Transcript PacketShaper`s Rate Control

Necessary Control for Today’s Networks
Lessons Learned from Universities and Colleges
Napster today, then what next?
#1 - Napster is the tip of a larger problem
#2 – No institution has unlimited financial
resources or bandwidth
#3 – Institutions shutting down Napster will
likely find other misuse of institutional
resources
#4 – Network capacity strains will continue
to increase
- September 2000
Slide 2
What Happened Next…
•iMesh
Bearshare
•Aimster
•KaZaA (Netherlands)
•Furi
•BeNapster
•MusicCity
•Gnotella
•TekNap
•WinMX (Ontario)
•Gnucleus
•Crapster
•Riscster
•Limeware
•Gnap
•Shuhan
•Newtella
•Gnapster
•Webnap
•ToadNode
•Gnome-napster
•XMNap
•Gnut
•Hackster
•Jnapster
•Hagelsag
•iNapster
•Mactella
•MacStart
•Lopster
and so on…..
Slide 3
In K-12…
 Equal access for
schools in all districts is
threatened by:
 Aimster, Gnutella
 Class disruptions
 Passing notes in class…the new way:
 AOL Instant Chat, Yahoo Messaging, MSN
Messenger, IRC (Internet Relay Chat), ICQ
(now part of AOL)
 Greeting cards
Slide 4
At the Heart of the Problem
All traffic is not created equal
+
VoIP
eMail
Mission-Critical
File Transfers
TCP / IP
ApplicationNeutral
Peoplesoft, SCT
Oracle,
Citrix,
etc...
Web Surfing
Real Jukebox,
Tribes,Battle.net,
etc.
AudioGalaxy,
Gnutella
-
Time-Sensitive
+
Slide 5
Applications Drive Today’s Business
Applications are network-centric, but they
run over IP networks that are applicationneutral
IP networks:
Treat all traffic alike
Lack predictability and control
Are disconnected from business goals and
priorities
Slide 6
Application Performance Is Critical
Web-based learning
E-learning
Administration
Email
Research
Library access
Multiple-campus projects
Facilities management
And more
Slide 7
Business Suffers
BandwidthBandwidthIntensive Apps
Intensive
Apps
Image
Transfers,
Image
Transfers,
Streaming
MediaMedia
Streaming
Bursty, Unpredictable,
Uncontrollable Traffic
Unsanctioned Apps
Apps
Unsanctioned
Surfing,
Surfing,MP3,
MP3,
Blubster,
Gnutella
Napster,
Shopping
Mission-Critical
Critical AppsApps
Oracle,SCT,
SAP,Research,
PeopleSoft,
PeopleSoft,
etc.
e-learning
Critical Application
Performance Suffers
Slide 8
What hasn’t worked
Routers
Queuing – reacting to congestion
Blocking applications by port
Controlling outbound traffic only
Firewalls
Blocking applications by port
Adding more bandwidth
Slide 10
Router and Firewalls
75
6666
850
1467
56
56
243
56
8888
?
80
540
10
625
999
49
356
2234
1678
789
621
490
1567
56
53
498
1326
6346
1200
Slide 11
Routers – Manage Outbound traffic only
What you
could be
missing
Slide 12
More Bandwidth
“Throwing bandwidth at the problem makes
your network more attractive.”
Hap Wheeler, Plattsburgh University
Slide 13
What Does Work
Solution that can automatically identify
application traffic
Solution that provides information on realtime application performance
Solution that proactively controls inbound
and outbound application traffic
Solution that provides ongoing reports
Solution that co-exists with your existing
network without changes and is not a single
point of failure
Slide 14
PacketShaper
PacketShaper:
Provides the application infrastructure that
protects critical applications and contains
non-critical applications across wide area
networks and the internet
Measures and enforces service levels of
your critical applications across wide area
networks and the internet
Provides the controls needed to:
Ensure performance of mission-critical
applications
Allocate bandwidth based on priorities
Improve the return on investment (ROI) for
the network and applications
Slide 15
PacketShaper’s Four Step Process
Slide 16
Step 1: Classify – You can only control
what you can see
Application
6
Presentation
5
Session
4
Transport
3
Network
2
Data Link
1
Physical
PacketShaper
7
Routers
Switches
Firewalls
PacketShaper automatically
discovers and classifies >340
different traffic types
Aduio Galaxy,
Napster, Gnutella,
imesh, Scour, etc.
Precise Classification by:
• Application
• Port/Range
• URL/index/wildcard
• Mime type
• Protocol
• IP Address/Range
• LDAP Host List
• MAC Address (non-IP)
• IP CoS/ToS,DSCP
• MPLS Label
• VLAN ID
Slide 17
Step 1: Classify -- What’s Running on My
Network?
Traffic types that PacketShaper
has detected are shown in the
PolicyConsole
Slide 18
Classification Reports
Inbound and
Outbound
Traffic
Slide 19
Classify Traffic By …
Location
Service
Both
Slide 20
Step 1: Classify -- What’s Running on My
Network?
In addition to Traffic Discovery, you can Create your own
traffic classes based on a combination of:
Inbound or Outbound direction
Protocol (IP, IPX, SNA, NetBEUI, Appletalk, etc.)
IP address space (host, range, network, host list)
IP CoS/ToS,DSCP,MPLS Label, VLAN ID
TCP/UDP port numbers,port range, source destination pair
Predefined service types (e.g., http)
URL Strings (e.g., web pages, file types)
Citrix Types (published application, client name)
H.323 calls - VoIP (dynamic port negotiation)
Traffic Tree can be hierarchical (e.g., under the Citrix traffic class is a
subclass for each Published Application)
Slide 21
Step 2: Analyze -- How Is It Performing
Today?
Extensive monitoring and evaluation tools
Ability to establish baseline application
performance so you can quickly see deviations
Slide 22
Example: Link Utilization
If peak rate is drastically higher than average rate you
can increase your overall average utilization!
Slide 23
Example: Network Efficiency
Network Efficiency:
 Designed to expose the hidden cost of retransmissions
Slide 24
Example: Transaction Delay
Is my network causing problems? Or is it one of my servers?
Slide 25
Step 2: Analyze -- How Is It
Performing Today?
What’s competing for the bandwidth?
Top Talkers & Listeners
Traffic Distribution
Slide 26
Step 3: Control -- How Do I Control Performance?
You can set rules to control performance
Per-application minimum/maximum bandwidth partitions
Per-user minimum/maximum bandwidth policies
Priority-based policies
And many more
PacketShaper implements TCP Rate Control
Control the rate at which end-systems communicate
–
–
Using industry-standard TCP/IP
Manage traffic flows and aggregate classes with bits-per-second
accuracy
No queuing-induced latency; reduced packet loss
Inbound and outbound control
Proactive
“The key to successful policy lies in the
ability of the institution to make all parties
aware of the policy and have some means to
ensure compliance.”
Gartner Group, Sept 2000
Slide 27
TCP/IP Flow Control
Normal IP flow control (no PacketShaper)
Large file transfer started (e.g., ftp from internet)
Receiver negotiates speed of connection, using
window size and ACK
Unaware of bottleneck or competing traffic
Opens large window and floods link
Mission critical traffic impacted (e.g., Oracle)
Sender
Data transmission floods link
Receiver
Window 16k
ACK 10000
Slide 28
Rate Control
Since PacketShaper sits at a strategic access point, it sees competing
flows, knows available b/w, realtime demand, desired QoS
PacketShaper can make intelligent decisions on how to set flow-control
parameters (appropriate window size, metered ACK)
PacketShaper Rate Control throttles back on lower priority traffic, leaves
room for delay-sensitive mission-critical traffic
Traffic sent from host at specified rate, end-to-end
Sender
Data transmission @ desired rate
Window 2k
ACK 8000
ACK 9000
ACK 10000
Receiver
Window 16k
ACK 10000
Slide 29
Slide 30
Slide 31
Impact of Control
Without Control
With Control
Slide 32
Impact of Control
With Control
Without Control
Slide 33
Before and After Control
Typically
Bandwidth
Usage before
control
Typically
Bandwidth
Usage after
control
Slide 34
PacketShaper’s Rate Control
Because rate control is end-to-end,
PacketShaper enables management of both
inbound and outbound traffic
Rate control avoids congestion caused by
hosts flooding router queues
Reduces transaction delay
Since individual IP flows are being controlled,
you can set per session QoS
Supported for TCP and UDP traffic (modified
for UDP)
Slide 35
Step 4: Report -- How Do I Show
Results?
PacketShaper lets you:
Track service level agreements
Determine whether you’re meeting user expectations
Plan for the future of your network
Slide 36
PacketShaper Success Stories
Pacific University – Forest Grove, OR
“PacketShaper helps us immensely by automatically
classifying most of the traffic types seen on campus,
and allowing us to set policies to control each of
those types of traffic. It also allows us to see the
most frequent users and set policies just for them.
Using PacketShaper helps us ensure that everyone,
from the University Faculty to the registrar to the
freshmen in the dorms, gets the bandwidth they
need.” -- Ted Krupicka
Slide 37
PacketShaper Success Stories
Plattsburgh State University – Plattsburgh, NY
"When Napster started becoming popular with our
students, we almost immediately saw the impact on our
dormitory network connecting all the students. Due to
the elusive nature of most of these entertainmentbased applications, firewalls simply can't prevent them
from entering the network. Through this solution’s
[PacketShaper’s] application discovery and analysis
capabilities we are now able to see when Napster and
other similar applications try to take over our network.“
from New Media Music, June 6, 2000
Slide 38
PacketShaper Success Stories
“We were seeing a trend toward the increasing use of
peer-to-peer applications like Napster on the campus
network and knew that it could become a significant
problem for us. We considered a variety of possible
remedies. We knew that just adding bandwidth
wouldn’t solve it, because peer-to-peer applications
take anything they can get. By installing PacketShaper
on our network, we could set policies to limit their use to
a relatively small portion of the pipe. This is a much
better use of our resources.”
Jim Bourn, Director of Data Communications
Slide 39
Sample Campus Network
Library &
Research
Administration
Dorms
Internet
Distance
Learning
Engineering
Computer
Science
Slide 40
Lessons Learned
Know what’s on your network
Guarantee bandwidth for teaching /
learning applications
Improved performance for administration
applications
Cap recreational web surfing
Get visibility into and control over
bandwidth usage
Make intelligent decisions about capacity
planning
And more
Slide 41
PacketShaper Product Line
8500 Series
6500 Series
4500 Series
2500 Series
49,000
1500 Series
3,000
128k
512k
2M
10M
45M
100M
200M
Slide 42
About Packeteer
Founded in 1996, pioneer of bandwidth management and
application performance solutions
IPO in July 1999, NASDAQ: PKTR
Headquarters in Cupertino, CA, with offices worldwide
US Offices: New Jersey, Chicago, Atlanta, Dallas, Washington D.C., San Diego
Offices Abroad: Netherlands, Hong Kong, Japan, Australia, England, France,
Germany
Employees: 200
Customer proven
PacketShaper shipping since February 1997
>20,000 PacketShapers shipped worldwide
5th generation of software, 2nd generation hardware
Slide 43
Higher Education Institutions
Over 500!!!
St. John Fisher
College
Slide 44
K-12 Institutions
Slide 45
Problems Addressed by PacketShaper
In Higher Education
Napster, Gnutella, iMesh
e-Learning
Research
Administration
In K-12
Equal and fair access for all schools in district
Bandwidth hogs can’t impact students’ or teachers’ ability to
quickly access key administrative and learning sites
Napster, Gnutella, iMesh
Note passing
Greeting cards
Slide 46
Lessons Learned - Summary
PacketetShaper enables educational institutions to:
enables educational institutions to:
Know what’s on their network
Reserve bandwidth for teaching, learning, and other
mission-critical applications
Guarantee performance for administration applications
Cap recreational web surfing and P2P
Get visibility into and control over bandwidth usage
Make intelligent decisions about capacity planning
Protect smaller satellite campuses
Align WAN resources with organizational priorities
Maximize the return on existing network infrastructure
And much more
Slide 47
Stanford Listserv
Working with Stanford University there is
now available a mailing list for Packeteer
higher education customers. The primary
purpose of the list is to let customers talk
to each other to discuss organizational or
technical issues related to deploying
Packeteer products.
Customers can get registration info at:
http://www.packeteer.com/solutions/industries/education/stanford_listserv.cfm
Slide 48
Necessary Control for Today’s Networks
Classify
Analyze
Applications
Report
Control
Slide 49