Transcription

ORAC LE DA TA SHEE TZero Data LossRecovery Appliance X8 / X8MState-of-the-Art Oracle Data ProtectionToday’s storage solutions for protecting business data do not easily meet theneeds of mission critical enterprise databases. They can lose up to a day ofbusiness data on every restore, place a heavy load on production serversduring backup, do not inherently validate database level recoverability, andcannot scale to meet the needs of ever expanding databases. These challengesare largely due to their fundamental treatment of databases as a set of disjointfiles to copy, not as transactional systems with specific integrity andperformance requirements.Oracle’s Zero Data Loss Recovery Appliance (Recovery Appliance) is a groundbreaking data protection solution that tightly integrates with the OracleDatabase to address these requirements head-on. It eliminates data loss anddramatically reduces data protection overhead on production servers. Inaddition, the Recovery Appliance continually validates the integrity andrecoverability of the data, scales to protect thousands of databases, andprotects backups across the full lifecycle, including disk backup, cloud archiving,remote replication and tape archiving.KEY FEATURES Real-Time Redo Transport End-to-End Data Validation Incremental-Forever Backup Strategy Space-Efficient Virtual Full Backups Backup Operations Offload Database-Level Protection Policies Database-Aware Space Management Cloud-Scale Architecture Efficient Replication Policy-driven Archival to Cloud/Tape Unified Management & ControlToday’s Database Data Protection ProblemsThe fundamental problems with today’s database protection solutions stem from: Backup and recovery methods that are based on a decades-old nightly backupparadigm, where up to a day’s worth of data can be lost on every restore High backup overhead on production servers and networks for processing all databasedata during backups, whether it has changed or not Ever-increasing backup windows due to non-stop data growth Backup appliances that cannot scale to protect the hundreds to thousands of databasesin the data center Poor visibility and control of the full data protection lifecycle, from disk to cloud toreplication or to tapeIntroducing Zero Data Loss Recovery ApplianceThe Oracle Zero Data Loss Recovery Appliance (Recovery Appliance) is the world's firstengineered system designed specifically for database protection.

ORAC LE DA TA SHEE TThe Recovery Appliance delivers continuous protection for critical databases whileoffloading all backup processing from production servers to minimize overhead.KEY BENEFITS Eliminate Data Loss Minimal Impact Backups Database Level Recoverability Cloud-scale Data ProtectionThe appliance can service a small Oracle environment with a starting base rackconfiguration and is architected to scale-out from there, to support the data protectionrequirements of hundreds-thousands of databases across the data center.MANAGE ABILITY FEATU RES Oracle Embedded Integrated LightsOut Manager (ILOM) Oracle Enterprise Manger RecoveryAppliance Plug-in Automatic Disk Scrub and Repair RACLI command line management ofRecovery Appliance SNMP (RFC1157, 3416, 3410, 3414)Figure 1. Zero Data Loss Recovery Appliance: Architecture OverviewThe Recovery Appliance tightly integrates with the Oracle Database and RecoveryManager (RMAN) backup tool to provide data protection capabilities and performance thatare not possible with any other data protection solution.Eliminate Data LossThe principal design goal for the Recovery Appliance is to eliminate the loss of criticaldatabase data that is possible using other data protection solutions.Real-Time Redo TransportThe principal design goal of theRecovery Appliance is to eliminate theloss of critical database data that is stillpossible using existing data protectionsolutions.Redo logging is the fundamental means of implementing transactional changes within theOracle database. All Oracle Database 11g Release 2 or later databases can continuouslysend redo directly from in-memory log buffers to the Recovery Appliance. This providesunique real-time data protection that allows databases to be protected until the last subsecond. Since redo is sent from database shared memory, the overhead on the productionsystems is extremely low.Real-Time Redo Transport was first implemented for Oracle’s Data Guard technology andhas been deployed in thousands of mission-critical databases around the world. TheKEB HANA CARD“We replaced Data Domain with Oracle’sZero Data Loss Recovery Appliance toenable real-time incremental backup andrestore more than US 850 million inmonthly credit card transactions withoutdata loss. We have also reduced averagebackup size by 30x and increasedbackup capacity by 65%.”Iljoon Lee, Senior Manager, IT Team,KEB Hana Card Co., Ltd.Recovery Appliance extends this technology beyond the top tier of databases in a simpleand cost-effective manner. The Recovery Appliance provides similar levels of dataprotection as in Data Guard today, for databases that do not necessarily require DataGuard’s fast failover and query offload capabilities.Efficient ReplicationBackups on a local Recovery Appliance can be easily and quickly replicated to a remoteRecovery Appliance for protection against site outages or regional disasters. Thereplication topology can be tailored to match the data center’s requirements. For example,replication can be set up in a simple one-way topology, or two Recovery Appliances canbe set up to replicate to each other, or several satellite Recovery Appliances can be set upZERO DATA LOSS RECOVERY APPLIANCE2

ORAC LE DA TA SHEE Tto replicate to a central Recovery Appliance. In all topologies, only changed blocks arereplicated to minimize WAN network usage.If the local Recovery Appliance is not available, restore operations can run directly from aremote Recovery Appliance without staging the data locally.Policy-driven Archival to Cloud/TapeIntegration with Oracle Cloud provides direct access to low cost offsite storage. Thisreduces the risk associated with movement of physical media, like losing or forgetting tosend media offsite. When needed, the recovery process can also start much sooner sinceThe Recovery Appliance allowsbusinesses to expand into cloud storageor protect their tape investments andcontinue with their current tape-baseddata retention strategy.there is no need to wait for physical media to arrive.Backups stored in the Oracle cloud are in native RMAN format, so they can be accessedindependent of the Recovery Appliance. Use these backups for migration to the cloud,testing, development or to fulfill compliance related requests by instantiating the Clouddatabase from existing backups. Why spend time allocating on-premises resources whenthe cloud backup can be recovered directly into an Oracle Cloud Database?For customers who require tape, the Recovery Appliance offloads full and incrementalbackups via 32Gb Fibre Channel Adapters. Data is sent directly to tape libraries using theincluded Oracle Secure Backup media management software. This allows businesses tocontinue to use their existing tape libraries while eliminating expensive media managerdatabase backup agents on production servers.All tape hardware products supported by Oracle Secure Backup, including Oracle’sStorageTek Tape, are supported by the Recovery Appliance. Alternatively, other vendors’tape backup agents may be deployed on the Recovery Appliance for integration withexisting tape backup software, media servers, and processes.This process for tape and cloud archival is completely offloaded to the Recovery Applianceeliminating the impact of archival backup creation on production databases. Cloud andtape operations can now run all day without slowing production systems, which enablesbetter utilization of resources and lowers cost.Recovery Reassurance: End-to-End Data ValidationThe Recovery Appliance understands internal Oracle database block formats, whichenables deep levels of data validation. All backup data and redo blocks are automaticallyvalidated as they are received by the Recovery Appliance, as they are copied to tape, andAll backup data and redo blocks areautomatically validated at each stage.as they are replicated. In addition, backup blocks are periodically validated on disk. Thisensures that recovery operations will always restore valid data – another uniquedifferentiator that is only possible because of the Recovery Appliance’s deep databaseintegration. If a corruption is discovered during validation, the Recovery Appliance’sunderlying storage software automatically reads the good block from a mirrored copy andimmediately repairs the corrupted block.In addition, the Recovery Appliance storage software performs periodic inspections of theunderlying hard disks. If bad sectors are detected, they are immediately repaired from amirrored copy.ZERO DATA LOSS RECOVERY APPLIANCE3

ORAC LE DA TA SHEE TMinimal Impact BackupsDespite the requirement for 24x7 operations, many businesses still need to reserve multihour backup windows during which production jobs are impacted. Backup windowsprovide no immediate business benefit, but instead compete with business criticalreporting and batch workloads for off-hours processing time. In an increasingly globaleconomy, backup windows continue to shrink, while data volumes grow.Impact of Current Disk-Based Data Protection SolutionsCurrent disk-based data protection solutions impose large loads on production systems.This impact continuously increases as databases grow. Some key challenges are: Deduplication appliances require periodic full backups. Full backups read the entiredatabase which induces heavy impact on production storage, servers, and networks,plus needlessly long backup windows. When source-side deduplication is used to reduce network requirements, this has theadverse effect of imposing high CPU and memory loads on production servers. During the recovery phase, incremental backups must be applied to the restored datafiles before the database can be opened. This process can significantly prolongrecovery time, as the incrementals can span multiple days of changes, and becausethe apply operation usually runs across the network.Incremental-Forever Backup ArchitectureThe second design goal for the Recovery Appliance is to reduce backup-relatedprocessing on production database systems to the absolute minimum – transmitting onlythe changed data. With unnecessary backup processing eliminated, production systemscan now focus on their primary goal - serving business critical workloads.The Recovery Appliance implements an incremental-forever backup architecture tominimize impact on production systems. This architecture is based on two innovativetechnologies: Delta Push and Delta Store.With the Recovery Appliance,production servers do what they aremeant to do - serve production workloadand not get bogged down with backupand recovery tasks.Figure 2. Zero Data Loss Recovery Appliance: Delta Push & Delta StoreZERO DATA LOSS RECOVERY APPLIANCE4

ORAC LE DA TA SHEE TDelta PushWith Delta Push, protected databases only send incremental backups containing uniquechanges to the Recovery Appliance. There is no need for recurring full backups. DeltaPush is also known as “incremental forever” because, after a one-time full backup, onlyincremental backups are run on production systems. Effectively, Delta Push is a highlyoptimized form of source-side deduplication.Changed blocks on production databases are very efficiently identified using RMAN blockchange tracking which eliminates the need to read unchanged data.Special integration between protected databases and the Recovery Appliance eliminatescommitted undo, unused, and dropped tablespace blocks from the backup stream,significantly reducing overhead and space consumption.Because Delta Push sends only changed data and not full backups, network traffic isgreatly reduced compared to other solutions. This enables low-cost Ethernet to be usedfor backups. Expensive dedicated Fibre Channel or Fibre Channel over Ethernet backupnetworks are not needed. Also, minimizing network traffic allows the Recovery Applianceto be located further away from the protected databases, and even in some cases, acrossa WAN in a remote data center.Delta StoreDelta Store represents the “brains” of the Recovery Appliance software engine. DeltaStore validates the incoming changed data blocks, and then compresses, indexes andstores them. These changed blocks are the foundation of Virtual Full DatabaseBackups, which are space-efficient pointer-based representations of physical full backupsas of the point-in-time of an incremental backup. Virtual full backups can improve storageefficiency by 10 times or more depending on the data set and change rate of the protecteddatabase.ENTERPRISE STRATE GY GROUP“The Recovery Appliance delivers DataProtection as a Service(DPaaS),accelerates databaseperformance and enables companies torecover to levels of extreme granularity.”Jason Buffington, Senior Analyst; MarkPeters, Practice Director & SeniorAnalyst; Monya Keane, ResearchAnalyst, ESGFor example, a traditional weekly full and daily incremental backup approach for a 100 TBdatabase with 1% change rate and 30 day recovery window policy would incur: Full Backup: (100 TB x 5 backups) Incremental Backups: (1 TB x 30 backups) Total: 530 TB1In comparison, with Recovery Appliance, this would incur: Full Backup: 100 TB Incremental Backups: (1 TB x 29 backups) Total: 129 TB1A weekly full and daily incremental backup approach to maintain point-in-time recovery window policy of ‘R’ days requires an additional 7days of backups (1 full 6 incremental backups) for a total of ‘R 7’ days of backups maintained on storage. This is due to database recoverydesign where at least one full backup greater than R days old must be retained for restore operations, which is then recovered forward usingincremental and archived log backups into the start of the R days recovery window.ZERO DATA LOSS RECOVERY APPLIANCE5

ORAC LE DA TA SHEE TThis represents almost 5X storage consumption savings over traditional backups. Whenfactoring in Recovery Appliance on-disk compression, total savings can reach 10X ormore.The dramatic space efficiency of the Delta Store architecture enables a large number ofVirtual Full Backups to be kept online, greatly extending the disk based recovery window.When a restore operation is required, Delta Store efficiently recreates a physical fullbackup based on the closest incremental backup time. The restore operation is supportedby the massive scalability and performance of the underlying hardware architecture of theRecovery Appliance.Zero Data Loss Recovery Appliance canmassively scale at cloud level.Restoring from a Recovery Appliance eliminates the slow traditional process of restoring afull backup and then sequentially restoring and applying all relevant incremental backups.Most Backup Operations OffloadedPractically all backup-related processing is offloaded to the Recovery Appliance. Thisincludes time-consuming compression, backup deletion, validation, and maintenanceoperations. This frees production system resources, even outside the backup window,which increases the performance of the production systems.To summarize, with Real-Time Redo Transport and Delta Push, protected databases dothe minimum possible backup-related work – transmitting only the changed data to theRecovery Appliance. All other backup and recovery related processing, including tapebackup, is handled by the Recovery Appliance. This is one of the core architecturalinnovations of the Recovery Appliance, above and beyond today’s backup solutions.Cloud-Scale Database Protection as a ServiceThe third design goal for the Recovery Appliance is to provide a cloud-scale databaseprotection service for tens to thousands of databases in a data center. Several RecoveryAppliance technologies make this possible.Policy-Based Data Protection ManagementThe Recovery Appliance introduces the concept of a protection policy, which definesWith the Recovery Appliance, dataprotection is much better aligned with anapplication’s business criticality, ratherthan being limited to the physical bitsand bytes level.recovery goals that are enforced on a per-database basis on the appliance and on tape.Using protection policies, databases can be easily grouped by recovery service tier. TheRecovery Appliance includes predefined “Platinum”, “Gold”, “Silver”, and “Bronze” policies,which can be customized to support various business service level agreements. Forexample, database backups under the Gold policy target a 35 day recovery window on alocal Recovery Appliance and 90 days on tape, while backups managed under the Silverpolicy target a 10 day recovery window on a local Recovery Appliance and 30 days ontape. Tiered protection policies are also independently applied on the remote replicatedRecovery Appliance.As additional databases are created, they can be easily added to one of the existingprotection policies. For example, a new Finance database can simply be added to theGold protection policy, and the policy’s recovery window goals will automatically apply toZERO DATA LOSS RECOVERY APPLIANCE6

ORAC LE DA TA SHEE Tthis database’s backups. With this automated, policy-based framework, organizations caneasily implement Database Protection as a Service across the entire enterprise.Database-Aware Space ManagementUsing protection policies as the basis, the Recovery Appliance fully manages all backupstorage space according to each database’s recovery window goals – e.g. the “FinanceDatabase”, which is a member of the Gold policy, can be recovered within the past 35days, while the “Products Database”, a member of the Silver policy, can be recoveredwithin the past 10 days. If free space is available in the Delta Store, backups older than therecovery window goal will be retained, effectively extending the recovery window. Uponspace pressure, the Recovery Appliance purges backups and automatically re-provisionsspace between databases to meet the recovery window goals for every protecteddatabase. The appliance may also purge backups proactively, in advance of any spacepressure, based on historical space usage – again, in order to meet recovery windowsgoals for all databases. Space is purged in a database intelligent fashion with anunderstanding of the dependencies between data files, redo logs, and control files.This recovery window-oriented space management approach eliminates the need tomanage space at an opaque storage-volume level as is typical with generic backupappliances. With this innovative approach, data protection is aligned with eachapplication’s business criticality, and manual rebalancing of space is eliminated.Massive, Cloud-Scale ArchitectureThe Recovery Appliance is based on the Oracle Exadata architecture and thereforeinherits its proven scalability, redundancy, and performance. As additional databasesZero Data Loss Recovery Applianceallows capacity and throughputexpansion with fully scale-out storageand compute servers.within the enterprise are protected by the Recovery Appliance, compute servers andstorage servers can be easily added to the appliance, providing a simple, no-downtime,scale-out data protection cloud that seamlessly supports business growth.Recovery Appliance ConfigurationBase Rack and Full Rack ConfigurationThe base configuration includes 2 compute servers and 3 storage servers internallyconnected using high speed InfiniBand with X8 or 100 Gb/s Remote Direct MemoryAccess (RDMA) over Converged Ethernet (RoCE) with X8M. RoCE provides the latestgeneration in ultra-fast cloud scale networking fabric, allowing one computer to directlyaccess data from another without Operating System or CPU involvement, for highWith X8 and X8M, Recovery Appliancecapacity has increased, now supportingup to 9.5 Petabytes of Virtual FullBackups in a single Full Rack, and over170 Petabytes of Virtual Full Backupsin a maximum configuration of 18 FullRacks.2bandwidth and low latency.With X8 and X8M, the base configuration usable capacity has increased, providing ahighly available configuration with 155 TB of usable capacity for incoming backups. Thebase rack can be upgraded incrementally by adding additional storage servers into therack, up to a maximum of 18 storage servers in a full rack. Each storage server adds 53TB of usable capacity. The total usable capacity of a full rack is 949 TB with an effectivecapacity of up to 9.5 Petabytes of Virtual Full Backups.2Effective capacity is calculated based on a 10% daily change rate.ZERO DATA LOSS RECOVERY APPLIANCE7

ORAC LE DA TA SHEE TA Recovery Appliance can protect databases whose total size is approximately the sameas the available capacity of the appliance for a typical recovery window of 10 days. Forexample a single full rack configuration with 2 compute servers and 18 storage serversthat has 949 TB usable capacity can protect approximately 949 TB of source database fora 10 day recovery window, storing ten 949 TB virtual full backups plus all the redo datagenerated for that 10 day period. Accurate sizing of the Recovery Appliance depends onseveral factors related to protected databases including the initial database size andgrowth rate, storage consumed by temp and undo, free space, database change rate, redogeneration rate, desired recovery window, and compressibility of the database.Fully Scale-out ArchitectureIf additional capacity is required in X8 beyond a full rack, a second base rack can beconnected via high-speed InfiniBand. With X8M, a second rack is connected via 100 Gb/sRoCE. The second rack includes its own pair of compute servers which add connectivityand processing power to the configuration. As with the first rack, storage capacity can beeasily expanded by incrementally adding storage servers. Up to 18 fully configured rackscan be connected together into a single appliance, providing 17 PB of usable capacity, i.e.170 Petabytes of Virtual Full Backups.The power and flexibility of the Recovery Appliance scale-out architecture is revealedwhen there is a need to support additional databases, or when business data grows.Storage, compute, and network capacity is incrementally added in a balanced fashion thatmaintains high performance. This architecture is far superior to traditional backupappliances which are usually limited to two controllers and therefore cannot scale storage,networking, and compute in a balanced, bottleneck-free fashion.Performance CharacteristicsThe combination of extremely high throughput compute, network and storage together withthe unique database integration of the Recovery Appliance enables performance levelsthat easily support the data protection needs of an entire data center.A single Recovery Appliance Full Racksupports Virtual Full Backups running atan effective rate of up to 240 TB/hour,while an 18-Full Rack configurationsupports 4 Petabytes/hour.A single full rack Recovery Appliance with 2 Compute Servers and 18 Storage Servers isable to support Virtual Full Backups running at an effective rate of up to 240 TB/hour.This rate far exceeds that of other products on the market and is only possible becausethe Recovery Appliance only needs to read, send, and process changed data andtherefore performs much less work than other products.A single rack Recovery Appliance can achieve a sustained Delta Ingest rate of up to24 TB/hour. In other words, it can receive 24 TB/hour of change data, and convert it into240 TB/hour of virtual backups. It is able to support a restore rate of up to 24 TB/hour.As racks are added to the configuration, both performance and capacity increase linearly.An 18-rack Recovery Appliance achieves Virtual Full Backup rates of up to4 Petabytes/hour, and 432 TB/hour of Delta Ingest and Restore.Software ConfigurationAll software needed to run the Recovery Appliance is included in a single software license:ZERO DATA LOSS RECOVERY APPLIANCE Backup, recovery, and replication Embedded Oracle database for metadata and RMAN recovery catalog8

ORAC LE DA TA SHEE T RMAN backup module for Recovery Appliance Storage software Oracle Secure Backup software Oracle Enterprise Manager monitoring and managementAs is usual with Oracle licenses, Recovery Appliance licenses are fully transferrable tonew appliances. Because the license metric is the storage disk drive and not terabytes ofstorage, newer appliances with much larger disk drives and faster processors will be ableto use existing licenses.End-to-End Management of Data ProtectionData protection administration tasks are typically scattered across multiple fragmentedmanagement islands that correspond to IT roles – e.g. database administrators, backupadministrators and storage administrators. Therefore, it is often nearly impossible for aDBA to determine whether a backup initiated using RMAN has reached its destination (e.g.tape) without any problems in the intermediate layers.IDCThe Recovery Appliance solves this problem with fully automated, unified data protection“Enterprises need to protect vital data fortheir critical business applications in realtime without the downtime or data lossoften experienced when using traditionalapproaches. The Zero Data LossRecovery Appliance meets this demandwith a simple, yet powerful solution thateasily scales to protect databasesenterprise-wide and meet ever-stringentrecovery point objectives.”management.Laura Dubois, Program Vice President,Storage Practice, IDCUnified Management Through Enterprise Manager Cloud ControlThe Recovery Appliance provides a complete, end-to-end view into the data protectionlifecycle using Oracle Enterprise Manager Cloud Control – from the time the backup isinitiated using RMAN, to the time it is stored on disk, tape, and/or replicated to anotherRecovery Appliance in a remote data center. All backup locations are tracked by theRecovery Appliance catalog, so that any RMAN restore and recovery operation canretrieve the most appropriate backups, wherever they reside. Only the Recovery Appliancecan provide this level of end-to-end visibility into the data protection lifecycle.Figure 3. Recovery Appliance: End-to-End Data Protection ManagementThe Recovery Appliance delivers advanced storage monitoring and reporting to effectivelymanage current and future throughput, in addition to capacity requirements based on datagrowth. The amount of space needed for each database under Recovery Appliancemanagement is predictively calculated based on its historical backup space usage andrecovery window goal. Space needed is prominently displayed for each database inEnterprise Manager and the appliance aggregates total space needed for all databases asZERO DATA LOSS RECOVERY APPLIANCE9

ORAC LE DA TA SHEE Ta percentage of total storage available, thereby taking the guesswork out ofRELATED PRODUCTSaccommodating data growth. Want to know when capacity will be exceeded based on Oracle Database 11g, 12c, 18c, 19ccurrent data growth? Look no further than the Recovery Appliance Capacity Reports Oracle Secure Backupwhich provide summary and detailed information on storage utilization, average and Enterprise ManagerRELATED SERVICESThe following services support theZero Data Loss Recovery Appliance: Advanced Customer Services Oracle Premier Support forSystems Consulting Services Oracle Platinum Servicesmaximum throughput for 7, 31, and 365 days plus detailed information on CPU, Memoryand IOPS. In addition, warnings can be generated if space needed is within 15% (or otheruser configurable threshold) of total available space.The simplicity of unified management for Oracle Database data protection is demonstratedthrough the streamlined manner in which databases are added to Recovery Applianceprotection management: To add a new database, the Recovery Appliance Administrator uses the EnterpriseManager “Add Protected Database” wizard to associate the database with anappropriate protection policy and establish the database’s credentials. The Database Administrator then uses the database’s Enterprise Manager BackupSettings page to select the Recovery Appliance as the backup destination, andoptionally enables Real-time Redo Transport for continuous data protection.Resiliency and Recovery Against Cyber-AttacksIn recent years, cyber-attacks have become a major concern for all customers due to thewide variety of approaches and subversive nature. Malware and ransomware attack casesare doubling year over year according to leading industry analysts, with millions ofmalware infections and thousands of ransomware attacks per day.3 For mission-criticaldatabases, such attacks leading to lost data and system downtime can have far rangingimpacts throughout the business in terms of revenue, operations, reputation, and evenpenalties.The Recovery Appliance is designed to be fault-isolated from the production database, soif a cyber-attack hits the production database, the appliance is not compromised. This isdue to the following key architectural features:End-to-End Data ValidationWhile validation is key to detecting corrupt backup data throughout the backup lifecycle, itis equally important for detecting cyber-attacked data. Since the appliance validates allincoming, on-disk, and replicated backups for Oracle block correctness and recoverability,any backup data maligned by malware or ransomware attack will be detected, recorded,and alerted to the administrator. Action can then be taken in conjunction with the DBAs todisconnect the database from the network and investigate further. Furthermore, replicatedbackups cannot be deleted or modified by the primary appliance or its administrators –they are independently validated and managed by the replica appliance, thus shieldedfrom any effects of attacks done on the primary appliance. As an alternative orsupplementary protection st

Oracle’s Zero Data Loss Recovery Appliance (Recovery Appliance) is a ground-breaking data protection solution that tightly integrates with the Oracle Database to address these requirements head-on. It eliminates data loss and dramatically reduces data File Size: 1MBPage Count: 17Explore furtherZero Data Loss Recovery Appliance Supported Versionssupport.oracle.comOracle Exadata Database Machine X9M-8 Data Sheetwww.oracle.comORACLE DATA SHEET Oracle Database Appliance X8-2-HAwww.oracle.comZero Data Loss Recovery Appliance - Oracle Help Centerdocs.oracle.comQualified Oracle Zero Data Loss Recovery Appliance (ZLDRA .docs.oracle.comRecommended to you b