Aws Storage Gateway FAQs Amazon Web Services Flashcards ionicons-v5-c

AWS Storage Gateway is a hybrid cloud storage service that gives you on-premises access to virtually unlimited cloud storage. Storage Gateway provides a standard set of storage protocols such as iSCSI, SMB, and NFS, which allow you to use AWS storage without rewriting your existing applications. It provides low-latency performance by caching frequently accessed data on premises, while storing data securely and durably in Amazon cloud storage services. Storage Gateway optimizes data transfer to AWS by sending only changed data and compressing data. Storage Gateway also integrates natively with Amazon S3 cloud storage which makes your data available for in cloud processing, AWS Identity and Access Management (AWS IAM) for securing access management to services and resources, AWS Key Management Service (AWS KMS) for encrypting data at rest in cloud, Amazon CloudWatch for monitoring, and AWS CloudTrail for logging account activity.

Q: What is AWS Storage Gateway?

Storage Gateway enables you to reduce your on-premises storage footprint and associated costs by leveraging Amazon S3 cloud storage.

Q: Why should I use AWS Storage Gateway?

Storage Gateway supports three key hybrid cloud use cases – (1) Move backups and archives to the cloud, (2) Reduce on-premises storage with cloud-backed file shares, and (3) Provide on-premises applications low latency access to data stored in AWS.

Q: What use cases does AWS Storage Gateway support?

Depending on your use case, Storage Gateway provides 3 types of storage interfaces for your on-premises applications: file, volume, and tape.

Q: How does AWS Storage Gateway provide on-premises applications access to cloud storage?

A: You can have two touchpoints to use the service: the AWS Management Console and a gateway that is available as a virtual machine (VM) or as a physical hardware appliance.

Q: How do I use the AWS Storage Gateway service?

A: On-premises, you can deploy a virtual machine containing the Storage Gateway software on VMware ESXi, Microsoft Hyper-V, or Linux KVM, or you can deploy Storage Gateway as a hardware appliance. You can also deploy the Storage Gateway VM in VMware Cloud on AWS, or as an AMI in Amazon EC2.

Q: Where can I deploy a Storage Gateway appliance?

A: File Gateway presents a file-based interface to Amazon S3, which appears as a network file share. It enables you to store and retrieve Amazon S3 objects through standard file storage protocols. File Gateway allows your existing file-based applications or devices to use secure and durable cloud storage without needing to be modified. With File Gateway, your configured S3 buckets will be available as Network File System (NFS) mount points or Server Message Block (SMB) file shares. Your applications read and write files and directories over NFS or SMB, interfacing to the gateway as a file server. In turn, the gateway translates these file operations into object requests on your S3 buckets. Your most recently used data is cached on the gateway for low-latency access, and data transfer between your data center and AWS is fully managed and optimized by the gateway. Once in S3, you can access the objects directly or manage them using features such as S3 Lifecycle Policies and cross-region replication. You can run File Gateway on-premises or in EC2.

Q: What is File Gateway?

A: Tape Gateway is a cloud-based Virtual Tape Library (VTL). It presents your backup application with a VTL interface, consisting of a media changer and tape drives. You can create virtual tapes in your virtual tape library using the AWS Management Console. Your backup application can read data from or write data to virtual tapes by mounting them to virtual tape drives using the virtual media changer. Virtual tapes are discovered by your backup application using its standard media inventory procedure. Virtual tapes are available for immediate access and are backed by Amazon S3. You can also archive tapes. Archived tapes are stored in Amazon S3 Glacier or Amazon S3 Glacier Deep Archive.

Q: What is Tape Gateway?

A: Volume Gateway provides an iSCSI target, which enables you to create block storage volumes and mount them as iSCSI devices from your on-premises or EC2 application servers. The Volume Gateway runs in either a cached or stored mode.

Q: What is Volume Gateway?

A: AWS Storage Gateway provides a set of features that enable you to effectively leverage AWS storage within your existing applications and workflows. It provides a standard set of protocols such as iSCSI, SMB and NFS, which allow you to use your existing applications without any changes. Through its local cache, the gateway provides low-latency access to recently used data. The gateway optimizes data transfer to AWS storage, such as optimization of transfer through intelligent buffering, upload management to address network variations, and bandwidth management. The gateway provides you an effective mechanism to store data in AWS across the range of storage services most suitable for your use cases. The gateway is easy to deploy and can use your existing virtual infrastructure and hypervisor investments, or can be installed in your data center or remote offices as a hardware appliance. The gateway software running as a VM or on the hardware appliance is stateless, allowing you to easily create and manage new instances of your gateway as your storage needs evolve. Finally, the service integrates natively into AWS management services such as Amazon CloudWatch, AWS CloudTrail, AWS Key Management Service (KMS), and AWS Identity and Access Management (IAM).

Q: What benefits does AWS Storage Gateway provide?

A: You can manage backup and retention policies for cached and stored volume modes of Volume Gateway through AWS Backup.

Q: What AWS Storage Gateway types can I manage through AWS Backup?

A: File Gateway is a configuration of the AWS Storage Gateway service that provides your applications a file interface to seamlessly store files as objects in Amazon S3, and access them using industry standard file protocols.

Q: What is File Gateway?

A: Use cases for File Gateway include: (a) migrating on-premises file data to Amazon S3, while maintaining fast local access to recently accessed data, (b) Backing up on-premises file data as objects in Amazon S3 (including Microsoft SQL Server and Oracle databases and logs), with the ability to use S3 capabilities such as lifecycle management, versioning and cross region replication, and, (c) Hybrid cloud workflows using data generated by on-premises applications for processing by AWS services such as machine learning, big data analytics or serverless functions.

Q: What can I do with File Gateway?

A: File Gateway enables your existing file-based applications, devices, and workflows to use Amazon S3, without modification. File Gateway securely and durably stores both file contents and metadata as objects, while providing your on-premises applications low-latency access to cached data.

Q: What are the benefits of using File Gateway to store data in S3?

A: File Gateway supports Amazon S3 Standard, S3 Intelligent-Tiering, S3 Standard - Infrequent Access (S3 Standard-IA) and S3 One Zone-IA. For details on storage classes, refer to the Amazon S3 documentation. You configure the initial storage class for objects that the gateway creates, and then you can use bucket lifecycle policies to move files from Amazon S3 to Amazon S3 Glacier. If an application attempts to access a file/object stored through File Gateway that is now in Amazon S3 Glacier, you will receive a generic I/O error.

Q: Which Amazon S3 storage classes does File Gateway support?

A: File Gateway supports Linux clients connecting to the gateway using Network File System (NFS) versions 3 and 4.1 for Linux clients, and supports Windows clients connecting to the gateway using Server Message Block (SMB) versions 2 and 3.

Q: What protocols does File Gateway support?

A: You can create an NFS or SMB file share using the AWS Management Console or service API and associate the file share with a new or existing Amazon S3 bucket. To access the file share from your applications, you mount it from your application using standard UNIX or Windows commands. For convenience, example command lines for each environment are shown in the management console.

Q: How can I create and use a file share?

A: You can configure your NFS file share with administrative controls such as limiting access to specific NFS clients or networks, read-only or read-write, or enabling user permission squashing.

Q: What options do I have to configure an NFS file share?

A: You can configure your SMB file share to be accessed by Active Directory (AD) users only or provide authenticated guest access to users in your organization. You can further limit access to the file share as read-only or read-write, or to specific AD users and groups.

Q: What options do I have to configure an SMB file share?

A: Yes, File Gateway integrates with Microsoft Active Directory on-premises as well as with in-cloud Active Directory solutions such as Managed Microsoft AD.

Q: Does File Gateway support integration with on-premises Microsoft Active Directory (AD)?

A: Yes. You can export an SMB file shares using a guest username and password. You will need to change the default password using the Console or service API before setting up your file share for guest access.

Q: Can I export an SMB file share without Active Directory?

A: Yes.

Q: Can I export a mix of NFS and SMB file shares on the same gateway?

A: No, currently file metadata, such as ownership, stored as S3 object metadata cannot be mapped across different protocols.

Q: Can I export an NFS and SMB file share on the same bucket?

A: File Gateway uses an AWS Identity and Access Management (IAM) role to access your S3 bucket. You can set up an IAM role yourself or have it automatically setup by the AWS Storage Gateway Management Console. For automatic setup, AWS Storage Gateway will create a new IAM role in your account and associate it with an IAM Access Policy to access your S3 bucket. The IAM role and IAM access policy are created in your account and you can fully manage them yourself.

Q: How does File Gateway access my S3 bucket?

A: To use the file share, you mount it from your application using standard UNIX or Windows commands. For convenience, example command lines are shown in the management console.

Q: How does my application access my file share?

A: The file share can be mapped to the root of the S3 bucket or it can be mapped to a S3 prefix within a S3 bucket. If you specify a S3 prefix when creating a file share you are tying the file share to the S3 prefix. If you do not create a S3 prefix when creating a file share then the file share is tied to the root of the S3 bucket.

Q: How is my file share mapped to my S3 bucket?

A: Yes, the file share name does not have to be the same as the S3 bucket or S3 prefix names.

Q: Can I give my file share a custom name?

A: Yes, you can change your file share name.

Q: Can I change my file share name?

A: Files are stored as objects in your S3 buckets and you can configure the initial storage class for objects that File Gateway creates. There is a one-to-one relationship between files and objects, and you can configure the initial storage class for objects that File Gateway creates.

Q: What is the relationship between files and objects?

Q: What file system operations are supported by File Gateway?

A: Your clients can access POSIX-style metadata including ownership, permissions, and timestamps that are durably stored in S3 in the user metadata of the object associated with the file. When you create a file share on an existing bucket, the stored metadata will be restored and made accessible to your clients.

Q: What file system metadata can my client access and where is the metadata stored?

A: For each file share, you can enable guessing of MIME types for uploaded objects upon creation or enable the feature later. If enabled, File Gateway will use the filename extension to determine the MIME type for the file and set the S3 objects Content-Type accordingly. This is beneficial if you are using File Gateway to manage objects in S3 which you access directly via URL or distribute through Amazon CloudFront.

Q: How do I set the Content-Type for files uploaded to S3?

A: Yes. Once objects are stored in S3, you can access them directly in AWS for in-cloud workloads without requiring File Gateway. Your objects inherit the properties of the S3 bucket in which they are stored, such as lifecycle management, and cross-region replication.

Q: Can I directly access objects stored in S3 by using File Gateway?

A: If your bucket already contains objects when you configure it for use with File Gateway, object keys will be used to present the objects as files to the NFS and SMB clients. The files are given default file system metadata.

Q: What if my bucket already contains objects?

A: The gateway does not automatically download full objects or all the data that exists in your bucket; data is only downloaded when it is explicitly accessed by your clients. Additionally, to reduce data transfer overhead, File Gateway uses multipart uploads and copy put, so only changed data in your files is uploaded to S3.

Q: How are buckets accessed by the gateway? Are entire bucket or file contents downloaded?

A: For objects uploaded to the S3 bucket directly, i.e. not using File Gateway and an NFS share, you can configure default ownership and permissions.

Q: What metadata can my NFS client access for objects created outside of the gateway?

A: For objects uploaded to the S3 bucket directly, i.e. without using File Gateway and an SMB share, metadata such as ownership and permissions will be inherited from the object’s parent folder. Permissions at the root of the share are fixed and objects created directly under the root folder will inherit these fixed permissions. Refer to the documentation on metadata settings of objects created outside the gateway.

Q: What metadata can my SMB client access for objects created outside of the gateway?

A: You can have multiple NFS clients accessing a single File Gateway. However, as with any NFS server, concurrent modification from multiple NFS clients can lead to unpredictable behavior. Application level coordination is required to do this in a safe way.

Q: Can I use multiple NFS clients with a single File Gateway?

A: No. We recommend a single writer to objects in your S3 bucket. If you directly overwrite or update an object previously written by File Gateway, it results in undefined behavior when the object is accessed through the file share. Concurrent modification of the same object (e.g. via the S3 API and the File Gateway) can lead to unpredictable results and we recommend against this configuration.

Q: Can I have multiple writers to my S3 bucket?

A: We do not recommend configuring multiple writers to a single bucket because it can lead to unpredictable results. You could enforce unique object names or prefixes through your application workflow. File Gateway doesn’t monitor or report on conflicts in such a setup.

Q: Can I have two gateways writing independent data to the same bucket?

A: Yes, you can have multiple readers on a bucket managed through a File Gateway. You can configure a file share as read-only, and allow multiple gateways to read objects from the same bucket. Additionally, you can refresh the inventory of objects that your gateway knows about using the Storage Gateway Console, the file system driven cache refresh process, or the RefreshCache API.

Q: Can I have multiple gateways reading data from the same bucket?

A: Yes, you can monitor usage of your file share using Amazon CloudWatch metrics and get notified on completion of file operations through CloudWatch Events. To learn more, visit Monitoring your File Share.

Q: Can I monitor my file share using Amazon CloudWatch?

A: When you write files to your file share with File Gateway, the data is stored locally first and then asynchronously uploaded to your S3 bucket. You can request notifications through AWS CloudWatch Events when this upload completes. These notifications can be used to trigger additional workflows, such as invoking an AWS Lambda function or Amazon EC2 Systems Manager Automation, which is dependent upon the data that is now available in S3. To learn more, please refer to the documentation for File Upload Notification.

Q: How do I know when my file is uploaded?

A: Yes, you can refresh the inventory of objects that your File Gateway knows about using the Console, the file system driven cache refresh process, or the RefreshCache API. You will receive notifications through AWS CloudWatch Events when the RefreshCache API operation has completed. These notifications can be used to send emails using Amazon SNS, or trigger local processing using the updated contents. To learn more, please refer to the documentation.

Q: Can I update my File Gateway’s view of a bucket to see objects created from an object-based workload or another File Gateway?

A: Yes, you can use the gateway for cross-account access to buckets. To learn more, please refer to the documentation for Using File Share for Cross-Account access.

Q: Can I use the gateway to update data in a bucket that belongs to another AWS account?

A: Yes, when creating your file share you can enable access to Requester Pays S3 buckets. As a requester, you will incur the charges associated with accessing data from Requester Pays buckets.

Q: Can I use the gateway to access data in Requester Pays S3 buckets?

A: You can create multiple file shares for a single S3 bucket by specifying a S3 prefix during file share creation process.

Q: How do I create multiple shares per bucket in a gateway?

A: You can create up to 10 file shares per gateway. You can create up to 10 shares for a S3 bucket in a single gateway. We do not limit the number of file shares per bucket across multiple gateways but each gateway is limited to 10 shares. However, we recommend having a single writer to the bucket, either a File Gateway or client accessing S3 directly.

Q: How many file shares can I create per gateway?

A: Yes, you can change the name of a file share.

Q: Can I change the name of a file share?

A: No, you cannot change the name of a S3 prefix from File Gateway.

Q: Can I change the name of a S3 prefix from File Gateway?

A: The maximum size of an individual file is 5 TB, which is the maximum size of an individual object in S3. If you write a file larger than 5 TB, you will get a "file too large" error message and only the first 5 TB of the file will be uploaded.

Q: What is the maximum size of an individual file?

A: The maximum size of the local cache is 64TB.

Q: What is the maximum size of the local cache per gateway?

A: The gateway returns a large number (8 EB) as your total capacity. Amazon S3 does not limit total storage.

Q: My application checks storage size before copying data. What storage size does the gateway return?

A: Yes. Your bucket policies for lifecycle management, cross-region replication, and S3 event notification, apply directly to objects stored in your bucket through AWS Storage Gateway.

Q: Can I use Amazon S3 lifecycle, cross-region replication, and S3 event notification with File Gateway?

A: File Gateway supports SMB versions 2 and 3 as well as NFS versions 3 and 4.1. We are continuing to do on-going testing with common backup apps. Please let us know via AWS Support or through your AWS account team of any specific apps with which you'd like to see compatibility tested.

Q: Can I use File Gateway with my backup application?

A: No. File Gateway allows you to store files as objects in S3.

Q: Can I use File Gateway to write files to EFS?

A: You can use File Gateway when you want to access objects in S3 as files using standard filesystem operations. File Gateway additionally provides low-latency local access and efficient data transfer. You can use the S3 API when your application doesn’t require file system operations and can manage data transfer directly.

Q: When should I use File Gateway vs. the S3 API?

A: Local disk storage on the gateway is used to temporarily hold changed data that needs to be transferred to AWS, and to locally cache data for low-latency read access. File Gateway automatically manages the cache maintaining the most recently accessed data based on client read and write operations. Data is evicted from the cache only when space is needed to store more recently used data.

Q: How does File Gateway manage the local cache? What data gets stored locally?

A: You should provision your cache based on: 1/ The size of your working dataset to which you need low-latency access, so you can reduce read latencies by decreasing the frequency with which data is requested from S3, and 2/ The size of files written to the gateway by your applications.

Q: What guidance should I use to provision size of the gateway’s cache disk? What happens if I provision a smaller cache disk?

A: Data written to the cache from your applications or through retrieval from Amazon S3 is evicted from the cache only when space is needed to store more recently accessed data.

Q: When does data in the cache get evicted?

A: No. Files are mapped to objects one-to-one in your bucket without modification, enabling you to access your data directly in S3 without needing to use the gateway or deploy additional software to rehydrate your data.

Q: Does File Gateway perform data reduction (deduplication or compression)?

A: File Gateway will not use the accelerated endpoints even if your bucket is configured for S3 Transfer Acceleration.

Q: Can I use File Gateway with Amazon S3 Transfer Acceleration?

A: All data transferred between the gateway and AWS storage is encrypted using SSL. By default, all data stored in S3 is encrypted server-side with Amazon S3-Managed Encryption Keys (SSE-S3). For each file share you can optionally configure to have your objects encrypted with AWS KMS-Managed Keys using SSE-KMS. To learn more, please see “Encrypting Your Data Using AWS Key Management System,” in the Storage Gateway User Guide, which includes critical details about usage of the feature.

Q: What sort of encryption does File Gateway use to protect my data?

A: You get 11 9s of data durability, fixity checks by AWS on a regular basis, data encryption, right data when you restore, and cost savings, when storing virtual tapes in AWS using Tape Gateway with S3 Glacier Deep Archive compared to warehousing physical tapes offsite. First, all virtual tapes stored in S3 Glacier Deep Archive are replicated and stored across at least three geographically-dispersed Availability Zones, protected by 11 9s of durability. Second, AWS performs fixity checks on a regular basis to confirm your data can be read and no errors have been introduced. Third, all tapes stored in S3 Glacier Deep Archive are protected by S3 Server Side Encryption using default keys or your KMS keys. In addition, you also avoid physical security risk associated with tape portability. Fourth, compared to the experience of warehousing tapes offsite where you may receive an incorrect or broken tape during restore, with Tape Gateway, you always get correct data. Finally, you can save in monthly storage costs when storing your data in S3 Glacier Deep Archive compared to warehousing tapes offsite.

Q: What are the benefits of storing virtual tapes in AWS compared to warehousing tapes offsite?

A: Tape Gateway supports S3 Standard, S3 Glacier, and S3 Glacier Deep Archive storage classes. Data on your virtual tapes is stored in virtual tape library in Amazon S3 when backup application is writing data to tapes. After you eject tapes from backup application, your tapes are archived to S3 Glacier or S3 Glacier Deep Archive.

Q: What Amazon S3 storage classes does Tape Gateway support?

A: The minimum size and maximum size of a virtual tape you can create on a Tape Gateway is 100 GiB and 5 TiB respectively. Please note, you only pay for the amount of data stored on each tape, and not for the size of the tape.

Q: How much data can I store on a virtual tape?

A: A single Tape Gateway can have up to 1,500 virtual tapes in the VTL with a maximum aggregate capacity of 1 PB, however there is no limit to the amount of data or number of virtual tapes you can archive. You can also deploy additional Tape Gateways to scale storage for virtual tapes that are not archived. For more information, please see our documentation on Storage Gateway limits.

Q: How many tapes can the virtual tape library (VTL) hold?

A: There is no limit to the amount or size or virtual tapes that you can archive.

Q: How much data can I store in tape archives?

A: You can retrieve a virtual tape archived in S3 Glacier or S3 Glacier Deep Archive to S3. A tape archived in S3 Glacier is retrieved to S3 using standard retrieval method typically within 3-5 hours. A tape archived in S3 Glacier Deep Archive is retrieved to S3 using standard retrieval method typically within 12 hours.

Q: Which S3 storage classes can I retrieve my archived virtual tape to?

A: The virtual tape containing your data must be stored in a virtual tape library before it can be accessed. Access to virtual tapes in your virtual tape library is instantaneous. If the virtual tape containing your data is archived, you can retrieve the virtual tape using the AWS Management Console or API. First select the virtual tape, then choose the virtual tape library into which you want the virtual tape to be loaded. You can retrieve a tape archived in S3 Glacier and S3 Glacier Deep Archive to S3, typically within 3-5 hours and 12 hours, respectively. Once the virtual tape is available in the virtual tape library, you can use your backup application to make use of the virtual tape to restore data.

Q: How do I access my data on virtual tapes?

A: No. You cannot access virtual tape data using Amazon S3 or Amazon S3 Glacier APIs. However, you can use the Tape Gateway APIs to manage your virtual tape library and your virtual tape shelf.

Q: Will I be able to access the virtual tapes in my virtual tape library using Amazon S3 or Amazon S3 Glacier APIs?

A: When creating new tapes through the Storage Gateway console or API, you can set archival storage target to S3 Glacier Deep Archive. When your backup software ejects the tapes, they will be archived to S3 Glacier Deep Archive. You can retrieve a virtual tape archived in S3 Glacier Deep Archive to S3 using standard retrieval method typically within 12 hours.

Q: How do I use Tape Gateway with S3 Glacier Deep Archive storage class?

A: Yes. Tape Gateway supports moving your tapes in S3 Glacier to S3 Glacier Deep Archive. You can assign the tape placed in Glacier Pool to Deep Archive Pool using AWS Storage Gateway Console or API. Tape Gateway will then move the virtual tape to Deep Archive Pool associated with the S3 Glacier Deep Archive storage class. You will incur tape move charge for moving a tape from S3 Glacier to S3 Glacier Deep Archive and if applicable, an early deletion fee for S3 Glacier, if you move a tape from S3 Glacier to S3 Glacier Deep Archive prior to 90 days.

Q: Can I move my existing virtual tapes in S3 Glacier to S3 Glacier Deep Archive?

A: No, you cannot move a tape from S3 Glacier Deep Archive to S3 Glacier. You can retrieve a tape from S3 Glacier Deep Archive to S3 or delete a tape from S3 Glacier Deep Archive.

Q: Can I move a tape in S3 Glacier Deep Archive to S3 Glacier?

A: The VTL interface is compatible with backup and archival applications that use the industry-standard iSCSI-based tape library interface. For a full list of the supported backup applications see the requirements section of the AWS Storage Gateway user guide.

Q: What backup applications can I use with Tape Gateway?

A: All data transferred between the gateway and AWS storage is encrypted using SSL. By default, all data stored by Tape Gateway in S3 is encrypted server-side with Amazon S3-Managed Encryption Keys (SSE-S3).

Q: What sort of encryption does Tape Gateway use to protect my data?

A: Each Volume Gateway can support up to 32 volumes. In cached mode, each volume can be up to 32 TB for a maximum of 1 PB of data per gateway (32 volumes, each 32 TB in size). In stored mode, each volume can be up to 16 TB for a maximum of 512 TB of data per gateway (32 volumes, each 16 TB in size). For more information, please refer to our documentation on Storage Gateway limits.

Q: How much volume data can I manage per gateway? What is the maximum size of a volume?

A: Your volumes are stored in an Amazon S3 bucket maintained by the AWS Storage Gateway service. Your volumes are accessible for I/O operations through AWS Storage Gateway. You cannot directly access them using Amazon S3 API actions. You can take point-in-time snapshots of gateway volumes that are made available in the form of Amazon EBS snapshots, which can be turned into either Storage Gateway Volumes or EBS Volumes. Use the File Gateway to work with your data natively in S3.

Q: When I look in Amazon S3 why can’t I see my volume data?

A: All data transferred between the gateway and AWS storage is encrypted using SSL. By default, all data stored by Volume Gateway in S3 is encrypted server-side with Amazon S3-Managed Encryption Keys (SSE-S3).

Q: What sort of encryption does Volume Gateway use to protect my data?

A: Yes. You can create an EBS snapshot from an AWS KMS-encrypted volume using the API. The EBS snapshot will be encrypted using the same key as the one used for volume encryption

Q: Can I create an EBS Snapshot from KMS-encrypted volume?

A: Yes. You can create an encrypted volume from KMS-encrypted EBS snapshot using the API. The encrypted volume can use the same key that was used to encrypt the EBS snapshot, or you can specify a different encryption key for encrypting the volume.

Q: Can I create a volume from KMS-encrypted EBS snapshot?

A: You can take point-in-time snapshots of your Volume Gateway volumes in the form of Amazon EBS snapshots. You can use a snapshot of your volume as the starting point for a new Amazon EBS volume, which you can then attach to an Amazon EC2 instance. Using this approach, you can easily supply data from your on-premises applications to your applications running on Amazon EC2 if you require additional on-demand compute capacity for data processing or replacement capacity for disaster recovery purposes.

Q: Why would I use snapshots?

A: Snapshots represent a point-in-time copy of the volume at the time the snapshot is requested. They contain all of the information needed to restore your data (from the time the snapshot was taken) to a new volume. Data written to the volume by your application prior to taking the snapshot, but not yet been uploaded to AWS, will be included in the snapshot.

Q: What data will my snapshot contain? How do I know when to take a snapshot to ensure my data is backed up?

A: Each snapshot is given a unique identifier that you can view using the AWS Management Console. You can create AWS Storage Gateway or Amazon EBS volumes based on any of your existing snapshots by specifying this unique identifier.

Q: How do I restore a snapshot to a gateway?

A: No, taking snapshots does not require you to un-mount your volumes, nor does it impact your application’s performance. However, snapshots only capture data that has been written to your AWS Storage Gateway volume, which may exclude any data that has been locally buffered by your application or OS.

Q: Do the AWS Storage Gateway’s volumes need to be un-mounted in order to take a snapshot? Does the snapshot need to complete before the volume can be used again?

A: Yes, you can create a snapshot schedule for each of your volumes. You can modify both the time the snapshot occurs each day, as well as the frequency (every 1, 2, 4, 8, 12, or 24 hours).

Q: Can I schedule snapshots of my AWS Storage Gateway volumes?

A: The time it takes to complete a snapshot is largely dependent upon the size of your volume and the speed of your Internet connection to AWS. The AWS Storage Gateway compresses all data prior to upload, reducing the time to take a snapshot.

Q: How long does it take to complete a snapshot?

A: No, snapshots are only accessible from the AWS Storage Gateway and Amazon EBS and cannot be directly accessed using Amazon S3 APIs.

Q: Will I be able to access my snapshot data using Amazon S3’s APIs?

A: There are no limits to the number of snapshots or the amount of snapshot data a single gateway can produce.

Q: What are the snapshot limits per gateway?

A: Using AWS Backup to backup Volume Gateway volumes simplifies and centralizes backup management, thus reducing operational burden and making it easier to meet compliance requirements across all your AWS resources. AWS Backup allows you to set customizable scheduled backup policies that meet your backup requirements. Using AWS Backup, you can set backup retention and expiration rules so you no longer need to develop custom scripts or manually manage the point-in-time backups of your Volume Gateway volumes. Finally, you can manage and monitor backups across multiple Volume Gateways, and other AWS resources such as EBS volumes and RDS databases, from a central view.

Q: What are the benefits of using AWS Backup to protect my Volume Gateway volumes?

A: You can use AWS Backup to either take a one-time backup or define a backup schedule for Volume Gateway volumes. The volume backups are stored in Amazon S3 as Amazon EBS snapshots and visible in AWS Backup console or Amazon EBS console. The volume backups created by AWS Backup can manually or automatically be deleted from AWS Backup console.

Q: How do I protect volumes on Volume Gateway using AWS Backup?

A: You can start from either the Storage Gateway console or the AWS Backup console to manage your backups. If you start from the Storage Gateway console, you have the ability to navigate to the AWS Backup console to complete your backup plan configuration or initiate an on-demand backup. Alternatively, you can start from the AWS Backup console to configure your backup plan or initiate an on-demand backup of Volume Gateway volumes.

Q: How do I use AWS Backup to manage backup and retention of my Volume Gateway volumes?

A: No. All existing Volume Gateway snapshot functionality and your existing Amazon EBS Snapshots remain available and unchanged. You can continue to use the Storage Gateway console to create volumes from your EBS Snapshots and use the Amazon EBS console to view or delete your snapshots.

Q: Does anything change with how I have been using Volume Gateway volumes today?

A: Yes. You can continue to use Volume Gateway’s existing snapshot capabilities to create Amazon EBS snapshots and use your previously created snapshots for restore purposes. AWS Backup’s backup schedule operates independently from the Volume Gateway scheduled snapshots, and provides you an additional way to centrally manage all your backup and retention policies.

Q: If I use AWS Backup, can I also continue to use Volume Gateway snapshot schedules and existing snapshots?

A: Yes. AWS Backup will backup KMS-encrypted volumes Volume Gateway with the same key as the one used for volume encryption.

Q: If I have a KMS-encrypted volume on Volume Gateway, will AWS Backup be able to backup that volume?

A: AWS Backup supports backup of Volume Gateway volumes within the same region in which AWS Backup operates.

Q: Can I use AWS Backup to create a backup of my Volume Gateway volume in a different region (e.g. cross region)?

A: Storage Gateway achieves high availability by running a series of continuous health-checks against the operation of the gateway that connect to the VMware monitoring service. During a hardware, software, or network failure, VMware will trigger a gateway restart on a new host or on its existing host if the host is still operational. At a maximum, users and applications will experience up to 60 seconds of downtime during a restart. After a restart, connections to the gateway are automatically re-established, never needing manual intervention. On re-initialization the gateway will send metrics back to cloud to give customers a full view of the availability event.

Q: How does Storage Gateway provide high availability?

A: Storage Gateway high availability can currently be enabled in clustered VMware vSphere environments that have VMware HA enabled and have shared volume storage available.

Q: What environments are enabled for Storage Gateway high availability?

A: There is no additional cost for running Storage Gateway with the high availability integration enabled.

Q: What does Storage Gateway with high availability cost?

A: Storage Gateway with VMware HA enabled and application monitoring configured, will detect and recover from hardware failures, hypervisor failures, network failures, as well as software issues that lead to connection timeouts or file-share, volume, or virtual tape library unavailability.

Q: What types of failures are covered by Storage Gateway with high availability?

A: Yes.

Q: Will NFS and SMB sessions be maintained during a gateway restart?

Q: Will gateway reads or writes fail during a gateway restart?

A: Yes, gateways will be reinitialized using the same underlying shared storage, preserving local cache and upload queues

Q: Will Storage Gateway HA still have the ability to restart if its connection to AWS is broken?

A: No, gateways will be reinitialized using the same underlying shared storage, preserving local cache and upload queues.

Q: Will I lose data during a gateway restart?

A: If the gateway is deployed to VMware with VMware HA enabled you will be able to configure the restart sensitivity of the Storage Gateway VM in the VMware vSphere control center. The Storage Gateway VM heartbeat will be available giving you the ability automatically restart the gateway on a specific timeout.

Q: Do I need to make any changes to my VMware environment to take advantage of the HA feature?

A: VMware HA monitors underlying infrastructure, such as storage and networking. Storage Gateway provides a range of health checks such as file system availability, SMB endpoint availability, and NFS endpoint availability that monitor all of the critical operations of the gateway, ensuring the whole service and not just the underlying infrastructure is continuously available to your users and applications.

Q: What does Storage Gateway HA give me that I don't already have if I operate VMware HA?

A: Yes. Storage Gateway High Availability can be used on VMware Cloud with no additional requirements. VMware Cloud on AWS has VMware HA enabled by default and shared volumes are available.

Q: Will this be available for VMware Cloud on AWS?

A: When setting up a new gateway for VMware, you will be given the option of testing HA. You may also test whether a deployed gateway is HA-capable by choosing the “Test VMware HA” action in console.

Q: How will I know if a gateway is capable of high availability and operating in HA-mode?

A: AWS Storage Gateway console will show availability events in log tables and interruptions in performance graphs during a gateway restart.

Q: What operational visibility will I have during a gateway restart?

A: Yes, if you have configured the integration with CloudWatch, availability events triggered from the gateway will be available through CloudWatch.

Q: Will I see an availability event in CloudWatch when a gateway restart occurs?

A: If you have configured the integration with CloudWatch, a CloudWatch event will be triggered on re-initialization. Additionally, performance graphs will show the gateway’s operational metrics including number of active sessions.

Q: How will I know when a gateway returns to operation?

A: Yes, administrators will be able to set a timeout in the vSphere console that will restart the service if the gateway is unreachable for the specified number of seconds.

Q: Will I be able to set a service timeout that triggers a gateway restart?

A: Yes, you can use AWS Direct Connect to increase throughput and reduce your network costs by establishing a dedicated network connection between your on-premises gateway and AWS. Note that AWS Storage Gateway efficiently uses your internet bandwidth to help speed up the upload of your on-premises application data to AWS.

Q: Can I use AWS Storage Gateway with AWS Direct Connect?

A: Yes. Volume and Tape Gateways support configuration of a Socket Secure version 5 (SOCKS5) proxy between your on-premises gateway and AWS. File Gateway supports configuration of a HyperText Transfer Protocol (HTTP) proxy.

Q: Can I route my AWS Storage Gateway internet traffic through a local proxy server?

Q: Can I deploy a Storage Gateway on my private non-routable network? Does Storage Gateway support AWS PrivateLink?

Q: Does Storage Gateway support AWS PrivateLink for all types of gateways?

A: You will be billed for each hour that your VPC endpoint remains provisioned. Data processing charges also apply for each Gigabyte processed through the VPC endpoint regardless of the traffic’s source or destination.

Q: What is the cost for using VPC endpoints with Storage Gateway?

Q: How do I activate gateways that are connected to AWS via AWS PrivateLink?

Q: How can I use PrivateLink with File Gateway?

A: No.

Q: Can a File Gateway use a VPC endpoint in one region and access an S3 bucket in another region?

A: Volume and Tape Gateways connect directly to AWS services through the Storage Gateway VPC endpoint without the need for a proxy to S3.

Q: How can I use PrivateLink with Volume Gateways and Tape Gateways?

A: Yes, but the appliance must be activated before it is moved to the private network.

Q: Can I use AWS PrivateLink with my Storage Gateway hardware appliance from Dell EMC?

A: AWS Storage Gateway is available as a hardware appliance, which has Storage Gateway software pre-installed on a Dell EMC PowerEdge R640 server with a validated configuration. You manage the appliance from the AWS Management Console or API.

Q: What is the Storage Gateway hardware appliance?

A: The hardware appliance supports File Gateway with NFS and SMB interfaces, Volume Gateway cached volumes with iSCSI, and Tape Gateway with iSCSI-VTL.

Q: What gateway types and storage interfaces are supported on the hardware appliance?

A: The hardware appliance further simplifies procurement, deployment, and management of AWS Storage Gateway on-premises for IT environments such as remote offices and departments which lack existing virtual server infrastructure, adequate disk and memory resources, or staff with hypervisor management skills. It avoids having to procure additional infrastructure necessary for a virtual environment in order to operate the local Storage Gateway VM appliance.

Q: Why might I need a hardware appliance?

A: We are offering a single model at this time.

Q: How many models of hardware appliances are available?

A: The hardware appliance is based on a Dell EMC PowerEdge R640 server. Please refer to Storage Gateway hardware appliance for specifications.

Q: What are the specifications of the hardware appliance?

A: The hardware appliance can be shipped to US and Europe addresses. It can be used with the US East (Northern Virginia), US East (Ohio), US West (Oregon), US West (Northern California), EU (Frankfurt), EU (Ireland), EU (London), and EU (Paris) AWS regions. File Gateway file shares may be added against any global partition Amazon S3 bucket.

Q: Where is the hardware appliance available? With which AWS regions does it work?

A: We recommend you start at AWS Storage Gateway management console to purchase the hardware appliance. In the Storage Gateway console when you create a new gateway, you have the option to use a hardware appliance in addition to using virtual platforms VMware ESXi, Microsoft Hyper-V, Linux KVM, and Amazon EC2. If you don’t already own a hardware appliance, you are directed to Amazon US, Amazon UK, or Amazon Germany to purchase it. You can choose to purchase the appliance from these websites based on your delivery location preference using your Amazon or Amazon Business account.

Q: Where do I buy the hardware appliance?

A: After purchase, you own the hardware appliance.

Q: Who owns the hardware appliance?

A: Once you receive the hardware appliance, you configure IP address through the local hardware console, and use this IP address in the AWS Storage Gateway management console to activate your appliance. This associates your hardware appliance with your AWS account. Once the hardware appliance is activated, you select your desired gateway type from the console, either file, volume (cached), or tape. The selected type of gateway is then enabled on the appliance. Once activated, you manage and use your new hardware gateway appliance with the AWS Console, CLI, or SDK, similar to how you would with the virtual appliance today. For more information, please see the hardware appliance documentation.

Q: How do I use the hardware appliance?

A: No. Currently, the hardware appliance supports running only one gateway at a time.

Q: Can I run multiple gateways on a single hardware appliance?

A: Yes. To change the gateway type after it is installed on a hardware appliance, you choose Remove Gateway from the Storage Gateway console, which deletes the gateway and all associated resources. At that point, you are free to launch a new gateway on the hardware appliance.

Q: Can I change the type of gateway once it is installed on a hardware appliance?

A: You will have the option to purchase additional storage on Amazon US, Amazon UK, or Amazon Germany. You can purchase the base appliance which offers 5 TB usable storage and choose to add a package of 5 x 1.92 TB SSDs to bring the appliance’s usable storage capacity to 12 TB.

Q: How can I purchase and use additional storage on the Storage Gateway hardware appliance?

A: You will have the option to purchase an Intel X710 4-port 10 Gigabit fiber optic network card on Amazon US, Amazon UK, or Amazon Germany for Storage Gateway hardware appliance. You can select the fiber optic network card option in addition to the base appliance when ordering the appliance. Upon receipt of the appliance and the fiber optic network card, you will swap out the 10 Gigabit copper network card with the fiber optic network card using instructions here.

Q: How can I purchase a fiber optic network card for the Storage Gateway hardware appliance?

A: Yes. You can buy 5 x 1.92 TB SSDs available on Amazon US, Amazon UK, or Amazon Germany and add them to the appliance. If you have already activated the appliance and associated it with your AWS account, you will need to factory reset it before adding more storage.

Q: Can I add more storage to a Storage Gateway hardware appliance I had purchased before?

A: No. At this time you can only add the SSDs that are available for purchase on Amazon US, Amazon UK, or Amazon Germany. The SSDs available for purchase are qualified by Dell and AWS for the Storage Gateway hardware appliance.

Q: Can I add any SSD or hard drive to increase storage capacity for my Storage Gateway hardware appliance?

A: Yes. The hardware appliance uses software-based ZFS RAID and provides protection against storage drive failure. The base appliance offering 5 TB usable storage tolerates failure of 1 SSD and the 12 TB usable storage configuration tolerates failure of 2 SSDs.

Q: Does the Storage Gateway hardware appliance support RAID?

A: All data transferred between any type of gateway appliance and AWS storage is encrypted using SSL. By default, all data stored by AWS Storage Gateway in S3 is encrypted server-side with Amazon S3-Managed Encryption Keys (SSE-S3). Also, you can optionally configure different gateway types to encrypt stored data with AWS Key Management Service (KMS) via the Storage Gateway API. See below for specifics on KMS support by File Gateway, Tape Gateway, and Volume Gateway.

Q: What encryption does AWS Storage Gateway use to protect my data?

A: Yes. AWS Storage Gateway is HIPAA eligible. If you have an executed Business Associate Agreement (BAA) with AWS, you can use Storage Gateway to store, backup, and archive protected health information (PHI) on scalable, cost-effective, and secure AWS storage services, including Amazon S3, Amazon S3 Glacier, Amazon S3 Glacier Deep Archive, and Amazon EBS, which are also HIPAA eligible.

Q: Is AWS Storage Gateway HIPAA eligible?

A: Yes, AWS Storage Gateway is compliant with the Payment Card Industry Data Security Standard (PCI DSS) based on recent assessments. Existing customers can download the Attestation of Compliance (AOC) and PCI Responsibility Summary reports in the AWS Management Console with AWS Artifact. Prospective customers can request the reports by working with the AWS sales team.

Q: Is AWS Storage Gateway PCI compliant?

A: Yes, AWS Storage Gateway supports FIPS 140-2 compliant endpoints.

Q: Does AWS Storage Gateway support FIPS 140-2 compliant endpoints?

A: AWS Storage Gateway supports FIPS 140-2 compliant endpoints in AWS GovCloud (US-West) and GovCloud (US-East) regions.

Q: Which Regions support AWS Storage Gateway FIPS 140-2 compliant endpoints?

A: For a list of the FIPS endpoints available for AWS Storage Gateway, refer to the AWS GovCloud (US) user guide.

Q: What are the FIPS endpoints for AWS Storage Gateway?

A: No, AWS Storage Gateway Hardware Appliance is not FIPS 140-2 compliant.

Q: Is AWS Storage Gateway Hardware Appliance FIPS 140-2 compliant?

A: Yes, File Gateway audit logs can be used to monitor client operations for folders and files within SMB file shares.

Q: Does File Gateway provide logging to monitor client file access operations?

A: You can configure File Gateway audit logs to monitor user operations for folders and files at the share level for each SMB share.

Q: Can I monitor client activity for each individual file shares?

A: File Gateway audit logs supports SMB shares.

Q: What types of file shares are supported by File Gateway audit logs?

A: You will see details about the following operations logged for files and directories: open, delete, read, write, rename, change of permissions, and file operation success. User information for each operation, including timestamp, Active Directory domain, user name, and client IP address, is also logged.

Q: What file operations will I see in File Gateway audit logs?

A: You can access the File Gateway audit logs in Amazon CloudWatch. Audit logs can also be sent from CloudWatch to the Amazon S3 bucket of your choice. Audit logs can be viewed from Amazon S3 using Amazon Athena and can also be exported to third party security information and event management applications (SIEM) for analysis within those tools.

Q: How do I access File Gateway audit logs?

A: The AWS Storage Gateway sits between your applications and Amazon storage services. The performance you experience depends on the host platform (hardware appliance, virtual machine, Amazon EC2 instance) you are using to run Storage Gateway software, along with a number of other factors. These include the network bandwidth between your iSCSI initiator or NFS client and gateway, the speed and configuration of your underlying local disks, the configuration of your VM, the amount of local storage allocated to your gateway, and the bandwidth between your gateway and Amazon storage. Our technical documentation provides guidance on how to optimize your AWS Storage Gateway environment for best performance.

Q: What performance can I expect?

A: For running AWS Storage Gateway on a virtual machine or an Amazon EC2 instance, see the requirements section in the AWS Storage Gateway User Guide. AWS Storage Gateway is also available as a Hardware Appliance with pre-validated specifications.

Q: What are the minimum hardware and software requirements for the AWS Storage Gateway?

A: Volume and Tape Gateways perform compression of data in-transit and at-rest which can reduce both data transfer and storage charges. The AWS Storage Gateway only uploads data that has changed, minimizing the amount of data sent over the Internet.

Q: What type of data reduction does AWS Storage Gateway perform?

A: Yes, using the AWS Management Console you can restrict the bandwidth between your Tape and Volume Gateway and AWS based on a rate that you provide. You can specify individual rates for inbound and outbound traffic.

Q: Does the AWS Storage Gateway support bandwidth throttling?

Q: How do I monitor my gateway?

Q: How can I measure the cache performance of my gateway?

A: You can use Amazon CloudWatch metrics including CloudBytesUploaded and CloudBytesDownloaded.

Q: How can I measure the bandwidth used by my gateway?

A: You can create alarms for your gateway in the Amazon CloudWatch console.

Q: How can I create CloudWatch Alarms for my gateway?

A: AWS Storage Gateway periodically deploys important updates and software patches to your gateway virtual machine (VM). You can configure a weekly maintenance schedule allowing you to control when these updates will be applied to your gateway. Alternatively, you can apply updates manually when they are made available, either through the AWS Storage Gateway Console or API. Updates should take only a few minutes to complete. For more information, please visit the Managing Gateway Updates section of our documentation.

Q: How does the AWS Storage Gateway manage updates?

A: There are 3 elements to how you will be billed for AWS Storage Gateway: Storage, requests, and data transfer. For detailed pricing information, please visit the AWS Storage Gateway Pricing page.

Q: How will I be billed for my use of AWS Storage Gateway?

A: File Gateways stores data directly in Amazon S3. You are billed by Amazon S3 for the objects stored and requests made by your File Gateway. For more information, please visit the Amazon S3 Pricing page.

Q: How will I be charged for file storage when using a File Gateway?

A: You are billed for the amount of volume and virtual tape data you store in AWS. This fee is prorated daily and prices vary by region. You are only billed for the portion of volume or virtual tape capacity that you use, not for the provisioned size of the resource. All volume and virtual tape data is compressed before it is transferred to AWS by the gateway, which can reduce your storage charges. For detailed pricing information, please visit the AWS Storage Gateway Pricing page.

Q: How will I be charged for volume or virtual tape storage when using a volume or Tape Gateway?

A: EBS snapshots taken from your Storage Gateway volumes are stored and billed by Amazon EBS. When taking a new snapshot only the data that has changed since your last snapshot is stored to reduce your storage charges. For more information, please visit the Amazon EBS Pricing page.

Q: How will I be charged for EBS snapshots taken from my AWS Storage Gateway volumes?

A: When your gateway writes data to AWS you will be charged at a flat rate of $0.01 per GB of data written to AWS up to a monthly maximum of no more than $125 per gateway. There is no charge for reading data from AWS. Since the gateway performs caching, bandwidth optimization, and, for Volume and Tape Gateways, compression, the amount of data written to AWS may be less than the amount of data written to the gateway by your application. You can monitor the amount of data written by your gateway to AWS through the provided Amazon CloudWatch metrics and you can configure bandwidth limits on your gateway to manage your costs.

Q: How will I be charged for reading and writing data?

A: You are charged, when retrieving a virtual tape that has been archived in S3 Glacier, at a flat rate of $0.01 per GB of data stored on the tape. For example, retrieving 5 tapes that contain 100 GB each would cost 5 x 100GB x $0.01 = $5.00.

Q: How will I be charged when retrieving data on an archived virtual tape?

A: If a virtual tape is deleted within three months of being archived in S3 Glacier or within six months of being archived S3 Glacier Deep Archive, you will be charged an early deletion fee. If the virtual tape has been stored for three months or longer in S3 Glacier or for six months or longer in S3 Glacier Deep Archive, there is no charge for deletion.

Q: How will I be charged for deleting an archived virtual tape?

A: Virtual tapes stored in S3 Glacier Deep Archive will be charged S3 Glacier Deep Archive storage class rate. You can visit Storage Gateway pricing webpage to review Tape Gateway pricing.

Q: How am I charged for virtual tapes I store in S3 Glacier Deep Archive?

A: The usage and cost for virtual tapes you store in Deep Archive Pool will show up as an independent service line item on your monthly AWS bill under AWS Storage Gateway Deep Archive, separate from your AWS Storage Gateway and costs. However, if you are using the AWS Cost Management tool, usage and cost for virtual tapes you store in Deep Archive Pool will be included under AWS Storage Gateway in your detailed monthly spend reports, and not broken out as a separate service line item.

Q: How will the virtual tapes I store in Deep Archive Pool, associated with S3 Glacier Deep Archive storage class, show up on my AWS bill and in the AWS Cost Management tool?

A: For AWS US East (N. Virginia) region, you are charged, when moving a virtual tape that has been archived in S3 Glacier to S3 Glacier Deep Archive, at a rate of $0.032 per GB of data stored on the tape. For example, moving a 100 GB tape archived in S3 Glacier to S3 Glacier Deep Archive will cost 100 GB x $0.032/GB = $3.2. If you move a tape that’s archived for less than 90 days in S3 Glacier to S3 Glacier Deep Archive, you are also charged for early deletion fee for tape storage in S3 Glacier.

Q: How will I be charged for moving a virtual tape archived in S3 Glacier to S3 Glacier Deep Archive?

A: You are billed for Internet data transfer for each GB downloaded from AWS to your gateway. All data transfer for uploading to AWS is free.

Q: How will I be charged for network data transfer to and from AWS when using AWS Storage Gateway?

A: The Billing and Cost Management console shows an estimate of month-to-date usage for each service, including AWS Storage Gateway volumes and virtual tapes. For a breakdown of usage by individual volume or virtual tape Detailed Billing Reports enables you to see usage for each resource on a daily basis.

Q: How can I tell how much storage I am going to be billed for?

A: You will pay for the S3 requests made by File Gateway on your behalf to store and retrieve your files in S3 as objects. The gateway caches data up to the capacity of the local disks you allocate, which can help reduce costs for data retrieval.

Q: When using File Gateway, will I incur S3 request charges?

A: You will be charged standard rates for Amazon CloudWatch Logs, Amazon CloudWatch Events, and Amazon CloudWatch Metrics if you configure File Gateway audit logs.

Q: Will I incur CloudWatch charges when using File Gateway audit logs?

A: The billing system follows Coordinated Universal Time (UTC). The calendar month begins midnight UTC on the first day of every month.

Q: When does each monthly billing cycle begin?

A: Except as otherwise noted, our prices are exclusive of applicable taxes and duties, including VAT and applicable sales tax. For customers with a Japanese billing address, use of the Asia Pacific (Tokyo) Region is subject to Japanese Consumption Tax.

Q: Do your prices include taxes?

A: Please refer to the hardware appliance listing on Amazon US, Amazon UK, or Amazon Germany for the current price.

Q: How much does the hardware appliance cost?

A: You purchase the hardware appliance from Amazon US, Amazon UK, or Amazon Germany using an Amazon account, or an Amazon Business account with a purchase order.

Q: How do I pay for the hardware appliance?

A: No. You pay the full price at the time of purchase.

Q: Can I lease or rent the hardware appliance?

A: Yes, AWS Premium Support covers issues related to your use of the AWS Storage Gateway. Please see the AWS Premium Support detail page for further information and pricing.

Q: Does AWS Premium Support cover the AWS Storage Gateway?

A: You can tap into the breadth of existing AWS community knowledge through the AWS Storage Gateway discussion forum.

Q: What other support options are available?

Q: Who do I call for support related to hardware appliance?

A: The Dell EMC service tag for the hardware appliance can be found in the Hardware view of AWS Storage Gateway console.

Q: Where do I find the Dell EMC service tag for the hardware appliance (also known as serial number)?

A: AWS Support works with Dell EMC for hardware support. Hardware support is included with your appliance purchase and includes 36 months of 7x24 phone support and next-business-day, on-site service for parts replacement.

Q: What if there is a hardware problem with the hardware appliance?

A: The hardware appliance comes with 3 years of warranty from Dell with next business day onsite service for parts replacement. You can find warranty information under Product description section of the hardware appliance listing on Amazon US, Amazon UK, or Amazon Germany.

Q: What are the warranty terms of the hardware appliance?