Surviving the Cloud: A Battle-Tested Hybrid Redundancy Strategy for 2013
Let’s be honest for a second: the "Cloud" is not magic. It is just someone else’s computer, and as we learned vividly this past February, someone else’s computer can fail spectacularly. When Microsoft Azure’s storage went dark worldwide because of an expired SSL certificate, or when Amazon’s ELB service melted down on Christmas Eve last year, the message was clear: Redundancy is your problem, not theirs.
If you are running a business in Norway, you cannot rely solely on a dashboard in Seattle or Dublin. You need a strategy that covers the latency gap, adheres to the Personopplysningsloven (Personal Data Act), and keeps your uptime green when the giants stumble. I have spent the last three months migrating a high-traffic e-commerce cluster from a pure-AWS stack to a hybrid setup involving local Norwegian bare-metal VPS and cloud bursting. The results? Latency dropped from 45ms to 2ms for Oslo users, and our TCO was cut by 40%.
Here is how we built it, and why a single-provider strategy is suicide in 2013.
The Latency Lie: Why Physics Still Matters
Marketing brochures love to talk about "infinite scale," but they rarely mention the speed of light. If your primary customer base is in Oslo, Bergen, or Trondheim, serving dynamic content from us-east-1 or even Frankfurt is wasting milliseconds. Every TCP handshake to a US server adds 100ms+ of round-trip time (RTT). For a Magento store or a heavy PHP application, those round trips stack up.
We tested this extensively. A standard ping from Oslo to a generic cloud instance in Ireland averages 35-40ms. To a CoolVDS instance in Oslo? 1.2ms. That isn't just a stat; that is the difference between a page load that feels "snappy" and one that feels "meh."
The Architecture: HAProxy as the Gatekeeper
The secret weapon in 2013 isn't some complex proprietary load balancer; it’s HAProxy 1.4. It is rock solid, free, and handles thousands of concurrent connections without breaking a sweat. We use a "Split-Stack" architecture:
- Primary (Hot): CoolVDS KVM instances (High I/O SSD) in Oslo.
- Secondary (Warm): AWS EC2 instances in EU-West (Ireland).
- Glue: Tinc VPN or OpenVPN for secure private networking.
Configuring the Failover
We configure HAProxy on the edge nodes to prefer the local CoolVDS backend, only spilling over to the Cloud if the local load exceeds capacity or if the health checks fail. Here is a snippet from our /etc/haproxy/haproxy.cfg running on CentOS 6.4:
listen web_cluster 0.0.0.0:80
mode http
balance roundrobin
option httpchk HEAD /health.php HTTP/1.1\r\nHost:\ www.example.com
# Primary Local Nodes (CoolVDS) - Weight 100
server web01-no 10.0.1.10:80 check weight 100 rise 2 fall 3
server web02-no 10.0.1.11:80 check weight 100 rise 2 fall 3
# Backup Cloud Nodes (AWS) - Weight 10 (Burst only)
server web01-cloud 192.168.50.10:80 check weight 10 backup
By using the backup directive, the cloud instances sit idle (saving money) until the primary local cluster goes dark. This gives you the "infinite scale" safety net without the daily cost.
Pro Tip: Don't rely on DNS round-robin for failover. Browser caching of DNS records (TTL) means your users will keep hitting a dead server for minutes. A localized IP Anycast or a dedicated load balancer IP is mandatory for true high availability.
Data Integrity: The MySQL 5.6 GTID Revolution
Until recently, MySQL replication over a WAN (Wide Area Network) was a nightmare of broken binary log positions. If the master died, promoting a slave required manual log calculation and prayer.
With the release of MySQL 5.6 in February, we finally have GTID (Global Transaction Identifiers). This changes everything for hybrid hosting. It allows a slave on CoolVDS to automatically sync with a master in the cloud (or vice versa) without needing file positions.
Optimizing for SSD Storage
Most VPS providers oversell their storage I/O, leading to "noisy neighbor" issues where your database stalls because another customer is running a backup. This is why we migrated to CoolVDS—their KVM virtualization ensures we get the dedicated I/O throughput we pay for. To maximize MySQL 5.6 on these SSDs, you must tune your my.cnf to stop behaving like it's running on spinning rust:
[mysqld]
# MySQL 5.6 Specifics for High Performance
gtid_mode=ON
enforce_gtid_consistency=true
log_bin=mysql-bin
log_slave_updates=1
# SSD Optimizations
innodb_io_capacity = 2000
innodb_flush_neighbors = 0
innodb_adaptive_flushing = 1
innodb_read_io_threads = 8
innodb_write_io_threads = 8
Setting innodb_flush_neighbors = 0 is critical for SSDs. On mechanical drives, it made sense to group writes to adjacent sectors. On the solid-state storage provided by CoolVDS, random writes are just as fast as sequential ones, so disabling this reduces latency significantly.
The Legal Firewall: Datatilsynet & Safe Harbor
We need to talk about compliance. While the US-EU Safe Harbor framework technically allows data transfer, the political climate is shifting. The Norwegian Data Protection Authority (Datatilsynet) is increasingly strict about where sensitive personal data (personopplysninger) lives.
By keeping your primary database on Norwegian soil (CoolVDS), you simplify your compliance posture. You can treat the cloud replicas as "processing" nodes while the "master" record remains under Norwegian jurisdiction. This "Data Residency" strategy is becoming a major selling point for enterprise clients in Oslo who are wary of the Patriot Act's reach into US-owned data centers.
The Verdict: Hybrid is Harder, but Better
Running a hybrid stack requires more work. You need to manage VPN tunnels (I recommend Tinc for mesh networking), you need to monitor latency, and you need to keep your configuration management (Puppet or Chef) in sync across providers.
But the payoff is ownership. You are no longer beholden to a single provider's outage status. If the cloud breaks (and it will), your local CoolVDS nodes keep serving. If your local traffic spikes, the cloud bursts. It is the best of both worlds.
Stop trusting the "99.99%" uptime marketing. Build your own 100%. If you are ready to test real IOPS on hardware that doesn't steal your CPU cycles, spin up a KVM instance on CoolVDS today and run your own benchmarks. The numbers don't lie.