Cisco Public © 2012 Cisco and/or its affiliates. All rights reserved. 1 Cisco Wide Area Application Services (WAAS) Overview Konlayoot Jantawong(Four) [email protected] Cisco WAAS SE - ASEAN
Cisco Public © 2012 Cisco and/or its affiliates. All rights reserved. 1
Cisco Wide Area Application Services (WAAS)
Overview Konlayoot Jantawong(Four)
Cisco WAAS SE - ASEAN
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 2
• Enterprise Application Delivery Challenges
• Introducing Cisco Wide Area Application Services
• Cisco WAAS Solution
• WAAS Installation steps
• WAAS Sizing Guide
• Introduce Cisco ISR-AX
• Summary
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
Customers
/ Partners Home Office/
Coffee Shop
Guest Users
Branch Office
xAAS - Cloud
DC Apps & Data Campus
DR Site Branch Office
New IT and WAN
Optimization
Requirements
Datacenter Transformation
Virtualization
Private/Public Clouds
Software-as-a-Service
New Applications/Services
Rich Media, Video
Any-any collaboration
Virtual Desktops
Remote Access Evolution
Increased mobile users
‘Low-footprint’ branches
Partner access
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 4
• Applications perform well in LAN
High bandwidth
Low latency
Reliability
• Applications perform poorly in WAN
Already congested
Low bandwidth
High Latency
Packet Loss
Server LAN
Switch
Client
Round Trip Time ~ 0 ms
LAN
Switch Server LAN
switch Client WAN
Round Trip Time ~ 10’s – 100’s ms
Cisco Public 5 © 2012 Cisco and/or its affiliates. All rights reserved.
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 6
Cisco WAAS is a software and hardware-integrated, cloud-ready WAN optimization and application acceleration solution.
Customer’s benefits:
• Reduce WAN BW
Save more cost
More available BW to run other application
• Improve Applications Response Time
Make your user happy. No complain to IT.
Reduce troubleshooting time
!! Don’t waste your time or money chasing network latency and application response time issues !!
Cisco Public © 2012 Cisco and/or its affiliates. All rights reserved. 7
WAAS Mobile
• Specifically Designed for Mobile Users
• Optimized for a single user
• Application Specific Optimizers
Virtual WAAS
• Application acceleration from
Private/Virtual Private Cloud
• VMWare ESX/ESXi and UCS
deployments
• Agile, elastic, multi-tenant deployment
• vCM: common virtualized management
for physical/virtual WAAS
WAAS Appliance
• Application acceleration
• Virtual blades in branch offices
• Scalable platforms for range of
deployments
• Virtualize WAN optimization
resources into pools of elastic
resources
• Deployed in-path or Out of path to
scale up to 8 AppNav modules &
32 WAAS or vWAAS Appliances.
AppNav
• Integrated ISR G2
• On-demand IOS-based
• Bandwidth optimization
• Inline IOS features (Security, QoS)
• Small footprint, Cost-effective, Single CLI
WAAS Express
• Integrated ISR G2
• Application Acceleration
• Software on-demand provisioning
• No fork lift upgrade
WAAS Service Ready Engine
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 8
WAAS
Appliances
WAAS ISR
Modules
WAAS
Express
vWAAS
WAAS
Mobile
Data Center Head End, Regional Hub
Large Branch, Regional Office
Low Density Branch Retail Office
Tele Worker Regional Office,
Commercial Head
End
SM-SRE-710 SM-SRE-910
890 29xx 39xx
WAAS
Mobile WAAS Mobile
1941/2901
Branch Config DC/Cloud Configs
Large Enterprise /SP DC & High Performance DC-DC
WAVE-8541 WAVE-7541 WAVE-7571
WAVE-294 WAVE-594 WAVE-694
Cisco Public 9 © 2012 Cisco and/or its affiliates. All rights reserved.
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 10
bandwidth
object
cache
latency application behavior
DRE LZ TCP flow
optimization AO AO AO
!! For Application Optimization(AO) : WAASx support only CIFS, http and https !!
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 11
2 3
Time (RTT)
Bandwidth Utilization
Standard TCP
WAAS TFO
1
Solution
1. Shorter/Better Slow Start
2. Improved Bandwidth Usage
3. Better Performance incase of High Packet Loss
Benefit
• Improved WAN BW utilization & app throughput
• End-nodes isolation of unruly WAN conditions
• LAN like TCP behavior due to TCP Proxy
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
Synchronized
Compression
History
DRE
LZ LZ
DRE
WAN
Solutions
Data Redundancy Elimination (DRE)
Persistent LZ compression
Benefits
• New innovative context - aware
DRE
• Up to 100:1 compression
• Session-based compression
• Up to an additional 10:1 compression
even after DRE
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
0101101100111…
1010010011000…
10001101…
0100011…
0011100… 0011100…
DRE Byte Cache
DRE Signature Database
Original Message
Encoded Message
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 14
WAE1 WAE2
WCCPv2
or PBR
WCCPv2
or PBR
A:B TCP SYN A:B TCP SYN
(marked)
A:B TCP SYN
(marked)
I know WAE1 is
in the path, let’s
accelerate!
Need to accelerate
this connection!
Here are my details
B:A TCP SYN/ACK
Acknowledge
Acceleration!
Here are my details
ACCELERATION
CONFIRMED!
B:A TCP SYN/ACK
(marked)
B:A TCP SYN/ACK
A B WAN
Solutions
• Devices automatically discover one another
• Devices automatically negotiate optimization
capabilities Benefits
• Eliminates need for complex overlay networks with tunnels
• And as the result reduces additional efforts associated with
management, security and monitoring
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 15
email Branch2
Video LZ
LZ LZ
VDI
Video
VDI
Video
Branch1
Data Center
WAN
Signatures Signatures
Signatures
Signatures • In memory • Persistent across reboot • Synchronized
Data Store
• On disk • Synchronized – transactional traffic
Transactional traffic
Directional traffic
DRE DRE
DRE
email signature1
VDI signature1
Video signature1
email signature2
Video signature2
email signature1
VDI signature1
Video signature1
email signature2
Video signature2
branch1
branch2
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 16
Broad Range of Applications
Fully Approved and Supported by Application Vendors
75%
99% 50% 20%
90%
80%
95%
90%
85%
99%
File Sharing
Protocols Applications Typical Reduction Maximum Reduction Response-Time Reduction
Web Apps
Software Distribution
Enterprise Application
Backup Apps
Data Replication
CIFS NFS
Exchange OWA
Lotus Notes
HTTP HTTPS
System Center Config. Manager
Microsoft Oracle, SAP
Documentum
System Center Data Protection Manager
Legato, Veritas NetApp SnapMirror
Data Domain, Double Take, Veritas Vol Replicator
VDI Microsoft RDP
Citrix ICA VMWare View RDP
90% Video Live Video
Video on Demand
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 17
Compliance with critical network services such us
• Quality of Service (QoS)
• Network Management
• Application Performance
• Security
• Optimized Routing
Disk Encryption
• Mitigate concern of data theft
• Standards-Based Strong
Encryption (FIPS 140-2 level 2,
256-bit AES)
WAN
SrcIP 1.1.1.1
DstIP 2.2.2.2
SrcPort 1434
DstPort 80 Application Data
SrcIP 1.1.1.1
DstIP 2.2.2.2
SrcPort 1434
DstPort 80 Optimized
Data
Cisco Wide Area Application Services
Application Optimizers
Advanced Compression
Transport Optimization
Cisco Public 19 © 2012 Cisco and/or its affiliates. All rights reserved.
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 20
Plug-and-Play
• No network changes
• Mechanical fail-to-wire
Scalability and High Availability
• Up to 2
• Redundant network paths & asymmetry
• Load-sharing and fail-over
Transparent Integration
• Transparency and auto discovery
• 802.1q VLAN trunking
• All WAE appliances
• Interception access list
Remote
Office
WAN
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 21
WCCPv2
• Active/active clustering
• Load redistribution
• Fail-over
• Fail-through operation
• Near-linear scalability &
performance
• Cisco WAE as a next-hop
router
• Active/passive clustering
Policy Based Routing
WCCP variable timer Configurable timeout (9,15,30 Sec) default = 30 Sec (same as pre WAAS 4.4)
WAN
Remote
Office
Client
WCCP L2 Egress L2 Egress, WAAS remembers the
source Router for every flow
WAAS ensures as traffic leaves, it returns to the original router.
5.0
Cisco Public © 2012 Cisco and/or its affiliates. All rights reserved. 22
Inline DC
Core WAAS
INLINE
LAN
INLINE
WAN
Inline branch
Edge WAAS
INLINE
LAN
INLINE
WAN
Client server
Emulated WAN
Central
Manager
1
Install central Manager
through CLI setup wizard
2
Install Core WAAS through
CLI setup wizard
3
Install Edge WAAS through
CLI setup wizard
Verify operation/performance
through WEB UI
4
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 23
Usability and scalability
• Single Point Configuration, Monitoring, and reporting
• HTML5 interface and charts,
• iPad Ready, no flash/apps required
• Device/system alarms + SNMP and syslog integration
• Platforms
WAAS appliances, WAAS Modules, WAAS Express 2.0, vWAAS, WAAS Mobile
• SOA-ready Monitoring
Standard XML Web Service (SOAP)
Integration with external reporting and monitoring portals
• Active/standby
• Automatic failover
• Configuration replication
High Availability
• HTTPS GUI and intra-device communication
• RBAC support
• Integrated IOS-like CLI accessible via SSH
Security
• Improved visibility to application performance
• Effective integrated Management & monitoring
• Rapid analysis of application performance issues
Integrated Application Performance Monitoring(APM)
5.0
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 24
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 25
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 26
SOHO User
WAAS Mobile
Software
Mobile User
Branch Office
WAAS
Service
Module WAN
Internet
Branch Office
WAAS
Express
Branch Office
WAAS
Appliance
Regional Office
WAAS
Appliance
WAAS
Mobile
Server VPN
vWAAS
WAE
Server
VMs
VMware ESXi Server
Nexus 1000v vPATH
UCS /x86 Server
FC SAN
Nexus 1000v VSM
Virtual Private
Cloud
Data Center or
Private Cloud
WAAS
Appliances
VPN
VMware ESXi vWAAS
Appliances
Server VMs
AppNav
+ WAAS
WCM
Cisco Public 27 © 2012 Cisco and/or its affiliates. All rights reserved.
Cisco Public © 2012 Cisco and/or its affiliates. All rights reserved. 28
Optimized TCP Connection (Edge WAAS)
10 TCP Connections per user (estimated)
WAN Bandwidth (Edge WAAS)
Peer Fan-Out (Core-WAAS)
Number of Managed Devices (Central Manager Mode)
Cisco Public © 2012 Cisco and/or its affiliates. All rights reserved. 29
Cisco Public © 2012 Cisco and/or its affiliates. All rights reserved. 30
Platform
Total
DRAM
Required
Maximum WAN
bandwidth
Supported
Recommended
Number of Users
Max TCP
Connections
88x 768 M 1.5Mbps 1-10 75
89x 768 M 2 Mbps 1-10 75
1921* 512 M 512 Kbps 1 – 5 50
1941 2.5 G 4 Mbps 15-20 150
2901 2.5 G 6 Mbps 15-20 150
2911 2.5 G 6 Mbps 25 200
2921 2.5 G 6 Mbps 25 200
2951 4 G 6 Mbps 25 200
3925 4 G 10 Mbps 50 400
3945 4 G 10 Mbps 50 400
WAAS Express requires maximum DRAM installed as indicated
Performance Testing Conducted with IOS FW, VPN (IPsec), NAT, and, QoS
* 1921 – no DRE support – only TFO/LZ, no additional memory required
Cisco Public © 2012 Cisco and/or its affiliates. All rights reserved. 31
Hardware Configuration
Memory (GB)
Max Opt TCP Conn
Number of
Virtual Blades
Drive (GB)
RAID WAN
Capacity (Mbps)
Connectivity Options
SM-SRE-700/710
4 500 N/A 500 N/A 20 N/A
SM-SRE-900/910
4 1000 N/A 500 RAID-1 50 N/A
WAVE-294
4 200 2
250 N/A
10
4 port GE Cu
8 port GE Cu
4 port GE fiber
8 400 2 20
WAVE-594
8 750 2
500 Optional 2nd HDD
for RAID1
50
12 1,300 4 100
WAVE-694
16 2,500 4
2x600 RAID-1
200
24 6,000 6 200
* Final recommendations requires a detailed sizing exercise that include application traffic mix, traffic characteristics, application load and other factors
mentioned in the sizing guidelines.
Cisco Public © 2012 Cisco and/or its affiliates. All rights reserved. 32
Hardware Configuration
Memory (GB)
Max Opt TCP Conn
Drive (GB)
RAID WAN
Capacity (Mbps)
Connectivity Options
WAVE-7541 24 18,000 6 x 450 RAID-5 500 2 port 10GE SFP+
8 port GE Cu
4 port GE fiber
WAVE-7571 48 60,000 8 x 450 RAID-5 1,000
WAVE-8541 96 150,000 8 x 600 RAID-5 2,000
Model OPT TCP
Conn
WAN BW
Mbps
Virtual
Cores
Memory
GB
Hard Disk
GB
WAAS
Model
vWAAS-200 200 10 1 2 160 294
vWAAS-750 750 50 2 4 250 594
vWAAS-6000 6000 200 4 8 500 694
vWAAS-12000 12000 310 4 12 750 -
vWAAS-60000 60000 1000 8* 48 1500 7571
Model MAX
Devices
Virtual
Cores
Memory
GB
Hard Disk
GB
WAAS
Model
vCM-100N 100 2 2 250 -
vCM-2000N 2000 4 8 600 694
Performance results
based on
Cisco UCS C210 M2
Cisco UCS B250 M2
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 33
2 port 10GE
Module
4 port GE Cu
Module
8 port GE Cu
Module
4 port GE Fiber
Module
Part Number WAVE-10GE-2SFP WAVE-INLN-GE-4T WAVE-INLN-GE-8T WAVE-INLN-GE-4SX
Inline Mode ✓ ✓ ✓
Media SFP+ SR N/A N/A N/A
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 34
Cisco AppNav 10Gbps AppNav Off path deployment only appliance
WAAS 5.0
4 x 10G SFP+
Cisco WAVE Appliance
Cisco AppNav
WAAS +
Cisco AppNav Cisco AppNav IOM:
12 x 1G copper
12 x 1G SFP
Cisco WAVE:
WAVE-8541
WAVE-7571
WAVE-7541
WAVE-694
WAAS 5.0
Cisco AppNav 1Gbps Off path or in path deployment
5.0
Cisco Public 36 © 2012 Cisco and/or its affiliates. All rights reserved.
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 37
Build on the Cisco ISR G2
Operational Simplification and Manageability
Application Visibility
and Control • NBAR2
• QoS
• Media Monitoring
• WAN Path Selection (PfR)
WAN Optimization
• Application Acceleration
• TCP Compression
• Data Redundancy Elimination
Hardware for ISR-AX
• SRE or Max DRAM
• Option for UCS-E Series Server
Security
• VPN Encryption
• IOS Firewall
• Intrusion Prevention
• Cloud Web Security
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 38
Firewall Internet
Internal Resource
s
Corporate Network
Access Router WAAS
Application Visibility and
Control
Firewall and VPN WAN
Path Control
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 39
L2-L3 Transport
L4-L7 Applicati
on Services
Simplify Application
Delivery
One Network UNIFIED SERVICES
Routing Redefined
Access Router
Firewall Internet
Internal Resour
ces
Corporate Network
Application Visibility and
Control
Firewall and VPN
WAN Path
Control
WAAS
Control
Optimization
Security
Visibility
Routing
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 40
Simplify Application
Delivery
One Network UNIFIED SERVICES
Delivering the Optimal Application Experience from Anywhere
Cisco ISR-AX
20–35% LOWER
than standalone appliances
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 42
C2951-WAAS-SEC/K9
(Old Bundle)
1000 TCP Connections
75 Mbps WAN throughput
$16,995(Base List)
Router Included!
C2951-AX/K9
ISR-AX
1000 TCP Connections
75 Mbps WAN throughput
$12,900(Base List)
Router Included!
Can add UCS-E for $3,358 more.
• Get 1300 TCP Connections
• Includes VMware licenses
• Same hardware can support up to
6000 WAAS connections
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 43
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 44
Cost Effective
Most cost-effective
Saves up to 40% over comparable
Delivers operational flexibility at scale
Comprehensive
Improves end user - application experience
Only portfolio that fits every site
Proven end-to-end architectural approach
Cloud Ready
Starts with branch and consolidated data centers
Transparently scaling to cloud & SaaS
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Public 45
• Cisco AX Routers
http://www.cisco.com/go/ax
• Cisco AVC
http://www.cisco.com/go/avc
• Cisco WAAS
http://www.cisco.com/go/waas
• Cisco PDI HelpDesk
http://www.cisco.com/go/pdihelpdesk