BIG-IP v9 Launch Partners EMEA
Download
Report
Transcript BIG-IP v9 Launch Partners EMEA
Application Traffic Management
Making the Network Intelligent
Rainer Singer
Field Systems Engineer
F5 Networks Central Europe
1
Agenda
•
•
•
•
Company Snapshot
Load balancing Overview
BIG-IP v9
Products & Packaging
2
Leading Application Traffic Management Products
BIG-IP
FirePass
TrafficShield
Traffic Management
SSL VPN Remote Access
Application Security Gateway
Local, Global
& Link Traffic
Management
Secure Application Access
Application Firewall
iControl Software Development Kit
iControl Services Manager
Standards Based Interface (SOAP/XML)
Centralised Management for F5 Devices
4
Internet
Router
Wide Area Traffic Management
Router
Connectivity Traffic Management
Local Area Traffic Management
5
Feature Overview/BIG-IP
Availability Checking
• Check any back-end process using EAV
• Will work for any IP based application
• Stateful failover between devices
Security
• Firewall-like device to resist most attacks
• All administration is encrypted
• Integrated SSL/FIPS and secure NAT
6
Feature Overview/BIG-IP
SSL and E-Commerce
• Only product with integrated SSL
• Single certificate simplifies administration
• Lowers certificate costs
• Client certificate checking (Authentication)
Layer 7 Functionality
• Can utilize all HTTP header/content or TCP content in
traffic decisions
• Can persist on anything
• HTTP 1.1 keep-alives dramatically improve
performance
7
Feature Overview/BIG-IP
Easy to Implement and Support
• Can be deployed as either Layer 2 or 3 device
• Simple and complete Graphical User
Interface
• Installation services by F5 and/or partner
Flexibility
• BIG-IP works with any server or IP based
service
• iControl enables integration with internal
and/or 3rd party applications
8
9
Announcing BIG-IP v9: A Revolutionary
Approach in Application Traffic Management
New Software Architecture
New Value-Added Functions
New User Interface
New Hardware Architecture
10
What was Introduced in BIG-IP v9
1. Accelerates web applications up to 3x
Compression + Caching
2. Reduces infrastructure cost by up to 33%
TCP Optimisation + OneConnect™
3. Ensures priority application performance
Rate Shaping
4. Cost-effective, intelligent application security
SSL, TM/OS + iRules
5. Ensures a higher level of availability
TM/OS + iRules
6. Delivers simplified management
New GUI
7. Superior integration and extensibility
iRules, Advanced Client Authentication
8. Superior hardware manageability and performance
11
Groundbreaking New Architecture
Users
Users
Unified Network/Application
Infrastructure Services
Mobile Phone
Deliver
PDA
Optimise
Secure
Laptop
Desktop
Co-location
Traffic Management
Operating System
Applications
CRM
Database
Siebel
BEA
Legacy
.NET
SAP
PeopleSoft
IBM
ERP
SFA
Custom
(TM/OS)
12
A New Level of Intelligence
Legacy Approach
Packet
Based
React to a Single Communication, One Direction
Flow
Based
TM/OS
React to a Real Time, Two-Way Conversation
Translate Between Parties
13
The Most Intelligent and Adaptable Solution
iRules
Programmable Network Language
Programmable
Application
Network
GUI-Based Application Profiles
Repeatable Policies
Unified Application Infrastructure Services
Targeted and
Adaptable
Functions
Security
Optimisation
Delivery
New Service
Universal Inspection Engine (UIE)
Complete Visibility
and Control of
Application Flows
TM/OS
Fast Application Proxy
Client
Side
Compression
News Website
TCP Offloading
Load Balancing
Server
Side
14
Market Leading Functionality Today
• Comprehensive Load Balancing
• Advanced Application Switching
• Customised Health Monitoring
• Intelligent Network Address Translation
• Advanced Routing
• Intelligent Port Mirroring
Deliver
• SSL Acceleration
• Quality of Service
Optimise
Secure
• DoS and SYN Flood
Protection
• Network Address/Port
Translation
• Application Attack
Filtering
• Certificate
Management
16
First Unified Application Infrastructure Services
New
• IPv6 Gateway
• Universal Persistence
• Response Error Handling
• Session / Flow Switching
Deliver
New
New
• Connection Pooling
• Intelligent Compression
• L7 Rate Shaping
• Content Spooling/
Buffering
• TCP Optimisation
• Content Transformation
• Caching
• TCP Express
TM/OS
Optimise
Secure
• Resource Cloaking
• Advanced Client
Authentication
• Firewall - Packet Filtering
• Selective Content
Encryption
• Cookie Encryption
• Content Protection
• Protocol Sanitisation
17
Putting the Functionality to the Test
• Independent validation of
v9 features and
functionality
• All are based around realworld scenarios, real
applications and real data
• Feature comparison with
– Cisco, NetScaler, Nortel,
Radware, Redline
18
Hardware & Packaging
20
Hardware
• Performance
–
–
–
–
–
–
Throughput
Packet Velocity ASIC (PVA2)
SSL Transactions per Second (TPS)
SSL Bulk Encryption
FIPS Support
HTTP Compression
• Independent Secure Management Access
• SCCP Microcomputer - Switch Card Control
Processor
• Dual Media CF + HDD
21
Hardware cont.
•
•
•
•
Tri-Speed Ethernet (10/100/1000) + Mini GBICs
LCD Display
USB Port
Hot Swappable Fan Trays
• More Integrated Solution
22
Superior Hardware Manageability and Performance
Next Generation IP Application Switches
Simplified Management:
6800
6400
• Lights Out Management
• Multi-Boot Support
• LCD for Simplified Management
• Hot-Swappable Parts
• Redundant Power / Fans
• Port Flexibility
3400
• PCI Slots
• Independent Secure Management
Access
Powerful:
• Packet Velocity ASIC 2
• High Performance SSL & Compression
1500
• High Performance Switching Fabric
• Dual Processor
*All Models Include 100 TPS SSL Acceleration
23
Updated Platform Sizing Guide
BIG-IP 1500
BIG-IP 3400
BIG-IP 6400
BIG-IP 6800
Layer 4 Requests/sec
30,000
110,000
220,000
220,000
Layer 7 Requests/sec
22,000
50,000
75,000
110,000
Max. throughput
500 Mbps
1 Gbps
2 Gbps
4 Gbps
Max. conc. conn.
4 Million
4 Million
8 Million
8 Million
Max. SSL TPS
2,000
8,000
15,000
20,000
Max. SSL Bulk
500 Mbps
1 Gbps
2 Gbps
2 Gbps
Max. SSL conc. conn.
100,000
200,000
500,000
500,000
Max. compression
100 Mbps
500 Mbps
2 Gbps
2 Gbps
Switch backplane
14 Gbps
22 Gbps
44 Gbps
44 Gbps
24