Get documents about "Solutions for Citrix in Ent
Shared by: xiuliliaofz
-
Stats
- views:
- 21
- posted:
- 3/19/2011
- language:
- English
- pages:
- 24
Document Sample
Solutions for Citrix in
the Enterprise Network
Allot Communications
Empowering Networks for Business
1
www.allot.com
Market Trends
Increased reliance on Internet and IP (private, public,
VPN) for business critical traffic
Diversity of applications with different networking
requirements and business criticality
Citrix
Oracle
VoIP, Video conferencing
Entertainment traffic – music (P2P), shopping, stocks, multi-media
Email, VPN and large file transfers
Increased malicious traffic attacks on networks & servers
Budget shrinks
Improve rather than build
2 Save on bandwidth costs
QoS in the Enterprise – The
Need
Guarantee performance of business critical
applications – Video, VoIP, ERP (SAP),
Citrix Applications, Oracle – and protect from
DoS attacks
Limit bandwidth-hungry, non-business
applications
P2P, music
Web surfing
Monitor
performance
3
Record IP sessions stats
Citrix Solution –
The Need for QoS
Citrix based network needs QoS because:
IP network works on “best effort” basis – first comes first
served – no guarantees
Without QoS, bandwidth-hungry applications (like FTP or Peer-
to-Peer) steals the Citrix resources (bandwidth)
Without minimum bandwidth, Citrix users suffer from
unpredictable response time
Without QoS Citrix applications suffer from “un-assured”
performance
There is no differentiation between applications and users
4
Policy Based Networking - a
Complete Solution
Policy and SLA Management
Define policies
Translate policies to network
actions
User directory/CCB management
Enforcement
Monitoring and Accounting Shaping and conditioning
Policy monitoring QoS tagging (gateway)
User accounting and billing Server balancing
Event management Cache enforcement
Capacity planning Content filtering
Service management Preventing DoS attacks
5
Product - The NetEnforcer
Bandwidth management (e.g.,
manage WAN link to remote
offices)
Traffic management/shaping
Performance guarantee (e.g.,
for Citrix)
Traffic monitoring – real-time,
long-term
Auto discover and auto create
policy (e.g., prioritize Citrix)
High availability models (with
dual power supplies)
Redundancy and bypass
High performance
Up to 155 Mbps (Gigabit I/F)
256,000 connections
6
28,000 policies
NetEnforcer
Enterprise Product Line
Model Bandwidth Pipes VCs Connections
AC101/128 128 Kbps 64 1,024 1,000
AC101/512 512 Kbps 128 1,024 1,000
AC201/2M 2 Mbps 256 2,048 12,000
AC201/10M 10 Mbps 256 2,048 12,000
AC301 100 Mbps 1024 4,096 64,000
7
NetEnforcer
Service Provider Product Line
Model Bandwidth Pipes VCs Connections
AC201/10M 10 Mbps 256 2,048 12,000
AC301 100 Mbps 1024 4,096 64,000
AC401 100 Mbps 2,048 12,000 128,000
AC601 100 Mbps 4,096 28,000 256,000
AC701 155 Mbps 4,096 28,000 256,000
8
Music download The Allot Effect
(Peer to Peer) takes Not enough bandwidth
more than 100Mbps for Browsing and Citrix
180
160
140
120
The Allot effect: Browsing
100 Add NetEnforcer to
80 the network Citrix
Music (P2P)
60
40
20
0
10:00 10:10 10:20 10:30 10:40 10:50 11:00
9
Browsing and Citrix get full capacity while
Music is limited to 10Mbps
Using the NetEnforcer to
Control Bandwidth
Example: Set Max Bandwidth to 85Kbps
Without QoS: With QoS enforcement:
• BW abuse on short period of time • BW usage control
• Bursty pattern • Predictable pattern
• Retransmission ? • Efficient transfer
10
• One Customer takes all bandwidth! • Fair Access
Application Prioritization
Example
Low-priority P2P traffic
monopolizes connection
Network with Email,
HTTP/P2P and Citrix
IP offers only “best
effort” service Switch Router
NetEnforcer
Apply QoS and
guarantee Citrix application
performance to bandwidth is now wider
Citrix applications Email Medium priority
HTTP/P2P Low priority
Citrix Business-Critical
11
Classifying Citrix with the
NetEnforcer
Classify Citrix traffic by Application Name and User Name
12
Select Citrix from a library of protocols/ applications
Policy Example – Citrix
Performance Assurance
Citrix performance is assured with “Business Critical”
QoS level (very high priority and BW guarantee
13 Other applications are getting different priorities and
bandwidth allocations while Usenet is blocked
Monitoring Applications
in Real Time
View min/max bandwidth
View WAN bandwidth
View Protocol BW Usage
Top Users
Top servers
Utilization
WAN Link
NetEnforcer
14
Diagnose Network
Performance
Nearly 28% of all traffic is
from the Web.
Who are the top users?
15
Get Historical Traffic Analysis
From Policy usage
distribution To Advanced
Graphical options
… and
localization … and longer and
filtered history (e.g.
working hours only)
16
NetAccountant –
Optional Accounting Package
Collect information about
usage – including client,
server, application
inbound and outbound
traffic counters
Includes a report
generator – ideal
tool for network
capacity planning
and internal
budgeting
Allows access by
external application
using ODBC
17
Policy Table (v4.1)
Pipe 1 – 192.11.12.x to Any Max (128kbps)
Managing Bandwidth in
SAP – Min 64 kbps Enterprise Environment
FTP – Max 56 kbps
Pipe 2 – 192.11.13.x to Any Max (256 kbps)
SAP – Min 128 kbps
(Set Eternal Bandwidth to 384kbps)
Branch 1
192.11.12.x
Web
Email,
FTP Servers
Switch NetEnforcer Router
SAP
128
Set QoS to Max. 256 Kbps ? Branch 2
No: Wastes capacity of
No: Exceeds capacity of
Corporate Headquarters 2
Branch 1
192.11.13.x
18 Manage Multiple Links
Allot’s Citrix-QoS Solution –
Benefits to the customer
High ROI (return on investment)
Citrix can be used on the Internet (public network)
Citrix and other IP traffic share same WAN
Citrix bandwidth requirement is pre-defined and
therefore less bandwidth overall is required
Citrix performance is guaranteed and enhanced
Citrix applications get “the right attention” in the
network
Better management of traffic
Allow capacity planning and troubleshooting
Protect against DoS (denial of service) attacks
19
Allot’s Citrix-QoS Solution –
NetEnforcer’s Advantages
NetEnforcer Per Flow Queuing permits assignment of QoS
per Citrix application or per user
NetEnforcer enables prioritizing Citrix over other traffic
(such as Email and file transfer)
Batch traffic (like FTP) can still run but won’t “freeze” Citrix
Mark Applications with Differentiated Service (DiffServ)
Levels for end-to-end QoS
Limit and control Print jobs and file transfers so they don’t
affect other Citrix users
NetEnforcer/NetAccountant allows for detailed monitoring
and application and IP accounting
NetEnforcer enables protection for DoS attacks and other
20 malicious traffic flows
Enhancing Security:
Preventing a DoS Attack with
the NetEnforcer
1. Attacker sends
Broadcast ICMP
with Victim’s
spoofed address
2. Unwitting
accomplices send
NetEnforcer
ICMP Echo Reply
(with Attacker
1 2 3
Victim’s address) Victim’s
Internal
3. NetEnforcer detects Unwitting Network
high number of new Accomplices
ICMP connections
and blocks them.
21
Selected Enterprise Customers
Banking / Finance Corporations
Education Government
(Italy)
Aeroporto de Portugal
Norway National RR
22
Why Allot ?
Ease of use – easiest way to have your QoS up and
running – simple, intuitive and graphically pleasing
Application recognition – including Citrix
Application performance enhancement
Real-time and historical traffic monitoring and all-
session IP accounting
Complete policy-based IP traffic management including
traffic redirection to cache and server load balancing
High performance and high availability
155 mbps, supports highest number of policies in the industry
Ideal for enterprise and data centers
23
Fail safe operation
Contact Details
Europe, Middle East and Africa
Japan
World Trade Center
1300, Route Des Cretes Nishi Ginza Bldg 2F
BP 255 Sophia Antipolis Cedex 5-5-9 Ginza Chuo-ku,
Americas Tokyo 104-0061, Japan
France 06905
250 Prairie Center Drive #355 Tel: 81 3 5537-7114
Tel 33-(0)4-92-38-80-27
Eden Prairie, MN 55344 Fax: 81 3 5537-5281
Fax 33-(0)4-92-38-80-33
Tel (952) 944-3100
Fax (952) 944-3355
Asia Pacific
9 Raffles Place,
Republic Plaza #27-01
International HQ
www.allot.com Singapore 048619
Hod-Hasharon, 45800
Tel: 65-832-5663
sales@allot.com Israel
Fax: 65-832-5662
Tel 972-(0)9-761-9200
Fax 972-(0)9-744-3626
24
