Multi-region ML deployment strategy
Why this matters
Single-region deployments fail completely when infrastructure goes down. Multi-region deployments with proper data locality reduce latency by 60-80%, meet data residency regulations (GDPR, CCPA), and provide 99.99% availability SLAs. Without this, a regional outage loses all inference traffic and violates compliance requirements.
Explanation
Multi-region ML deployment requires three synchronized layers: (1) MLflow model registry replicated across regions with DVC for model artifact storage in region-local S3/GCS buckets, (2) Kubernetes clusters in each region with ingress routing via cloud-native load balancers (AWS Route 53 with health checks, GCP Cloud Load Balancing, Azure Traffic Manager), (3) data pipelines that train models once and replicate weights to region-local storage with checksums verified via DVC. The key complexity is not deployment itself: it's ensuring model versions, inference code, and dependencies stay synchronized across regions while respecting data residency. MLflow tracks which model version is active in which region. DVC locks model artifacts to specific S3/GCS regional endpoints. Kubernetes deployments reference those endpoints with region-specific environment variables. This avoids the antipattern of storing all model weights in us-east-1 then pulling to eu-central-1, which creates bottlenecks and violates compliance.
Configuration
# DVC multi-region storage config (.dvc/config)
['remote "us-east-1"']
url = s3://ml-models-us-east-1/dvc-store
region = us-east-1
['remote "eu-central-1"']
url = s3://ml-models-eu-central-1/dvc-store
region = eu-central-1
['remote "asia-southeast-1"']
url = s3://ml-models-ap-southeast-1/dvc-store
region = ap-southeast-1
[core]
remote = us-east-1
autostage = true
# dvc.yaml: train once, push to all regions
stages:
train:
cmd: python train.py --output model.pkl
deps:
- train.py
- data/train.csv
outs:
- model.pkl:
hash: md5
md5: abc123def456
size: 524288000
# Kubernetes deployment (k8s-us-east-1.yaml)
apiVersion: apps/v1
kind: Deployment
metadata:
name: ml-inference-us-east-1
namespace: ml-serving
spec:
replicas: 3
selector:
matchLabels:
app: ml-inference
region: us-east-1
template:
metadata:
labels:
app: ml-inference
region: us-east-1
spec:
affinity:
podAntiAffinity:
preferredDuringSchedulingIgnoredDuringExecution:
- weight: 100
podAffinityTerm:
labelSelector:
matchExpressions:
- key: app
operator: In
values:
- ml-inference
topologyKey: kubernetes.io/hostname
containers:
- name: inference
image: ml-inference:v1.2.3
imagePullPolicy: IfNotPresent
ports:
- containerPort: 8000
name: http
env:
- name: DVC_REMOTE
value: s3://ml-models-us-east-1/dvc-store
- name: MODEL_VERSION
value: "v1.2.3"
- name: REGION
value: us-east-1
- name: AWS_REGION
value: us-east-1
- name: MLFLOW_REGISTRY_URI
value: https://mlflow-central.example.com
resources:
requests:
memory: "2Gi"
cpu: "1000m"
limits:
memory: "4Gi"
cpu: "2000m"
livenessProbe:
httpGet:
path: /health
port: 8000
initialDelaySeconds: 30
periodSeconds: 10
timeoutSeconds: 5
failureThreshold: 3
readinessProbe:
httpGet:
path: /ready
port: 8000
initialDelaySeconds: 10
periodSeconds: 5
volumeMounts:
- name: model-cache
mountPath: /models
volumes:
- name: model-cache
emptyDir:
sizeLimit: 2Gi
serviceAccountName: ml-inference
---
apiVersion: v1
kind: Service
metadata:
name: ml-inference-svc-us-east-1
namespace: ml-serving
spec:
type: ClusterIP
ports:
- port: 80
targetPort: 8000
name: http
selector:
app: ml-inference
region: us-east-1
# Route 53 health checks + multi-region routing (AWS)
# CloudFormation snippet (use Terraform in prod)
AWSTemplateFormatVersion: '2010-09-09'
Resources:
MLInferenceHealthCheckUSEast1:
Type: AWS::Route53::HealthCheck
Properties:
Type: HTTPS
ResourcePath: /health
FullyQualifiedDomainName: inference-api-us-east-1.example.com
Port: 443
RequestInterval: 30
FailureThreshold: 3
MeasureLatency: true
HealthCheckTags:
- Key: Name
Value: ml-inference-us-east-1
MLInferenceHealthCheckEUCentral1:
Type: AWS::Route53::HealthCheck
Properties:
Type: HTTPS
ResourcePath: /health
FullyQualifiedDomainName: inference-api-eu-central-1.example.com
Port: 443
RequestInterval: 30
FailureThreshold: 3
MeasureLatency: true
HealthCheckTags:
- Key: Name
Value: ml-inference-eu-central-1
MLInferenceMultiRegionDNS:
Type: AWS::Route53::RecordSet
Properties:
HostedZoneId: Z123ABC456
Name: inference-api.example.com
Type: A
SetIdentifier: weighted-routing
GeoLocation:
CountryCode: US
AliasTarget:
HostedZoneId: Z35SXDOTRQ7X7K
DNSName: inference-api-us-east-1.example.com
EvaluateTargetHealth: true
Weight: 50
MLInferenceMultiRegionDNSEU:
Type: AWS::Route53::RecordSet
Properties:
HostedZoneId: Z123ABC456
Name: inference-api.example.com
Type: A
SetIdentifier: weighted-routing-eu
GeoLocation:
ContinentCode: EU
AliasTarget:
HostedZoneId: Z32O12XQLNTSW2
DNSName: inference-api-eu-central-1.example.com
EvaluateTargetHealth: true
Weight: 50
# MLflow model registry sync script (run every 5 min via K8s CronJob)
apiVersion: batch/v1
kind: CronJob
metadata:
name: mlflow-registry-sync
namespace: ml-ops
spec:
schedule: "*/5 * * * *"
jobTemplate:
spec:
template:
spec:
serviceAccountName: mlflow-sync
containers:
- name: sync
image: python:3.11-slim
command:
- /bin/bash
- -c
- |
pip install mlflow boto3 google-cloud-storage -q
python /scripts/sync_registry.py
env:
- name: MLFLOW_TRACKING_URI
value: https://mlflow-central.example.com
- name: REGIONS
value: "us-east-1,eu-central-1,ap-southeast-1"
volumeMounts:
- name: sync-script
mountPath: /scripts
volumes:
- name: sync-script
configMap:
name: mlflow-sync-script
defaultMode: 0755
restartPolicy: OnFailureWhy this order?
DVC config must be initialized first (.dvc/config) so model artifacts store to region-specific remotes. K8s deployments reference those remotes via environment variables. Route 53 health checks run in parallel to Kubernetes readiness probes. MLflow registry sync runs as a sidecar scheduled job to pull latest model versions from the central registry and push checksums to regional stores. The CronJob timing (5 min) balances consistency with API quota limits on MLflow and cloud storage.
Wrong vs Right
# WRONG: Store all model weights in central S3 bucket, download at inference time
apiVersion: apps/v1
kind: Deployment
metadata:
name: ml-inference-wrong
spec:
replicas: 3
template:
spec:
containers:
- name: inference
image: ml-inference:v1.2.3
env:
- name: MODEL_S3_PATH
value: s3://ml-models-central/model-v1.2.3.pkl
# Download at startup = 30-60s latency per pod, cross-region = 2-5s per request
lifecycle:
postStart:
exec:
command:
- /bin/sh
- -c
- |
aws s3 cp $MODEL_S3_PATH /models/model.pkl
# If central S3 region fails, entire pod crashes before startup probe passes# RIGHT: Pull from region-local DVC remote, cache in local volume
apiVersion: apps/v1
kind: Deployment
metadata:
name: ml-inference-right
spec:
replicas: 3
template:
spec:
initContainers:
- name: pull-model
image: ml-inference:v1.2.3
command:
- /bin/sh
- -c
- |
dvc remote add -d regional s3://ml-models-us-east-1/dvc-store
dvc pull model.pkl --remote regional --force
env:
- name: AWS_REGION
value: us-east-1
volumeMounts:
- name: model-cache
mountPath: /models
containers:
- name: inference
image: ml-inference:v1.2.3
env:
- name: DVC_REMOTE
value: s3://ml-models-us-east-1/dvc-store
- name: MODEL_PATH
value: /models/model.pkl
volumeMounts:
- name: model-cache
mountPath: /models
volumes:
- name: model-cache
emptyDir:
sizeLimit: 2GiTool vitals
dvc push -r <region> && kubectl apply -f k8s-<region>.yamldvc.yaml, .dvc/config, k8s-deployment-multiregion.yaml, mlflow-registry-sync.yaml dvc status -r && kubectl get pods -A && curl -H 'X-Region: eu-central-1' https://inference-api.example.com/healthIntegration notes
This pattern ties together MLflow (model registry, experiment tracking), DVC (artifact versioning and region-specific storage), Kubernetes (cluster orchestration), and cloud provider DNS/load balancers (Route 53, Cloud LB, Traffic Manager). The MLflow central registry is the source of truth for which model version is production-ready; DVC tracks that model's checksum and regional storage locations. Kubernetes deployments pull environment variables from ConfigMaps that reference the regional DVC remote. Cloud load balancers use health checks that hit the /health endpoint, which reads MODEL_VERSION from an env var populated from MLflow. If you add monitoring (Prometheus + Grafana), scrape inference latency per region to detect data locality issues.
Migration path
To move away from this multi-region setup: (1) consolidate to single region (reduces operational overhead 70% but loses availability), (2) migrate from Kubernetes to serverless (AWS Lambda, GCP Cloud Run) but sacrifice fine-grained control over GPU/compute; serverless costs 5-10x more at scale. (3) If abandoning DVC, use S3 object tagging + Lambda lifecycle policies to replicate model artifacts, but you lose the checksum verification and Git integration that prevents accidental model overwrites.
Cost model
Free tier covers: MLflow open-source, DVC free tier (3 remotes), Route 53 basic health checks ($0.50/month per health check). Costs kick in at: S3 regional storage ($0.023 per GB/month, multiply by number of regions), DVC Pro ($99/month, optional for team collaboration), Route 53 failover (free, but data transfer out-of-region costs $0.02 per GB). Hidden cost: egress traffic between regions during inference (if eu-central-1 inference hits us-east-1 S3, that's $0.02/GB). At 1TB inference per day across 3 regions with 33% misrouting, that's ~$600/month in egress alone: **fix DNS routing accuracy immediately** if latency spikes occur. Use S3 Transfer Acceleration ($0.04/100k requests) only if cross-region latency >200ms.
Common gotcha
DVC push to regional remotes only updates that remote's index: it does NOT synchronize to other regions automatically. If you train in us-east-1, run `dvc push -r us-east-1`, then switch to eu-central-1 without explicitly `dvc push -r eu-central-1`, your eu-central-1 K8s pods will fail with 'model artifact not found' because the regional remote index is empty. **Solution**: Create a Terraform/Helm post-deployment step that explicitly pushes to ALL region remotes, or use a DVC pipeline stage that iterates over regions. Also, never rely on S3 cross-region replication for DVC metadata (.dvc files): they must be versioned in Git and pulled before running `dvc pull`.
Team adoption
Day-1 onboarding: (1) Write a Makefile target `make deploy-multiregion REGIONS=us-east-1,eu-central-1` that automates DVC remote setup + K8s deployment. (2) Enforce in CI/CD that PRs to the model training branch automatically trigger `dvc push` to ALL region remotes: reject the merge if any region push fails. (3) Create a runbook: 'If eu-central-1 inference is slow, check `dvc status -r eu-central-1` in that region's K8s cluster and manually trigger sync if model.pkl is missing.' (4) Use a shared Notion/Slack dashboard that shows MLflow registry version, DVC artifact size, and per-region deployment timestamp so the team sees mismatches in real time. (5) Start with 2 regions (home + backup), expand to 3+ only after the team has managed failover once successfully in staging.
Experienced dev note
The real power move is using DVC's `--force-download` flag in the K8s init container without storing model checksums in the Deployment YAML. Instead, use a Python sidecar that queries MLflow every 5 minutes, detects if MODEL_VERSION env var changed, and signals the main inference container to reload via a /reload endpoint. This removes the need for pod restarts during model updates: you get instant model promotion across all regions without rolling restarts. Also: set `dvc remote modify
Check your understanding
Why is it dangerous to use a single central S3 bucket as the DVC remote for all regions, and what breaks in the inference path if that bucket becomes unreachable?
Show answer hint
The critical failure point is the init container in K8s: if DVC can't pull from the central remote during pod startup, the pod's readiness probe never passes, and the deployment never becomes ready. In a multi-region setup with region-local remotes, a central bucket failure only affects the region hosting that bucket; other regions continue serving from their local cache. Additionally, cross-region egress costs money (at scale, 60-80% of ML infrastructure costs are data transfer, not compute).