Wide Area Application

Services (WAAS)

Kalev Nurklik
IGS IT Architect
IBM Estonia
nurklik@ee.ibm.com
WAAS

2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

Branch IT Infrastructure Issues

Infrastructure cost / complexity

Backup

Local
Storage

File, print and application servers

Storage and backup
Plethora of networking equipments

App/file/print
Servers

Users
Security
Router
Voice

WLAN

Companies spend 6 billion dollars per year on

branch servers, storage, backup and
management -Source: IDC, Gartner, Cisco
Branches consume 70- 90% of business
resources. -Source: NetworkWorld
Most enterprises have many servers running at
15% or less utilization, but still requiring 100%
administration -Source: Gartner
WAAS

2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

Data protection worries

Failing backups / lost data
Costly off-site vaulting
Compliance

WAN limitations prevent

centralization
Bandwidth & throughput limitations
Latency and packet loss
End user experience
2

The Root Causes of Cost and Complexity

WAN Limitations Prevent Centralization
Poor application performance
Low bandwidth, high latency, packet loss

Round Trip Time (RTT) ~ 0mS

Distributed Server Sprawl

No economies of scale
Low asset utilization
Islands of patch management

Client

LAN

Server

Storage Everywhere
Round Trip Time (RTT) ~ many many milliseconds

Data sprawl
Remote backup and replication

Compliance Worries
Data leakage risks
Onsite IT staff
Remote data management
WAAS

2006 Cisco Systems, Inc. All rights reserved.

WAN
Client LAN
Switch

Cisco Confidential

LAN
Switch

Server
3

Cisco WAAS Solutions and Benefits

Bridging the gap between centralized IT and distributed offices
Application
Acceleration
Branch and Data
Center Consolidation

WAN Bandwidth
Optimization

Improved Data
Protection Compliance

WAAS

2006 Cisco Systems, Inc. All rights reserved.

Any centralized TCP application

LAN-like speed to the branch
Server/storage/networking consolidation
Reduced branch TCO
Simplified management & support
Minimized bandwidth expenses
Improved VoIP quality
Improved application performance management
Faster remote data replication
Centralized compliance
Improve disaster recovery readiness

Cisco Confidential

Application Acceleration
Category

Applications

File Sharing

CIFS
NFS
Microsoft Exchange
Lotus Notes
Internet Mail

Web and
Collaboration

HTTP
WebDAV
FTP
Microsoft Sharepoint

Software
Distribution

Microsoft SMS
Altiris
HP Radia
Microsoft SQL
Oracle, SAP
Lotus Notes

Backup
Applications

Microsoft NTBackup
Legato Networker
Veritas Netbackup
CommVault Galaxy

2-5X Avg

25X

2-5X Avg

Cisco Confidential

50X

100X+
>100X Peak

20X Peak

2-10X Avg

EMC SRDF/A
EMC IP Replicator
NetApp SnapMirror
Data Domain
Double-Take
Veritas Vol Replicator

2006 Cisco Systems, Inc. All rights reserved.

10X

100X Peak

2-20X Avg

Enterprise
Applications

WAAS

5X

2-20X Avg

Email

Data Replication

2X

>100X Peak

20X Peak

2-10X Avg

50X Peak

2-10X Avg

50X Peak

Branch and Data Center Consolidation

High TCO & Complex
Backup

Low TCO & Simplified

Local
Storage

App/file/print
Servers

Users

Users
Cisco ISR
With WAAS

Security
Router
Voice

WLAN

Server
Consolidation

Leverage data center scale

Email servers
File servers
Application servers
Print servers
SMS servers
WAAS

2006 Cisco Systems, Inc. All rights reserved.

Storage
Consolidation

NAS
Backup equipment
Tape
Encryption gears
Offsite vault

Cisco Confidential

Networking
Consolidation Via ISR

WAN Optimization & Acceleration

Firewall
IPS
VPN
VoIP
WLAN
Switch
Router
6

WAN Bandwidth Optimization

Optimization On

Bandwidth Usage
Reduction
Up to 95% savings
Avoid bandwidth upgrade
De-commission bandwidth
WAAS

2006 Cisco Systems, Inc. All rights reserved.

Improve VoIP
Quality
More room
Better quality & reliability
Use existing QoS policies
Cisco Confidential

Optimization On

Improved Application
Perf. Management
Report Apps SLA accurately
Find bottlenecks quickly
Invest confidently
7

Cisco WAAS Solution Overview

Branch Office

WAAS
WAN

WAAS
Branch Office

Data Center

WAAS

Solutions

Technologies

Products

Application acceleration

Branch and data center consolidation

WAN bandwidth optimization

Compression & acceleration

Router integration

Security integration

Software: Wide Area Application Services

Hardware: Wide Area Application Engine

Branch and data center deployment

Improved data protection & compliance
Application perf. mgmt. integration

WAAS

2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

Centralized management

Application Acceleration Technologies

WAN
LAN-Like
Throughput

Throughput

50 Mbps

End user throughput

goes up 5x

2.5 Mbps

40 Mbps
30 Mbps
20 Mbps
10 Mbps
Throughput

01:20

01:21

01:22

01:23

01:24

Advanced
Compression/Cache
Data Redundancy Elimination
(Up to 100:1 compression)
Persistent LZ Compression
(Additional 10:1 compression)
WAAS

WAN consumption
drops 67%

3 Mbps
Throughput

60Mbps

Bandwidth Savings
Fewer Roundtrips

2006 Cisco Systems, Inc. All rights reserved.

01:25

01:26

2 Mbps
1.5 Mbps
1 Mbps
.5 Mbps
Throughput

Optimization Enabled

01:20

Application Specific
Acceleration

Application protocol aware

Windows file services (CIFS)
Windows print services
Server offload technology

Cisco Confidential

01:21

01:22

01:23

01:24

01:25

01:26

TCP Flow
Optimization (TFO)
LAN-like TCP behavior
Loss mitigation
Slow-start mitigation
9

Acceleration Shouldnt Leak Data

Extend Storage Media Encryption To The Branch
Rising Incidents of Branch Data Leakage

Cisco WAAS Strong Encryption:

1.

A top financial firm lost a file server with

930,000 customers information 1

1.

256-bit Advanced Encryption Standard

evaluated by Common Criteria

2.

A bank lost 3.9 million customers credit

information on unencrypted tapes 2

2.

No keys left on disks

3.

Centralized key management with

backup, restoration and high availability

3.

The average cost of a data breach per

record compromised grew 30%,
averaging $4.8 million/breach. 3

Cisco WAAS
Central Manager

WAN
Disk

Remote Office
1.

CNN, March 2006

2.

Wall Street Journal, June 2005

3.

Fetch Disk Encryption

Key and Store in RAM
Disk Disk

Data Center

Ponemon Institute, 2006 Annual Study: Cost of a Data Breach, October 2006, 768 IT Managers
Survey 2006 Cisco Systems, Inc. All rights reserved. Cisco Confidential
WAAS

10

Accelerated Traffic Shouldnt Skip Security

Cisco

Tunnel Solutions

Stateful Protection of Each

Accelerated Stream

No Stateful Protection of Each

Accelerated Stream

Accelerated Web

WAAS

Accelerated Files

Accelerated Web

WAAS

Accelerated Files

Accelerated Email

Accelerated Email

Accelerated CRM

Accelerated CRM

Cisco WAAS is the most transparent and easiest

solution to implement and integrate as it does not
require us to overhaul our security infrastructure.
Mark Drake, Network Engineer, Health
Management Associates, Inc
WAAS

2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

11

True Transparency Ensures Reliability

Full Preservation of IP and TCP Header Information

QoS
NBAR
NetFlow
ACL
NAT
User A
User B
User C

LAN
Switch

WAN
Router

Security
Filter
VPN

QoS
NetFlow
Visibility

Cisco WAAS
Firewall

Firewall

WAN
Router

LAN
Switch

Application A
Application B
Application C

WAN

Core WAE

Edge WAE

Reliably enforce
branch security
policy for each
user
WAAS

Reliably apply security and

QoS policy for each user

2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

Reliably report
application
usage for each
user
12

Cisco WAE Model Line Up

PERFORMANCE

High End
(310Mbps-1Gbps)
1Gbs
50000 TCP
310Mbps
12000 TCP

Large
Data
Center

Mid-Range

155Mbps
7500 TCP

(20-155Mbps)
90Mbps
6000 TCP

Cisco WAE 7326

Medium
Data
Center

20Mbps
1500 TCP

Entry Level
(4-8Mbps)
4Mbps
500 TCP
4Mbps
250 TCP

Small
Branch
Office

WAAS

Cisco WAE 612

8Mbps
800 TCP
Cisco WAE 512
Cisco ISR 3800
NME 522

Cisco ISR
2800/3800 NME
502
Cisco ISR 2811
NME 302

2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

PRICE

13

Simple In-path Deployment

Simple Plug-and-Play

Remote
Office

Physical in-path deployment

No network changes required
Fail-to-wire upon hardware, software, or
power failure

Scalability and High Availability

Support for redundant network paths
and asymmetric routing
Serial in-path clustering with loadsharing and fail-over

Seamless Transparent Integration

Transparency and automatic discovery
802.1q VLAN trunking support
Supported on all WAE appliance models
WAAS

2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

WAN

14

Scalable & Resilient Off-path Deployment

WCCPv2 Interception

Remote
Office

Active/active clustering supports up to

32 WAEs and 32 routers with automatic
load-balancing, load redistribution, failover, and fail-through operation
Near-linear scalability and performance
improvement when adding devices

WAE
WAE
Cluster
Cluster

Original
Original
Flow
Flow

Policy-Based Routing Interception

Routing of flows to be optimized through
a Cisco WAE as a next-hop router
Active/passive clustering provides high
availability and failover using IP SLAs as
a tracking mechanism

Interception
Interception
Redirection
Redirection
Monitoring
Monitoring

Optimized
Optimized
Flow
Flow

WAN

Seamless Transparent Integration

Transparency and automatic discovery
WAAS

2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

15

Auto-Discovery
Ease of Installation and Management

Cisco WAAS devices automatically discover one
another and negotiate optimization capabilities

Eliminates the need for complex overlay networks with
tunnels that could double management effort and break
control, security, and monitoring systems

WCCPv2
WCCPv2
or
or PBR
PBR

A
A

WCCPv2
WCCPv2
or
or PBR
PBR

B
B

WAN

A:B
A:B TCP
TCP SYN
SYN

B:A
B:A TCP
TCP SYN/ACK
SYN/ACK

WAE1

WAAS

A:B
TCP
TCP
SYN
SYN/ACK
A:BB:A
B:A
TCP
TCP
SYN
SYN/ACK
(marked)
(marked)

A:B
B:A
SYN
TCP
A:B TCP
TCP
B:A
SYN
TCP SYN/ACK
SYN/ACK
(marked)
(marked) (marked)
(marked)

2006 Cisco Systems, Inc. All rights reserved.

ACCELERATION
II would
ACCELERATION
would like
like
CONFIRMED!
to
CONFIRMED!
to accelerate
accelerate
this
this connection!
connection!
Here
Here are
are my
my details
details

Cisco Confidential

WAE2

II know
Acknowledge
WAE1
know
Acknowledge
WAE1 is
is
in
Acceleration!
path,
in the
the
Acceleration!
path, lets
lets
Here
accelerate!
are
Here
accelerate!
are my
my details
details

16

Cisco WAAS Summary

Branch Office

WAAS
WAN

WAAS
Branch Office

WAAS

Solutions and Benefits

Data Center

Technologies

Key Success Factors

Application acceleration
Branch and data center consolidation
WAN bandwidth optimization

Compression & acceleration

Router integration
Security integration

Improved data protection & compliance

Application perf. mgmt. integration

WAAS

2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

Most secure WAN acceleration

Highest scalability and performance
Best reliability and interoperability
Lowest Total Cost of Ownership

17

WAAS

2006 Cisco Systems, Inc. All rights reserved.

Cisco Confidential

18