Virtual WAN
Download as PPSX, PDF1 like1,254 views
The document outlines the features and benefits of Citrix CloudBridge's WAN optimization and virtualization technologies, emphasizing secure and efficient application delivery across various network types. Key capabilities include dynamic monitoring, logical bonding, and traffic management to enhance performance and reduce congestion. It also discusses architectural considerations for deployment and integration with existing WAN optimization solutions.
Virtual WAN
- 1. v2 March © 2015 Citrix | Confidential Virtual WAN
- 2. © 2015 Citrix | Confidential The What Defining CloudBridge
- 3. © 2015 Citrix | Confidential • WAN Optimization – TCP Optimization – Compression/De-Duplication – Protocol Optimization – Bandwidth Management CloudBridge WAN Optimization • 1011011010 SSL 1011011010 SSL 101101110 SSL 1011 101101110 SSL 1011000110011 001110010100 • 1011011101 10011 • 1011011101 10011 • 1011011101 10011 Optimization • 1011011101 10011000001 • 1011011101 10011 • 1011011101 10011 Branch Office Data Center MPLS or Private Circuit
- 4. © 2015 Citrix | Confidential • WAN Virtualization as a conceptual overview – Service critical applications for the modern enterprise – Leverage the changing capability and capacity of the public infrastructure – Always on – Sometimes it is just about Bandwidth CloudBridge WAN Virtualization • Logical bonding of capacity • Always on availability for the WAN • Dynamic monitoring for best path • Transparent Overlay • Encryption where required MPLS Business DSL LTE Wireless Capacity Management and Logical Bonding
- 5. © 2015 Citrix | Confidential CloudBridge Edition Summary Edition Primary Benefits Recommended for CloudBridge WAN Op Edition Optimized and secure application delivery from DC over private networks Video Caching Enhanced Application Visibility Quality of Service • WAN Links that suffer from congestion and will benefit from Compression • Long distance / International links CloudBridge Virtual WAN Edition Highly reliable and secure application delivery from DC or Cloud over public or private networks Use MPLS, Broadband internet, 4G/LTE, Satellite links Enhanced WAN Visibility Quality of Service • Increasing Bandwidth needs • MPLS not available or expensive • 100% branch application availability
- 6. © 2015 Citrix | Confidential Virtual WAN Building Blocks and Definitions Architecture and Defining Virtual WAN
- 7. © 2015 Citrix | Confidential • Virtual WAN Encapsulates flows into a UDP tunnel Port 4980 – All application flows designated for the Virtual WAN service are encapsulated. – Encryption is applied where required on Public circuits. – UDP padding includes intelligence for monitoring of circuit state • Virtual WAN operates as an L2 and L3 device. – Operates as an L2 device for application flows not designated for VWAN specific service. – Operates as an L3 device for flows designated as interesting by policy for the Virtual WAN. • All configured Circuits are considered candidates for Virtual WAN traffic – Traffic types can be made persistent to a circuit but will use other circuits in case of failure. – All circuits are constantly monitored for state. CloudBridge Virtual WAN Fundamental Concepts
- 8. © 2015 Citrix | Confidential Virtual WAN Terminology Appliances MCN VWN • Master Control Node – Only one primary – Time keeper for the Virtual WAN – Logically it is located at DC but the role can be assigned to any appliance – Configurator for the Virtual WAN • VWN (Virtual WAN Node) – Branch appliance – Inherits its configuration from the MCN
- 9. © 2015 Citrix | Confidential • Virtual Path Service – Traffic destined for the Virtual WAN are defined by policy – Comprises all WAN Circuits – Traffic management performed at each node in the Virtual WAN Virtual WAN Terminology Circuit Definitions MCN VWN Virtual Path Service
- 10. © 2015 Citrix | Confidential • Virtual Path – Fundamental building block for Virtual WAN Services – Uni-Directional – 2X WAN links – Each Path has has an associated monitor Virtual WAN Terminology Circuit Definitions VWN MCN Virtual Paths 1 2 3 4
- 11. © 2015 Citrix | Confidential • Internet provisioned circuits add – Dynamism with the ability to have multiple routed options for connectivity – Complexity because they are often Asymmetric making BW management more complex Internet Circuits and Virtual Paths
- 12. © 2015 Citrix | Confidential Services and BW Management Services and BW Management
- 13. © 2015 Citrix | Confidential • Services associated with Virtual WAN – Virtual WAN Service – Traffic associated by rule or route destined for a WAN Path and has a traffic management policy – Intranet Service – Traffic not encapsulated traffic destined for a site with no Virtual WAN and is associated with a traffic management policy – Internet – Traffic not encapsulated destined for the internet – Passthrough – Traffic not accounted for by the other service rules and is not associated with a BW management policy Defining Virtual Services
- 14. © 2015 Citrix | Confidential Virtual Services in Action • Services associated with Virtual WAN – Note that Passthrough traffic is unaccounted for with regards to Bandwidth
- 15. © 2015 Citrix | Confidential • 17 traffic management Classes – 17 Classes – Can be edited but none added – Class 10 Realtime = Voice – Class 11 thru 17 = ICA, RDP, etc – Class 15 and 16 = CIFS, FTP, etc Understanding Bandwidth Management “Classes”
- 16. © 2015 Citrix | Confidential Deployment Network Architecture and HA
- 17. © 2015 Citrix | Confidential Building Capacity with Virtual WAN Zoning • Virtual WAN capacity considerations – Maximum of 1Gbps of throughput – 256 sites – Refer CloudBridge Data sheet for the latest specifications 256 Sites HA CB Virtual WAN PBR Route Policies
- 18. © 2015 Citrix | Confidential • Inline – Requires VIP for each Virtual WAN service – LAN routing information – Services and BW management policies Basic Deployment Modes Example 1 Example 2
- 19. © 2015 Citrix | Confidential Basic Deployment Modes • Inline With HA – Modified VRRP – Only one appliance is active at a time – Both appliances configured in Blocking mode – Configuration is synced across appliances
- 20. © 2015 Citrix | Confidential Advanced Architecture Considerations Combining Virtual WAN and Optimization • Combining WAN Optimization and Virtual WAN – Virtual WAN should always go after WAN OPT – Virtual WAN will envelope in UDP obscuring TCP packets – Guidelines for good WAN Opt planning do not change – Asymmetrical routing – WAN Opt benefits
- 21. © 2015 Citrix | Confidential Advanced Architecture Considerations Combining Virtual WAN and Optimization • Combining WAN Optimization and Virtual WAN out of line – PBR can be combined with HA – WCCP adds clustering and resiliency – WAN opt closer to the LAN than Virtual WAN
- 22. © 2015 Citrix | Confidential Advanced Architecture Considerations Combining Virtual WAN and Optimization • Combining WAN Optimization and Virtual WAN out of line – PBR can be combined with HA – WCCP adds clustering and resiliency – WAN opt closer to the LAN than Virtual WAN
- 23. © 2015 Citrix | Confidential Advanced Architecture Considerations VLAN Trunks • When spanning a VLAN trunk – Each VLAN requires a VIP and gateway to host Virtual WAN services – Routing is required for each path
- 24. © 2015 Citrix | Confidential Building Capacity with Virtual WAN • Zoning is a method for – Creating capacity by allocating traffic in manageable segments – Uses PBR Route Maps to segment load by sites – HA capabilities require doubling the number of hardware appliances – Made easier if there is some logic for IP to site allocation 256 Site Zone 256 Site Zone PBR Route Policies HA CB Virtual WAN
- 25. © 2015 Citrix | Confidential Work better. Live better.Work better. Live better.