Cisco Wide Area Application Services (WAAS) Technical Overview Michael Waas
[email protected]
Agenda Enterprise Application Delivery Challenges Introducing Cisco Wide Area Application Services Cisco WAAS Product Architecture Application Specific Acceleration WAAS Express Virtual WAAS Data Replication Acceleration Network-embedded virtualization Remote Access Optimization with WAAS Mobile Management and WAE Platforms WAAS Installation steps Summary Q&A Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
2
Focus of WAN Optimization Today Branch User
Cisco WAAS
Cisco WAAS
Data Center
WAN
Mobile User
Centralization Centralize IT while maintaining SLAs Virtualized branch services Emerging cloud computing
• Consolidation
Faster Applications
• Application Acceleration User Productivity • Productivity
Remote/mobile users Improved DR
WAN Optimization Bandwidth optimization Latency mitigation Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
3
Application Delivery Challenges Applications perform well in LAN
Round Trip Time ~ 0ms
High bandwidth Low latency Reliability
Client
LAN Switch
Server
Round Trip Time ~ Many Many mili-Seconds
Applications perform poorly in WAN Already congested Low bandwidth Latency Packet Loss
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Client
LAN Switch
Cisco Confidential
WAN
LAN switch
Server
4
Agenda Enterprise Application Delivery Challenges Introducing Cisco Wide Area Application Services Cisco WAAS Product Architecture Application Specific Acceleration WAAS Express Virtual WAAS Data Replication Acceleration Network-embedded virtualization Remote Access Optimization with WAAS Mobile Management and WAE Platforms WAAS Installation steps Summary Q&A Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
5
WAAS Solution Benefits Minimize Branch IT Costs
Enhance User Productivity
vWAAS
Mobile
Nexus 1000v VMware ESXi Server
Branch IT consolidation WAN bandwidth optimization
Application acceleration
Module
IOS
Confident Migration to Cloud
Increase Agility and Flexibility Appliance
Public and Private Cloud Acceleration Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Best mix of centralized and distributed IT Cisco Confidential
6
Cisco WAAS: WAN optimization solution Virtual Private Cloud
Server VMs
vWAAS WAE
Nexus 1000v
WAAS Express
Branch Office
VMware ESXi Server
Nexus 1000v VSM
UCS /x86 Server FC SAN
WAAS Service Module
Branch Office
vPATH
Data Center or Private Cloud
WAN
WAAS Appliances
WAAS Appliance
Branch Office
Internet Server VMs VMware ESXi
VPN
WAAS Appliance
Regional Office Presentation_ID
Domestic Mobile User
WAAS Mobile Server
International Mobile User
VPN © 2010 Cisco and/or its affiliates. All rights reserved.
vWAAS Appliances
Cisco Confidential
WAAS Mobile Software Over VPN 7
Cisco WAAS Solution Elements Flexible Deployment Options Cisco WAAS
Cisco WAAS
WAN Branch User
WAAS Mobile Client
Internet WAAS Data Mobile Server Center
Mobile Users
Software Solutions WAAS for Cisco ISR G2 Services-Ready Engine • WAAS On-demand for IT agility vWAAS: Virtualized WAAS
WAAS Express: IOS Integrated software based WAN Optimization WAAS Mobile Software • Optimization for mobile and micro-office users
Full appliance portfolio Virtual blade support for branches
Virtual WAAS
WAAS Express
Services-Ready Engine
Branch Appliance supporting Virtual Blades
ISR G2 Platforms
Data Center Appliance
Scalable data center platforms
Dedicated router modules Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Dedicated Router Module
ISR Platforms
8
Application Performance Improvements Category File Sharing Email
Applications CIFS NFS Microsoft Exchange Lotus Notes Internet Mail
Web and Collaboration
HTTP WebDAV FTP Microsoft Sharepoint
Software Distribution
Microsoft SMS Altiris HP Radia
Enterprise Applications
Oracle, Siebel, SAP CRM ERP
Backup Applications
Microsoft NTBackup Legato Networker Veritas Netbackup CommVault Galaxy
Data Replication
EMC SRDF/A EMC IP Replicator NetApp SnapMirror Data Domain Double-Take Veritas Vol Replicator
SaaS Applications
Cisco WEBEX
Presentation_ID
2X
5X
10X
25X
2-20X Avg 2-10X Avg
50X Peak
100X Peak
2-20X Avg
>100X Peak
20X Peak
2-10X Avg
50X Peak
2-10X Avg
50X Peak
2-8X Avg
© 2010 Cisco and/or its affiliates. All rights reserved.
100X+ >100X Peak
2-10X Avg
2-8X Avg
50X
20X Peak
Cisco Confidential
9
Seamless and Transparent Integration Compliance with critical network services
Industry’s only holistic and secure optimization, visibility, and control solution Quality of Service (QoS)
Cisco Wide Area Application Services
Network Management
Application Optimizers
Security
Transport Optimization
Advanced Compression
Optimized Routing WAN
Quality of Service (QoS) Classification, NBAR, marking Policing, shaping, queuing, WRED SrcIP 1.1.1.1 DstIP 2.2.2.2
LFI, header compression
Network Management
SrcPort 1434 DstPort 80
Optimized Data
NAM, PVM, NetFlow NetQoS, IP SLA
Optimized Routing
SrcIP 1.1.1.1 DstIP 2.2.2.2
SrcPort 1434 DstPort 80
Application Data
Network Path Affinity (NPA) Optimized Edge Routing, PBR Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
10
Agenda Enterprise Application Delivery Challenges Introducing Cisco Wide Area Application Services Cisco WAAS Product Architecture Application Specific Acceleration WAAS Express Virtual WAAS Data Replication Acceleration Network-embedded virtualization Remote Access Optimization with WAAS Mobile Management and WAE Platforms WAAS Installation steps Summary Q&A Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
11
Cisco WAAS Architecture Platform Management and Services
CIFS AO
MAPI AO
HTTP AO
SSL AO
Video AO
NFS AO
WoW
Virtual Virtual Blade Blade #2 #3
Configuration Management System (CMS)
Embedded virtualization
TCP Proxy with Scheduler Optimizer (SO) DRE, LZ, TFO
Cisco WAAS Operating System Policy Engine, Filter-Bypass, Egress Method, Directed Mode, Auto-Discovery Disk Storage (Cache, VB storage etc.)
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Ethernet Network I/O
12
Cisco WAAS Auto-Discovery Solutions • Devices automatically discover one another • Devices automatically negotiate optimization capabilities Benefits
• Eliminates need for complex overlay networks with tunnels • And as the result reduces additional efforts associated with management, security and monitoring WCCPv2 or PBR
A
A:B TCP SYN
B:A TCP SYN/ACK
WAN
WCCPv2 or PBR
A:B TCP SYN (marked) B:A TCP SYN/ACK
A:B TCP B:ASYN TCP SYN/ACK (marked) (marked) ACCELERATION CONFIRMED! Need to accelerate
WAE1 Presentation_ID
this connection! Here are my details
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
B
WAE2
I know Acknowledge WAE1 is in the Acceleration! path, let’s accelerate! Here are my details 13
Advanced Compression Solutions Benefits
Data Redundancy Elimination (DRE)
• Application-agnostic compression • Up to 100:1 compression
Persistent LZ compression
• Session-based compression • Up to an additional 10:1 compression even after DRE
WAN LZ
LZ
DRE
DRE
Synchronized Compression History
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
14
TCP Flow Optimization (TFO) Benefits Improves WAN bandwidth utilization and therefore application throughput Shields end-nodes from unruly WAN conditions TCP Proxy architecture provides LAN-like TCP behavior
TFO provides adaptive buffering resulting in higher throughput DRE PLZ
WAN
DRE PLZ
TCP
TCP
LAN-like TCP Behavior
Presentation_ID
TCP Optimized TCP Connections
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
TCP
LAN-like TCP Behavior
15
Application-Specific Acceleration Application and Protocol Awareness Minimize chatter Safe caching Scheduled File preposition
Intelligent Server Offload Caching and optimizations
WAAS Application Accelerators CIFS, NFS, MAPI, Video, HTTP, SSL, Windows printing
Licensed developed and validated with application vendors Remote Office
WAN
• Object Cache Verification • Security and Control • WAN Optimization • LAN-like Performance • WAN Bandwidth Savings Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Data Center
• Server Safely Offloaded • Fewer Servers Needed • Power/Cooling Savings
16
Simplified Data Center Interception Serial Inline Cluster Client Inline WAE (Up to 2)
Solution Dual Inline Cards Supports up to 4 inline groups WAE-674, WAE-7341, WAE-7371 HA supported by 2nd WAE Interception Access List Bypass non-relevant traffic
Branch WAN1
WAN2
Dual WAN Links
Inline WAE
Benefits
Serial Cluster
Simplified and highly available deployment model Small and medium data centers Simplifies PoC’s. Servers
Data Center Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
17
Network-Integrated Off-path Interception Transparent integration and automatic discovery regardless of interception method
Remote Office Client
WCCPv2 Interception Active/active clustering automatic load-balancing load redistribution fail-over and fail-through operation Near-linear scalability and performance improvement when adding devices
WAE Cluster
Original Flow
Interception Redirection Monitoring
Optimized Flow
Policy-Based Routing Interception Routing of flows to be optimized through a Cisco WAE as a next-hop router Active/passive clustering Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
WAN
18
Scalable Data Center Integration WAN Optimized Flow
Application Control Engine (ACE)
WAE Cluster
Appliance and Catalyst 6500 series module Supports from 1Gbps to 64Gbps of aggregate throughput and up to 4M concurrent TCP connections
Catalyst 6509 w/ ACE Module
Cluster management for hundreds of WAE devices
Original Flow
Data Center Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
19
Cisco WAE Disk Encryption An optional feature to mitigate concern of data theft due to stolen drives or physically compromised WAE devices Keys fetched from CM upon boot and stored in memory only Keys synchronized amongst Central Managers to ensure HA Standards-Based Strong Encryption Follows FIPS 140-2 level 2 specification with certification to follow 256-bit Advanced Encryption Standard (AES) cipher Cisco WAAS Central Manager
WAN
Remote Office
Disk
Fetch Disk Encryption Key and Store in RAM Data Center Disk Disk
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
20
Secure WAN Optimization from Cisco Cisco Integrated Services Router (ISR) - Integrated Security and WAN Optimization
Ingress Security, Control, and Visibility
LAN
Security - Stateful Inspection - Firewall Policies - Signature Matching Control - Classification - Drop or Mark - Policing Visibility - NetFlow
Intercept and Optimize
Intercept -Inline -WCCP
Egress Security, Control, and Visibility
Route Selection
Routing - Static - Dynamic - Optimized
Optimize - Specific Application Acceleration - Compression - Flow Optimization
WAN
Security - Stateful Inspection - Firewall Policies - Link Encryption Control - Shaping Visibility - NetFlow
Secure - Disk Encryption - Firewall Compliance
Cisco WAAS integrates seamlessly and transparently into network security, visibility, and control functions Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
21
Agenda Enterprise Application Delivery Challenges Introducing Cisco Wide Area Application Services Cisco WAAS Product Architecture Application Specific Acceleration WAAS Express Virtual WAAS Data Replication Acceleration Network-embedded virtualization Remote Access Optimization with WAAS Mobile Management and WAE Platforms WAAS Installation steps Summary Q&A Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
22
MAPI Application Optimizer Solution
Challenge
Full application support Asynchronous Writes Read Ahead Messages Decompression DRE hints EndPoint Mapper
Uses MS-RPC - chatty protocol. Exchanges many interactive control messages MAPI traffic is negotiated using MS Port Mapper (port 135) and is using dynamic ports Data encoding is negotiated by client/server
Benefit Reduced send/receive time – key for Outlook 2000 users Cleans up the outbox faster – important for cached mode users Faster downloads of OAB, while significantly reducing BW consumption Optimizes native Outlook 2007 operations (disable encryption on server) Transparent, automatic optimization No reverse engineering (MSFT licensing) No security hole of keeping sessions open even after users have logged out
Client
SERVER
WAN
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
23
CIFS Application Optimizer: CIFS AO Challenge "chatty" protocols WAN’s high latency, packet loss, and bandwidth constraints significantly diminishes Server access
Solution File and Metadata caching Read-ahead Message pipelining Scheduled preposition to pre-populate Transparent integration Dedicated CIFS cache
• 2MB Word document open, results in over 1000 message exchanges. • 40ms RTT WAN, equates to more than 52 seconds of wait time before the document is usable
Benefit
WAN
Files FILE.DOC
CACHE
Presentation_ID
Enable consolidation of distributed file and print resources into the data center without compromising performance Offload of Data Center Servers
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
24
Windows Printing Application Optimizer Branch Office
Challenge
Local Printer
MS Print protocol uses RPC - very “chatty” As A result over WAN it degrades exponentially as latency increases
Solution
Print job sent to printer WAN
Print job sent to Windows server
Based on licensed MS Print Protocols Optimized access to print queue status and printer settings Bi-directional Acceleration Printer and Queue meta-data caching Async write DRE hints for enhanced payload compression MS-RPC message optimization RPC command fragments handled asynchronously Delayed close of printer handles (OPEN requests local)
Benefit
Windows Print Servers Presentation_ID
Data Center
Users print at near-LAN speeds No need for Network IT group to manage Branch Print No configuration on WAAS – just turn it on! Enable scalable centralized Windows Print services Fully Transparent to Windows AD Management Easy server migration from branch to datacenter
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
25
NFSv3 Application Optimizer Solution
Challenge
Read-Ahead Asynchronous write DRE hints Meta-data caching
In Unix, NFS protocol is used for large file exchange such as software builds, CAD applications and large directory access NFSv3 is a “chatty” RPC protocol Clients cannot efficiently operate on high-latency/highbandwidth WANs
Benefit Can fill high-bandwidth links regardless of latency Transparent to client and server. No configuration required. Tested for compliance with IBM AIX, Linux and Solaris clients + Leading NAS vendors!
B
A
C
D
WAN
Original Connection Presentation_ID
Optimized Connection
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Original Connection 26
HTTP Application Optimizer Solution
Challenge
Fast Connection Reuse Proxy Connect to SSL Servers Local HTTP responses through Metadata cache Content-aware optimization DRE hints Server compression offload
Slow page load on Interactive Web applications Browsers serially open and close connections to fetch small objects (e.g graphics) Latency due to HTTP request/response
Benefit Mitigates latency due to HTTP request/response Fully transparent Reuse of same pair of client and server requests Compliments and preserves http application pipelining
WAN Connect (SYN, SYN-ACK, ACK) HTTP Request HTTP Response
Connect HTTP Request HTTP Response Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
27
HTTP AO - Building Blocks WAN Conn Cache
Reuse WAN Connection
Advanced HTTP Parser
Cache HTTP Meta Data
Mitigate Latency
Local TCP Handshake Response
Presentation_ID
Send DRE Hints
Mitigate Latency
Local HTTP Freshness Response
Local HTTP Redirect Response
Mitigate Latency
Local HTTP Authneeded Response
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
DRE Flush Stream
Improve Performance
DRE Skip Bytes
DRE Skip LZ
Modify Compression Directive
Improve Perf. Offload Server
Disables Server Compression
28
The Need for SSL Acceleration WAAS optimization benefits are maximized only when applied to decrypted payload Client
Server
WAN SSL Handshake
“session key” derived Encrypted Data Exchange
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
29
Cisco WAAS SSL Optimization Solution Core WAE acts as a Trusted Intermediary Node for SSL requests by client Private Key and Server Certificate are stored on the Core WAE device Core WAE participates in SSL Handshake to derive “session key” Distributes the “session key” securely in-band to the Edge WAE over the established connection between the Edge WAE and Core WAE Edge WAE
Send “session key”
Core WAE
Transparent Secure Channel
Client
SSL Handshake
SSL Handshake
Server
WAN Original Data - Encrypted
Optimized & Encrypted
SSL Session Client to Core WAE (WAAS)
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Original Data - Encrypted
SSL Session Core WAE to Server - Core WAE: Server Private Key
30
Live Video Streaming for Windows Media Environment BRANCH OFFICE
2
DATA CENTER
Click on published URL to get live stream
Web Portal List of scheduled live streaming events
4 3
Windows Media RTSP unicast streams
Opens Windows Media Player
Microsoft Windows Media Server (WMS)
1
Uncompressed Video
WAN
Encoder
Bottleneck Redundant streams issued for the same source!
BRANCH OFFICE Presentation_ID
Overloaded streaming servers © 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
BRANCH OFFICE
31
Live Video Streaming with WAAS Edge stream splitting BRANCH OFFICE
2
DATA CENTER
Click on published URL to get live stream
3
Opens Windows Media Player
Web Portal List of scheduled live streaming events
WAAS WAAS
Microsoft Windows Media Server (WMS)
1
Uncompressed Video
WAN
Encoder WAAS Only one stream per remote site
WAAS
auto-detect RTSP connections (no configuration required) BRANCH OFFICE Note: Separate WAAS license for Windows Media Live Streaming required per contract w/Microsoft Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
BRANCH OFFICE Cisco Confidential
32
Agenda Enterprise Application Delivery Challenges Introducing Cisco Wide Area Application Services Cisco WAAS Product Architecture Application Specific Acceleration WAAS Express Virtual WAAS Data Replication Acceleration Network-embedded virtualization Remote Access Optimization with WAAS Mobile Management and WAE Platforms WAAS Installation steps Summary Q&A Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
33
Cisco WAAS Express IOS based Integrated WAN Optimization solution Solution
Client
Bandwidth optimization Fast delivery of data over low speed, high latency WAN links from data centers
Branch
WAAS Express
Benefit Small-footprint cost-effective software solution, transparently integrates into the ISR G2
WAE
CM
Natively uses capabilities of Cisco IOS® Software Increases remote user productivity Reduces WAN bandwidth costs Offers investment protection by interoperating with existing Cisco WAAS infrastructure.
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Servers
Data Center 34
Cisco WAAS Express Compatible with WAAS Headend Devices Inline IOS feature - Interoperates with IOS Security and QoS features Support for mixed devices (WAAS appliances, network modules, WAAS Express
Network Integration L4 TCP Optimization – TFO Compression – PLZ Compression
WAAS Express Offerings
Simplified CLI Central Manager
DRE – Uses maximum router DRAM
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
35
WAAS Express – Packaging & Licensing WAAS Express is a feature license which can be enabled with any technology package licenses Enforced using a license key License key enforcement done in IOS on the router using Cisco Software Licensing Infrastructure 60 day trial license available WAAS Express will not register with WAAS Central Manager unless valid and active license is present WAAS Central Manager will periodically ensure (trial and extension) license is active to allow customer configuration
Universal Image Security W.E
U.C.
W.E
Data W.E
IP Base W.E Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
36
WAAS Express Software Architecture
Unified Management
Compression (LZ)
TCP Flow Optimizations (TFO)
Data Redundancy Elimination (DRE)
L4: Throughput Optimization
TCP Proxy
Policy Engine
CEF Interception and reinsertion
Network Integration
IOS Forwarding Path
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
37
Agenda Enterprise Application Delivery Challenges Introducing Cisco Wide Area Application Services Cisco WAAS Product Architecture Application Specific Acceleration WAAS Express Virtual WAAS Data Replication Acceleration Network-embedded virtualization Remote Access Optimization with WAAS Mobile Management and WAE Platforms WAAS Installation steps Summary Q&A Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
38
Unified Network Services Provides a Common Framework For Physical and Virtual Services Physical Network Services
Private Cloud
Public Cloud
App App App OS OS OS WAN Opt Firewall SLB/ADC
Hypervisor
VDC-1
VDC-2
• Application-specific service nodes
• Virtual appliance form factor
• Form factors:
• Elastic Instantiation/Provisioning • Service transparent to VM mobility
• Appliance • Switch module • Router-integrated
Presentation_ID
• Support scale-out • Large scale multi-tenant operation
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
39
Cisco vWAAS Provides Flexible Cloud Deployment Options Private Cloud 1 • Traditional WAN Edge Deployment at Branch and DC
WAN or Internet
Gradual migration from Physical to Virtual
VMware ESXi Server
Multi-tenancy support UCS /x86 Server WCCP Cat6K/N7K VMware ESXi
2
Private Cloud, Virtual Private Cloud, & Public Cloud Re-direction using vPath @VM level
Elastic provisioning Nexus 2K/5K
Nexus 1000V
Multi-tenancy support
vPATH
VMware ESXi Server Nexus 1000V
vPATH
VMware ESXi Server
UCS Compute/ UCS Compute/ Physical servers Virtualized Servers Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
UCS /x86 Server Cisco Confidential
40
vWAAS and vCM Models
vWAAS-750
vWAAS-6000
vWAAS-12000
750
6000
12000
(Opt.TCP Connection) WAN BW : 8 Mbps
(Opt.TCP Connection) WAN BW : 90 Mbps
(Opt.TCP Connection) WAN BW : 310 Mbps
Resources Virtual Cores : 2 Memory : 4 GB Hard Disk: 250 GB
Resources Virtual Cores: 4 Memory : 8 GB Hard Disk: 500 GB
Resources Virtual Cores: 4 Memory : 12 GB Hard Disk: 750 GB
Modeled after 574
Modeled after 674
Modeled after 7341
The performance results are based on benchmark testing done on following 1. 2.
Cisco UCS C210 M2 with 2 Intel Xeon x5650 CPU (2.67 GHZ) Cisco UCS B250 M2 with 2 Intel Xeon x5650 CPU (2.67 GHZ)
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Use UCS-based sizing results as sizing benchmarks for other x86 platforms Mileage will vary with non UCS platforms; approach similar to other s/w vendors
vCM-100N
vCM-2000N
100
2000
(Max Devices)
(Max Devices)
Resources Virtual Cores : 2 Memory : 2 GB Hard Disk: 250 GB
Resources Virtual Cores: 4 Memory : 8 GB Hard Disk: 600 GB
Modeled after 274
Modeled after 674
41
vWAAS vPATH Interception (based on Nexus 1000V) Interception based on port-profile policy configured in Nexus 1000v
Web Server 1
vWAAS
App Server
Bidirectional Interception - (no IN/OUT configuration) Pass-through traffic automatic bypass
Nexus 1000V
vPATH
VMware ESXi Server Cisco UCS x86 Server
Nexus 1000v VSM
On-Demand Orchestration and Elasticity Presentation_ID
Application based interception
Virtual machine mobility awareness
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Fault Tolerant persistent performance
vCenter Server
Multi-tenancy with flexible deployment 42
Agenda Enterprise Application Delivery Challenges Introducing Cisco Wide Area Application Services Cisco WAAS Product Architecture Application Specific Acceleration WAAS Express Virtual WAAS Data Replication Acceleration Network-embedded virtualization Remote Access Optimization with WAAS Mobile Management and WAE Platforms WAAS Installation steps Summary Q&A Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
43
Data Backup/restore and Replications Online data backup/restore
Replication time takes several hours
WAN link speed is 45Mbps while utilization is 20Mbps
Backup accessible over WAN Reduces recovery time
Data replication Continuous data synchronization across the network Rapid failover to remote DC for 24/7 data availability Reduced recovery time and improved overall recovery
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Backup/Replications
WAN
Local Data Center
Cisco Confidential
Remote Data Center
44
Replication and backup Optimization Local Data Center
Challenge
Remote Data Center
Backup/Replications
High Throughput
Requires costly High Bandwidth Low Latency Links Inability of storage systems to fill WAN link due to latency/packet loss issues Need to increase the distance of the disaster recovery site
Solution
WAN LAN like throughput Bandwidth savings Fewer round trips
Device Mode purposely designed for DC-to-DC replication and backup optimization Optimized for High Speed Links, Low Connection Count, and Low Fan-out Supported on DC devices WAE-73x1 Branch/DC and DC/DC managed from same WAAS Central Manager (CM)
3rd party data replication solutions support
No WAAS
EMC SRDF/A, NetApp SnapMirror Solution does not preclude acceleration of other replication protocols
Benefit WAAS enabled with Replication Accelerator Mode
Presentation_ID
Back-up/Replication window reduction up to 5x Improved throughput and WAN link utilization Meet RPO and RTO © 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
45
Agenda Enterprise Application Delivery Challenges Introducing Cisco Wide Area Application Services Cisco WAAS Product Architecture Application Specific Acceleration WAAS Express
Data Replication Acceleration Network-embedded virtualization Remote Access Optimization with WAAS Mobile Management and WAE Platforms WAAS Installation steps Summary Q&A Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
46
Virtualized Application Delivery for Branch Office – Cisco WAAS Virtual Blade Centralize what you can with WAAS Locally host services (e.g. Windows Servers) on same WAAS device
Flexible, Optimized Branch IT
Data Center Cisco WAAS
Backup Users Local Storage
WAN Business and Communication Applications
Servers
Cisco WAAS
Router
V B
Windows Server 2008 R2
Microsoft System Center Storage
Cisco WAAS Virtual Blade technology Providing Best Mix of Distributed and Centralized IT Services Validated by Microsoft for Windows Services
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Backup
47
Virtual Blade Deployment Allocate resources and start Virtual-Blade instance Easy & Simple - from WAAS CM or from CLI
Centrally deploy server image over to WAE From CLI or WAAS CM, using FTP or HTTP
Remote Office
WAAS Appliance WAAS Appliances
Data Center
WAN
Remote Office Presentation_ID
WAAS Appliance
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
48
Virtual Blade Offerings Broad range of services Microsoft Windows Services (e.g. DNS, DHCP, SCCM) Custom applications (internally developed ) Other applications (NAM, ACNS, Altiris)
Improved performance, scale and usability Multiple CPUs for VB (SMP) for higher compute performance Network I/O Paravirtualization for higher network performance Remote Network Boot Install (PXE) for agile provisioning
Microsoft SVVP validated for Windows Server 2003, 2008 and 2008 R2 V V V B B B 1 2 3
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
49
Microsoft and Cisco Solution Microsoft Windows Server 2008 Server Core
Broad range of services (DNS/DHCP/SCCM/…)
Cisco WAAS with Virtualization
Complete WAN optimization + application acceleration SVVP certification on 2008 R2 (broader range of windows services)
Cisco WAAS with pre-packaged Windows Server 2008 services Jointly developed architecture Joint customer support
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
50
Agenda Enterprise Application Delivery Challenges Introducing Cisco Wide Area Application Services Cisco WAAS Product Architecture Application Specific Acceleration WAAS Express Virtual WAAS Data Replication Acceleration Network-embedded virtualization Remote Access Optimization with WAAS Mobile Management and WAE Platforms WAAS Installation steps Summary Q&A Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
51
Cisco WAAS Mobile Architecture 1. Client/Server Architecture
2. What It Does • Installs on Windows Desktop
WAN
Cisco WAAS Mobile Client
Cisco WAAS Mobile Server
• Accelerates Application Performance over Challenged Mobile or Remote Connections
Web, File & App Servers
3. Why It’s Better Purpose Built for the Windows PC/Laptop
Designed for Mobile & Remote Users
Industry-leading Performance
Highest performance over mobile and SOHO networks
Lowest TCO
Best reliability, stability and troubleshooting tools reduce cost of support
Optimized for Diverse Challenged Networks Complements WAAS Appliance as Complete Acceleration Solution
Scalable, Fault Resilient, Manageable, Interoperable
Centralized policy based management reduces deployment and support cost Integration with software distribution tools reduces deployment costs Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
52
Cisco WAAS Mobile Architecture Overview
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
53
Cisco WAAS Mobile Networking: Deployment Topology Cisco WAAS Mobile Server
Data Center
Data Center Cisco WAAS Mobile Server
Intranet App Servers & Storage
App Servers & Storage
Remote Access VPN Mobile users connect through VPN aggregation point to multiple Cisco WAAS Mobile Servers
Small Office Internet Cisco WAAS Mobile Client
Workers in small offices may connect to multiple Cisco WAAS Mobile Servers
Cisco WAAS Mobile Clients
Simultaneously accelerate traffic to applications hosted in multiple data centers Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
54
Agenda Enterprise Application Delivery Challenges Introducing Cisco Wide Area Application Services Cisco WAAS Product Architecture Application Specific Acceleration WAAS Express Virtual WAAS Data Replication Acceleration Network-embedded virtualization Remote Access Optimization with WAAS Mobile Management and WAE Platforms WAAS Installation steps Summary Q&A Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
55
Scalable, Secure Central Management
Centralized Management Robust management, monitoring, and reporting for up to 2000 nodes Device grouping for simplified rollout of configuration changes Device and system alarms, as well as integration with SNMP and syslog
Platform support: WAAS appliances, WAAS Mdoules, WAAS Express, vWAAS
SOA-ready Monitoring Standard XML Web Service (SOAP) Integration with external reporting and monitoring portals
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
56
Secure Management & High Availability Secure Management
High Availability
SSL-encrypted HTTP GUI and intra-device communication
Active/standby deployments with automatic failover,
Roles-based Access Control (RBAC) to isolate users to specific capabilities and domains of management
Configuration is replicated from the primary CM to the standby CMs
Integrated IOS-like CLI accessible via SSH (also telnet, serial)
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Information is exchanged using the same CM to Cisco WAE communication that occurs between every Cisco WAE and the CM.
Cisco Confidential
57
Configurable Comprehensive Reporting Device Dashboard Configurable list of reports to display on a device or devicegroup homepage
Customizable, schedulable reports Device and system health, WAN optimization performance, application acceleration performance, and traffic statistics
Traffic Statistics Optimized vs pass-through traffic mix including pass-through reason
Per-Connection Statistics Connection monitoring shows near real-time view of optimized connections and details Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
58
Cisco Wide Area Engine (WAE)
The Cisco WAE Appliances and Service Modules are designed to address varying customer needs, from very small branch offices to massive data center deployments, and offer the highest single-device and clustered-device scalability in the industry
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
59
Cisco WAAS Router Modules
SRE-SM
NME-WAE
Services Ready Engine (SRE) Service Modules (SM) for the Integrated Services Router G2
Router-Integrated Network Module for the Cisco First Generation Integrated Services Router
3925, 3945
2901, 2911, 2921, 2951
Cisco Integrated Services Router (ISR) Series 2811, 2821, 2851, 3825, 3845
Reduce Branch Footprint Presentation_ID
Cisco Integrated Services Router G2 (ISR) Series 2911, 2921, 2951, 3925, 3945 3925E, 3945E
Enhances IT agility © 2010 Cisco and/or its affiliates. All rights reserved.
Lowers Operational Expenses Cisco Confidential
60
WAAS Virtual Blades-Capable Branch Appliances
WAVE-274 Appliance
WAVE-474 Appliance
Cisco Wide Area Virtualization Engine (WAVE) appliances extend the Cisco WAN optimization appliance portfolio to provide the industry's only branchoffice appliance family that incorporates comprehensive WAN optimization, embedded virtualization for local hosting, and branch-office video delivery.
WAVE-574 Appliance
WAE-674 Appliance
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
61
WAAS Express Platforms Supported ISR G2 89x 1941 2901, 2911, 2921, and 2951 3925 and 3945
Interoperate with WAAS Data Center, Branch appliances, and modules running WAAS software 4.2+ Router Modules – NME-WAE and SM-SRE WAAS appliances WAVE appliances
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
62
Cisco WAAS Branch Platforms Hardware Configuration
Max Opt TCP Conn
Inline cards
Number of Virtual Blades
Drive (GB)
RAID
Memory (GB)
WAN Capacity (Mbps)
NME-WAE-302
250
N/A
N/A
80
N/A
.5
4
NME-WAE-502
400
N/A
N/A
120
N/A
1
4
NME-WAE-522
800
N/A
N/A
160
N/A
2
8
SM-SRE-700
500
N/A
N/A
500
N/A
4
20
SM-SRE-900
1000
N/A
N/A
500
RAID-1
4
50
WAVE-274
200
2-port
2
250
N/A
3
2
WAVE-474
400
2-port
2
250
N/A
3
4
WAVE-574-3GB
750
2-port/4-port
2
500
RAID-1
3
8
WAVE-574-6GB
1,300
2-port/4-port
6
500
RAID-1
6
20
WAE-674-4GB
2,000
4-port/8-port
2
600
RAID-5
4
45
WAE-674-8GB
6,000
4-port/8-port
6
600
RAID-5
8
90
* Final recommendations requires a detailed sizing exercise that include application traffic mix, traffic characteristics, application load and other factors mentioned in the sizing guidelines. Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
63
Cisco WAAS Express Sizing Recommendations Platform
Total DRAM Required
Maximum WAN Recommended bandwidth Number of Users Supported
Max TCP Connections
89x
768 M
2 Mbps
1-10
75
1941
2.5 G
4 Mbps
15-20
150
2901
2.5 G
6 Mbps
15-20
150
2911
2.5 G
6 Mbps
25
200
2921
2.5 G
6 Mbps
25
200
2951
4G
6 Mbps
25
200
3925
4G
10 Mbps
50
500
3945
4G
10 Mbps
50
500
WAAS Express requires maximum DRAM installed as indicated
Typical Interfaces – 3G, T1, E1, Multi T1s, Multi E1s, and Serial Performance Testing Conducted with IOS FW, VPN (IPsec), NAT, and, QoS Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
64
Cisco WAE Family Data Center Platforms Hardware Configuration
Max Opt TCP Conn
Inline cards
Drive (GB)
RAID
FanOut
Memory (GB)
WAN Capacity (Mbps)
WAE-674-8GB
6,000
4-port/8-port
600
RAID-5
200
8
90
WAE-7341
12,000
4-port/8-port
900
RAID-5
1400
8
310
WAE-7371
50,000
1500
RAID-5
2800
24
1000
4-port/8-port
Replicator Mode WAE-7341
2,500
4-port/8-port
900
RAID-5
4
8
310
WAE-7371
5,000
4-port/8-port
1500
RAID-5
9
24
1000
WAE-7341
WAE-7371
WAE-674
Enterprise Data Center Appliance
Enterprise Data Center Appliance
Enterprise Appliance
* Final recommendations requires a detailed sizing exercise that include application traffic mix, traffic characteristics, application load and other factors mentioned in the sizing guidelines. Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
65
Agenda Enterprise Application Delivery Challenges Introducing Cisco Wide Area Application Services Cisco WAAS Product Architecture Application Specific Acceleration WAAS Express Virtual WAAS Data Replication Acceleration Network-embedded virtualization Remote Access Optimization with WAAS Mobile Management and WAE Platforms WAAS Installation steps Summary Q&A Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
66
Agenda Enterprise Application Delivery Challenges Introducing Cisco Wide Area Application Services Cisco WAAS Product Architecture Application Specific Acceleration WAAS Express Virtual WAAS Data Replication Acceleration Network-embedded virtualization Remote Access Optimization with WAAS Mobile Management and WAE Platforms WAAS Installation steps Summary Q&A Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
67
Why Cisco WAAS? Differentiators
Proof Points
Router integrated Solution
Benefits
Broadest portfolio
Enables IT service agility
Software based & hardware integrated options
Reduces branch footprint
“On-demand” services
Reduces deployment and maintenance costs
Proven end-to-end architectural approach
Over 5000 customers
Eases deployment
Network services integration
Network Transparency Reduces deployment and Seamless integration with QoS, management complexity VoIP, and firewall services Protects investments Fully preserves security policies Speeds problem resolution Industry-leading application transparency
Presentation_ID
Validated, tested design guides Ensures seamless network integration Award-winning Cisco global support & advanced services Help where and when you need it
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
68
Agenda Enterprise Application Delivery Challenges Introducing Cisco Wide Area Application Services Cisco WAAS Product Architecture Application Specific Acceleration WAAS Express Data Replication Acceleration Network-embedded virtualization Remote Access Optimization with WAAS Mobile Management and WAE Platforms WAAS Installation steps Summary Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
69
Cisco Connected Grid Router & Switches Brief Overview
Presentation_ID
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
71
Substation Automation Cisco CGR 2010 – Substation Router
Enhanced for Utility deployments • Substation Compliant (IEC 61850-3, IEEE 1613) • No Moving Parts • Purpose built for Substation envionments – industrial grade components • Dual Redundant, Field Replaceable Power Supplies (Same P.S. as CGS 2520) • Extended Temperature Range Support
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
• • • • • • •
Extended Power Supply Support Choice of Front or Reverse Cabling IEEE 1588 HW Ready Advanced IOS Secuity - NERC/CIP capable SCADA Inspection – IPS, FPM SCADA Tunneling capabilities - BSTUN Hardware Based Security solution: SUDI
Cisco Confidential
72
Substation Automation / Integration Cisco CGS 2500 Series CGS-2520-24TC 24 10/100 ports 2 dual-port GE uplinks
CGS-2520-16S-8PC 16 FE SFP ports 8 10/100/PoE ports 2 dual-port GE uplinks
Based on the Cisco Catalyst 2K / 3K series, the most successful Enterprise Switches in the world today! Enhanced for Utility deployments • Substation Compliant (IEC 61850-3, IEEE 1613) • No Moving Parts • Dual Redundant, Field Replaceable Power Supplies • Extended Temperature Range Support • Extended Power Supply Support • Choice of Front or Reverse Cabling • CG Swap Drive Functionality
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
• High availability platform: REP, Flexlink • GOOSE support: QoS, Fast Ring Convergence and VLAN handling • MODBUS Memory Map support • Utility Specific Smartport macros. • Hardware Based Security solution: SUDI • Advanced Security solution • Option to upgrade to Layer 3 feature sets
Cisco Confidential
73