220 likes | 381 Vues
Application Traffic Management Making the Network Intelligent. Rainer Singer Field Systems Engineer F5 Networks Central Europe. Agenda. Company Snapshot Load balancing Overview BIG-IP v9 Products & Packaging. iControl Software Development Kit Standards Based Interface (SOAP/XML).
E N D
Application Traffic ManagementMaking the Network Intelligent Rainer Singer Field Systems Engineer F5 Networks Central Europe
Agenda • Company Snapshot • Load balancing Overview • BIG-IP v9 • Products & Packaging
iControl Software Development Kit Standards Based Interface (SOAP/XML) iControl Services Manager Centralised Management for F5 Devices BIG-IP Traffic Management FirePass SSL VPN Remote Access TrafficShield Application Security Gateway Local, Global & Link Traffic Management Secure Application Access Application Firewall Leading Application Traffic Management Products
Connectivity Traffic Management Internet Wide Area Traffic Management Router Router Local Area Traffic Management
Feature Overview/BIG-IP • Availability Checking • Check any back-end process using EAV • Will work for any IP based application • Stateful failover between devices • Security • Firewall-like device to resist most attacks • All administration is encrypted • Integrated SSL/FIPS and secure NAT
Feature Overview/BIG-IP • SSL and E-Commerce • Only product with integrated SSL • Single certificate simplifies administration • Lowers certificate costs • Client certificate checking (Authentication) • Layer 7 Functionality • Can utilize all HTTP header/content or TCP content in traffic decisions • Can persist on anything • HTTP 1.1 keep-alives dramatically improve performance
Feature Overview/BIG-IP • Easy to Implement and Support • Can be deployed as either Layer 2 or 3 device • Simple and complete Graphical User Interface • Installation services by F5 and/or partner • Flexibility • BIG-IP works with any server or IP based service • iControl enables integration with internal and/or 3rd party applications
New Hardware Architecture Announcing BIG-IP v9: A Revolutionary Approach in Application Traffic Management New Software Architecture New Value-Added Functions New User Interface
What was Introduced in BIG-IP v9 • Accelerates web applications up to 3x Compression + Caching • Reduces infrastructure cost by up to 33% TCP Optimisation + OneConnect™ • Ensures priority application performance Rate Shaping • Cost-effective, intelligent application security SSL, TM/OS + iRules • Ensures a higher level of availability TM/OS + iRules • Delivers simplified management New GUI • Superior integration and extensibility iRules, Advanced Client Authentication • Superior hardware manageability and performance
Traffic Management Operating System (TM/OS) Groundbreaking New Architecture Applications Unified Network/Application Infrastructure Services Users Users CRMDatabaseSiebelBEALegacy.NETSAPPeopleSoftIBMERPSFACustom Mobile Phone Deliver PDA Optimise Secure Laptop Desktop Co-location
Flow Based TM/OS React to a Real Time, Two-Way Conversation Translate Between Parties A New Level of Intelligence Legacy Approach Packet Based React to a Single Communication, One Direction
GUI-Based Application Profiles Repeatable Policies iRules Programmable Network Language Security Optimisation Delivery New Service News Website The Most Intelligent and Adaptable Solution Programmable Application Network Unified Application Infrastructure Services Targeted and Adaptable Functions Complete Visibility and Control of Application Flows Universal Inspection Engine (UIE) TM/OS Fast Application Proxy Client Side Server Side Compression TCP Offloading Load Balancing
Market Leading Functionality Today • Comprehensive Load Balancing • Advanced Application Switching • Customised Health Monitoring • Intelligent Network Address Translation • Advanced Routing • Intelligent Port Mirroring Deliver • DoS and SYN Flood Protection • Network Address/Port Translation • Application Attack Filtering • Certificate Management • SSL Acceleration • Quality of Service Optimise Secure
First Unified Application Infrastructure Services • IPv6 Gateway • Universal Persistence • Response Error Handling • Session / Flow Switching New Deliver New New • Resource Cloaking • Advanced Client Authentication • Firewall - Packet Filtering • Selective Content Encryption • Cookie Encryption • Content Protection • Protocol Sanitisation TM/OS • Connection Pooling • Intelligent Compression • L7 Rate Shaping • Content Spooling/ Buffering • TCP Optimisation • Content Transformation • Caching • TCP Express Optimise Secure
Putting the Functionality to the Test • Independent validation of v9 features and functionality • All are based around real-world scenarios, real applications and real data • Feature comparison with • Cisco, NetScaler, Nortel, Radware, Redline
Hardware • Performance • Throughput • Packet Velocity ASIC (PVA2) • SSL Transactions per Second (TPS) • SSL Bulk Encryption • FIPS Support • HTTP Compression • Independent Secure Management Access • SCCP Microcomputer - Switch Card Control Processor • Dual Media CF + HDD
Hardware cont. • Tri-Speed Ethernet (10/100/1000) + Mini GBICs • LCD Display • USB Port • Hot Swappable Fan Trays • More Integrated Solution
Next Generation IP Application Switches Superior Hardware Manageability and Performance Simplified Management: • Lights Out Management • Multi-Boot Support • LCD for Simplified Management • Hot-Swappable Parts • Redundant Power / Fans • Port Flexibility • PCI Slots • Independent Secure Management Access Powerful: • Packet Velocity ASIC 2 • High Performance SSL & Compression • High Performance Switching Fabric • Dual Processor 6800 6400 3400 1500 • *All Models Include 100 TPS SSL Acceleration