Amazon FSx for NetApp ONTAP Documentation
Amazon FSx for NetApp ONTAP is a storage service that enables you to launch and run fully managed NetApp ONTAP file systems in the AWS Cloud. It is designed to provide familiar features, performance, capabilities, and APIs of NetApp file systems with the agility, scalability, and simplicity of a fully managed AWS service.
Amazon FSx for NetApp ONTAP is designed to offer high-performance file storage that you can access from various compute instance types via the NFS, SMB, and iSCSI protocols. It enables you to use ONTAP data management capabilities, like snapshots, clones, and replication. In addition, it provides elastic storage capacity and supports compression and deduplication to help you further reduce storage costs.
Administration and Management
Administration
With Amazon FSx for NetApp ONTAP, you can use both AWS-native and NetApp management tools to set up, manage, and monitor your file systems. You can manage your file systems using the AWS Management Console, AWS Command Line Interface, and AWS SDK, as well as NetApp Cloud Manager and ONTAP’s REST API.
Data migration
Amazon FSx for NetApp ONTAP is designed to support NetApp SnapMirror replication, allowing you to efficiently migrate from on-premises ONTAP deployments into the AWS Cloud. You can configure SnapMirror to replicate your files, file metadata, and file system configuration.
Point-in-time cloning
Amazon FSx for NetApp ONTAP is designed to support NetApp’s FlexClone feature, enabling you to quickly create a clone of the volumes in your file system.
Accessibility
Multi-protocol: NFS, SMB, and iSCSI
Amazon FSx for NetApp ONTAP enables you to access to shared file storage over Network File System (NFS) and Server Message Block (SMB) protocols, and also supports multi-protocol access to the same data. As a result, you can access Amazon FSx for NetApp ONTAP from a variety of client types.
Amazon FSx for NetApp ONTAP also enables you to access shared block storage over the iSCSI protocol.
Access from AWS compute services
Amazon FSx for NetApp ONTAP enables you to use shared storage for up to thousands of clients running in services including Amazon EC2, Amazon ECS, Amazon EKS, VMware Cloud on AWS, Amazon WorkSpaces, and Amazon AppStream 2.0 instances.
Amazon FSx for NetApp ONTAP is designed to provide multiple GB/s of throughput per file system, and hundreds of thousands of IOPS per file system. You can choose a throughput level for your file system and scale this throughput level up or down. You can also create read replicas of your data to scale the performance of read-heavy workloads to up to tens of GB/s of throughput.
Low-latency access
Amazon FSx for NetApp ONTAP is designed to deliver sub-millisecond latencies when accessing data on SSD storage, and tens of milliseconds of latency when accessing data in capacity pool storage.
Support for database workloads
Amazon FSx for NetApp ONTAP enables you to provide shared file storage for your high-performance database workloads. It is also designed to support database features such as application-consistent snapshots (using NetApp SnapCenter), FlexClone (a data cloning feature), Continuously Available (CA) SMB shares, and Instant File Initialization.
Storage scalability
Each Amazon FSx for NetApp ONTAP file system can scale to petabytes in size, allowing you to store large amounts of data in a single namespace.
Cost Optimization
Elastic capacity pool tiering
Each Amazon FSx for NetApp ONTAP file system is designed to include two storage tiers: primary SSD storage and capacity pool storage. Amazon FSx for NetApp ONTAP is designed to help you reduce data storage costs by tiering data from primary SSD storage to capacity pool storage based on your access patterns.
Amazon FSx for NetApp ONTAP also gives you the flexibility to choose from a range of tiering policies to define how the data in each of your volumes is tiered to and from capacity pool storage.
Compression and deduplication
Amazon FSx for NetApp ONTAP includes ONTAP storage efficiency and cost-savings features including compression and deduplication. These features can help you reduce the storage consumption on your file system storage and your file system backups.
Flexible storage management
Amazon FSx for NetApp ONTAP is designed to provision each volume you create so that it consumes storage capacity from your file system only for the data stored in the volume. You can set the size for each volume to limit the amount of data that a volume can store, and you can also increase or decrease the size of a volume. You can also apply user / group quotas to your volumes to further manage how much capacity your users and applications are consuming.
Flexible throughput and IOPS selection
Amazon FSx for NetApp ONTAP offers multiple throughput capacity levels that you can choose from. You can also optionally provision higher levels of IOPS as needed, independently from the storage and throughput capacity of your file system.
Availability and Data Protection
Multi-AZ Deployments
Amazon FSx for NetApp ONTAP offers a multiple availability (AZ) deployment option, designed to provide availability to data even in the event that an AZ is unavailable. Multi-AZ file systems include an active and standby file server in separate AZs, and are designed to replicate changes written to disk in your file system across AZs to the standby. During planned maintenance, or in the event of a failure of the active file server or its AZ, Amazon FSx is designed to fail over to the standby.
Snapshots and file restore
To enable end-users to undo changes and compare file versions, Amazon FSx for NetApp ONTAP is designed to support restoring individual files and folders to previous versions using NetApp Snapshots.
Cross-region replication
Amazon FSx for NetApp ONTAP is designed to support NetApp SnapMirror, a replication technology that you can use to replicate data between two ONTAP file systems. You can configure NetApp SnapMirror to replicate your data to another Amazon FSx for NetApp ONTAP file system, including a file system in another AWS Region. If needed, you can fail over your applications and users to use the other Amazon FSx for NetApp ONTAP file system. You can configure SnapMirror using the ONTAP CLI or REST API.
Automated backups
FSx ONTAP is designed to take daily backups of every volume in your file system. Backups are designed to be incremental relative to one another and crash-consistent. You can also take additional backups of your volumes.
Write-once-read-many (WORM) protection
Amazon FSx for NetApp ONTAP is built to support SnapLock, an ONTAP feature that allows you to prevent accidental or malicious attempts at modification or deletion of data.
Hybrid Workflow Support
On-premises caching
Amazon FSx for NetApp ONTAP is designed to support NetApp’s Global File Cache and FlexCache solutions, which you can deploy on premises to provide low-latency access for your most frequently-read data to on-premises clients and workstations.
Backup and disaster recovery to AWS
You can back up, archive, or replicate data from your on-premises file servers to Amazon FSx for NetApp ONTAP.
Cloud bursting
You can configure Amazon FSx for NetApp ONTAP as an in-cloud cache for your on-premises NetApp file system data by using NetApp FlexCache. When used as a cache, Amazon FSx is designed to provide low-latency access to your on-premises data sets from AWS compute instances.
Security and Compliance
Network isolation
You can access your Amazon FSx for NetApp ONTAP file system from the Amazon VPC it’s associated with, or from a network that you peer with your VPC. You can configure firewall settings and control network access to your file systems using Amazon VPC Security Groups and VPC Network ACLs. You can also optionally use ONTAP export policies to configure which clients can read and write to the volumes in your file system.
Resource-level permissions
Amazon FSx for NetApp ONTAP is integrated with AWS Identity and Access Management (IAM), enabling you to control the actions your AWS IAM users and groups can take to manage your file systems, storage virtual machines, and volumes (such as creating and deleting file systems). You can also tag your Amazon FSx for NetApp ONTAP resources and control the actions that your IAM users and groups can take based on those tags.
Identity-based authentication
Amazon FSx for NetApp ONTAP is built to support identity-based authentication over NFS or SMB if you join your file system to an Active Directory (AD). Your users can then use their existing AD-based user identities to authenticate themselves and access the file system, and to control access to individual files and folders.
Encryption
Amazon FSx for NetApp ONTAP is designed to encrypt file system data at rest using keys managed with AWS Key Management Service (AWS KMS). Amazon FSx for NetApp ONTAP is also designed to support Kerberos-based encryption in transit for file systems joined to an Active Directory. Amazon FSx for NetApp ONTAP is also designed to provide encryption of data in-transit between Amazon EC2 Nitro-based compute instances in select Regions.
Logging and auditing
Amazon FSx for NetApp ONTAP integrates with AWS CloudTrail to enable you to monitor and log administrative actions made in the Amazon FSx for NetApp ONTAP console, API, and CLI.
File access auditing
Amazon FSx for NetApp ONTAP is designed to support auditing end-user access to your files and folders using ONTAP’s native audit logging capabilities.
Amazon Amazon FSx for NetApp ONTAP is also designed to support ONTAP’s FPolicy feature with AWS Partner solutions to enable you to monitor for file access events.
Antivirus
Amazon FSx for NetApp ONTAP is designed to support ONTAP’s “vscan” feature, which you can use with AWS Partner antivirus applications to scan new files as they’re written to your file system.
For additional information about service controls, security features and functionalities, including, as applicable, information about storing, retrieving, modifying, restricting, and deleting data, please see https://docs.aws.amazon.com/index.html. This additional information does not form part of the Documentation for purposes of the AWS Customer Agreement available at http://aws.amazon.com/agreement, or other agreement between you and AWS governing your use of AWS’s services.