1 / 68

MetaFrame UNIX Presentation Server: Access UNIX and Java Apps Anywhere

Learn about the server-based computing model, Independent Computing Architecture (ICA), UNIX Presentation Server architecture, and secure access infrastructure with MetaFrame UNIX Presentation Server.

sbrowne
Download Presentation

MetaFrame UNIX Presentation Server: Access UNIX and Java Apps Anywhere

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. MetaFrame UNIX Presentation Server FR2 Technical Review Roddy RodsteinEnterprise Systems Engineerroddy.rodstein@citrix.com

  2. Agenda • Server-Based Computing v Client Server Model • Independent Computing Architecture (ICA) • UNIX Presentation Server Intro • Citrix Access Infrastructure Intro • UNIX Presentation Server Architecture • Secure Gateway 1.1 • Web Interface 2.0 • Business Continuity Intro • UNIX Presentation Server FR1 & FR2 • Pricing, Availability & Training

  3. Server-Based Computing v Client Server Model

  4. Existing Infrastructure Information stored at client Users Client Applications Information stored centrally Services Server Data Users Client Applications Network Services Information Server-Based Computing v Client Server Augment w/ MetaFrame Presentation Server for UNIX Information stored at client Information stored centrally

  5. SBC Cont…. • Applications and data managed at server. • Application upgrades managed at server. • Only ICA client managed on the clients.

  6. Independent Computing Architecture (ICA)

  7. Applications Accessed From Network Device Applications Install & Run on UNIX Presentation Server Shared Ethernet 10 Mbps Wireless Ethernet 2 Mbps ISDN 64 Kbps Modem 28.8 bps ICA Stream Only screens, mouse clicks & keystrokes travel the network Independent Computing Architecture & SBC

  8. ICA Display Client Drive Mapping ICA Client Printer Mapping Client LPT Port Mapping Background Image Delivery Downstream Audio ICA Virtual Channels ICA Protocol can support for up to 32 virtual channels Transport Protocol *New Channel ICA Win32 7.0 client required

  9. SpeedScreen™ 2 enables reduced bandwidth consumption ICA Compared to X11 ICA is a fraction of the bandwidth consumption

  10. Independent Computing Architecture • Up to 10X faster than client/server. • Originally designed for minimum of 14.4k modem connection. • LAN, WAN, Dial-up & Wireless speeds take full advantage of low bandwidth requirements of Presentation Server. • Wireless, a natural fit due to limited capabilities of various hand held devices.

  11. ICA Clients

  12. ICA Client Matrix ICA clients are categorized into tiers based on how frequently the client software is updated Win32 – Win16 – Java – Mac – Linux x86 - WinCE Tier 1 Tier 2 Solaris/SPARC – HP-UX – IBM AIX - EPOC Linux ARM – Solaris x86 – SunOS HPQ Tru-64 – SGI IRIX – SCO Tier 3 Tier 4 DOS32 – DOS16 – OS/2

  13. Win32 Program Neighborhood Client

  14. UNIX and Windows PS Resources Delivered to any ICA enabled device. A screenshot from a Windows desktop This screenshot shows UNIX Presentation Server application running simultaneously in a seamless Microsoft windows environment.

  15. ICA Client • ½ of the Deployment Story • Can be installed locally on virtually any device • Java client does not require a local installation • ICA clients can be distributed via Web Interface

  16. UNIX Presentation Server Intro…

  17. Number One Benefit MetaFrame UNIX Presentation Server makes it possible to access UNIX and Java apps, unchanged, in ways that were not possible before -- even high-bandwidth X11 and Java applications can run over thin connections MetaFrame UNIX Presentation Server allows implementation of a “thin client” model, dramatically reducing maintenance

  18. Enterprise Class Management Users • Session Shadowing • Enables remote troubleshooting and support • Enables group application sharing • Session Disconnect/Reconnect • Retains session during a broken connection • Business Recovery Client • Automatically connects to a backup server farm if necessary

  19. UNIX Presentation Server can deploy any standard UNIX application, including... • Cadence • Star Office • Synopsis • Reuters Kondor+ & Market Data Sheets – investment banking • SunGard – Investment Banking (your broker may use it) • CATIA – CAD • Numetrix – CRM (acquired by JDE) • i2 – another CRM • Dinis – electrical network analysis app made by ICL • And thousands of in-house applications… • mobile phone network monitoring, development tools, etc…

  20. Java Application – Deployments • UNIX Presentation Server can also be used to deploy Java applications like: • SAP GUI – the Java version • Oracle 11 front ends, e.g. Oracle Financials • SilverStream development environment • These apps are meant to “run anywhere” but in practice they hit problems with: • Too big and slow to run on many client devices • They are client-server apps that don’t work well on WANs/dial-up connections • Different browsers don’t all run Java the same way

  21. JAVA Apps Cont… • Eliminate the limitation on size • One JVM or browser configuration • One JAVA development environment • Instant deployment through ICA

  22. Citrix Access Infrastructure Intro

  23. Access Application Mgmt. Application Services Application Data Access Infrastructure Stack Secure Gateway Secure Access Web Interface Web browser delivery of applications MetaFrame for UNIX Applications running on MetaFrame servers UNIX Presentation Server 1.2 FR2 Solaris 2.6, 7, 8 & *9 SG 1.1 Solaris 8 Web Interface 2.0 UNIX and Linux w Apache & Tomcat

  24. UNIX Presentation Server Architecture

  25. UNIX Presentation Server Daemons and Services • UNIX Presentation Server starts two main daemons: • /opt/CTXSmf/lib/ctxfm • The Citrix Frame Manager, responsible for the ICA Listener. • /opt/CTXSmf/lib/ctxibrowser • The ICA Browser service. • For each opened ICA session the ctxfm daemon spawns three processes. • Server desktops: • /opt/CTXSmf/lib/ctxXtw • /opt/CTXSmf/lib/ctxlogin • /opt/CTXSmf/lib/ctxsession.sh. • Published applications: • /opt/CTXSmf/lib/ctxXtw • /opt/CTXSmf/lib/ctxlogin • /opt/CTXSmf/lib/ctxwm.

  26. UNIX Presentation Server Daemons and Services Cont… • The ctxXtw process is the Citrix Xserver that communicates in both X11 and ICA ThinWire protocols. • The ctxlogin is responsible for starting a published application (and invoking ctxwm) or starting a full server desktop (and executing ctxsession.sh). • The ctxsession.sh process is a shell script that runs every time a user logs into a server desktop. It is customizable. • The ctxwm process is the Citrix Window Manager.

  27. UNIX Presentation Server Architecture X11 Frame Manager X11 apps Citrix X Server Java app ICA stack X11 SUN JVM ICA Stack ICA Client UNIX Term Emulator ICA Browser Text app X11 UNIX Presentation Server Other UNIX Presentation Servers ICA Browser

  28. Server Farm & ICA Browser • ICA Browser Attributes • Server Farms can span segments. • Each segment has ONE ICA Master Browser. • ICA Master Browser stores dynamic data for the segment and handles Enumeration/Resolution for ICA clients. • Persistent data stored in memory (farm membership, licenses, published applications, etc.). ICA Gateway ICA Master Browser ICA Master Browser Segment 1 10.1.1.x Farm 1 (2, 3) Segment 2 10.1.2.x Farm 4 (5, 6)

  29. Server Farm & ICA Browser • ICA Browser Attributes • Persistent data read by ICA browser at startup. • Servers communicate via UDP broadcasts on port 1604. • Each Citrix server in a subnet is a Member Browser (even the Master ICA Browsers). ICA Gateway ICA Master Browser ICA Master Browser Segment 1 10.1.1.x Farm 1 (2, 3) Segment 2 10.1.2.x Farm 4 (5, 6)

  30. Enterprise-class Scalability • Scales easily as business needs grow. • Simply increase the number of SUN Servers in MetaFrame Presentation server farm.

  31. Secure Gateway 1.1

  32. Secure Gateway for Solaris 8 “SPARC” A secure Internet gateway (SSL VPN) between Presentation Servers and ICA clients that allows customers to simply and securely provide application access across the Internet, on demand, to any device • Single point of entry for MetaFrame XP for Windows and MetaFrame for UNIX server farms • Single point of focus for security • 128-bit SSL and TLS encryption 33

  33. Secure Gateway / SPARC Stats • Dual processor 300MHz SPARC server can support up to 400 concurrent connections • Quad processor 400MHz SPARC server can support up to 800 concurrent connections • The Secure Ticket Authority (STA) is a (ISAPI DLL). Minimal system requirements, Windows 2000 server w (IIS). * Optional Component

  34. ICA/1494 ICA/SSL 443 ICA File 443 ICA File Standard WI XML/80 or 443 Secure Gateway 1.1 DMZ Solaris CSG Server Production Presentation Server Farm ICA Client XML Service Web Browser Secure UNIX Web Server 80/443 WI servlet

  35. 5. ICA/1494 4. ICA/SSL 443 5. Ticket Verification/80 3. ICA File 443 3. ICA File 2. Ticket Generation/80 1. Standard NFuse XML/80 2. Requested CSG ticket on application launch SG 1.1 with Ticketing (Windows Required) DMZ • 1. Standard NFuse ICA Name Resolution Solaris CSG Server Production MetaFrame Farm ICA Client XML Service Secure Ticketing Authority Web Browser Secure UNIX Web Server 80/443 WI servlet 3. CSG ticket is delivered to ICA client as the part of ICA file. 4. CSG ticket is delivered to CSG server as the part of SOCKS inside SSL information. 5. CSG server verifies ticket and opens ICA connection.

  36. Web Interface 2.0

  37. Web Interface Authentication • Authenticate using • NIS • NIS+ • LDAP • other account databases 39

  38. ICA/1494 ICA File 443 ICA File Standard WI XML/80 or 443 WI Architecture DMZ Solaris CSG Server Production Presentation Server Farm ICA Client ICA/SSL 443 XML Service Web Browser Secure UNIX Web Server 80/443 WI servlet

  39. Business Continuity

  40. Common Customer Needs • Maintain business operations in any event – a necessity for business survival • Maintain high systems availability – even during periods of scheduled downtime • Provide relocated professionals safe and secure access to corporate resources from a secondary location – home, leased space, or backup data center • Maintain sense of corporate community

  41. Business Continuity Architecture The Business Continuity Stack Citrix Access Infrastructure Veritas, Microsoft Clustering / Failover Software + Integration and Consulting Services* (IBM, SunGard, HP, SIs, Compaq, EMC) Network Security Intrusion Detection Checkpoint, Tripwire & *Service offerings will vary. In general, the quicker you want to be back up and the fresher you want your data after a disaster, the more their services will cost you (as measured by RTO and data currency objectives of the buying organization). Data Storage and Replication Sun, EMC, HP, IBM Switching and Routing Cisco, Nortel, Lucent Telephony backbone Hosting services Internet access Telco Providers (AT&T, Telefonica, Verizon, Worldcom, Sprint, British Telecom)

  42. Business Continuity Architecture Storage &Replication Enterprise Applications (Windows, Unix, Mainframe) UNIX Presentation Server Farm UNIX Presentation Server Farm Application Serving Backup Environment Portal Services ProductionEnvironment Web Interface LAN Internet Co-located Workers Home Hosting Center Backup Location Dial Up WAN

  43. UNIX Presentation Server FR 1 & 2

  44. UNIX Presentation Server v1.1, Feature Release 1 • Key Features • 32,767 x 32,767, 24 bit color, multiple monitors • NFuse 1.6 feature parity: Filtering, Ticketing, SSL • TCP (XML or HTTP) ICA Browser • SSL support for ICA clients • “International” text in user dialogs • Client Drive Mapping • Mouse Click Feedback (a Zero Latency feature) • NIS+ (PAM) Support through NFuse • Load Balancing can be tuned to server capacity • Parameter Passing to applications • Bind ICA Browser to NIC 47

  45. Increased Color Depth and Resolution Many engineering and geology type applications require true color – e.g. CAD, Seismic Analysis 8-bit color 16-bit color

  46. Multiple-monitor Support Financial, development and CAD application often have large working areas that are difficult to contain on even a 20” monitor 49

  47. Client Drive Mapping See client drives from UNIX applications Transfer files to and from local drives seamlessly

  48. Citrix XML Protocol ICA overTCP/IP ICA Client TCP/IP Browser Support / XML Service • ICA clients discover servers and applications • XML eliminates the need for UDP broadcasts • Download from Citrix Knowledge Base MetaFrame for UNIX Server Farm Firewall 51

  49. Load-balanced Citrix MetaFrame Servers Enhanced Load Balancing • Tune the allocation of user connections to a UNIX Presentation Server depending on its capacity. • Balance more users to servers with 4 CPUs than with 2 CPUs 52

  50. Parameter Passing • Just like XP PS… • Publish application and add %* to the command line • A published app “text”, command line “/usr/bin/text %*” • Use the following in appsrv.ini or the .ica file: • InitialProgram=#”text” /home/docs/MyDoc.text • The parameters passed are interpreted by the shell • Use wildcards and environment variables • Specifying parameters disables session sharing • Also specify InitialDirectory • From the client or appsrv.ini or .ica file

More Related