Docstoc

Wide Area Data Services

Document Sample
Wide Area Data Services Powered By Docstoc
					                   Wide Area Data Services
                           WDS



            PRESENTED TO THE SWINDON BRANCH OF THE
                   BRITISH COMPUTER SOCIETY
                      1 1 TH. D E C E M B E R 2 0 0 7




Alan Edgecombe – kisdata Ltd.
                       Agenda



 Overview of Kisdata Ltd
 Wide Area Data Services – what it consists of and
  why it is important to you
 Questions (and hopefully answers!)
 Brief Demonstration of a Wide Area Data Services
  solution
About Kisdata

 Kisdata brings together technology and business consulting skills
 to design and deliver solutions which work in the real world to
 bring competitive advantage.

 World class standard accreditations with the world’s major vendors & fully
 accredited staff, ensure the consistency & quality of our services.

 We have been awarded ISO 9001/9002 and are committed to delivering a high
 quality service with integrity.
Technology

   Kisdata's multi-disciplinary teams of engineers can assist you to
     secure and manage your most valuable asset: information.

    We use leading-edge technology from Veritas, HP, Riverbed,
                 VMWare & Cisco to name a few.
Services

Just some of the large range of services our Customers enjoy from us.



                   Design
               Implementation
            Maintenance & Support
             Pre-Configurations

             Monitoring & Support
               EVA Healthcheck
             Informix Healthcheck
              Oracle Healthcheck
Solutions

  Kisdata is a performance leader in the provision of solutions for
         companies worldwide some of which are below.

                       Adaptive Enterprise
                          Infrastructure
                     Enterprise Management
                        Managed Services
                   Business Continuity Planning
                             Security
                          Consolidation
                  WAN & Application Optimisation
Clients

Kisdata’s clients span all industry sectors including:

                                       Finance
                                        Legal
                                    Manufacturing
                                     Hospitality
                                    Construction
                                     Education
                                  Local Government
                                     Healthcare
    Our scalable solutions are designed to suit any size of organisation, ranging from an
                  SME through to blue-chip companies with multiple sites.
  Wide Area Data Services




What it is and why it is important to you
The challenges that distributed enterprises face today
                      PRODUCTIVITY




9
The challenges that distributed enterprises face today
                      COST SAVINGS




10
The challenges that distributed enterprises face today
                      DATA SECURITY




11
The CIO’s dilemma: Business performance or more
                    control?


           Increasing distribution of organizations
             88% of employees work outside of
              headquarters
             IT must deliver to users guaranteed
              performance
             Branches are expensive and difficult to
              manage

           Increasing control of data
             Data Protection – WAN backup and DR
             Security – SSL encryption
             Consolidation – eases cost and
              management



                               12
WDS Optimisation Trends
                     WDS Optimisation
   Distributed computing problems are
                converging
                               • Networking problems
                                      Need “more bandwidth”
                                      Latency is a secret throughput killer
                                Tape  Important applications not prioritised
                                                                                           Storage
                                                                                 Tape                    Filers
                               Backup                                           Backup




                                                   WAN
                             BRANCH OFFICE                        DATA CENTER

 File
Servers    Mail
          Servers   Filers                                                                               Mail
                                                                                  File         Web      Servers
                                                                                 Servers      Servers


  • Storage problems                                     • Application problems
             Data sprawl                                    Web, e-mail, FTP, Notes, ERP,
             Islands of storage                                database, etc…
             Backup & replication                           Slow response times
             Compliance worries                             Apps often not used…too slow

                                                     17
 The three root causes of poor wide-area application
                    performance


                     Not enough bandwidth


                  Transport protocol chattiness

                Application protocol inefficiencies



If you don’t solve all three, users won’t see performance benefits.


 18
WDS needs to address all key performance
                issues


     Root         Technology
    Cause          Solution

  Bandwidth           Data       • Reduce bandwidth needs
  Limitations     Streamlining   • Prioritises applications’ bandwidth use
   Transport       Transport     • Reduce TCP chattiness and latency
 Chattiness and   Streamlining
    Latency                      • Accelerates SSL encrypted traffic
  Application      Application   • Reduce application chattiness and latency
 Chattiness and   Streamlining
    Latency

                  Management     • Enables transparent deployment and
                  Streamlining     central management of WDS appliances


                                   19
Latency and Chattiness: Root Causes of Poor Performance
                  More Than a Bandwidth Problem


                               Latency
                  Time required to traverse the network


                                WAN
    DATA CENTER                                           BRANCH OFFICE



                             Chattiness
    Interactions required to complete an operation or data transfer



                                WAN
    DATA CENTER                                           BRANCH OFFICE


                                   20
Wide-area Data Services (WDS) is an
       integrated approach


                                     Networking
 Applications
                                     Overcome bandwidth
LAN-like WAN                         and latency constraints
 performance




                      Storage
                      Consolidate and simplify



                 21
          The WDS underlying framework

                                             Initiate new TCP
                           Maintain TCP           sessions             Maintain TCP
                             sessions                                    sessions




                                                  WAN
   DATA CENTER                                                                        BRANCH OFFICE




1. Accelerate the applications that are         2. Make it simple to deploy and manage
  most important to your business                    • Transparent deployment
   • Accelerate all TCP-based applications           • Auto-discovery, auto-interception
   • Prioritize all applications                     • No changes to clients, servers, or applications
   • Orders of magnitude improvements                • No tunnels
                                                     • Robust central management

                                                  22
 Data Streamlining provides multiple
      bandwidth optimisations

                 • Eliminate redundant data on the WAN
Data Reduction
                 • 60 – 95% reduction in bandwidth utilisation


                 • LZ-Compression for “new” data segments
 Compression
                 • Useful for data transferred on first pass



                 • (Optional) Prioritize data on bandwidth and latency
     QoS
                 • Compatible with existing QoS implementations




                              23
Application streamlining overcomes application
              protocol limitations


                       Typical application inefficiency

               Open

                 FID
                                       WAN
              Read 1
              Read 2




DATA CENTER                                               BRANCH OFFICE




                                      24
            Application streamlining overcomes
              application protocol limitations

                                      Request


                                Optimized WAN Transfer




                                          WAN
     DATA                                                             BRANCH
       CENTER                                                           OFFICE




                   Appliance completes        Appliance completes
                    transaction locally        transaction locally


                  The net effect is 65-98% reduction in WAN round trips


25
Application streamlining overcomes application
                  limitations

        CIFS           • Windows File Sharing & Windows-based applications

        NFS            • Unix File Sharing & Unix-based applications


       MAPI            • Microsoft Exchange

       HTTP            • Web-based applications

       HTTPS           • Secure Web applications

      MS-SQL           • Database driven applications


BACKUP & REPLICATION   • Simplified replication of remote servers


 PROXY FILE SERVICE    • Disconnected operations & integrated file sharing
                                    26
         Transport streamlining overcomes TCP
                       limitations
                       The net effect is a 60-98% reduction in round trips




                                              WAN
     DATA                                                                    BRANCH
       CENTER                                                                  OFFICE




                                     Make TCP payload bigger


                           16KB                   to                100KB+
                                   Repack payload with references
                                                                             References
                Data
                                                                             New data
                                     From 100KB+ to Virtual 1MB+



27
Transport streamlining provides many more
             TCP optimisations
                            • Supports end-to-end acceleration of secure traffic
    SSL Acceleration
                            • Maintains the preferred trust model


Advanced TCP Acceleration   • “Fill the pipe” for OC12 and larger connections
                            • Works with clean or lossy links (HS-TCP and MX-TCP)


                            • Eliminate 50% of overhead for small, short-lived
  Connection pooling          connections


  Adaptive congestion       • Adapt transfer parameters based on network
       windows                characteristics


    Limited and fast        • Ensure priority handling for packet resends
      retransmits


                                         28
MX-TCP: Making WAN-based backup, replication, and
              transfers even faster

                                             MX-TCP                      High-Speed TCP                 Regular TCP
   Bandwidth / Throughput




                                                                        Time

                                             HS-TCP                                         MX-TCP
                            • High-Speed TCP avoids slow start, but will • Uses 100% of its allocated bandwidth with
                              still back off in congestion                no slowdown due to loss
                            • Applies to all optimized traffic            • Granular control: Enabled per QoS class
                            • HS-TCP available on some WDS                • Uses QoS per class bandwidth limits to set
                              appliances                                  sending rate




 Works well for lossy environments and satellite WANs too
WDS approach accelerates all TCP applications
            – what to look for




                     30
WDS appliances should be designed for easy
          network integration

                          • Wide range of models for data centers down to small offices
       Scalability        • Up to 1,000,000 concurrent connections
                          • Up to 4Gbps optimized bandwidth


                          • Numerous 10/100/1000 in-path interfaces
 Deployment Flexibility   • TCP connection forwarding
                          • Diverse in-path and out-of-path deployment options


                          • Serial clustering
    Software-based
                          • Parallel clustering
      Redundancy
                          • Hot backups

                          • Fail-to-wire Ethernet cards
   Hardware-based         • Multiple power supplies
    Redundancy            • RAID
     Secure application acceleration that maintains the
                   preferred trust model


                                                                                BRANCH
                                                                                  OFFICE


                                              WAN

 DATA
   CENTER




1. SSL Certificates and private keys copied to server-side appliance
   (no certificate faking in branch offices)
                                                                       Legend

                                                                            SSL Certificate
                                                                            Temporary
                                                                            Session Key
                                                                            Secured connection




32
      Secure application acceleration that maintains the
                    preferred trust model


                                                                                   BRANCH
                                                                                     OFFICE


                                                WAN

 DATA
   CENTER                                   Secured connection



1. SSL Certificates and private keys copied to server-side appliance
   (no certificate faking in branch offices)
                                                                          Legend
2. Appliances use their own identity certificates to establish a secure
   connection (proactive or on-demand)
                                                                               SSL Certificate
                                                                               Temporary
                                                                               Session Key
                                                                               Secured connection




 33
      Secure application acceleration that maintains the
                    preferred trust model

                              Request

                                                                                 BRANCH
                                                                                   OFFICE


                                                WAN

 DATA
   CENTER                                   Secured connection



1. SSL Certificates and private keys copied to server-side appliance
   (no certificate faking in branch offices)
                                                                        Legend
2. Appliances use their own identity certificates to establish a secure
   connection (proactive or on-demand)
                                                                              SSL Certificate
3. On secure data request, client handshake with server is intercepted
   by server-side Appliance. Server-side Appliance SSL connection             Temporary
   with origin server.                                                        Session Key
                                                                               Secured connection




 34
      Secure application acceleration that maintains the
                    preferred trust model


                                                                                 BRANCH
                                                                                   OFFICE


                                                WAN

 DATA
   CENTER                                   Secured connection

                                                SSL session setup

1. SSL Certificates and private keys copied to server-side appliance
   (no certificate faking in branch offices)
                                                                        Legend
2. Appliances use their own identity certificates to establish a secure
   connection (proactive or on-demand)
                                                                              SSL Certificate
3. On secure data request, client handshake with server is intercepted
   by server-side Appliance. Server-side Appliance SSL connection             Temporary
   with origin server.                                                        Session Key
4. Server-side Appliance establishes SSL connection with client.
                                                                               Secured connection




 35
      Secure application acceleration that maintains the
                    preferred trust model


                                                                                           BRANCH
                                                                                             OFFICE


                                                   WAN

 DATA
   CENTER                                      Secured connection
                           Temporary Session                           Temporary Session
                           Key                     SSL session setup   Key


1. SSL Certificates and private keys copied to server-side appliance
   (no certificate faking in branch offices)
                                                                        Legend
2. Appliances use their own identity certificates to establish a secure
   connection (proactive or on-demand)
                                                                              SSL Certificate
3. On secure data request, client handshake with server is intercepted
   by server-side Appliance. Server-side Appliance SSL connection             Temporary
   with origin server.                                                        Session Key
4. Server-side Appliance establishes SSL connection with client.
                                                                              Secured connection
5. Temporary session key is migrated from server-side Appliance to
   client-side Appliance, moving client’s SSL connection to client-side
   Appliance.

 36
      Secure application acceleration that maintains the
                    preferred trust model

                                                                Optimized WAN transfer over SSL


                                                                                     BRANCH
                                                                                       OFFICE


                                               WAN

 DATA
   CENTER                                  Secured connection
                                                                 Temporary Session
                                                                 Key


1. SSL Certificates and private keys copied to server-side appliance
   (no certificate faking in branch offices)
                                                                        Legend
2. Appliances use their own identity certificates to establish a secure
   connection (proactive or on-demand)
                                                                              SSL Certificate
3. On secure data request, client handshake with server is intercepted
   by server-side Appliance. Server-side Appliance SSL connection             Temporary
   with origin server.                                                        Session Key
4. Server-side Appliance establishes SSL connection with client.
                                                                              Secured connection
5. Temporary session key is migrated from server-side Appliance to
   client-side Appliance, moving client’s SSL connection to client-side
   Appliance.
6. Transfers are accelerated via all OS streamlining mechanisms
 37
                       Enhanced Auto-Discovery


      Simplifies deployments for complex environments
           Automatically finds and optimizes between most distant Appliance
            pair
           Eliminates the need for manual peering rules
           Requires no additional configuration
           Supports unlimited Appliances in transit between Client Appliance
            and Server Appliance
      Improves performance
           finds optimal Appliance pairing for maximum optimization



 DATA                                                                  BRANCH
   CENTER                                                                OFFICE




38
  WDS vs. application front end (AFE)
                devices
                                                                   Web only
                                                                   Single sided (no advanced data reduction)
              Web Server
                                                                   Allows internet & branch connections

                                                                                                  Web               BRANCH OFFICE
                                                          WAN
DATA CENTER



                                        Application Front End (AFE)
                                                                                                                       HTTPS


                                                                                                                      INTERNET USER




                                                                                                Backup
               File, Email, Filer, Web, SMS, etc…
                                                                                                     Web
                                                                                                  Files
                                                          WAN                                             Email

                                                                                                   DB
                                                                                                                    BRANCH OFFICE
DATA CENTER                                                Accelerate all applications                    Custom
                                                                                                           Apps
                                                    WDS          Data reduction
                                                                 TCP optimization
                                                                 Application layer optimization
                                                           60 – 95% bandwidth savings
                                                           QoS

                                                               39
      Making the business case for WDS in your
                     company
                                                                              Payback Period
                              “66% reduction in Exchange servers & the
Infrastructure Cost Savings                                                      4 Months
                                associated cost.”
                                        – Greenhill Investments

                              “All our architects – around the world – work
 Accelerated Business                                                            1 Month
                                 as if they were in the same office.”
      Processes                           – Gensler Architecture

                              “$500,000 in MONTHLY bandwidth savings.
                                A payback period of 5 months, even               5 Months
     Bandwidth Savings
                                before we factor in productivity gains.”
                                        – LG Electronics
                              “Our WAN backup windows went from 4 hours
                                                                                 6 Months
     More Secure Data           to 5 minutes. Protecting a day’s data is worth
                                $200,000 to us.”
                                        – Little Diversified Consulting


40
    Gartner Magic Quadrant – WAN Optimisation Controllers

                                      Challengers                        Leaders


                                                                                       Riverbed



                                                                    Juniper Networks
             Ability to execute



                                                        Packeteer
                                                                                  Expand Networks

                                           Cisco Systems

                                                                        F5 Networks
                                  Streamcore Systems
                                                                                    Blue Coat systems
                                           Ipanema Technologies
                                                                                Citrix
                                                Converged Access

                                                                Silver Peak Systems
                                                              Intelligent Compression Technologies
                                              Certeon      Stampede Technologies
                                        Exinda Networks


                                      Niche Players                      Visionaries
                                                         Completeness of vision
Source: Gartner September 2006
     In summary, WDS Appliances will accelerate your
                      business

                    Accelerates all key applications by up to 100x
                    over the WAN


          WAN       Reduces bandwidth utilization by 60% to 95%



                    Enables successful IT consolidation



                    Tens of thousands of appliances in production



42
Questions?

				
DOCUMENT INFO
Shared By:
Categories:
Tags:
Stats:
views:5
posted:2/26/2012
language:
pages:43