Transcript PacketShaper Detailed Product Overview May 2006

PacketShaper
®
Product Overview
Agenda
■ Bridging the WAN-Application Gap
■ PacketShaper and integrated modules
■ A close look inline at each module in terms of:
–
–
–
–
–
–
Why is it important?
What problems does it solve?
How does it help?
How does it work?
Why is it different?
What are the benefits?
2
About the PacketShaper System:
PacketShaper Appliances
■ Appliance deployed
–
–
–
–
All-in one single box
LAN side of WAN router
128kbps – 1Gbps range
Centrally managed
■ Hardware platform
– 1- and 2-U rack-mountable models
■ Transparent
– No changes to applications or network
■ Scalable, available, reliable
– Fail-safe
■ Hardware bypass on power down or failure
– Supports redundancy
■ Direct standby failover configurations
4
PacketShaper Range
Branch Office
Enterprise Core
5
The Packeteer PacketShaper:
Bridging the WAN-Application Gap
Unique, deep
visibility into
all traffic on
the WAN
Shaping
Module
See what the
problems are
and set about
solving them
Compression Acceleration
Module
Module
PacketShaper
Monitoring Module for Visibility
–
–
–
–
Standard on all PacketShaper models
Discover applications on the network
Track application response and SLAs
Diagnose problems and issues
Shaping Module for Control
–
–
Centralized
management
implemented
at any stage
Monitoring Module
PolicyCenter
QoS provisioning to ensure performance of
critical applications
Align network costs with the business
Control and
optimize WAN
traffic; match
your business
ReportCenter
Compression Module to Reduce WAN Data
–
–
Decrease traffic by compressing data
Increase capacity of network services
Acceleration Module Increases Performance
–
–
Overcome protocol design limits and latency
Accelerate performance
Centralized Management Software
–
–
ReportCenter and PolicyCenter
Reduce TCO
6
Example Deployment Progression
1
Gain Visibility
WAN Core
Core PacketShaper
Monitoring Module
2
Get Control
Software Key Upgrade
WAN Edge
Shaping Module
3
4
5
Increase Capacity
Enhance Performance
Lower TCO
Add PacketShaper to edge
Software Key Upgrade
Centralized Management
Compression Modules
Acceleration Modules
PolicyCenter and ReportCenter
7
Benefits of Integrating WAN Application
Optimization
■
–
–
–
Monitoring
Issue Analysis
Acceleration
Enhanced
Performance
■
Optimization
Shaping
QOS
Provisioning
–
■
QoS provisions the pipe to applications
Compression changes the size of the pipe
Acceleration needs to know how much pipe
there is to fill
Need to work together
Manage all types of applications
–
Compression
Increased
Capacity
Assessing the issues
Choosing the tools
Resolving emergent problems
Key feedback relationships between
optimization tools
–
–
–
Integrated
Application
Manage the entire process
–
–
–
–
Customer critical, latency sensitive
applications
Collaborative documents & files
Real time communications
IT Infrastructure
Recreational and malicious
8
About Monitoring:
Identify Issues and Select the Right Tools
Monitoring provides visibility:
■ Identify applications
■ Monitor utilization and performance
– Identify network issues such as:
■ Recreational apps
■ Latency
■ Measure user experience
– Monitor Service-Level
Agreements
– Benchmark app response
times
■ Access performance diagnostics
9
Why is PacketShaper Monitoring
Important?
Before you can deal
with application
performance issues,
you need to know
what’s using the
bandwidth!
Sources: *Network World / Packeteer Application Performance Survey
10
Problems Caused by Lack of Visibility
■ No information to match WAN usage to business objectives
■ No proper idea of return on bandwidth investment
■ Difficulty in ensuring SLA for projects such as convergence
■
and MPLS
No grasp on network performance:
– Utilization
– Efficiency
– Response times
■ No ability to perform diagnostics
11
PacketShaper Visibility Solution
■ Layer 7 Plus
– Goes beyond simple address and port-based analysis
– Unique to PacketShaper
– Provides application-intelligence for:
■ Performance monitoring
■ Flow forensics
■ PacketShaper Shaping and
Compression functions
■ Automatic Traffic Discovery
– Analyze and automatically classify all WAN traffic
12
Monitoring Technology:
Industry-Leading Layer 7 Plus Classification
■ Unique to Packeteer
■ Empowers IT
organizations to:
– Identify applications
on the network
– Measure utilization by
application
– Benchmark response
times & SLA’s for key
applications
– Diagnose & isolate
causes of
performance problems
13
Monitoring Technology:
Automatic Traffic Discovery
■ Place PacketShaper at WAN/LAN
■
■
threshold
Turn on traffic discovery
PacketShaper maps traffic to its
classification library
– Automatically builds a list of the
applications running on your network
■ Starts collecting performance data
– Utilization
– Efficiency
– Response times
14
■ Layer 7 Plus goes beyond to reveal:
– Sophisticated app behavior profiling
– Benefit from 10 years of Packeteer
technology and industry leadership
■ “Layer 7”
– Can identify application-level protocols
■ “Stateful Inspection”
– Can spot applications that “port hop”
■ Port level analysis
– Probes, network devices
– Limited to static port visibility
Increasing app intelligence
Monitoring:
Alternatives
24
Value Summary Monitoring
Identify issues and select the right tools
■ Identify and classify applications
■ Monitor utilization and performance
– Identify network issues such as recreational apps and latency
■ Measure user experience
– Monitor Service Level Agreements
– Benchmark app response times
■ Access performance diagnostics
25
About Shaping
Apply Business Rules to WAN Traffic
Shaping provides control to:
■ Fix critical application performance issues by allocating
bandwidth
■ Contain recreational and malicious traffic
■ Minimize network congestion
and latency
26
Why is PacketShaper Shaping Important?
■ To ensure Quality of Service for customer-critical apps:
– Smooth unpredictable QOS for customer critical apps
– Prevent recreational and bandwidth hungry apps
competing for limited bandwidth
■ To avoid network congestion
– Cure congestion, queuing latency
and inefficiencies hurt application
response times
– Eliminate Branch office delays
between remote locations.
■ To protect WAN from DoS
– Stop uncontrolled recreational traffic
and malicious traffic
27
Problems Caused by Lack of Control
Recreational apps:
Branch
Offices
All apps
compete for
less bandwidth
Surfing the Internet,
iTunes, VOD, P2P,
Skype, Virus & Worm
propagation
Bandwidth-hungry apps:
Email, File Transfers,
Backup, Database Sync,
Distributed Storage
Router
WAN
Latency Sensitive
Business apps:
SAP, Oracle, Siebel
PeopleSoft, VoIP,
IP Video, Mainframe
10Meg
to
1Gig
64k
to
T1/E1
28
PacketShaper Control Solution
Recreational apps:
Branch
Offices
Apps’ bandwidth
matches business
requirements
Surfing the Internet,
iTunes, VOD, P2P,
Skype, Virus & Worm
propagation
Bandwidth-hungry apps:
Email, File Transfers,
Backup, Database Sync,
Distributed Storage
Router
WAN
Latency Sensitive
Business apps:
SAP, Oracle, Siebel
PeopleSoft, VoIP,
IP Video, Mainframe
10Meg
to
1Gig
64k
to
T1/E1
29
Shaping Technology:
Policies and Partitions
■ Policy-based control
definitions and partitions
by:
Set priorities to protect
business-critical apps
– Site or server
– Application
– User or user group
■ Beyond Standard QoS
– Apply policies to protect
critical traffic
– Smooth disruptive,
bandwidth-intensive
traffic
– Contain recreational
traffic
– Block malicious traffic
Non-critical apps
can use remaining
bandwidth
30
Shaping Technology:
Rate Control and Predictive Scheduler
■ Manages
Without Shaping
With Shaping
congestion
proactively
– Latency reduced
– Packets drops
minimized
– Fewer
retransmissions
– Improved
application
performance.
■ Improve efficiency
to increase
throughput
31
Shaping Technology:
Application-specific Control
■ Application Session Provisioning provides:
– Hierarchical subclassifications of apps
– Per call or per session differentiation
– Far richer classification than routers
■ Layer 7 Plus differentiation
– Customer-critical over recreational apps
– Latency-sensitive over bandwidth-hungry
apps
■ TCP and UDP Rate Control
– Managed on a flow- by flow basis at
application level
■ Guaranteed delay bounds for IP telephony
on converged networks
32
Shaping Technology:
Behavioral Threat Suppression
■ Auto-detection of suspect servers and traffic
– Spoofing hosts
– Virus infected hosts
– Tell-tale behavior
Zero Day Gap
Cost
■ Too many connections
Time
Outbreak
■ Too many failed connections
Business continuity
– Syn attacks
■ Implement network-level availability for business continuity
– Automatic, immediate response to attacks
■ Automatic quarantine of suspect hosts
■ Intelligent throttling of malicious traffic during DoS floods
■ Forensic information recorded
33
Shaping Technology:
Enhanced QoS
■ Bi-directional control - outbound and inbound from a single device
■ Complements router based QoS in VPNs
■ Complements MPLS
34
Shaping: Intelligent Marking
for MPLS Networks
■ Layer 7 Plus intelligence and Application Session
Provisioning enable accurate marking of application traffic
DiffServ, MPLS, TOS
VoIP
Bandwidth allocation
SAP
256 Kbps
Email
768 Kbps
Classes of Service
Best effort
Branch
Offices
PacketShaper
MPLS
Backbone
35
Shaping:
PacketShaper and MPLS Working Together
PacketShaper
Automatic
service classification
MPLS
Limited classes
36
Shaping:
Alternatives – Router-based QoS
■ Manage bandwidth passively and react to congestion and
■
■
packet loss
Use port-based application traffic classification
Use various packet-based queuing methods that:
– Are not bi-directional
■ Cannot control inbound traffic at the other edge
– Add delay to transaction time and latency
– Cannot provide per-flow guarantees
– Are only truly effective as part of a comprehensive control
strategy
■ Are managed on a per-router basis
– Big management overhead in distributed deployments
37
Shaping:
Alternatives – Packet Marking and MPLS
■ Applies only to carriers core
– Provisioned WAN service, not the entire link
– No way of assigning preference at the last mile
– Biggest bottleneck is typically last mile
■ Aggregate shaping only
– Treats all connection requests the same
– Lacks ability to assign limit to number of call requests
■ Needs complementary technology to overcome deficiencies
– Application classification for accurate marking
– Packet rate, bandwidth and flow control
38
Router-based QoS Compared to
PacketShaper Inbound Rate Control
Branch Offices
A
Bulk Data
Configured in all the branches
and Data Center, router-based
Queuing relies on the bulk
transfers being throttled down
after packet loss…
512Kbps
1Mbps
512Kbps
B
Data
Center
Citrix
C
Bulk Data
512Kbps
Packeteer’s Patented Rate Control
applied only in the Data Center slows
down the Bulk traffic without packet
loss and before queues can build
39
Value Summary Shaping
Apply business rules to WAN traffic
■ Allocate bandwidth
– Apply application-intelligent QoS for customer-critical apps
– Fix application performance issues at any location
■ Secure the WAN from DoS
– Pre-empt malicious events
– Control recreational or malicious traffic
■ Deal smartly with congestion
– Minimize latencies and inefficiencies for particular apps
40
About Compression
Reduce the Volume of WAN Traffic
■
■
■
■
Compression creates bandwidth
Increase WAN capacity over the same physical links
Application-specific compression
Improve application performance
– Apply best-suited compression
algorithm for each application
■ Eliminate configuration overhead
41
Why is PacketShaper Compression
Important?
■ Increase WAN capacity over the same physical links with
■
application-specific compression
Improve application performance
– Improve application performance and responsiveness
– Apply best-suited compression algorithm for each application
■ Prioritize critical applications
– Prioritize business-critical applications by giving them
increased network capacity
42
PacketShaper Solution to Increase
Capacity
■
■
■
■
Application-Intelligence
applied for selective
compression
Low Latency
maximizes
performance
ActiveTunnel
eliminates
configuration
Algorithm plug-ins to
maximize compression
43
Increased Capacity with Control
■ Makes sense only if application specific
■ Control allocation before adding resources
– Ensure your customer-critical applications reap benefits
– Contain “bursty” non-critical traffic
■ Manage end-to-latency and jitter
– Actively throttles traffic before congestion occurs
Compression without Control
Compression with Control
44
Compression Solution
■ Most customers experience between 2:1 and 3:1 gains
PacketShaper Compression Module
Oracle
Web
Apps
General
Internet
E-mail
Blended
NetBIOS Average
% Increase in capacity
100
75
50
25
0
3:1
5:1
* Mix of traffic determines actual gains
2:1
2.5:1
4:1
2.5:1
45
Value Summary Compression
Reduce the Volume of WAN Traffic
■ Compression creates bandwidth
■ Increase WAN capacity over the same physical links
■ Application-specific compression
■ Improve application performance
– Apply best-suited compression algorithm for each application
■ Eliminate configuration overhead
50
About Centralized Management
■ Manage PacketShaper deployments in branch offices from
■
a central site
Reduce Total Cost of Ownership (TCO)
– ReportCenter
– PolicyCenter
■ Enable automation management
tasks
– Reporting and alerts
– Configuration
management
67
Why is Management Important?
Appliances
Monitoring
Shaping
Compression
Acceleration
Management
Performance Data
Configurations
Exceptions Reports
Diagnostic Access
68
Enterprise-class Requirements for
Centralized Management
■ Centralized analysis and reporting: collection, storage,
■
■
■
analysis, report distribution
Centralized policy management and device administration
Rich APIs and alerts, leading vendor integration
Automation tools
ReportCenter provides deep
insight to many PacketShapers
PolicyCenter simplifies
deployment, configuration and
response
PolicyCenter
ReportCenter
Adaptive Response can identify
and respond automatically
69
Management Workflow
1
…with PolicyCenter at overview level of hierarchy
Focus from application or network perspective
Start
2
…for abnormalities
Problems may be highlighted by exception
thresholds, load, or utilization
Scan
3
…the detail
Identify groups trending toward problems
or triggering exception thresholds
Analyze
4
…the source of the issue or problem
Detailed metrics at all levels help isolate
the source.
Identify
5
Act!
6
…with PolicyCenter to resolve the problem
Automate?
…consider using Adaptive Response
to automate
70
ReportCenter: Centralized Reporting for all
PacketShaper Appliances
■
■
■
■
Comprehensive – real time and historic
Network-wide performance analysis and management
Easy report distribution and access, per user
Fast flexible hierarchy – workflow-based
71
ReportCenter Reports:
Top Talkers/Listeners
■ Reports on hosts that sent the most data
■ Drilling down on the host link reveals “listeners” for these
conversations
72
PolicyCenter: Cost-effective Management
of PacketShaper Appliances
■ Flexibly organize managed devices into hierarchical groups
■ Distribute configurations and software upgrades to multiple devices
■ View a summary of the status of all managed devices
75
Auto-deploy PacketShaper Configurations
■ Distribute configurations & software upgrades to multiple devices
– Install multiple units at remote sites
– Quickly and easily deploy and configure them from a central location.
76
Adaptive Response
Identify, Respond to and Resolve Problems
■ Leverages PacketShaper visibility, control, compression and
acceleration to automatically:
– Identify and respond to network events
– Resolve problems
– Document background to problems
■ Provide IT with the information required for manual intervention
■ Advanced 2nd Level Diagnostics
– Restore WAN and application performance to its desired state
■ Behavior-based management
■ Performance-based management
77
Automation – 2nd Level Diagnostics
Suspicious host or application
–
–
–
–
Send alert on abnormal activity
Identify top sources (hosts) of abnormal activity
Profile and store characteristics of traffic flow
Capture traffic for in-depth protocol analysis
VoIP
Oracle
Alert: Spike in application traffic
Identify: Where is the problem?
SQL
Other Traffic
Document: Profile and store for
analysis
78
Management Value Summary
PacketShaper Centralized management lets you:
■ Minimize administrative overhead and total cost of ownership
– Respond quickly on an enterprise-scale to network or application
performance changes
– Define partitions and policies
■ Manage remote sites
– Distribute software images and upgrades
– Disseminate new categories of applications or traffic
– Configure multiple appliances simultaneously
■ Automate intelligent responses to changes
■ Integrate with leading management tools
■ Analyze and report
– View a summary of the status of all locations
– Publish definitions of events of interest
81
PacketShaper Summary:
Bridging the WAN-Application Gap
Great User Experience
■
for Every Application
at Every Location
■
■
■
■ Centralized Management
Monitoring for Visibility
– Discover applications on the network
– Track critical application SLAs
– Diagnose problems and issues
Shaping for Control
– QOS provisioning to ensure
performance of critical applications
– Protect availability from new threats
– Align network costs with the business
Compression to Create Bandwidth
– Decrease traffic by compressing and
packing data
– Increase capacity of network services
Acceleration to Increase Performance
– Overcome protocol design limits
– Accelerate performance
– PolicyCenter and ReportCenter
82
Thank you.