MOVEit™ File Transfer High Availability and Scalability
A growing number of organizations require that all mission-critical enterprise-level solutions such as file transfer be deployed for high availability and 24/7 reliability. This is why so many companies now leverage MOVEit File Transfer with High-Availability. Here is a quick overview of how it all works:
Tiered Architecture & Web Farm Support
MOVEit File Transfer has a ﬂexible architecture designed for high availability capabilities. It can be deployed on two or more systems and in various conﬁgurations depending on your business, technology, and security requirements.
Tiered architecture enables the deployment of MOVEit File Transfer in a distributed conﬁguration, with the application, database, and ﬁle system running on diﬀerent machines. This conﬁguration provides both ﬂexibility and reliability and can expand to provide increased ﬁle transfer performance and availability.
A tiered deployment provides increased security by segmenting the database and ﬁlesystem components on diﬀerent servers. Files and permissions/conﬁguration data are moved oﬀ the public DMZ. A multi-tier deployment can also leverage an infrastructure by integrating MOVEit File Transfer with existing database servers and SAN/NAS storage servers.
MOVEit can support a Web Farm deployment with multiple MOVEit File Transfer (DMZ) nodes which increases performance and availability by distributing the ﬁle transfer load. While you can have a single node multi-tier conﬁguration, a Web Farm conﬁguration requires a minimum of two identical MOVEit File Transfer production licenses, each with the same number of organizations and options (including API Interface and Ad Hoc packages).
Acquisition of two or more MOVEit File Transfer licenses permits the licensee to use the required “MOVEit File Transfer Web Farm” application without charge.
A MOVEit File Transfer Web Farm can be implemented using any combination of physical or virtual systems (Microsoft Hyper-V and VMware ESX are both supported for this purpose).
Web Farm Data Storage
The MOVEit File Transfer (DMZ) Web Farm software allows multiple application nodes (MOVEit File Transfer applications) to use shared data storage locations, even located on a LAN segment separate from your DMZ zone. User, ﬁle and folder meta-data, and the audit log are stored in a MOVEit File Transfer’s SQL server database, which can be on one host. Encrypted ﬁles, and debug ﬁles are stored in the FileSystem, which can be on another system. Heavily accessed global settings are stored in the registry on the DMZ nodes and replicated across nodes through the database.
High Availability and Performance
The distributed deployment of MOVEit File Transfer components provides a means to scale availability and increase performance by adding application nodes to the Web Farm. High availability can be gained by eliminating single points of failure through clustering multiple database nodes and multiple ﬁlesystem nodes. The MOVEit File Transfer Web Farm operates as a single MOVEit File Transfer system that handles all client requests, and coordinates data across the nodes.
Load Balancer (LB) Requirements
High Availability utilizes a separate third-party LB hardware device. When deploying a separate LB hardware device, the following criteria should be considered: If FTP and SFTP are required, then the LB must be able to direct each connection’s traﬃc to the same MOVEit File Transfer (DMZ) node for the entire communication. This is sometimes called “sticky” connections.
Additional criteria to consider when selecting an LB is its ability to handle certain types of traﬃc from the MOVEit File Transfer nodes, including SMTP notiﬁcations, LDAP and RADIUS queries, as well as packets from any third-party monitoring tools that are being used.
Network Address Storage (NAS) Requirements
High Availability requires use of a third-party NAS device to store the ﬁles uploaded to it. The NAS is used to store the ﬁles that are uploaded to each of the MOVEit File Transfer (DMZ) nodes. (Before being stored, each ﬁle is protected by MOVEit File Transfer using its built-in FIPS 140-2 validated 256-bit AES encryption, with each ﬁle having its own key, which is itself encrypted.
If an existing internal NAS will be used as part of the MOVEit File Transfer (DMZ) setup, then it will be necessary to determine the minimum number of ﬁrewall rules required to let the MOVEit File Transfer nodes communicate with the internal NAS from inside the ﬁrewall’s DMZ segment.
Storage Area Network (SAN) Option
High Availability can support using a SAN to store the MOVEit File Transfer AES-encrypted ﬁles. Doing so does not involve paying a separate MOVEit license or maintenance fee.
Using a SAN requires using an intermediate machine conﬁgured to act as a NAS interface. For example, if a conﬁguration calls for two MOVEit File Transfer server nodes, and a ﬁber SAN attachment is available, then a third box should be set up to connect to the SAN (via ﬁber) and to share the SAN drive with MOVEit File Transfer Primary and Secondary nodes. This enables the SAN to be used as if it were a NAS device.
Database options include standalone Microsoft SQL Server Standard/Enterprise (local or remote) and MySQL Server Enterprise (local or remote). SQL Server Cluster is suggested for High Availability conﬁgurations.
To learn more about the High-Availability option for MOVEit File Transfer – including system requirements – please refer to the Ipswitch support website.
Download Shortcut Guide
The Top 10 Reasons Organizations Turn to Managed File Transfer
Contact an MFT Specialist
Discuss how businesses like yours have solved their file transfer challenges with MFT.