Presentation is loading. Please wait.

Presentation is loading. Please wait.

Riverbed SD-WAN Ricky Lin, CCIE#7469, MBA Deputy CTO.

Published byJayson Newman Modified over 7 years ago

Similar presentations

Presentation on theme: "Riverbed SD-WAN Ricky Lin, CCIE#7469, MBA Deputy CTO."— Presentation transcript:

1 Riverbed SD-WAN Ricky Lin, CCIE#7469, MBA Deputy CTO

2 Agenda 1 Why SD-WAN SteelConnect Overview 2 2016 Direction 3

3 Your IT used to look like this
Data Center App. teams IT Ops Disaster Recovery Site Your IT used to look like this Private WAN Regional Hub and Campus Remote and Branch Office Remote and Branch Office 2014

4 More and more it’s looking like this
Global Ops Data Center SaaS IaaS Disaster Recovery Site Carrier Neutral Facilities More and more it’s looking like this Private WAN Public Internet Regional Hub and Campus Mobile Remote and Branch Office Remote and Branch Office 2016+

5 Application delivery is becoming complex
Local Branch Applications SaaS to Branch Data Center Source: ESG ROBO TRENDS SURVEY Application diversity on a stretched perimeter The edge is becoming a hub of communication Faster user behavior changes Non-scalable change implementation based on legacy concepts Faster business driven changes The faster pace of changes drives IT operations to evolve

6 Software-Defined WAN Simplicity Reliability Agility Cost Business Performance “SD-WAN is a new and transformational way to architect, deploy and operate corporate WANs, as it provides a dramatically simplified way of deploying and managing remote branch office connectivity in a cost-effective manner.”1 Enabling access to biz critical apps = RVBD “By the end of 2019, 30% of enterprises will use SD-WAN products in all their branches, up from less than 1% today.” 1 Gartner, Jul 2015 “Technology Overview for SD-WAN” 2 Gartner, Dec 2015 “Market Guide for Software-Defined WAN” General notes about Platform slides: Title is taking focus – platform should be the focus; make it larger, it should take up about a quarter of the slide. It also looks more transparent now. If you need, you can put a white box behind it. For text in bottom table – vertically align text so that it is centered between lines. Make “TM” smaller after each word.

7 Three Key Value Props driving SD-WAN
Simplified Management and Orchestration (Provisioning, Management, Configuration) Utilizing diverse transport effectively (Reducing costs via broadband Internet, increasing bandwidth and utilization) Increased Visibility and Security in the enterprise 7

8 Agenda 1 Why SD-WAN SteelConnect Overview 2 2016 Direction 3

9 SD-WAN: How does it work?
Management Portal Single-pane of glass for configuration network management: cloud-hosted and on-premises Zero-touch provisioning Portal where user defines global policies Aggregated visibility on application performance SD-WAN Controller Establishes and manages Secure Virtual Overlay to sites. Interprets the Global Policy according to the knowledge collected from the network Defines service chains to enable policy goals Manages distribution of interpreted Policy to individual elements Virtual WAN Fabric Secure Overlay Fabric Transport Independence Network Segmentation SD-WAN Gateway Local Policy Enforcement WAN Path Selection, Network QoS, Firewall, Service Chaining Telemetry feedback loop to/from SD-WAN Controller WAN Transport Virtualization Centralized Management App-centric & Policy-based Orchestration Management Portal SD-WAN Controller MPLS Internet 4G/LTE Satellite Virtual WAN Fabric SaaS IaaS SD-WAN Gateways Remote & Branch Offices Campus Sites Data Centers Regional Hubs

10 3 year old startup focused on SD-WAN and remote/branch office SD-LAN
BRANCH AND EDGE CONNECTIVITY DELIVERED OcedoConnect Cloud Based Management (multitenant, SaaS) Gateways – G50, G100, V-GW Ethernet Switch – S24 (w/POE for voice) WiFi Access Points A3, A5, A5+ Branch 1 Branch 2 Branch 3 “Network Configuration Automated” One centrally assigned policy for WAN and Branch network Zero touch provisioning Solutions (HW/SW/SaaS) for automated configuration and management of Branch networks and WANs 3 year old startup focused on SD-WAN and remote/branch office SD-LAN Founded by team that created Astaro (Universal Threat Management (UTM) acquired by Sophos) Revenue products & cloud services since Q2/2015 Based in Karlsruhe, Germany (Home of Karlsruhe Institute of Technology) Ocedo brings to Riverbed experienced leaders and engineering talent. The founding team of Ocedo brings decades of experience in the networking industry, including co-founding Astaro, a network security company acquired by Sophos in 2011.

11 CASE STUDY STOCKMEIER CHEMIE Centralized WLAN Management, Intersite management with powerful networking external storage, office and Production buildings. STOCKMEIER - IN THE BUILDING AS WELL IN WAREHOUSE CONNECTED WITH OCEDO was on the company premises For several years a WLAN solution in use. by virtue of changed requirements it clear that the existing expand or replace solution would be. An important goal in the redesign of the corporate Wireless LAN it was, the outdoor Area better than in the past "Illuminate" So, also the outer bearing, in which diverse Chemicals, usually in liquid Form, are stored, throughout and stable networking. Such integrated networking is necessary so that employees in the Outdoor areas, for example, with forklifts certain products record, this same over Scan mounted there Terminals and directly into the SAP system can subscribe to. This requirement could with the powerful easily access points of Ocedo are met. TOTAL WERE TO LOCATIONS IN BIELEFELD AND IN HERFORD UNTIL SPRING 2015 ALREADY 25 ACCESS POINTS IN PLACE - It will be around two Thirds indoors, does the office and production buildings, and the remaining third in the outdoor area attached, where among other things store liquid chemicals. In order to the latter a good supply to ensure by then was the biggest challenge. In the Past crack in the outer regions repeatedly the connection for from the network, because the transmission strength existing access points some places was not sufficient, order against the part right before the Antennas stored liquids "To shine". Meanwhile were the outdoor areas in Bielefeld and Herford with a total eleven Ocedo access points of the model Series AP5r crosslinked. Less than originally planned, because the employed Access Points extremely have achieved good network coverage. The APs are also so powerful and trouble-resistant, so that they also cover 1920 BASED August STOCKMEIER ON TRADE HOUSE FOR CHEMICAL PRODUCTS IN BIELEFELD. TODAY IF THE STOCKMEIER GROUP ABOUT LOCATIONS THROUGHOUT GERMANY, BELGIUM, FRANCE, GREAT BRITAIN, NETHERLANDS, AUSTRIA, POLAND, RUSSIA AND THE UNITED STATES. BIELEFELD IS TODAY THE HEADQUARTERS COMPANY. Stock Meier warehouse in Bielefeld Ocedo access point AP3 (Indoor) Ocedo Access Point AP5r (Outdoor) ensure a warehouse and therefore there is no additional indoor APs were necessary. This performance is mainly in the halls is a great advantage, in where else special for explosion protection certified Access Points or additional protection to bell the access points have been necessary were what led to higher costs would have. The access points are the cloud-based management Console Ocedo established on of the complete network design all locations and permissions To be defined. These will copied to the device as soon as they have a network connection. As well as the device can also Changes to the devices easy carried out centrally and remotely will. The console can also the network activity over the Access Point runs are observed. Medium and long term to all other locations of Stock Meier with APs from Ocedo be equipped - not least, because the solution easy to manage is to expand and flexibly. On Another weighty advantage for Stock Meier is that the solution to centrally can be administered, also on the various additional locations away. This is also important, because stock Meier in the last fifteen Years from 200 to more than 1,200 employees has grown. With the aim of all sites from a central set up IT department from and provide support, provides the solution of Ocedo clear added value. OUTLOOK Based on the positive experiences should the Ocedo solution at the Bielefeld site next to the previous use of the storage area in two subsequent steps will include a Guest WLAN, especially for conference rooms, and a wireless Network for its own employees be established. OUR PARTNER The Cobotec GmbH is an IT system house Anytown focusing IT security and infrastructure solutions. Since 2003 the The company specializes in IT services and has partnered with innovative products and a established first-class service in the market. The Cobotec care networks enterprise, government and health facilities and supports its customers as a competent service partner. Of the Service ranges from analyzing and Advice on the design and Implementation to all-round support of IT systems. Stock Meier in Bielefeld Project: Centralized, multi-site WLAN management, performance and trouble-free wireless coverage of office and production buildings and outdoors, more stable and faster data transfer Planning: "virtual network planning" ½ man day vs. Traditional installation: 2 Weeks Products: 25 access points of the models Ocedo AP3 for indoor and AP5r for outdoor use Benefits: Easy management and flexible expandability. High power handling capacity of the access points, Received power to the interior region

12 Contract mining company - Africa
Project Description Customer is one of the largest Contract Mining Company’s in Africa with established support networks in Africa, Australia and Europe. It is a mixed MPLS/Internet infrastructure across 20 branches. Step by step they want to get rid of their entire Cisco infrastructure. Ocedo was beating the competitors with: Automated fully-meshed VPN Pure central management of all components Zero-touch deployment for all components Dramatically reduced maintenance efforts Gear: 3x G100 12x G50w 3x AP3 2x AP5 Effort: Few hours from time to time, because of step-by-step order and deployment Status February 2016: More than half of the sites are up and running with Ocedo GWs, ordering step by step is going on

13 Government - Mauritius
Project Description The customer is a belongs to the Government of Mauritius. Headquarter and branch in Mauritius plus 8 overseas offices worldwide have to get connected including switching and wireless (for home offices too). Ocedo was beating the competitors with: Automated fully-meshed VPN Easy and seamless integration of multiple home offices (L2 VPN) Pure central management of all components Zero-touch deployment for all components Dramatically reduced maintenance efforts Gear: 9x G50w 5x AP5r & nx AP3 nx S12 Effort: 1 day configuration Max few hours for each office replacing the infrastructure Status February 2016: PoC was successful, in ordering process

14 Manufacturer for LED-based illumination technology - Germany
Project Description The customer is one of the leading manufacturers of LED-based illumination technology and light systems. They have offices and production branches in 40 countries all over the world, HQ is in Germany. All offices have MPLS connection, mostly used for Citrix, but the bandwidth was often too small and the branches demanded local internet breakout. It was almost decided to have Citrix CloudBridge VirtualWAN devices installed in all locations, but the partner brought Ocedo into the game. Ocedo was beating the competitors with: Hybrid WAN - use 2 or more Uplinks and use for failover (and loadbalancing/QoS/traffic path selection in future) very easy configuration - especially compared to the CloudBridge config comment of the ProfServ guy at partner: “we sold 5 days of consulting & configuration to the customer but actually we almost just got coffee and observed how the G50 appliances came online in the CC.” Citrix CloudBridge is still used in some larger locations, but the customer has saved >50k€ with Ocedo Gear: 36x G50W, 20x AP3, 2x G100 Effort: ½ day for demoing the functionality and convince customer ½ day per location to replace and configure G50-onsite Status February 2016: Ordered, deployment/integration is currently happening, 50% done

15 The Power of Software-Defined Networking
Centralized Management & Operational Efficiency r And from a time perspective, the traditional way if you configure all the devices for one site and it takes x amount of time to unbox them, stage them, ship out. If you have 5 sites, it’s pretty proportional, taking 5x the amount of time to do the same. With centralized configuration, you design and configure them all centrally once, potentially even before ordering, and then the endpoint devices are just deployed directly to the sites, get plugged in and come online. No more staging, or walking someone through console cables and hyperterminal, no more forgetting about leftover configuration that might jack up something else…not that I’ve ever done that, I’m a CCIE. I would say this is available from different vendors today. There’s an architect friend of mine at a retail company doing this today with a SD-WAN solution, not going to mention which vendor. But he’s converting stores a night up onto broadband Internet with new gateways. So, I would say the operation efficiencies for centralized management are real and available today. Software-Defined WAN & Remote LAN Single Management & Control Plane For all Sites

16 Demo

17 Agenda 1 Why SD-WAN SteelConnect Overview 2 2016 Direction 3

18 Applications - Not Just Packets Integrated Visibility
Simple to Use SteelCentral SteelHead That’s what is about. Elevating the network. From something that delivers packets to delivering apps in a software defined way. Having an overlay network that is application centric, defined in terms of business, that can easily and transparency integrate within the business and infrastructure you already have. And finally to have that feedback from integrated, end-to-end visibility from the time the user clicks a mouse to the disk activity in the datacenter or in the public cloud. So Riverbed is all about rethinking networking. Integrated Visibility

19 Riverbed SD-WAN Product Roadmap
Phase 1 Internet SD-WAN Phase 2 Hybrid SD-WAN Phase 3 Data Center Scale Phase 4 Services Platform  ` Use Case Internet WAN Overlay with Branch Network automation Hybrid SD-WAN Overlay with Dynamic routing Enterprise-class SD-WAN for large-scale deployments Extensible service options for converged branches Management/Control Cloud-hosted Visibility via SteelCentral On-prem appliance Functional separation, ++ Branch Gateways SDI-130 & 330 up to 200Mbps, 200 sites SDI-1030, up to 1Gbps, sites SDI-2030, up to 1Gbps, sites SDI-2030, up to 1Gbps, sites Data Center Gateways SDI-VGM, up to 2.5 Gbps SDI Gbps+ with clustering Supported Topologies L2 & L3 Intra-zone Mesh and Hub & Spoke  L2 & L3 Intra-zone Mesh and Hub & Spoke Deterministic path selection (DPS) DPS Services Embedded SteelOS with Primary SD-WAN services: Static Routing, DPI, QoS, Path Selection, integrated Security, VPNs Embedded SteelOS, Dynamic routing (BGP, OSPF), VRRP, Path Quality, VPN+, Auto Topology, SteelHead WAN- Opt integration, Steel/Netflow SteelOS, HA via cluster w/ Load Balancing in DC, Path Quality++, optimized cloud- based security – Zscaler, SteelCentral++ SteelOS, Tighter integration with SteelHead, WAN-Opt as a service, Integrated 3rd party service chain

20 Business intent: a common language for fast application rollout and easy change management
Business leader Business goals I want this new critical confidential “Financial Consolidation” SAP module to exclusively be delivered In Asia to Users in the Financial Department IT leader High level IT abstractions Application Groups Performance Groups Security Groups Sites Users SD-WAN Controller But that’s not the end final goal of SD-WAN in my opinion. The ultimate goal is to be able to fully translate the business intent into the enterprise operation. For example, “I want this new critical and confidential financial consolidation SAP module to exclusively be delivered in Asia to users in the Financial department”. And that should be fully translated into the policies needed, application and security groups, DPI for identification, it’s a critical app so it should take this transport with this amount of reserved bandwidth, and only certain users and zones can access the application. We’re doing this today, it’s just a very manual reactive process between groups. I used to work at a hospital as a network admin, and the process went more like this. CEO is doing a telepresence with the medical school, we need to make sure it goes smoothly. Okay, where’s he at? Tweak the QoS policy for that particular Polycom IP, oh wait, it’s talking to a MCU, tweak the policy for the MCU, etc. Anyhow, the point being is it’s the translation of that business intent to the infrastructure configurations that’s the ultimate goal, because like it or not, the applications and business intent is already driving what we do. Network leader Global network service abstractions DPI library Service chains Firewall policies Uplinks Active Directory Encrypted Segments Subnets

21 SteelHead Hybrid Networking has an exciting future
Software Software SteelOS 9.1 9.2 XX70 RiOS Hybrid Networking WAN optimization Controlled by SCC Hybrid Networking scale and additional enhancements SteelOS migration with base SD-WAN services / Hybrid Networking WAN optimization Frank: “Proxy” Family names, “enhancements” to enforce long life message

22 Best of Technology and Enterprise Needs
Router Incumbents SDWAN pureplays WAN specialists If we go back to our categorizations, you can think of Riverbed, and specifically the SteelHead, as falling in the WAN specialist circle. Over time, we’ve added more functions into the SteelHead related to network services, but frankly, we also had some of the difficulties that all WAN specialists have, adapting a mostly network-agnostic appliance, a central controller geared towards WAN optimization, into a different market with different key value props. Ocedo, on the other hand, is ground up built to this purpose, from the pure central management, the unified view of the enterprise network, to the optimized devices that leverage it. But like SD-WAN pureplays, they lacked the established name as well as functions outside of networking. (Run animation) – So, we have the potential synergy of putting the strengths from both sides together, the innovation and the ground up focus of a SD-WAN pureplay, combined with the enterprise knowledge, leading application acceleration, identification, and visibility. Ocedo provides us the foundation and infrastructure components, with the Riverbed core strengths built on top. That’s something no one else in this market has. Cisco is also in two areas, but they’re actually cannibalistic to each other. 22

23 Why Riverbed SD-WAN Excellence Vision Experience
Comprehensive application performance, visibility and control product portfolio Excellence Vision Driving Market Leading Evolution into the WAN <space> Experience The only enterprise proven vendor with a vision and execution to apply SD-WAN from layer 3 to layer 7 with a foot in both the on-premise and cloud world and with the broadest application performance management portfolio We know how to manage on-premises workloads First to deliver optimized solutions for cloud-based workloads (optimization, visibility of any SaaS / IaaS) Properties service chaning, SteelOS, containerization operate at scale the virtruailazed overlays with the underlays Orchestration architecture and implementation (3rd party + riverbed assets) at scale Ease of use transformational change from router-centric branch WAN to SD-WAN abstracted overlays The only real solution for cloud-based workloads Tier 1 Proven Enterprise Vendor <spacer>

24 Application Defined Network Utopia!
So, regardless of the next changes that are driving the changes, if it’s SaaS, public cloud Infrastructure, Big Data,…when we start thinking in terms of the application instead of networks, gain the right type of visibility and unified central intelligence, this is what happens. Yes, more unicorns and poop. So, I’ll leave off with a final serious note.

25 Riverbed SD-WAN Management Portal SD-WAN Gateways MANAGEMENT GATEWAY r
Deployed On-Premises or In The Cloud Zero-touch Provisioning Global Policy Definition Global Visibility (users, devices, networks, apps) MANAGEMENT SD-WAN Gateways Model 130 330 1030 2030 3030 5030 vGW Throughput 100 Mbps 200 Mbps 1 Gbps 5 Gbps 10+ Gbps 2.5 Gbps Availability March, 20161 Q Q GATEWAY SD-LAN Connectivity LAN Switches Model S12 S24 Ports 12 24 Availability March, 20161 WiFi Access Points AP3 AP5 AP5R Radio 600 Mbps max rate 2x2 MIMO with 2 spatial streams Internal diversity antennas 1750 Mbps max rate 3x3 MIMO with 3 spatial streams Internal 3D sectorized antenna array Omni-directional antennas (N-Type) SWITCH ACCESS POINT 1 Approximate product launch dates.

26 Trust in Skynet SDWAN. It’s the future.
Trust in SDWAN, it’s the future.

27 Thanks for watching.

Download ppt "Riverbed SD-WAN Ricky Lin, CCIE#7469, MBA Deputy CTO."

Similar presentations

1/17/20141 Leveraging Cloudbursting To Drive Down IT Costs Eric Burgener Senior Vice President, Product Marketing March 9, 2010.

1/17/20141 Leveraging Cloudbursting To Drive Down IT Costs Eric Burgener Senior Vice President, Product Marketing March 9, 2010.
MUNIS Platform Migration Project WELCOME. Agenda Introductions Tyler Cloud Overview Munis New Features Questions.

MUNIS Platform Migration Project WELCOME. Agenda Introductions Tyler Cloud Overview Munis New Features Questions.
1 Vladimir Knežević Microsoft Software d.o.o.. 80% Održavanje 80% Održavanje 20% New Cost Reduction Keep Business Up & Running End User Productivity End.

1 Vladimir Knežević Microsoft Software d.o.o.. 80% Održavanje 80% Održavanje 20% New Cost Reduction Keep Business Up & Running End User Productivity End.
Cisco and NetApp Confidential. Distributed under non-disclosure only. Name Date FlexPod Entry-level Solution FlexPod Value, Sized Right for Smaller Workloads.

Cisco and NetApp Confidential. Distributed under non-disclosure only. Name Date FlexPod Entry-level Solution FlexPod Value, Sized Right for Smaller Workloads.
Citrix Partner Update The Citrix Delivery Centre.

Citrix Partner Update The Citrix Delivery Centre.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Confidential 1 MAP Value Proposition.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Confidential 1 MAP Value Proposition.
Effectively Explaining the Cloud to Your Colleagues.

Effectively Explaining the Cloud to Your Colleagues.
Adam Leidigh Brandon Pyle Bernardo Ruiz Daniel Nakamura Arianna Campos.

Adam Leidigh Brandon Pyle Bernardo Ruiz Daniel Nakamura Arianna Campos.
Copyright © 2014 Juniper Networks, Inc. 1 Juniper Unite Cloud-Enabled Enterprise Juniper’s Innovation in Enterprise Networks.

Copyright © 2014 Juniper Networks, Inc. 1 Juniper Unite Cloud-Enabled Enterprise Juniper’s Innovation in Enterprise Networks.
MANAGED LAN SERVICES How will you benefit? Managed LAN service  Full LAN service (hardware, operation, other services)  Per-port pricing  International.

MANAGED LAN SERVICES How will you benefit? Managed LAN service  Full LAN service (hardware, operation, other services)  Per-port pricing  International.
© 2015 TriZetto Corporation Managed Services Overview Presenter Names 2.

© 2015 TriZetto Corporation Managed Services Overview Presenter Names 2.
Introduction to Avaya’s SDN Architecture February 2015.

Introduction to Avaya’s SDN Architecture February 2015.
CAMPUS LAN DESIGN GUIDE Design Considerations for the High-Performance Campus LAN.

CAMPUS LAN DESIGN GUIDE Design Considerations for the High-Performance Campus LAN.
Designing Cisco Data Center Unified Fabric 642-996.

Designing Cisco Data Center Unified Fabric
©2015 EarthLink. All rights reserved. EarthLink overview.

©2015 EarthLink. All rights reserved. EarthLink overview.
©2016 EarthLink. All rights reserved. EarthLink Enterprise & Mid-Market overview.

©2016 EarthLink. All rights reserved. EarthLink Enterprise & Mid-Market overview.
Digital Transformation with SD-WAN

Digital Transformation with SD-WAN
“Your application performance is only as good as your network” (4)

“Your application performance is only as good as your network” (4)
SDN & NFV Driving Additional Value into Managed Services.

SDN & NFV Driving Additional Value into Managed Services.
Azure Stack Foundation

Azure Stack Foundation

Similar presentations

Ads by Google