Presentation is loading. Please wait.

Presentation is loading. Please wait.

Loadbalancing Fundamentals 17. November 2010 Loadbalancing Fundamentals 17. November 2010 FC St. Pauli.

Similar presentations


Presentation on theme: "Loadbalancing Fundamentals 17. November 2010 Loadbalancing Fundamentals 17. November 2010 FC St. Pauli."— Presentation transcript:

1 Loadbalancing Fundamentals 17. November 2010 Loadbalancing Fundamentals 17. November 2010 FC St. Pauli

2 Agenda Agenda 1. Wer ist Radware 2. Loadbalancing Basics 3. Evolution vom Loadbalancing zum Application Delivery Controlling 4. Marktübersicht Folie 2

3 Wir sind ein Spezialist für die Verfügbarkeit von Applikationen Wir unterstützen beim Aufbau von Netzwerken, die auf Geschäftsprozesse ausgerichtet sind und garantieren: absolute Verfügbarkeit maximale Geschwindigkeit umfassende Sicherheit für die geschäftskritischen Applikationen rund um die Uhr Unsere Business smarten Lösungen unterstützen das Netzwerk den Anforderungen & Prozessen gerecht zu werden, um die Produktivität zu steigern und die Infrastrukturkosten zu senken Wer ist Radware? Folie 3

4 Aktiengesellschaft – Sept (NASDAQ: RDWR) gegründet 1997 Mitglied der RAD Gruppe 14 Firmen (davon 6 an der NASDAQ, über 4000 Mitarbeiter) mehr als 600 Mitarbeiter weltweit davon 210 in F&E 3xTACs Tel Aviv, New Delhi, & New Jersey Firmeninformation globale Präsenz Vertrieb in über 40 Ländern stetiger Umsatzwachstum 2009 Rekord Jahr Übernahme von Alteon (Nortel-Bereich) zum 01. April 2009 Übernahme von der WAF Protegrity Folie 4

5 Produktübersicht Mitarbeiter Customers Partner Data Center Application Servers Web & Portal Servers ESB Message Queuing System Mainframe Database servers AppWall AppDirector AppXML Inflight LoadBalancer Application Delievery Controller LoadBalancer Application Delievery Controller Web Services und XML Gateway Web Application Firewall HTTP Monitor WAN Link Optimizer / LoadBalancer Router LinkProof Branch LinkProof Virtual Director VM Ware Support DefensePro Intrusion Prevention Folie 5

6 Kundenbeispiele

7 Radware Alliance & OEM Ecosystem Advanced ADC Carrier Partnerships Advanced Enterprise Alliances & Technology Partnerships Folie 7

8 Verkehrsleitsystem für Applikationen ADC = Application Delivery Controler Folie 8 Vorteil: Steigerung der Verfügbarkeit und Geschwindigkeit

9 Was kann ein ADC mehr als ein klasischer Load Balancer?

10 Steigerung der Verfügbarkeit von Applikationen or Folie 10 aktiv passiv Health Check für Applikationen

11 AppDirector Datenbank Check HTTP / HTTPS Health Check intelligente Lastverteilung von Applikationen Web Server Datenbank z.B. OCS Server z.B. ICMP Health Check or Folie 11 or

12 Entlastung der Server - Offloading or Folie 12 SSL-Acceleration Caching TCP Multiplexing / Optimization Web Compression

13 L4 und L7 Policies or Folie 13 L4 Load Balancing L7 Load Balancing z.B.URL Modifizierung Bilder Video Suchergebnisse

14 Was macht ein Radware ADC = AppDirector/Alteon? Folie 14 Health Check für Applikationen Erkennung von Fehlern in der gesamten Prozeßkette intelligente Lastverteilung unabhängig vom Betriebssystem Ressourcenschonung Entlastung der Server und Vermeidung von Lastspitzen an einzelnen Systemen Steuerung der Datenströme Automatische Umschaltung / Verteilung ohne das es der Anwender merkt ADC Application Delivery Controller Datendurchsatz: einfach skalierbar per Lizenzkey

15 Vorteile der Radware ADC Lösung Folie 15

16 OnDemandSwitch Plattformen skalierbar von 200 Mbps bis zu 4 Gbps Durchsatz skalierbar von 8 Gbps bis zu 16 Gbps Durchsatz Folie 16

17 2. Loadbalancing Basics Folie Loadbalancing Basics

18 Page 18 Physical Topologies Switch Backup AppDirector Active AppDirector Router Routing Mode Default Gateway - Active AppDirector

19 Page 19 Physical Topologies Switch Backup AppDirector Active AppDirector Router Server Server Default Gateway – Active AppDirector Server Server Server One-Leg Mode

20 Page 20 Local Triangulation AppDirector Router IP = Loop back = Default Gateway = VIP = IP = Loop back = Default Gateway = Load Balancing Decision Source IP – Client Destination IP – VIP Destination MAC - Server Triangle

21 Page 21 Overview – Normal Flow VIP ( ) Client – Server Server Server Client’s Request Source IP = Destination IP = VIP – Load Balancing Decision AppDirector to Server Source IP = Destination IP = Server to Client Source IP= Destination IP = AppDirector to Client Source IP = VIP – Destination IP = VIP

22 Page 22 Overview – Local Triangulation VIP ( ) Client – Server Server Server Client’s Request Source IP = Destination IP = VIP – Load Balancing Decision AppDirector to Server Source IP = Destination IP = Dest.MAC = Server Server to Client Source IP = Destination IP = Sever to Client Source IP = VIP – Destination IP = VIP

23 Page 23 Overview – Client NAT VIP ( ) Client – Server Server Server Client’s Request Source IP = Destination = VIP – Load Balancing Decision AppDirector to Server Source IP = Destination = Server to Client Source IP = Destination = AppDirector to Client Source IP = VIP – Destination = VIP Client NAT

24 Page 24 Local Functionality AppDirector Farm 1 Farm 2 Farm Layer4 Policies VIP 1VIP 2VIP logical Servers Note: You can tune the device to support up to 6000 Layer4 policies

25 Page 25 Global Functionality Local and Global Dallas Servers Beijing Servers London Servers Dallas VIP London VIP Local and Global Beijing VIPLima VIP Lima Servers Beijing VIPLima VIP London VIP Beijing VIPLima VIP Dallas VIP Local LRP to London LRP to Dallas

26 Page 26 Dispatch Methods VIP Server 1 Server 2 AppDirector Dispatch Methods: Cyclic Fewest Users Least Traffic SNMP Hashing Response Time

27 Page 27 Dispatch Methods Cyclic – Round Robin Weighted Cyclic – Round Robin but uses Server Weights when applied Fewest Users – These are counted as source IPs or sessions (depending on “Session Mode”) Least Traffic – Measured in Packets SNMP – AD can query SNMP-enabled servers for Object Identifiers and make load balancing decisions accordingly. NT- 1 and NT-2 are preconfigured traffic measurements. Private-1 and -2 allow customers to enter their own SNMP Identifiers as needed (CPU, Available Memory, etc.) Hashing – uses mathematical formula based on source IP Response Time – measures amount of time each server takes to respond to Health Monitoring checks. Fastest responding server gets more traffic

28 Page 28 Layer 4 Policies FTP WWWDNS VIP Destination IP = VIP Destination port = 53 Destination IP = Selected server Destination port = 53 Destination IP = VIP Destination port = 21 Destination IP = Selected server Destination port = 21

29 Page 29 Connectivity Checks Server 1 Server 2 AppDirector Connectivity Checks: Ping TCP or UDP Port HTTP Page Page Content Ping

30 Page 30 Page and Content Checks Server 1 Server 2 AppDirector Page.htm ? HTML Code “Server Up” HTML Code “Server Down”

31 3. Evolution Folie Evolution vom Loadbalancing zum Application Delivery Controlling

32 Folie 32 klassisches L4 LB Application Awareness auf L7 Loadbalancing vs. ADC einfache LB Entscheidungen Anhand Src IP/Port Einfache Health Checks (3 Way Handshake etc.) Minimale L7 Optionen einfache LB Entscheidungen Anhand Src IP/Port Einfache Health Checks (3 Way Handshake etc.) Minimale L7 Optionen Cookie Auswertung / Session ID Auswertung Full Path Health Checks L7 Payload Modification Cookie Auswertung / Session ID Auswertung Full Path Health Checks L7 Payload Modification Gartner sagt dazu: Load Balancers Are Dead: Time to Focus on Application Delivery Gartner sagt dazu: Load Balancers Are Dead: Time to Focus on Application Delivery

33 Page 33 Health Monitoring – Checking Backend Devices Server 1 Server 2 AppDirector App 1 App 2 Database 1. Web Page Check 2. App Server Check 3. Database Check

34 Page 34 Dynamic Session ID Example - Cookie Session-ID-Identifier Session-ID-Value

35 Page 35 Dynamic Session ID Example – URL-Parameter Session-ID-Identifier Session-ID-Value

36 Page 36 Layer 7 Policies Green.com Black.com Blue.com VIP Destination IP = VIP Destination URL = Destination IP = Selected server Destination IP = VIP Destination URL = Destination IP = Selected server URL Policies

37 Page 37 Layer 7 Policies (English) VIP (Spanish) (English) (Spanish) (Spanish) (English) (English) (Spanish) URL – Accept- Language: es* URL – Accept- Language: es* URL – Accept- Language: en* URL – Accept- Language: en*

38 Page 38 Layer 7 Policies HTTP Header Fields

39 L7 Modifications: Header & Body Examples URLs in page: Modified URLs : https://secure.cnn.com/news_new/*.asp Advanced URL Condition Protocol: HTTP Hostname: Hostname Matching Type: Equal Port: -- Path: news Path Matching Type: Equal Page Name: -- Page Type: asp Advanced URL Condition Protocol: HTTP Hostname: Hostname Matching Type: Equal Port: -- Path: news Path Matching Type: Equal Page Name: -- Page Type: asp Advanced URL Modification Protocol: HTTPS Hostname: secure.cnn.com Hostname Modification Type: Replace Port: -- Path: news_new Path Modification Type: Replace Page Name: -- Page Type: asp Advanced URL Modification Protocol: HTTPS Hostname: secure.cnn.com Hostname Modification Type: Replace Port: -- Path: news_new Path Modification Type: Replace Page Name: -- Page Type: asp

40 Data Center Consolidation and Virtualization Trends

41 Slide 41 Introduction IT Initiatives Data Center Consolidation Security Service Oriented Architecture Convergence Data Center Virtualization Cloud Computing Green IT Real-Time Enterprise Business Drivers Productivity Cost Reduction Business Agility Business Continuity Globalization Regulatory Compliance Consolidation and Virtualization are the major initiatives How does it affect the ADC?

42 ADC L2 Switch L2/3 Switch Firewall/VPN Access Router Virtual Data Center Evolution Slide 42 Data Center ADC DMZ IDS Internet ADC Phase 1 of the evolution → implementing server virtualization Business benefits OPEX and CAPEX saving through server hardware, power and space reduction Higher resource utilization Management efficiency Phase 1 of the evolution → implementing server virtualization Business benefits OPEX and CAPEX saving through server hardware, power and space reduction Higher resource utilization Management efficiency ADC

43 Virtual Data Center Evolution Slide 43 Data Center Services Switch: Firewall, VPN, IDS, etc Edge Router L2/3 Switch ADC DMZ IDS L2 Switch L2/3 Switch Firewall/VPN Access Router Internet Phase 2 of the evolution → network virtualization and consolidation Business benefits Power and space reduction Management efficiency Phase 2 of the evolution → network virtualization and consolidation Business benefits Power and space reduction Management efficiency ADC

44 Slide 44 Virtual Data Center Evolution Data Center Services Switch: Firewall, VPN, IDS, etc Edge Router L2/3 Switch ADC DMZ Internet ADC The impact of the new virtual data center architecture → ADC virtualization and consolidation Business benefits Significant saving on hardware costs and operational expenses due to power and space reduction Management efficiency Business agility The impact of the new virtual data center architecture → ADC virtualization and consolidation Business benefits Significant saving on hardware costs and operational expenses due to power and space reduction Management efficiency Business agility Radware ADC-VX

45 ADC in the Virtualized Data Center Slide 45 Virtual Data Center Requirements from an ADC 1.Flexibility to support new virtualized network topologies 2.Align ADC with data center ‘moving parts’ changes 3.Instant provisioning of ADC 4.Ensure complete ADC privacy and segregation 5.Accommodate applications with different SLA, performance predictability and resilience needs 6.Simple ADC manageability 7.Participate in orchestration ecosystem

46 Radware’s Virtualized Application Delivery Infrastructure

47 Virtualized Application Delivery Infrastructure Slide 47 Reduce ADC CAPEX and OPEX through real ADC consolidation and virtualization Full DC virtualization agility across the application delivery layer Accommodate any application: SLA, performance predictability and resilience needs Reduce P2V risks and enable smooth migration Enable integration of ADC services into the virtual DC through open API

48 In the virtual data center Application Delivery Controllers are transformed into virtual ADC instances (vADCs) Each vADC can run on top of a specialized and general purpose computing resource Each vADC provides a consistent set of basic and advanced application delivery features and services, regardless of the computing resources it utilizes: SLB Global SLB Application acceleration Integrated security BWM Etc. Transforming the ADCs into application delivery services Virtual ADC Instances (vADC) Slide 48

49 ADC Computing Resources in the Virtualized Data Center Dedicated ADC Dedicated physical ADC device running a single vADC -“Siloed” data center architecture -Hybrid (virtualized and physical) data center -Applications requiring high performance predictability Radware ADC-VX ADC hypervisor running multiple vADCs on a specialized ADC hardware -ADC consolidation projects -Virtualized data center requiring high ADC agility -Applications requiring high performance predictability Radware Soft ADC vADC on a general server virtualization infrastructure -Cloud providers & virtualized data center requiring high ADC agility -Development, testing and QA environments -Applications requiring only best-effort performance Slide 49 Why are 3 form factors required? Application SLA requirements Number of required vADC instances Throughput capacity each vADC requires Cost savings objectives Data center footprint limitations Application deployment model Why are 3 form factors required? Application SLA requirements Number of required vADC instances Throughput capacity each vADC requires Cost savings objectives Data center footprint limitations Application deployment model

50 Integration to Virtual Data Center Ecosystem Orchestration System Integration Orchestration systems provide -End-to-end management of mission-critical applications and services -Work flows which can provision a new service based on business events All 3 ADC form factors are fully integrated with the virtual data center ecosystem’s orchestration system through dedicated plug-ins and APIs Allows IT manager to incorporate Radware’s ADCs into the virtual data center workflow automation Enables integration to both standard and home grown virtual data center automation and provisioning systems First orchestration system to be integrated is VMware vCenter Orchestrator Unleashing the full agility of complete application services and end-to-end service creation Slide 50

51 Unique VADI Services Provisioning and Decommissioning vADCs are instantly provisioned and/or decommissioned through ADC management system or orchestration systems’ API -Eliminates the need for manual provisioning and reduces IT OPEX -Improves IT responsiveness to business needs Dynamic resource allocation - Automatically allocate more resources to a vADC, when vADC resources are maximized -Improves service levels for all applications -Ensures each vADC has sufficient resources at any point in time -Ensures the correct distribution of resources across VADI vADC Migration - easily move a vADC instance between different form factors -Simplifies ADC P2V migration -Streamlines the deployment of new applications and services through simple migration of a vADC instance from testing to production -Enables scheduling ADC maintenance with zero downtime Slide 51

52 Virtualized Application Delivery Infrastructure Slide 52 Virtualized Data Center SAN Network & Storage Radware VADI extends the virtual data center agility through a set of virtual infrastructure services All vADC instances provide similar functionality and are remotely controlled Orchestration system - Manages and operates all data center elements Orchestration system - Manages and operates all data center elements

53 SAN Network & Storage Virtualized Application Delivery Infrastructure Virtualized Application Delivery Infrastructure Unique Services Slide 53 Virtualized Data Center Dynamic vADC resource allocation Instant provisioning through orchestration system Instant provisioning through orchestration system vADC migration by orchestration system

54 Slide 54 Taking On Demand To The Next Level On Demand Throughput & Capacity On Demand Advanced ADC Services On Demand vADC instances On Demand Scale out of data center Radware’s enhanced On-Demand makes your Application Delivery Future Ready

55 Radware’s ADC-VX The Agility of Virtual; The Predictability of Physical

56 Slide 56 ADC-VX Infrastructure Customer Data Center ADC-VX is the industry’s first ADC hypervisor ADC-VX runs multiple virtual ADC instances on one physical device Each virtual ADC instance is called vADC vADCs provide the same functionality as traditional physical ADC devices Business Unit Specific Executive only Applications Internal application Shared/public Applications vADC – A Shared/public Applications vADC - B Executive only Applications vADC – C Internal application vADC – D Business Unit Specific Radware ADC-VX

57 Full Encapsulation of vADC Instance Slide 57 ADC-VX Hypervisor On Demand Services On Demand Services Infrastructure Layer 4-7 Services Network Global SLB SharePoint 1Gbps IP Domain 1 Customer Managed Global SLB, Security, Application acceleration Fully featured ADC Health Checks, Layer 7 Configurations, etc. Vlans, ARP tables, Virtual routing and forwarding tables Vlans, ARP tables, Virtual routing and forwarding tables Physical Resources (CPU, Memory, SSL) Private: config file logging statistics On Demand Services On Demand Services Infrastructure Layer 4-7 Services Network Acceleration Oracle 2Gbps IP Domain 2 On Demand Services On Demand Services Infrastructure Layer 4-7 Services Network Security Marketing Applications 2Gbps IP Domain 3 Customer “Monitor Only”Provider Managed Private: config file logging statistics Private: config file logging statistics

58 Why Radware ADC-VX Slide 58 The Agility of Virtual; The Predictability of Physical Instant provisioning OnDemand scalability Resource reservation SLA assurance Fault isolation Network isolation Management isolation Resource abstraction Central management

59 Vielen Dank !


Download ppt "Loadbalancing Fundamentals 17. November 2010 Loadbalancing Fundamentals 17. November 2010 FC St. Pauli."

Similar presentations


Ads by Google