ndp final

8/12/2019 NDP Final

1/40

WAN Optimization Framework

8/12/2019 NDP Final

2/40

Introduction

Juniper WAN optimization framework uses theWXC Series techniques to provide a scalable,comprehensive and secure Enterprise WANSolution

Technologies : Compression, Caching,Acceleration, Bandwidth Management &Reporting

8/12/2019 NDP Final

3/40

Integrated WXC Series Framework

8/12/2019 NDP Final

4/40

Benefits

Dynamic feedback and updating Integrated measurement and monitoring

QoS support & configuration Multipath Support Deployment and flexibility to install the

network Integrated network services

8/12/2019 NDP Final

5/40

How it works?

Increasing application performance Increasing WAN Capacity Speeding Transmissions

QoS Support & Configuration Deployment Flexibility Ease of use Using Multiple WAN Links Complete monitoring Scalability Security

8/12/2019 NDP Final

6/40

Increasing WAN Capacity

WAN capacity can be increased by upgrading thecapacity of that link However, the upgrade option is costly and timeconsuming. Juniper networks provides a cost-effective solution byusing market-leading compression and caching. It provides Molecular Sequence reduction (MSR)technology, which uses memory based pattern dictionaryto detect and eliminate data repetitions. Businesses have gained two to four fold increase intheir capacity.

8/12/2019 NDP Final

7/40

8/12/2019 NDP Final

8/40

WXC Series framework It complements the award-winning MSR compression

technology with a technique called network sequencecaching.

It enables the WXC series appliances to increase WANcapacity by recognizing larger data patterns than MSRcompression.

NSC relies on embedded hard disks to store longer data

patterns for longer periods of time.

8/12/2019 NDP Final

9/40

NSC Technology It appears to be almost similar to file caching, due to its

operation on large patterns of data. Differences are that file caching is designed to eliminate large

redundant file transmissions, but fails to deliver for twolimitations.

It works on a single application and since enterprises have a mixof applications, its impact on reducing WAN transmissions islimited.It operates only on exactly repeated files.

In contrast, Junipers sequence caching works on any IP -based

application. It also recognizes repeated data patterns andeliminates them, even when a file has been modified. Also the use of on-board hard disks enables sequence caching to

provide tens to hundred of gigabytes of storage, so evensequences seen several days earlier can be eliminated.

8/12/2019 NDP Final

10/40

Benefits

MSR and Sequence caching reduces traffic for any IPtraffic- not just TCP or UDP so WXC series benefits a

broader set of applications than many other compressiontechniques.

The WXC series builds and maintains a dictionary ofrepeated patterns across the aggregate of tunnels toremote devices to improve compression results overall.

Traditional compression techniques can buffer only alimited number of repeated patterns. In contrast WXCseries can store many more and longer repeated data

patterns.

8/12/2019 NDP Final

11/40

Speeding Transmissions

Major challenge in speeding transmission is latency.

Each send and acknowledge operation is subject to

the full delay of a WAN round trip time (RTT).

To overcome these delays, an application acceleration platform requires both TCP acceleration to benefit a broad range of applications and application-specificacceleration to speed applications whose Layer-7

protocols are less efficient than TCP.

8/12/2019 NDP Final

12/40

TCP acceleration techniques

The Fast Connection Setup technique improves the performance of short-lived connections byeliminating one RTT from the TCP connection setup,speeding up applications that use short connectionsand have chatty protocols.

The Active Flow Pipelining technique accelerates

TCP performance by terminating the TCP connectionlocal to the sender and using a more efficienttransport protocol between the WXC Series.

8/12/2019 NDP Final

13/40

The Forward Error Correction technique limits theneed for retransmissions on lossy networks. It makesuse of recovery packets, sent alongside data packetsthat index those data packets, allowing forreconstruction of lost packets.

Microsoft Exchange, Microsoft File Services, and

web-based applications are three broadly used business applications that require application-specificacceleration.

8/12/2019 NDP Final

14/40

In the case of Exchange and file services, theirunderlying protocols send data in small blocks andrequire an acknowledgement for each, resulting inhundreds or even thousands of RTTs to complete asingle transaction.

This result in decrease of performance when usedacross the WAN link.

The AppFlow technology accelerates these applications by pipelining the data blocks and web objects, sendingas many in quick succession as needed to fill theavailable WAN capacity

8/12/2019 NDP Final

15/40

Since speeds between the LAN and the WAN differ by orders of magnitude, there is a dramaticdiscontinuity in bandwidth.

This means that contention for WAN problem needs

to be addressed with an effective and realistic QoSand bandwidth allocation model. Many WAN optimization platforms rely on per-flow

manipulation of traffic to apply QoS policies thus

making it incredibly complex. This granular micromanagement of applications,

however, consumes too much of ITs precious time,limiting its effective use and, worse, quickly becomes

out of pace as new sites or applications appear.

QoS Support and Configuration

8/12/2019 NDP Final

16/40


The WXC Series Framework approaches QoS and bandwidth allocation with a practical, solutions-basedorientation, making sure that mission-critical

application traffic arrives where it needs to within therequired Service Level Agreement(SLA).

This approach strikes the needed balance between performing QoS in the most appropriate device theWAN optimization platform and keepsimplementation simple.

8/12/2019 NDP Final

17/40

Q. Why is the WAN optimization and application acceleration platform the best point in the network to perform QoS and bandwidth allocation?

ANS. Because its the last point in the network that seesuncompressed traffic. If an edge WAN router performs QoSrather than the WAN optimization device, for instance, and itenforces QoS on already compressed traffic, the QoS policy

will be incorrectly applied since compressed traffic will have adisproportionate share of the bandwidth.

8/12/2019 NDP Final

18/40


For example, if the QoS policy specifies that voicetraffic should receive 10% of the available bandwidthand data traffic should receive 5%, but those

parameters are applied after compression, data willconstitute far more of the total bandwidth since itshighly compressible, while voice traffic is not.

Getting constant feedback on WAN dynamics isessential to implementing QoS successfully.

8/12/2019 NDP Final

19/40


For QoS to operate effectively throughout theenterprise, the WAN optimization platform requires aholistic view of the WAN.

Many WAN optimization platforms have nounderstanding of the destination location.

This kind of one -sided QoS deployment isimportant for including sites without WANoptimization platforms.

8/12/2019 NDP Final

20/40


Understanding both ends of the WAN link providesextensive advantages.

This kind of dual-sided deployment allows theWXC Series platform to automatically map trafficaccording to the QoS template assigned to thatdestination device.

8/12/2019 NDP Final

21/40


While the dual-sided approach provides for the greatestlink understanding and dynamic behavior, the WXCSeries platforms also support one -sided deploymentsof QoS as well, to enable a consistent QoS policyacross the distributed enterprise.

Bottom Line: Juniper Networks WXC Series Application Acceleration Platforms provide theadaptive and dynamic QoS functionality enterprisesneed, without the complexity typically associated withdefining granular bandwidth control.

8/12/2019 NDP Final

22/40

8/12/2019 NDP Final

23/40

DEPLOYMENT FLEXIBILITY

The WXC Series platforms include a number ofredundancy features unique in the marketplace.

The devices support an active fail-to-wiremechanism so that in case of a device failure, alltraffic will pass through the box at wire speeduntouched.

WXC Series platforms support dual-activeredundancy with no need for extra configuration ofsurrounding network devices.

8/12/2019 NDP Final

24/40

DEPLOYMENT FLEXIBILITY

Another critical feature to enabling flexibledeployment options is supporting both point-topointand point-to-multipoint configurations.

The WXC Series platforms, for example, featureTunnel Switching, which allows IT to create multiplelayers of tunnel aggregation, as is often found in

frame relay networks using the hub/regional/spoketopology.

8/12/2019 NDP Final

25/40

Ease of Use

The WXC Series platforms are easy to use andmanage, offering both GUI- and CLI-based viewsthat allow IT to manage the devices individually or asa collection.

Automating key functions is another critical elementof ease of use, and the pursuit of increased

automation makes the WXC Series platforms easy todeploy.

8/12/2019 NDP Final

26/40

Ease of Use

The most significant achievement in this area is theauto-deployment feature for branch offices.

Through a combination of the WXOS software andthe WXC Series Central Management System (WXCCMS) software, IT can pre-stage configurationscentrally via templates and then have remote WXC

Series platforms download them automatically.

8/12/2019 NDP Final

27/40

Ease of Use

The WXC Series automate several other tasks that aretypically cumbersome to perform on WANoptimization and application acceleration devices.

This registration information is essential to thesynchronized communications amongst the WXCSeries platforms.

These communications provide IT with distributedstateful intelligence about the network state andenable devices to act on changes such as link loss orincreased congestion on a path.

8/12/2019 NDP Final

28/40

Ease of Use

After the WXC Series device is powered on,configuration is automatic:

WXC Series issues DHCP request

Temporary IP address and domain returned

WXC Series performs DNS lookup to locate CMS

Image file (if needed) and pre-staged config filedownloaded

WXC Series connects to registration server and beginsoperation

8/12/2019 NDP Final

29/40

8/12/2019 NDP Final

30/40

Using Multiple WAN Links

Enterprises seek to take advantage of hybrid public/private WAN transports, while maintaining theassurance that key performance criteria will be met.

IT needs to apply business policies to each link andmonitor their performance.

The WXC Series Framework includes a uniquefeature called Policy-Based Multipath (Multipath)that enables IT to define which applications traversewhich link and under what conditions.

8/12/2019 NDP Final

31/40

The WXC Series software also allows IT to setlatency and loss thresholds for each link.

IT can use the Multipath function to define, by classof application, how to treat traffic when a

performance threshold is exceeded.

The Multipath feature demonstrates the integratednature of the WXC Series Framework.

When traffic is diverted from one link to another,QoS policies ensure that applications already flowingover the second link are not negatively impacted.

Using Multiple WAN Links

8/12/2019 NDP Final

32/40

8/12/2019 NDP Final

33/40

WAN MONITORING Monitoring tools (real time) are used to understand WAN traffic

characteristics. Packet size distribution Error rates Throughput statistics

The software also helps in alarm monitoring . Notification when a certain parameter crosses its threshold.

Eg. If CPU utilization exceeds 50% an alarm is generated.

Bandwidth allocation for applications (http, DNS, DHCP etc.) can be

done w.r.t the traffic trends. The software (WXOS series, Juniper) also helps in understanding the

QoS parameters applied by the system Needed for proper policy implementation.

8/12/2019 NDP Final

34/40

Traces can be taken with the help of the software which ishelpful in troubleshooting .

Export of information in the form of excel graphs andtables.

8/12/2019 NDP Final

35/40

Yeh slide rakhni hai ya hata de?????

Monitoring is necessary for: Assessing the quality of WAN connection. Upgrading the WAN for optimal performance.

8/12/2019 NDP Final

36/40

SCALABILITY

Wider the range of sizes, locations, link types andapplications in enterprises, higher is the need forWAN optimization.

Parameters: Scope and breadth of network traffic coverage

No. of remote locations, a single hub can handle Ultimate throughput of any single optimizer Ability to support a worldwide implementation

8/12/2019 NDP Final

37/40

Objectives

Performance across all enterprise applications

Improved throughput levels

Monitoring capabilities must also be scalable

8/12/2019 NDP Final

38/40

WXCs role

Easy scaling supporting compressed outputspeeds.

High tunnel count and enabled tunnelconfiguration that support large hierarchicalnetworks.

Provides automatic tunnel aggregation to supportcomplex topologies.

8/12/2019 NDP Final

39/40

SECURITY

Internet and private WANs used for businesstransactions.

All transports have to be secured.

2 critical aspects: Securing the device. Securing the data that traverses the device.

8/12/2019 NDP Final

40/40

Security within WXC

Using HTTPS and SSH. Monitors security warnings from industry security

watchdog groups. Ensures security of data transmissions by Advanced

Encryption Standard (AES) and triple DigitEncryption Standard (3DES).

No exposed flash memory cards that can be stolen. Choice to deactivate the front panel configuration.

ndp final

Documents