateway directs traffic to the most convenient region to reduce latency. Choose which implementation according to your policy requirements.

Implementation 3A: Direct Traffic to APIs With the Same Policies

This implementation is similar to Implementation 1A: Cross-Regional Omni Gateway and has the same considerations. However, Redis replication is not required because requests are sent to specific regions. Configure high availability or disaster recovery zones in each region to ensure API availability:

A detailed view of implementation 3A, which contains the necessary services to route customer requests to the closest region

Implementation 3B: Direct Traffic to APIs With the Different Policies

This implementation is similar to Implementation 1B: Region-Specific Omni Gateway and has the same considerations. Deploy region-specific gateways and apply the necessary policies to the different APIs. Configure high availability or disaster recovery zones in each region to ensure API availability:

A detailed view of implementation 3B, which contains the necessary services to route customer requests to the closest region

To apply SLA rate limiting across all regions, the rate limits must be the same for all regions. Use API groups to consolidate the contracts.