ABC, an India-based entertainment production company focusing on Northeast and East Indian cinema, required a highly available and reliable storage solution for their on-premises data. The goal was to ensure data reliability, availability, security, and accessibility across all servers.
The existing infrastructure faced several issues:
- Scalability: The NAS storage being used had limitations in scalability.
- Cloud Transition: The client needed a complete application running in AWS cloud with centralized storage to keep files in sync with servers.
- Security: There were no encryption mechanisms for data at rest or in transit.
- Manual Management: Storage type changes and file transfers to infrequent storage required manual intervention.
- Cost: High capital costs for new hardware hindered infrastructure scaling.
- Storage Options: There was a need for low-cost storage options for both frequent and infrequent data.
- High Availability: Required a highly available, secure, and persistent shared file system in AWS cloud.
Amazon Elastic File System (EFS) was chosen for its ability to meet ABC's storage needs effectively:
- Scalability: EFS automatically scales with usage, unlike NAS.
- Centralized Cloud Storage: Accessible by multiple servers, ensuring data consistency.
- Security: Provides built-in encryption at rest and in transit.
- Automated Storage Management: Automatically transitions files to cost-effective storage tiers.
- Cost-Efficiency: Eliminates hardware costs with a pay-as-you-go model.
- Low-Cost Options: Offers tiered storage for frequent and infrequent data.
- High Availability: Stores data across multiple Availability Zones for reliability.
- Created KMS (Key Management Service) to ensure data security and compliance by managing encryption keys.
- Set up Amazon EFS using AWS Management Console with built-in encryption.
- Created security groups to control inbound and outbound traffic.
- Added specific inbound rules for protocols, ports, and source IPs.
- Created two EC2 instances with Amazon Linux image and T2.micro instance type.
- Generated a key pair for secure instance access.
- Configured security groups during the creation of EC2 instances.
- Installed EFS client using
amazon-efs-utils. - Created directories on both EC2 instances.
- Mounted the file system using EFS mount helper via DNS.
- Verified encryption at rest using appropriate AWS CLI commands.
- Created a file "File2" on the first EC2 instance in the EFS directory.
- Verified the presence of "File2" on the second EC2 instance, confirming successful file sharing and synchronization.
- Terminated both EC2 instances.
- Deleted the EFS file system.
- Scheduled key deletion in the KMS Dashboard.
By leveraging Amazon EFS, this project successfully provided ABC with a scalable, secure, and highly available storage solution. The integration of EFS with AWS services ensured data integrity, accessibility, and cost-efficiency, addressing the limitations of their previous infrastructure. ABC now benefits from a cloud-native storage solution that supports their growing storage needs while enhancing operational efficiency and security.