Documents
Resources
Learning Center
Upload
Plans & pricing Sign in
Sign Out

Solutions for Citrix in Ent

VIEWS: 22 PAGES: 24

  • pg 1
									             Solutions for Citrix in
            the Enterprise Network

              Allot Communications
                Empowering Networks for Business



1

    www.allot.com
                                                  Market Trends
    Increased reliance on Internet and IP (private, public,
    VPN) for business critical traffic
    Diversity of applications with different networking
    requirements and business criticality
       Citrix
       Oracle
       VoIP, Video conferencing
       Entertainment traffic – music (P2P), shopping, stocks, multi-media
       Email, VPN and large file transfers
    Increased malicious traffic attacks on networks & servers
    Budget shrinks
       Improve rather than build
2      Save on bandwidth costs
                       QoS in the Enterprise – The
                                             Need
    Guarantee performance of business critical
    applications – Video, VoIP, ERP (SAP),
    Citrix Applications, Oracle – and protect from
    DoS attacks
    Limit bandwidth-hungry, non-business
    applications
      P2P, music
      Web surfing
    Monitor
    performance
3
    Record IP sessions stats
                                                 Citrix Solution –
                                                The Need for QoS
    Citrix based network needs QoS because:
      IP network works on “best effort” basis – first comes first
      served – no guarantees
      Without QoS, bandwidth-hungry applications (like FTP or Peer-
      to-Peer) steals the Citrix resources (bandwidth)
      Without minimum bandwidth, Citrix users suffer from
      unpredictable response time
      Without QoS Citrix applications suffer from “un-assured”
      performance
         There is no differentiation between applications and users




4
                                   Policy Based Networking - a
                                             Complete Solution
                           Policy and SLA Management
                             Define policies
                             Translate policies to network
                             actions
                             User directory/CCB management




                                         Enforcement
    Monitoring and Accounting              Shaping and conditioning
     Policy monitoring                     QoS tagging (gateway)
     User accounting and billing           Server balancing
     Event management                      Cache enforcement
     Capacity planning                     Content filtering
     Service management                    Preventing DoS attacks
5
                                  Product - The NetEnforcer
    Bandwidth management (e.g.,
    manage WAN link to remote
    offices)
    Traffic management/shaping
    Performance guarantee (e.g.,
    for Citrix)
    Traffic monitoring – real-time,
    long-term
    Auto discover and auto create
    policy (e.g., prioritize Citrix)
    High availability models (with
    dual power supplies)
    Redundancy and bypass
    High performance
       Up to 155 Mbps (Gigabit I/F)
       256,000 connections
6
       28,000 policies
                                            NetEnforcer
                                 Enterprise Product Line
    Model       Bandwidth Pipes     VCs     Connections
    AC101/128   128 Kbps   64       1,024   1,000
    AC101/512   512 Kbps   128      1,024   1,000
    AC201/2M    2 Mbps     256      2,048   12,000
    AC201/10M   10 Mbps    256      2,048   12,000
    AC301       100 Mbps   1024     4,096   64,000




7
                                           NetEnforcer
                          Service Provider Product Line
    Model       Bandwidth Pipes      VCs     Connections
    AC201/10M   10 Mbps      256     2,048   12,000
    AC301       100 Mbps     1024    4,096   64,000
    AC401       100 Mbps     2,048   12,000 128,000
    AC601       100 Mbps     4,096   28,000 256,000
    AC701       155 Mbps     4,096   28,000 256,000




8
    Music download                                          The Allot Effect
    (Peer to Peer) takes      Not enough bandwidth
    more than 100Mbps         for Browsing and Citrix
       180
       160
       140
       120
                                   The Allot effect:                   Browsing
       100                         Add NetEnforcer to
        80                         the network                         Citrix
                                                                       Music (P2P)
        60
        40
        20
          0
         10:00   10:10     10:20    10:30   10:40   10:50    11:00
9
                         Browsing and Citrix get full capacity while
                         Music is limited to 10Mbps
                                    Using the NetEnforcer to
                                          Control Bandwidth
     Example: Set Max Bandwidth to 85Kbps




     Without QoS:                          With QoS enforcement:
     • BW abuse on short period of time    • BW usage control
     • Bursty pattern                      • Predictable pattern
     • Retransmission ?                    • Efficient transfer
10
     • One Customer takes all bandwidth!   • Fair Access
                              Application Prioritization
                                               Example
                            Low-priority P2P traffic
                            monopolizes connection
     Network with Email,
     HTTP/P2P and Citrix
     IP offers only “best
     effort” service           Switch                   Router
                                        NetEnforcer
     Apply QoS and
     guarantee                              Citrix application
     performance to                         bandwidth is now wider
     Citrix applications     Email       Medium priority

                            HTTP/P2P     Low priority

                             Citrix      Business-Critical
11
                                       Classifying Citrix with the
                                                      NetEnforcer
            Classify Citrix traffic by Application Name and User Name




12
     Select Citrix from a library of protocols/ applications
                                Policy Example – Citrix
                               Performance Assurance
     Citrix performance is assured with “Business Critical”
          QoS level (very high priority and BW guarantee




13   Other applications are getting different priorities and
         bandwidth allocations while Usenet is blocked
                              Monitoring Applications
                                         in Real Time
     View min/max bandwidth
     View WAN bandwidth
     View Protocol BW Usage
     Top Users
     Top servers
     Utilization
       WAN Link
       NetEnforcer




14
                       Diagnose Network
                            Performance




     Nearly 28% of all traffic is
     from the Web.
     Who are the top users?
15
                 Get Historical Traffic Analysis
     From Policy usage
     distribution                       To Advanced
                                        Graphical options




      … and
      localization                … and longer and
                                  filtered history (e.g.
                                  working hours only)




16
                                    NetAccountant –
                        Optional Accounting Package
     Collect information about
     usage – including client,
     server, application
     inbound and outbound
     traffic counters
     Includes a report
     generator – ideal
     tool for network
     capacity planning
     and internal
     budgeting
     Allows access by
     external application
     using ODBC
17
 Policy Table (v4.1)
 Pipe 1 – 192.11.12.x to Any Max (128kbps)
                                                        Managing Bandwidth in
            SAP – Min 64 kbps                           Enterprise Environment
            FTP – Max 56 kbps
 Pipe 2 – 192.11.13.x to Any Max (256 kbps)
            SAP – Min 128 kbps
 (Set Eternal Bandwidth to 384kbps)

                                                                            Branch 1
                                                                           192.11.12.x
        Web


       Email,
     FTP Servers
                       Switch        NetEnforcer        Router
        SAP
                                                              128
                                              Set QoS to Max. 256 Kbps ?       Branch 2
                                              No: Wastes capacity of
                                              No: Exceeds capacity of
                       Corporate Headquarters               2
                                                     Branch 1
                                                                           192.11.13.x




18                              Manage Multiple Links
                          Allot’s Citrix-QoS Solution –
                             Benefits to the customer
     High ROI (return on investment)
       Citrix can be used on the Internet (public network)
       Citrix and other IP traffic share same WAN
       Citrix bandwidth requirement is pre-defined and
       therefore less bandwidth overall is required
       Citrix performance is guaranteed and enhanced
       Citrix applications get “the right attention” in the
       network
     Better management of traffic
       Allow capacity planning and troubleshooting
     Protect against DoS (denial of service) attacks
19
                                Allot’s Citrix-QoS Solution –
                                  NetEnforcer’s Advantages
     NetEnforcer Per Flow Queuing permits assignment of QoS
     per Citrix application or per user
     NetEnforcer enables prioritizing Citrix over other traffic
     (such as Email and file transfer)
        Batch traffic (like FTP) can still run but won’t “freeze” Citrix
     Mark Applications with Differentiated Service (DiffServ)
     Levels for end-to-end QoS
     Limit and control Print jobs and file transfers so they don’t
     affect other Citrix users
     NetEnforcer/NetAccountant allows for detailed monitoring
     and application and IP accounting
     NetEnforcer enables protection for DoS attacks and other
20   malicious traffic flows
                                           Enhancing Security:
                                  Preventing a DoS Attack with
                                               the NetEnforcer
     1.   Attacker sends
          Broadcast ICMP
          with Victim’s
          spoofed address
     2.   Unwitting
          accomplices send
                                                                NetEnforcer


          ICMP Echo Reply
          (with              Attacker
                                      1                 2   3
          Victim’s address)                                                   Victim’s
                                                                              Internal
     3.   NetEnforcer detects              Unwitting                          Network
          high number of new              Accomplices

          ICMP connections
          and blocks them.
21
                         Selected Enterprise Customers


     Banking / Finance                  Corporations




              Education                     Government
                                                (Italy)




                                                      Aeroporto de Portugal
                                 Norway National RR

22
                                                       Why Allot ?
     Ease of use – easiest way to have your QoS up and
     running – simple, intuitive and graphically pleasing
     Application recognition – including Citrix
     Application performance enhancement
     Real-time and historical traffic monitoring and all-
     session IP accounting
     Complete policy-based IP traffic management including
     traffic redirection to cache and server load balancing
     High performance and high availability
       155 mbps, supports highest number of policies in the industry
       Ideal for enterprise and data centers
23
       Fail safe operation
                                                                 Contact Details
                                Europe, Middle East and Africa
                                                                          Japan
                                      World Trade Center
                                    1300, Route Des Cretes          Nishi Ginza Bldg 2F

                                 BP 255 Sophia Antipolis Cedex      5-5-9 Ginza Chuo-ku,
           Americas                                                Tokyo 104-0061, Japan
                                         France 06905
250 Prairie Center Drive #355                                       Tel: 81 3 5537-7114
                                    Tel 33-(0)4-92-38-80-27
     Eden Prairie, MN 55344                                         Fax: 81 3 5537-5281
                                    Fax 33-(0)4-92-38-80-33
       Tel (952) 944-3100
      Fax (952) 944-3355
                                                                     Asia Pacific
                                                                    9 Raffles Place,
                                                                 Republic Plaza #27-01
                                       International HQ
 www.allot.com                                                     Singapore 048619
                                      Hod-Hasharon, 45800
                                                                   Tel: 65-832-5663
 sales@allot.com                              Israel
                                                                   Fax: 65-832-5662
                                      Tel 972-(0)9-761-9200
                                      Fax 972-(0)9-744-3626
24

								
To top