300 likes | 453 Views
Service Delivery Layer 4 – 7 Consolidation Strategy. John Gormally. Enterprise Relationship Manager Networking & Cloud team. Cisco Departing ACE Load balancing Business.
E N D
Service Delivery Layer 4 – 7 Consolidation Strategy John Gormally Enterprise Relationship Manager Networking & Cloud team
Cisco Departing ACE Load balancing Business In an apparent concession to its application delivery networking (ADN) competitors, Cisco (NSDQ:CSCO) has confirmed it will end development of its Application Control Engine (ACE) load-balancer products. In a statement e-mailed to CRN, a spokesperson for Cisco said: "Cisco routinely reviews its business to determine where it needs to align investment based on growth opportunities. In assessing the data center market, which is undergoing a fundamental transformation within virtualization, cloud, and new service delivery models, Cisco has decided it will not develop further generations of its ACE load-balancing products."
To fully support customers during this transition phase, Citrix is offering a new ACE Migration Program (AMP) to all global customers. The special program provides Cisco ACE customers with the industry’s most generous product discounts for next-generation ADC solutions, as well as custom NetScaler implementation services provided by world-class Citrix Consulting Services. Citrix is making it easy for ACE customers to migrate to the industry’s best ADC solution, NetScaler. Between now and December 31, 2012, qualified Cisco ACE customers will receive: •20% discount on the MSRP of any NetScaler MPX and multi-tenant NetScaler SDX appliance. Cisco & Citrix Netscaler Note: Existing volume license programs apply to the discounted manufacturer suggested retail price (MSRP), if applicable
Extensive partner support proves the value of this addition to the industry, with the following partners who are extending their market leading network and security services to the next generation NetScaler SDX platform: Aruba Networks, BlueCat Networks, CSE Secure Systems, RSA - The Security Division of EMC, Splunk, Trend Micro, Venafi and Websense. Citrix Repeater, Citrix ShareFileStorageZones and Citrix CloudGateway will also be supported on the next-generation platform. Additionally, today Citrix and Palo Alto Networks announced a multi-phase technology relationship aligning our respective products and technologies to best support emerging data center network architectures. Palo Alto & Citrix Netscaler
The new “Service Delivery Fabric” Single Policy Control Plane Data Scaling DLP IPS/IDS Cloud Bridge Visibility Wireless Access AAA Firewall WAN Opt ADC Cloud Gateway 7 - 6 - 5 - 4 - 3 - 2 - 1 - Granular control of access, security & speed of cloud services network layers Flexible Deployment Options Transport FabricFast, flat, low latency & always available Provides a great network connection
Application Delivery New Requirements Service Delivery Desktop Delivery SDC App Visibility ADC Adjacent Real Estate Consolidation Identity Cloud Traditional ADC Database optimization Security Acceleration WAN optimization Traditional ADC “Application Delivery Controller” Offload Load Balancing
"Hybrid networking solutions combining on-premise footprints with off-premise services will emerge as a key component of any enterprise service delivery toolkit." Mark Fabbi Gartner Research
Different Apps and Networks ExternalDMZ InternalDMZ Lab Internal
NetScaler The Most Advanced Cloud Network Platform New • Versatile and Extensible Platform for Service Delivery • Delivers Apps and Data Services with the Best Performance and Reliability • Empower Control with Full Application Security & Visibility • Infinite Flexibility with Built-in Cloud Connectivity • Cloud Scale with Revolutionary Citrix TriScale TMTechnology
Scale3 Enterprise cloud networks require a scale revolution
Citrix TriScale technology Scale up, Scale in and Scale out Scale up Up to 40:1 Up to 5x faster Simplicity with Many-In-One Up to 32x Scale in Elasticitywith Pay-As-You-Grow Expandabilitywith Add-and-Go Scale out
Scale up – performance on demand Increase performance on demand • No need to purchase new hardware Provision resources as needed • No need to overprovision Protect datacenter investments • No ‘forklift’ refreshes and upgrades Pay-as-you-grow Network resources
Pay-As-You-Grow–Optimal Price/Performance SERVICE DELIVERY/TELCO/CLOUD INTERNET-CENTRIC “Pay as you grow” MPX 13500 12Gb MPX 19500 35Gb MPX 18500 36Gb MPX 17500 20Gb MPX 21500 50Gb 50 Gbps 20 Gbps “Pay as you grow” ENTERPRISE 10 Gbps NetScaler Performance “Pay as you grow” 5Gbps SMB/SME “Pay as you grow” 1Gbps MPX 7500 MPX 9500 1Gb 3Gb MPX5500 500Mb 200Mb MPX 14500 MPX 11500 MPX 16500 24Gb 8Gb 18Gb 10Mb 1 2 3 10s 100s Multi-tenancy Number of web applications License Upgrade License Upgrade License Upgrade
Scale in – consolidate networking resources Consolidate resources • True multi-tenancy enables independent instances of key networking services No compromise performance • Advanced virtualization and I/O acceleration Simplified management • Unified provisioning, monitoring and management from a single control plane “40x footprint reduction. No Compromises.” Simplicity with Many-In -One
Introducing NetScaler SDX • Instances, not partitions • Complete CPU isolation • Complete memory isolation • Version independence • High availability independence • Lifecycle independence
Citrix Confidential - Do Not Distribute SSL Acceleration • SSL acceleration supported • SSL allocated to VMs on a per chip basis • Multiple chips can be mapped to a single instance
NetScaler SDX with SR-IOV • Hardware IO virtualization for networking • NIC can be carved into virtual instances • Crypto pass-thru • Bypasses dom0 • Near native performance Domain0 NetScaler VPX NetScaler VPX NetScaler VPX NetScaler VPX VF Driver VF Driver VF Driver VF Driver Drivers Xen
Network Isolation • Full instance isolation • Separate routing domain • Independent routing, IP stack • Independent connection table, ACLs, etc. • Per instance network isolation • Isolation can be enforced at the NIC
Simple Consolidation with Delegated Administration • Consolidate across security zones • Each security zone has its own management network • Device admin wants to let others administer individual instances
All Instances Still on One Management Network ServiceVM Instance 1 Instance 2 Instance 3 Instance 4 Instance 5 Instance 6 10.1.1.x 10.1.2.x VLAN6 VLAN5 0/1 0/2 1/1 1/2 1/3 1/4 1/5 1/6 1/7 1/8 10/1 10/2 10/3 10/4
Multiple Networks/VLANs for NSIPs ServiceVM Instance 1 Instance 2 Instance 3 Instance 4 Instance 5 Instance 6 10.1.1.x VLAN1 VLAN2 VLAN6 VLAN5 0/1 0/2 1/1 1/2 1/3 1/4 1/5 1/6 1/7 1/8 10/1 10/2 10/3 10/4
Multiple Networks/VLANs for NSIPs ServiceVM • Scenarios where compliance is an issue • Specifically when compliance stance requires separate management networks per security zone • Data plane isolation achieved via either port(s) per instance or VLAN filtering • When ports are dedicated, each instance gets up to 4096 VLANs Instance 1 Instance 2 Instance 3 Instance 4 Instance 5 Instance 6 10.1.1.x VLAN1 VLAN2 VLAN6 VLAN5 0/1 0/2 1/1 1/2 1/3 1/4 1/5 1/6 1/7 1/8 10/1 10/2 10/3 10/4
Consolidation Summary App Tier Web Tier DMZ GSLB SSL Acceleration L7 ADC SSL VPN Load Balancing Load Balancing • 20-40 1 Consolidation NetScaler SDX
Next gen app security and visibility SSL Everywhere • Full protection with 2048-bit certificates App Firewall • Blocks 100% of attacks targeting vulnerabilities in web apps. Assists in PCIcompliance. Secure Remote Access • Fully integrated SSL VPN protects mobile users Integrated Real-time App Analytics • Full visibility into both network and applications • Adaptive policies for control and compliance Integrated SSL, App Firewall and SSL VPN Visibilityplus policy management
Extending the data center to the public cloud Leverage infinite scale and flexibility across private and public clouds Connect Enterprise data center Public Cloud Evolve the datacenter to be more cloud-like Build an Amazon-style cloud for maximum flexibility Maintain control and keep sensitive data on-premise Extend the datacenter to gain unlimited capacity Tap low-cost compute from service providers Ensure network transparency and security across clouds
Cloud Connectivity with Citrix CloudBridge • Leverage public clouds to reduce costs and improve agility • Avoid expensive application and network changes • Ensure consistent user access independent of location • Encrypt and protect data from private to public cloud
Citrix Value- Service Delivery Layer 4-7 Consolidation • Delivers Apps & Data with the Best Performance and Reliability • Integrated solution to optimize, secure and control all enterprise and cloud services • Cloud Scale with Revolutionary Citrix TriScaleTM • Scale performance & capacity while reducing appliance sprawl and simplifying the network • Empower Control with Full App Security and Visibility • Gain end-to-end visibility, ensure compliance and protect valuable corporate assets • Infinite Flexibility with Built-in Cloud Connectivity • Securely and transparently bring external and internal clouds together • Versatile and Extensible Platform for Service Delivery • Consolidate adjacent network services w/ unified policy management & flexible deployment