AROVA is a JetStream “privileged” VM running under a service project in Google Cloud. It has elevated control over selected user projects/VMs via the configured service account. The following figure illustrates the AROVA design.

Figure 1: Architecture of AROVA.


AROVA has two disks: (1) a boot disk and (2) a data disk called the AROVA Configuration Disk (ACD). The ACD is a regional disk replicated to the secondary region through PDAR. It contains:

    • AROVA metadata (primary and secondary replication regions settings).
    • Groups of independent and dependent VMs protection settings, recovery settings, etc.
    • Properties of protected VM for the purpose of recreating VMs during failover and failback.

During protection, AROVA in the primary region is responsible for all orchestration. In the event of a disaster, depending on its scope (partial or full), the secondary region AROVA may be deployed to handle orchestration. If needed, active AROVA running in either region can manage VMs running in both regions. During AROVA failover or failback, the content of the ACD is completely sufficient for resuming orchestration.