Professional Documents
Culture Documents
Application Optimization
Illustrated with SAP,
Seibel and Exchange
BRKAPP-2013
BRKAPP-2013
14361_04_2008_c1
Cisco Public
Application Scalability
Application Networking
Quality of service
Network-based app recognition
Queuing, policing, shaping
Visibility, monitoring, control
Server load-balancing
Site selection
SSL termination and offload
Video delivery
Message transformation
Protocol transformation
Message-based security
Application visibility
WAN
Application Acceleration
WAN Acceleration
Application Optimization
Latency mitigation
Application data cache
Meta data cache
Local services
BRKAPP-2013
14361_04_2008_c1
Delta encoding
FlashForward optimization
Application security
Server offload
3
Cisco Public
ISR
WAAS
ACNS
ACE
AXG
Applications
Cisco Public
Agenda
Cisco Validated Designs
Data Center Infrastructure
Service Integration
Data Center Evolution
BRKAPP-2013
14361_04_2008_c1
Cisco Public
BRKAPP-2013
14361_04_2008_c1
Cisco Public
BRKAPP-2013
14361_04_2008_c1
Cisco Public
BRKAPP-2013
14361_04_2008_c1
Cisco Public
Agenda
Cisco Validated Designs
Data Center Infrastructure
Service Integration
Data Center Evolution
BRKAPP-2013
14361_04_2008_c1
Cisco Public
DC Functional Layers
Layers and Services
Core
Aggregation
Access
Firewall Services
Server Balancing
Intrusion Detection
SSL Offloading
Network Analysis
DoS Protection
File Caching
Content Caching
VPN Termination
Server Farms
Server Clusters
Edge
Virtual Fabrics (VSANs)
Storage Virtualization
Data Replication Services
Fabric Routing Services
Fabric Gateway Services
Server Virtualization
Virtual I/O
Compute Fabric Services
Remote DMA Services
Clustering Services
Fabric Gateway Services
Storage/Tape Farms
BRKAPP-2013
14361_04_2008_c1
Core
Cisco Public
10
DC Core
DC Aggregation
DC Access
BRKAPP-2013
14361_04_2008_c1
L2 with Clustering
and NIC Teaming
2008 Cisco Systems, Inc. All rights reserved.
Cisco Public
Mainframe
with OSA
L3 Access
11
Aggregation Layer
BRKAPP-2013
14361_04_2008_c1
Cisco Public
12
Rootguard
LoopGuard
BPDU Guard
UDLD Global
BRKAPP-2013
14361_04_2008_c1
13
Cisco Public
BRKAPP-2013
14361_04_2008_c1
Cisco Public
14
BRKAPP-2013
14361_04_2008_c1
15
Cisco Public
VLAN 5:
Root Secondary
HSRP Secondary
Standby Context
VLAN 6:
Root Secondary
HSRP Secondary
Standby
Context
vlan5
BRKAPP-2013
14361_04_2008_c1
Cisco Public
vlan6
vlan6
vlan5
16
4. If Context Failover
Occurs, RHI and Route
Preference Follow
2. If Healthy, Installs
Host Route to VIP on
Local MSFC
vlan5
vlan6
vlan6
vlan5
BRKAPP-2013
14361_04_2008_c1
17
Cisco Public
BRKAPP-2013
14361_04_2008_c1
Cisco Public
18
VRF-Green
VRF-Blue
DC Core
VRF-Red
Agg1
Agg2
Alternate Primary
Contexts on
Agg1 and 2 to
Achieve ActiveActive Design
BRKAPP-2013
14361_04_2008_c1
19
Cisco Public
Red VRF
Green VRF Blue VRF
Red VRF
Green VRF Blue VRF
WAN/Branch
Campus
Core: P-Nodes
Agg Module 1
DC Core
PE
Agg Module 2
802.1Q
Trunks
802.1Q
Trunks
BRKAPP-2013
14361_04_2008_c1
PE
Cisco Public
20
10
BRKAPP-2013
14361_04_2008_c1
21
Cisco Public
Agg1
L3
Inter-Switch
Link
Agg2
L2
Secondary Root
Secondary HSRP
Standby Services
80
2. 1
qT
r un
ks
Primary Root
Primary HSRP
Active Services
BRKAPP-2013
14361_04_2008_c1
Cisco Public
22
11
Agg1
L3
Inter-Switch
Link
Agg2
Secondary Root
Secondary HSRP
Standby Services
Def gwy
80
2. 1
qT
r un
ks
L2
BRKAPP-2013
14361_04_2008_c1
23
Cisco Public
DC Core
Aggregation
Access Pair 1
BRKAPP-2013
14361_04_2008_c1
Cisco Public
24
12
Service
Switch1
Aggregation
Service
Switch2
(Redundant)
Access
BRKAPP-2013
14361_04_2008_c1
25
Cisco Public
Agg1:
STP Primary Root
HSRP Primary
HSRP Preempt and Delay
Dual Sup with NSF+SSO
FT
Data
Agg2:
STP Secondary Root
HSRP Secondary
HSRP Preempt and Delay
Single Sup
LACP+L4 Hash
Dist EtherChannel
Min-Links
Rootguard
LoopGuard
Blade Chassis
with Integrated
Switch
Portfast + BPDUguard
Rapid PVST+: Maximum Number of STP Active Logical Ports- 8000 and Virtual Ports
Per Linecard-1500
BRKAPP-2013
14361_04_2008_c1
Cisco Public
26
13
Agenda
Cisco Validated Designs
Data Center Infrastructure
Service Integration
Data Center Evolution
BRKAPP-2013
14361_04_2008_c1
Cisco Public
27
BRKAPP-2013
14361_04_2008_c1
Cisco Public
28
14
Application Examples
BRKAPP-2013
14361_04_2008_c1
29
Cisco Public
Exchange 2007
Logical Layout
Remote Clients
CAS
Mailbox
MAPI
Mail
Client
Internet
SMTP
Messages
Edge
Transport
Hub
Transport
External Communications
BRKAPP-2013
14361_04_2008_c1
Cisco Public
30
15
SAP
Logical Layout
SAPGUI
TCP:32xx
HTTP(S) (ABAP)
Default TCP:8000
HTTP (J2EE)
HTTP:5xx00
HTTPS: 5xx01
RFC
Web
Services
JCo/RFC
BRKAPP-2013
14361_04_2008_c1
31
Cisco Public
Oracle 11i
Logical Topology
Desktop
Tier
Application
Tier
Database
Tier
Web
Server
Web Server
(HTTP/HTTPs
Listener)
Desktop Tier
Web Client
Form Server
Forms
Server
Web
Browser
Concurrent
Server
Reports
Server
(HTTP/HTTPs
Listener)
Database
Server
Web Server
(HTTP/HTTPS
Listener)
Admin
Server
Desktop Tier
Web Client
Discoverer
Server
Forms
Listener
Servlet
Form Server
(HTTP/HTTPS
Listener)
BRKAPP-2013
14361_04_2008_c1
Cisco Public
32
16
BRKAPP-2013
14361_04_2008_c1
33
Cisco Public
Enterprise Core
DC Core
DC Aggregation
DC Access
BRKAPP-2013
14361_04_2008_c1
Cisco Public
Mainframe
with OSA
L3 Access
34
17
BRKAPP-2013
14361_04_2008_c1
Cisco Public
35
Rear
BRKAPP-2013
14361_04_2008_c1
Cisco Public
36
18
BRKAPP-2013
14361_04_2008_c1
Cisco Public
37
BRKAPP-2013
14361_04_2008_c1
Cisco Public
38
19
Service Chaining
Virtualized Network Services
Cisco Catalyst 6500
BRKAPP-2013
14361_04_2008_c1
BU-1
BU-2
BU-3
BU-4
BU-5
One Arm
Mode
Routed
Mode
Routed
Mode
Bridged
Mode
Bridged
Mode
Cisco Public
39
Service Chaining
Consolidated Secure Infrastructure
Cisco Public
40
20
Routed Mode
default gw
PBR
S-NAT
ospf
neighbors
bpdu
forwarding
default gw
default gw
BRKAPP-2013
14361_04_2008_c1
41
Cisco Public
Health checks
Server offload
Back-end encryption
Fault-tolerant groups
Route health injection
Session persistence
TCP reuse
Servers
WAE
BRKAPP-2013
14361_04_2008_c1
Cisco Public
AVS
42
21
Health Probes
SAP Enterprise Portal Example
/ i nde
l
x.htm
/irj/p
ortal
Configuration
probe http PORTAL-50000
description http-probe
port 50000
interval 20
passdetect interval 10
request method get url /irj/portal
expect status 200 200
BRKAPP-2013
14361_04_2008_c1
43
Cisco Public
Health Monitoring
Health Checks
Web Services
NetWeaver Web
Administrator
ACE/dc# telnet 169.145.90.16 50100
Trying 169.145.90.16...
Connected to 169.145.90.16.
Escape character is '^]'.
GET /nwa HTTP/1.1
Host: 169.145.90.16
HTTP/1.1 302 Found
server: SAP NetWeaver Composition Environment 7.1 / AS Java 7.1
content-type: text/html
location:
http://169.145.90.16/webdynpro/dispatcher/sap.com/tc~lm~itsam~co
~ui~nwa~localnavigation~wd/NWAApp
content-length: 0
date: Fri, 30 Nov 2007 04:15:04 GMT
BRKAPP-2013
14361_04_2008_c1
Cisco Public
44
22
Session Persistence
Options
BRKAPP-2013
14361_04_2008_c1
Cisco Public
45
BRKAPP-2013
14361_04_2008_c1
Cisco Public
46
23
Session Persistence
Configuration
parameter-map type http PERSIST
set header-maxparse-length 4096
policy-map multi-match SLB-policy
class epSAP-s
appl-parameter http advanced-options PERSIST
BRKAPP-2013
14361_04_2008_c1
Cisco Public
47
BRKAPP-2013
14361_04_2008_c1
Cisco Public
48
24
BRKAPP-2013
14361_04_2008_c1
49
Cisco Public
Cisco Public
interface vlan 10
description server side interface
service-policy input DB-policy
50
25
Encrypted to
VIP:443
BRKAPP-2013
14361_04_2008_c1
IDS
Clear Text to
Servers:50XX0
51
Cisco Public
Cisco Public
52
26
https://----/irj
http://----/irj/
http://----/irj/index.html
Persistence Rebalance
BRKAPP-2013
14361_04_2008_c1
53
Cisco Public
Encrypted to
VIP:443
Encrypted to
Servers:443
SSL Termination
SSL Initiation
Configuration
ssl-proxy service testsslclient
policy-map type loadbalance first-match EP-HTTPS
class class-default
ssl-proxy client testsslclient
BRKAPP-2013
14361_04_2008_c1
Cisco Public
54
27
Cisco Public
55
BRKAPP-2013
14361_04_2008_c1
Cisco Public
56
28
BRKAPP-2013
14361_04_2008_c1
Cisco Public
57
BRKAPP-2013
14361_04_2008_c1
Cisco Public
58
29
BRKAPP-2013
14361_04_2008_c1
Cisco Public
59
BRKAPP-2013
14361_04_2008_c1
Cisco Public
60
30
SSL Offload
Back-End Encryption with SSL Reuse
Verification
switch/sap# show crypto session
SSL Session Cache Stats for Context
-----------------Number of Client Sessions
2
Number of Server Sessions
4
Reuse Definition
BRKAPP-2013
14361_04_2008_c1
61
Cisco Public
NAM
all
RSPAN
VLAN
IDS1
All VLAN
Traffic
Subnet1
IDS2
VACL Filter
HTTP
IDSx
Telnet Subnet3
BRKAPP-2013
14361_04_2008_c1
Cisco Public
62
31
Transport Policy
Enforce Security
http://----/irj
https://----/irj/
https://----/irj
BRKAPP-2013
14361_04_2008_c1
Cisco Public
63
BRKAPP-2013
14361_04_2008_c1
Cisco Public
64
32
ACE-TCP2 Pool2
BRKAPP-2013
14361_04_2008_c1
Cisco Public
65
BRKAPP-2013
14361_04_2008_c1
Cisco Public
66
33
ACE GSS
Appliance
ACE GSS
Appliance
BRKAPP-2013
14361_04_2008_c1
67
Cisco Public
Internet
Cisco Public
68
34
BRKAPP-2013
14361_04_2008_c1
Cisco Public
69
BRKAPP-2013
14361_04_2008_c1
Cisco Public
70
35
Service Integration
WAN Optimizations
BRKAPP-2013
14361_04_2008_c1
71
Cisco Public
Remote Offices
Distribution of
Resources
Data Center
Regional Offices
Data Center
Consolidation
Home Offices
BRKAPP-2013
14361_04_2008_c1
Cisco Public
72
36
Scenario
Office
US East
West Coast
Distance
0 km
5,000 km
LAN
60 ms,
T3, 0%
1.06 sec
5.3 sec
Latency,
Bandwidth,
Packet Loss
Direct SAP
(https)
5MB File
(40 mbits)
5X
Source: SAP TechEd 2007, Session LCM222
BRKAPP-2013
14361_04_2008_c1
73
Cisco Public
Scenario
Office
Asia US
Distance
0 km
15,000
20,000 km
LAN
300 ms,
T3, 0%
1.06 sec
25 sec
Latency,
Bandwidth,
Packet Loss
Direct SAP
(https)
or
(data): 65KB + 65KB + 65KB + 65KB ...
25X
More Windows =
More Delay
Source: SAP TechEd 2007, Session LCM222
BRKAPP-2013
14361_04_2008_c1
Cisco Public
74
37
Office
Asia US
Distance
0 km
15,00020,000 km
Latency,
Bandwidth,
Packet Loss
Direct SAP
(https)
Loss
LAN
300 ms,
T3, 0%
300 ms,
T3, 1%
1.06 sec
25 sec
142 sec
Congestion Response:
More, Smaller
Windows = More Delay
142X
Source: SAP TechEd 2007, Session LCM222
BRKAPP-2013
14361_04_2008_c1
75
Cisco Public
Scenario
Office
US East
West Coast
Dial-In (East
West Coast)
Distance
0 km
5,000 km
5,000 km
LAN
60 ms,
T3, 0%
60 ms,
786 kbps, 0%
1.06 sec
5.3 sec
56 sec
Latency,
Bandwidth,
Packet Loss
Direct SAP
(https)
5MB File
(40 mbit)
45M
<1s
56X
768K
52s
Cisco Public
76
38
TCP re-use
300ms
Selective
Acks
Loss
Delay
Loss
BRKAPP-2013
14361_04_2008_c1
77
Cisco Public
Wide Area
Application Engine
WAE
Appliances and Modules
BRKAPP-2013
14361_04_2008_c1
Cisco Public
78
39
wccp
Enterprise
Portal
wccp
ACE
ERP
Business
Logic
BRKAPP-2013
14361_04_2008_c1
WAAS
WAAS
79
Cisco Public
Test 1:
Enterprise Portal Login/Logout
Baseline
BRKAPP-2013
14361_04_2008_c1
Cisco Public
80
40
Test 1:
Enterprise Portal Login/Logout
81
Cisco Public
Data Reduction
55%
99%
26%
3% LZ
52% DRE
BRKAPP-2013
14361_04_2008_c1
Cisco Public
82
41
Test 2:
Knowledge Management
Baseline
Portal
Client
BRKAPP-2013
14361_04_2008_c1
83
Cisco Public
Knowledge Management
Result Summary
Transaction Time
Data Reduction
97%
97%
89%
3% LZ
86% DRE
BRKAPP-2013
14361_04_2008_c1
Cisco Public
84
42
Test 3:
Technical Document Management
Composite App
EP
1. Request Doc
2.
5. Notification
Back-End
3.
4. PDF Post
1MB PDF
Random Data
BRKAPP-2013
14361_04_2008_c1
85
Cisco Public
Data Reduction
26%
<1%
60%
21% LZ
5% DRE
BRKAPP-2013
14361_04_2008_c1
Cisco Public
86
43
Test 4:
Customer Fact Sheet
50 Requests for
Customer Fact Sheets
ERP
Composite App
BRKAPP-2013
14361_04_2008_c1
87
Cisco Public
Data Reduction
71%
77%
70%
77% LZ
BRKAPP-2013
14361_04_2008_c1
Cisco Public
88
44
Enable WCCP on
User Interface
Exclude WCCP to
WAE interface
0/0.92
Server
Network
0/0.962
WAN
0/0.93
WAN
Router
Config
hostname C2851
ip wccp 61
ip wccp 62
hostname dc-waas
device mode application-accelerator
primary-interface GigabitEthernet 1/0
interface GigabitEthernet 1/0
ip address 169.145.93.93 255.255.255.0
ip default-gateway 169.145.93.1
interface GigabitEthernet0/0.93
description DC-wae
ip wccp redirect exclude in
!
interface GigabitEthernet0/0.962
description server VLAN
ip wccp 61 redirect in
ip wccp 62 redirect out
!
ntp master 2
BRKAPP-2013
14361_04_2008_c1
WAE
Config
Cisco Public
89
Microsoft Exchange Server 2007 Role and Load-Balance, Fault Tolerance, High-Availability Methods Supported
Microsoft
Exchange
2007 Role
Site Load-Balancing
Server LoadBalancing
Fault Tolerance
Network
Optimization
SSLOffloading
Cisco ACE,
Microsoft Network
Load-Balancing
(NLB) or DNS
Round-Robin
NIC-Teaming,
Multiple CAS Roles
Cisco WAE
Cisco ACE
Hub
Transport
Server
N/A
Handled Internally
by Microsoft
Exchange
NIC-Teaming,
Multiple Hub
Transport Servers
N/A
N/A
Mailbox
Server
N/A
N/A
NIC-Teaming,
Clusters (LCR,
CCR, SCR, SCC)
Cisco WAE
N/A
Cisco ACE,
Microsoft NLB or
DNS Round-Robin
NIC-Teaming,
Multiple Edge
Transport Servers
N/A
N/A
Client
Access
Server
Edge
Transport
Server
BRKAPP-2013
14361_04_2008_c1
Cisco Public
90
45
Agenda
Cisco Validated Designs
Data Center Infrastructure
Service Integration
Data Center Evolution
BRKAPP-2013
14361_04_2008_c1
91
Cisco Public
Virtual Switch
Cisco Catalyst 6500 Virtual Switching System (VSS)
Si
Switch 1
BRKAPP-2013
14361_04_2008_c1
Si
Switch 2
Cisco Public
VSS
92
46
Line CardDFC
Line CardDFC
Line CardDFC
Line CardDFC
Line CardDFC
Sup
MSFC
Line CardDFC
PFC
Sup
Active Supervisor
BRKAPP-2013
14361_04_2008_c1
MSFC
PFC
Standby Supervisor
Line CardDFC
Line CardDFC
Line CardDFC
Line CardDFC
Line CardDFC
Line CardDFC
93
Cisco Public
Si
VSS
Si
Si
Si
VSS
BRKAPP-2013
14361_04_2008_c1
Cisco Public
94
47
Multi-Chassis EtherChannel
BRKAPP-2013
14361_04_2008_c1
Cisco Public
95
Si
BRKAPP-2013
14361_04_2008_c1
Si
Cisco Public
96
48
L3
L2
Aggregation
Services
Chassis
Access
Server Farm
BRKAPP-2013
14361_04_2008_c1
97
Cisco Public
MSFC
Layer 3
ACE Context
Layer 2
ACE Context
Layer 2
FWSM Context
FWSM Context
Transparent
Service Chain
ACE in
Routed Mode
MSFC
VRF
ACE Context
FWSM
Context(s)
Layer 3
ACE Context
MSFC
VRF
VRF-Enabled FWLB
BRKAPP-2013
14361_04_2008_c1
Cisco Public
98
49
BRKAPP-2013
14361_04_2008_c1
Cisco Public
99
Cisco Public
100
Summary
BRKAPP-2013
14361_04_2008_c1
50
Q and A
BRKAPP-2013
14361_04_2008_c1
Cisco Public
101
Recommended Reading
Continue your Cisco Live
learning experience with further
reading from Cisco Press
Check the Recommended
Reading flyer for suggested
books
Cisco Public
102
51
BRKAPP-2013
14361_04_2008_c1
Cisco Public
103
BRKAPP-2013
14361_04_2008_c1
Cisco Public
104
52