Cisco Wide Area
Application Services
(WAAS)
Technical Overview
Michael Waas
mwaas@cisco.com
Agenda
 Enterprise Application Delivery Challenges
 Introducing Cisco Wide Area Application Services
 Cisco WAAS Product Architecture
 Application Specific Acceleration
 WAAS Express
 Virtual WAAS
 Data Replication Acceleration
 Network-embedded virtualization
 Remote Access Optimization with WAAS Mobile
 Management and WAE Platforms
 WAAS Installation steps
 Summary
 Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
2
Focus of WAN Optimization Today
Branch
User
Cisco
WAAS
Cisco
WAAS
Data
Center
WAN
Mobile
User
Centralization
 Centralize IT while
maintaining SLAs
 Virtualized branch services
 Emerging cloud computing
• Consolidation
Faster Applications
• Application Acceleration  User Productivity
• Productivity
 Remote/mobile users
 Improved DR
WAN Optimization
 Bandwidth optimization
 Latency mitigation
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
3
Application Delivery Challenges
 Applications perform
well in LAN
Round Trip Time ~ 0ms
High bandwidth
Low latency
Reliability
Client
LAN
Switch
Server
Round Trip Time ~ Many Many mili-Seconds
 Applications perform
poorly in WAN
Already congested
Low bandwidth
Latency
Packet Loss
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Client
LAN
Switch
Cisco Confidential
WAN
LAN
switch
Server
4
Agenda
 Enterprise Application Delivery Challenges
 Introducing Cisco Wide Area Application Services
 Cisco WAAS Product Architecture
 Application Specific Acceleration
 WAAS Express
 Virtual WAAS
 Data Replication Acceleration
 Network-embedded virtualization
 Remote Access Optimization with WAAS Mobile
 Management and WAE Platforms
 WAAS Installation steps
 Summary
 Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
5
WAAS Solution Benefits
Minimize Branch IT Costs
Enhance User Productivity
vWAAS
Mobile
Nexus 1000v
VMware ESXi Server
Branch IT consolidation
WAN bandwidth optimization
Application acceleration
Module
IOS
Confident Migration to Cloud
Increase Agility and Flexibility
Appliance
Public and Private Cloud Acceleration
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Best mix of centralized and distributed IT
Cisco Confidential
6
Cisco WAAS: WAN optimization solution
Virtual Private
Cloud
Server
VMs
vWAAS
WAE
Nexus 1000v
WAAS
Express
Branch Office
VMware ESXi Server
Nexus 1000v VSM
UCS /x86 Server
FC SAN
WAAS
Service
Module
Branch Office
vPATH
Data Center or
Private Cloud
WAN
WAAS
Appliances
WAAS
Appliance
Branch Office
Internet
Server VMs
VMware ESXi
VPN
WAAS
Appliance
Regional Office
Presentation_ID
Domestic
Mobile User
WAAS
Mobile
Server
International
Mobile User
VPN
© 2010 Cisco and/or its affiliates. All rights reserved.
vWAAS
Appliances
Cisco Confidential
WAAS Mobile
Software
Over VPN
7
Cisco WAAS Solution Elements
Flexible Deployment Options
Cisco
WAAS
Cisco
WAAS
WAN
Branch
User
WAAS Mobile Client
Internet
WAAS
Data
Mobile
Server
Center
Mobile Users
Software Solutions
 WAAS for Cisco ISR G2 Services-Ready Engine
• WAAS On-demand for IT agility
 vWAAS: Virtualized WAAS
 WAAS Express: IOS Integrated software based WAN
Optimization
 WAAS Mobile Software
• Optimization for mobile and micro-office users
Full appliance portfolio
 Virtual blade support for branches
Virtual WAAS
WAAS Express
Services-Ready Engine
Branch Appliance
supporting Virtual Blades
ISR G2 Platforms
Data Center Appliance
 Scalable data center platforms
Dedicated router modules
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Dedicated Router
Module
ISR Platforms
8
Application Performance Improvements
Category
File Sharing
Email
Applications
CIFS
NFS
Microsoft Exchange
Lotus Notes
Internet Mail
Web and
Collaboration
HTTP
WebDAV
FTP
Microsoft Sharepoint
Software
Distribution
Microsoft SMS
Altiris
HP Radia
Enterprise
Applications
Oracle, Siebel, SAP
CRM
ERP
Backup
Applications
Microsoft NTBackup
Legato Networker
Veritas Netbackup
CommVault Galaxy
Data Replication
EMC SRDF/A
EMC IP Replicator
NetApp SnapMirror
Data Domain
Double-Take
Veritas Vol Replicator
SaaS
Applications
Cisco WEBEX
Presentation_ID
2X
5X
10X
25X
2-20X Avg
2-10X Avg
50X Peak
100X Peak
2-20X Avg
>100X Peak
20X Peak
2-10X Avg
50X Peak
2-10X Avg
50X Peak
2-8X Avg
© 2010 Cisco and/or its affiliates. All rights reserved.
100X+
>100X Peak
2-10X Avg
2-8X Avg
50X
20X Peak
Cisco Confidential
9
Seamless and Transparent Integration
 Compliance with critical network services
 Industry’s only holistic and secure optimization, visibility, and control
solution
 Quality of Service (QoS)
Cisco Wide Area Application Services
 Network Management
Application Optimizers
 Security
Transport Optimization
Advanced Compression
 Optimized Routing
WAN

Quality of Service (QoS)
Classification, NBAR, marking
Policing, shaping, queuing, WRED
SrcIP 1.1.1.1
DstIP 2.2.2.2
LFI, header compression

Network Management
SrcPort 1434
DstPort 80
Optimized Data
NAM, PVM, NetFlow
NetQoS, IP SLA

Optimized Routing
SrcIP 1.1.1.1
DstIP 2.2.2.2
SrcPort 1434
DstPort 80
Application Data
Network Path Affinity (NPA)
Optimized Edge Routing, PBR
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
10
Agenda
 Enterprise Application Delivery Challenges
 Introducing Cisco Wide Area Application Services
 Cisco WAAS Product Architecture
 Application Specific Acceleration
 WAAS Express
 Virtual WAAS
 Data Replication Acceleration
 Network-embedded virtualization
 Remote Access Optimization with WAAS Mobile
 Management and WAE Platforms
 WAAS Installation steps
 Summary
 Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
11
Cisco WAAS Architecture
Platform Management and Services
CIFS
AO
MAPI
AO
HTTP
AO
SSL
AO
Video
AO
NFS
AO
WoW
Virtual Virtual
Blade Blade
#2
#3
Configuration
Management
System
(CMS)
Embedded
virtualization
TCP Proxy with Scheduler Optimizer (SO)
DRE, LZ, TFO
Cisco WAAS Operating System
Policy Engine, Filter-Bypass, Egress Method, Directed Mode, Auto-Discovery
Disk Storage (Cache, VB storage etc.)
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Ethernet
Network
I/O
12
Cisco WAAS Auto-Discovery
Solutions
• Devices automatically discover one another
• Devices automatically negotiate optimization
capabilities
Benefits
• Eliminates need for complex overlay networks with tunnels
• And as the result reduces additional efforts associated with
management, security and monitoring
WCCPv2
or PBR
A
A:B TCP SYN
B:A TCP SYN/ACK
WAN
WCCPv2
or PBR
A:B TCP SYN
(marked)
B:A TCP SYN/ACK
A:B TCP
B:ASYN
TCP SYN/ACK
(marked)
(marked)
ACCELERATION
CONFIRMED!
Need to accelerate
WAE1
Presentation_ID
this connection!
Here are my details
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
B
WAE2
I know
Acknowledge
WAE1 is
in the
Acceleration!
path, let’s
accelerate!
Here are my details
13
Advanced Compression
Solutions
Benefits
 Data Redundancy Elimination (DRE)
• Application-agnostic compression
• Up to 100:1 compression
 Persistent LZ compression
• Session-based compression
• Up to an additional 10:1 compression
even after DRE
WAN
LZ
LZ
DRE
DRE
Synchronized
Compression
History
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
14
TCP Flow Optimization (TFO) Benefits
 Improves WAN bandwidth utilization and therefore
application throughput
 Shields end-nodes from unruly WAN conditions
 TCP Proxy architecture provides LAN-like TCP
behavior
 TFO provides adaptive buffering resulting in higher
throughput
DRE
PLZ
WAN
DRE
PLZ
TCP
TCP
LAN-like TCP Behavior
Presentation_ID
TCP
Optimized TCP Connections
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
TCP
LAN-like TCP Behavior
15
Application-Specific Acceleration
 Application and Protocol Awareness
Minimize chatter
Safe caching
Scheduled File preposition
 Intelligent Server Offload
Caching and optimizations
 WAAS Application Accelerators
CIFS, NFS, MAPI, Video, HTTP, SSL, Windows printing
 Licensed developed and validated with application vendors
Remote Office
WAN
• Object Cache Verification
• Security and Control
• WAN Optimization
• LAN-like Performance
• WAN Bandwidth Savings
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Data Center
• Server Safely Offloaded
• Fewer Servers Needed
• Power/Cooling Savings
16
Simplified Data Center Interception
Serial Inline Cluster
Client
Inline
WAE
(Up to 2)
Solution
 Dual Inline Cards
 Supports up to 4 inline groups
 WAE-674, WAE-7341, WAE-7371
 HA supported by 2nd WAE
 Interception Access List
 Bypass non-relevant traffic
Branch
WAN1
WAN2
Dual
WAN
Links
Inline
WAE
Benefits
Serial
Cluster
 Simplified and highly available
deployment model
 Small and medium data centers
 Simplifies PoC’s.
Servers
Data
Center
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
17
Network-Integrated Off-path
Interception
 Transparent integration and automatic
discovery regardless of interception
method
Remote
Office
Client
 WCCPv2 Interception
Active/active clustering
automatic load-balancing
load redistribution
fail-over
and fail-through operation
Near-linear scalability and performance
improvement when adding devices
WAE
Cluster
Original
Flow
Interception
Redirection
Monitoring
Optimized
Flow
 Policy-Based Routing Interception
Routing of flows to be optimized through
a Cisco WAE as a next-hop router
Active/passive clustering
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
WAN
18
Scalable Data Center Integration
WAN
Optimized
Flow
 Application Control Engine (ACE)
WAE
Cluster
Appliance and Catalyst 6500 series module
Supports from 1Gbps to 64Gbps of
aggregate throughput and up to 4M
concurrent TCP connections
Catalyst
6509 w/
ACE
Module
Cluster management for hundreds of WAE
devices
Original
Flow
Data Center
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
19
Cisco WAE Disk Encryption
 An optional feature to mitigate concern of data theft due to
stolen drives or physically compromised WAE devices
 Keys fetched from CM upon boot and stored in memory only
 Keys synchronized amongst Central Managers to ensure HA
 Standards-Based Strong Encryption
Follows FIPS 140-2 level 2 specification with certification to follow
256-bit Advanced Encryption Standard (AES) cipher
Cisco WAAS
Central Manager
WAN
Remote Office
Disk
Fetch Disk Encryption
Key and Store in RAM
Data Center
Disk Disk
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
20
Secure WAN Optimization from Cisco
Cisco Integrated Services Router (ISR) - Integrated Security and WAN Optimization
Ingress
Security,
Control, and
Visibility
LAN
Security
- Stateful Inspection
- Firewall Policies
- Signature Matching
Control
- Classification
- Drop or Mark
- Policing
Visibility
- NetFlow
Intercept
and
Optimize
Intercept
-Inline
-WCCP
Egress
Security,
Control, and
Visibility
Route
Selection
Routing
- Static
- Dynamic
- Optimized
Optimize
- Specific Application
Acceleration
- Compression
- Flow Optimization
WAN
Security
- Stateful Inspection
- Firewall Policies
- Link Encryption
Control
- Shaping
Visibility
- NetFlow
Secure
- Disk Encryption
- Firewall Compliance
Cisco WAAS integrates seamlessly and transparently
into network security, visibility, and control functions
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
21
Agenda
 Enterprise Application Delivery Challenges
 Introducing Cisco Wide Area Application Services
 Cisco WAAS Product Architecture
 Application Specific Acceleration
 WAAS Express
 Virtual WAAS
 Data Replication Acceleration
 Network-embedded virtualization
 Remote Access Optimization with WAAS Mobile
 Management and WAE Platforms
 WAAS Installation steps
 Summary
 Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
22
MAPI Application Optimizer
Solution
Challenge
 Full application support
 Asynchronous Writes
 Read Ahead
 Messages Decompression DRE hints
 EndPoint Mapper
 Uses MS-RPC - chatty protocol.
 Exchanges many interactive control messages
 MAPI traffic is negotiated using MS Port
Mapper (port 135) and is using dynamic ports
 Data encoding is negotiated by client/server
Benefit
 Reduced send/receive time – key for Outlook 2000 users
 Cleans up the outbox faster – important for cached mode users
 Faster downloads of OAB, while significantly reducing BW consumption
 Optimizes native Outlook 2007 operations (disable encryption on server)
 Transparent, automatic optimization
 No reverse engineering (MSFT licensing)
 No security hole of keeping sessions open even after users have logged
out
Client
SERVER
WAN
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
23
CIFS Application Optimizer: CIFS AO
Challenge
 "chatty" protocols
 WAN’s high latency, packet loss, and
bandwidth constraints significantly
diminishes Server access
Solution
 File and Metadata caching
 Read-ahead
 Message pipelining
 Scheduled preposition to pre-populate
 Transparent integration
 Dedicated CIFS cache
• 2MB Word document open,
results in over 1000 message
exchanges.
• 40ms RTT WAN, equates to
more than 52 seconds of wait time
before the document is usable
Benefit
WAN
Files
FILE.DOC
CACHE
Presentation_ID
 Enable consolidation of distributed file
and print resources into the data center
without compromising performance
 Offload of Data Center Servers
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
24
Windows Printing Application Optimizer
Branch Office
Challenge
Local Printer
 MS Print protocol uses RPC - very “chatty”
 As A result over WAN it degrades exponentially
as latency increases
Solution
Print job sent
to printer
WAN
Print job sent to
Windows server
 Based on licensed MS Print Protocols
 Optimized access to print queue status and printer settings
 Bi-directional Acceleration
 Printer and Queue meta-data caching
 Async write
 DRE hints for enhanced payload compression
 MS-RPC message optimization
 RPC command fragments handled asynchronously
 Delayed close of printer handles (OPEN requests local)
Benefit
Windows
Print Servers
Presentation_ID
Data Center
 Users print at near-LAN speeds
 No need for Network IT group to manage Branch Print
 No configuration on WAAS – just turn it on!
 Enable scalable centralized Windows Print services
 Fully Transparent to Windows AD Management
 Easy server migration from branch to datacenter
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
25
NFSv3 Application Optimizer
Solution
Challenge
 Read-Ahead
 Asynchronous write
 DRE hints
 Meta-data caching
 In Unix, NFS protocol is used for large file exchange such as
software builds, CAD applications and large directory access
 NFSv3 is a “chatty” RPC protocol
 Clients cannot efficiently operate on high-latency/highbandwidth WANs
Benefit
 Can fill high-bandwidth links regardless of latency
 Transparent to client and server. No configuration required.
 Tested for compliance with IBM AIX, Linux and
Solaris clients + Leading NAS vendors!
B
A
C
D
WAN
Original Connection
Presentation_ID
Optimized Connection
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Original Connection
26
HTTP Application Optimizer
Solution
Challenge
 Fast Connection Reuse
 Proxy Connect to SSL Servers
 Local HTTP responses through Metadata cache
 Content-aware optimization
 DRE hints
 Server compression offload
 Slow page load on Interactive Web applications
 Browsers serially open and close connections
to fetch small objects (e.g graphics)
 Latency due to HTTP request/response
Benefit
 Mitigates latency due to HTTP request/response
 Fully transparent
 Reuse of same pair of client and server requests
 Compliments and preserves http application pipelining
WAN
Connect (SYN, SYN-ACK, ACK)
HTTP Request
HTTP Response
Connect
HTTP Request
HTTP Response
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
27
HTTP AO - Building Blocks
WAN Conn
Cache
Reuse WAN
Connection
Advanced HTTP Parser
Cache HTTP Meta Data
Mitigate
Latency
Local
TCP
Handshake
Response
Presentation_ID
Send DRE Hints
Mitigate
Latency
Local
HTTP
Freshness
Response
Local
HTTP
Redirect
Response
Mitigate
Latency
Local
HTTP
Authneeded
Response
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
DRE
Flush
Stream
Improve
Performance
DRE
Skip
Bytes
DRE
Skip
LZ
Modify
Compression
Directive
Improve
Perf.
Offload
Server
Disables
Server
Compression
28
The Need for SSL Acceleration
 WAAS optimization benefits are maximized only when applied
to decrypted payload
Client
Server
WAN
SSL Handshake
“session key” derived
Encrypted Data Exchange
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
29
Cisco WAAS SSL Optimization Solution
 Core WAE acts as a Trusted Intermediary Node for SSL requests by client
 Private Key and Server Certificate are stored on the Core WAE device
 Core WAE participates in SSL Handshake to derive “session key”
 Distributes the “session key” securely in-band to the Edge WAE over the
established connection between the Edge WAE and Core WAE
Edge WAE
Send “session key”
Core WAE
Transparent
Secure Channel
Client
SSL Handshake
SSL Handshake
Server
WAN
Original Data - Encrypted
Optimized & Encrypted
SSL Session Client to Core WAE (WAAS)
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Original Data - Encrypted
SSL Session Core WAE to Server
- Core WAE: Server Private Key
30
Live Video Streaming for Windows Media
Environment
BRANCH OFFICE
2
DATA CENTER
Click on published
URL to get live
stream
Web Portal
List of scheduled live
streaming events
4
3
Windows Media RTSP
unicast streams
Opens Windows
Media Player
Microsoft
Windows Media
Server (WMS)
1
Uncompressed
Video
WAN
Encoder
Bottleneck
 Redundant
streams issued for the
same source!
BRANCH OFFICE
Presentation_ID
 Overloaded
streaming servers
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
BRANCH OFFICE
31
Live Video Streaming with WAAS
Edge stream splitting
BRANCH OFFICE
2
DATA CENTER
Click on published
URL to get live
stream
3
Opens Windows
Media Player
Web Portal
List of scheduled live
streaming events
WAAS
WAAS
Microsoft
Windows Media
Server (WMS)
1
Uncompressed
Video
WAN
Encoder
WAAS
 Only one stream per
remote site
WAAS
 auto-detect RTSP
connections (no
configuration required)
BRANCH OFFICE
Note: Separate WAAS license for Windows Media Live
Streaming required per contract w/Microsoft
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
BRANCH OFFICE
Cisco Confidential
32
Agenda
 Enterprise Application Delivery Challenges
 Introducing Cisco Wide Area Application Services
 Cisco WAAS Product Architecture
 Application Specific Acceleration
 WAAS Express
 Virtual WAAS
 Data Replication Acceleration
 Network-embedded virtualization
 Remote Access Optimization with WAAS Mobile
 Management and WAE Platforms
 WAAS Installation steps
 Summary
 Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
33
Cisco WAAS Express
IOS based Integrated WAN Optimization solution
Solution
Client
 Bandwidth optimization
 Fast delivery of data over low speed, high latency WAN
links from data centers
Branch
WAAS
Express
Benefit
 Small-footprint cost-effective software solution,
transparently integrates into the ISR G2
WAE
CM
 Natively uses capabilities of Cisco IOS® Software
 Increases remote user productivity
 Reduces WAN bandwidth costs
 Offers investment protection by interoperating with
existing Cisco WAAS infrastructure.
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Servers
Data
Center
34
Cisco WAAS Express
 Compatible with WAAS Headend Devices
 Inline IOS feature - Interoperates with IOS Security
and QoS features
 Support for mixed devices (WAAS appliances,
network modules, WAAS Express
Network
Integration
 L4 TCP Optimization –
TFO
 Compression – PLZ
Compression
WAAS
Express
Offerings
 Simplified CLI
 Central Manager
 DRE – Uses maximum
router DRAM
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
35
WAAS Express – Packaging & Licensing
 WAAS Express is a feature license which can be enabled with any
technology package licenses
 Enforced using a license key
 License key enforcement done in IOS on the router using Cisco
Software Licensing Infrastructure
 60 day trial license available
 WAAS Express will not register with WAAS Central Manager unless valid and
active license is present
 WAAS Central Manager will periodically ensure (trial and extension) license is
active to allow customer configuration
Universal Image
Security
W.E
U.C.
W.E
Data
W.E
IP Base
W.E
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
36
WAAS Express Software Architecture
Unified Management
Compression (LZ)
TCP Flow
Optimizations
(TFO)
Data Redundancy
Elimination (DRE)
L4: Throughput
Optimization
TCP Proxy
Policy Engine
CEF Interception and reinsertion
Network
Integration
IOS Forwarding Path
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
37
Agenda
 Enterprise Application Delivery Challenges
 Introducing Cisco Wide Area Application Services
 Cisco WAAS Product Architecture
 Application Specific Acceleration
 WAAS Express
 Virtual WAAS
 Data Replication Acceleration
 Network-embedded virtualization
 Remote Access Optimization with WAAS Mobile
 Management and WAE Platforms
 WAAS Installation steps
 Summary
 Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
38
Unified Network Services Provides a Common
Framework For Physical and Virtual Services
Physical
Network
Services
Private Cloud
Public Cloud
App
App
App
OS
OS
OS
WAN Opt Firewall SLB/ADC
Hypervisor
VDC-1
VDC-2
• Application-specific
service nodes
• Virtual appliance form factor
• Form factors:
• Elastic Instantiation/Provisioning
• Service transparent to VM mobility
• Appliance
• Switch module
• Router-integrated
Presentation_ID
• Support scale-out
• Large scale multi-tenant operation
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
39
Cisco vWAAS Provides Flexible Cloud
Deployment Options
Private Cloud
1
• Traditional WAN Edge Deployment at
Branch and DC
WAN or
Internet
 Gradual migration from Physical to
Virtual
VMware ESXi Server
 Multi-tenancy support
UCS /x86 Server
WCCP
Cat6K/N7K
VMware ESXi
2
Private Cloud, Virtual Private Cloud,
& Public Cloud
 Re-direction using vPath @VM level
 Elastic provisioning
Nexus 2K/5K
Nexus 1000V
 Multi-tenancy support
vPATH
VMware ESXi Server
Nexus 1000V
vPATH
VMware ESXi Server
UCS Compute/
UCS Compute/
Physical servers Virtualized Servers
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
UCS /x86 Server
Cisco Confidential
40
vWAAS and vCM Models
vWAAS-750
vWAAS-6000
vWAAS-12000
750
6000
12000
(Opt.TCP Connection)
WAN BW : 8 Mbps
(Opt.TCP Connection)
WAN BW : 90 Mbps
(Opt.TCP Connection)
WAN BW : 310 Mbps
Resources
Virtual Cores : 2
Memory :
4 GB
Hard Disk: 250 GB
Resources
Virtual Cores: 4
Memory :
8 GB
Hard Disk: 500 GB
Resources
Virtual Cores: 4
Memory :
12 GB
Hard Disk: 750 GB
Modeled after 574
Modeled after 674
Modeled after 7341
The performance results are based on benchmark testing
done on following
1.
2.
Cisco UCS C210 M2 with 2 Intel Xeon x5650 CPU (2.67 GHZ)
Cisco UCS B250 M2 with 2 Intel Xeon x5650 CPU (2.67 GHZ)
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
 Use UCS-based sizing results as
sizing benchmarks for other x86
platforms
 Mileage will vary with non UCS
platforms; approach similar to
other s/w vendors
vCM-100N
vCM-2000N
100
2000
(Max Devices)
(Max Devices)
Resources
Virtual Cores : 2
Memory :
2 GB
Hard Disk: 250 GB
Resources
Virtual Cores: 4
Memory :
8 GB
Hard Disk: 600 GB
Modeled after 274
Modeled after 674
41
vWAAS vPATH Interception (based on Nexus 1000V)
 Interception based on port-profile policy
configured in Nexus 1000v
Web
Server 1
vWAAS
App
Server
 Bidirectional Interception - (no IN/OUT
configuration)
 Pass-through traffic automatic bypass
Nexus 1000V
vPATH
VMware ESXi Server
Cisco UCS x86 Server
Nexus 1000v VSM
On-Demand
Orchestration
and Elasticity
Presentation_ID
Application based
interception
Virtual machine
mobility
awareness
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Fault Tolerant
persistent
performance
vCenter Server
Multi-tenancy
with flexible
deployment
42
Agenda
 Enterprise Application Delivery Challenges
 Introducing Cisco Wide Area Application Services
 Cisco WAAS Product Architecture
 Application Specific Acceleration
 WAAS Express
 Virtual WAAS
 Data Replication Acceleration
 Network-embedded virtualization
 Remote Access Optimization with WAAS Mobile
 Management and WAE Platforms
 WAAS Installation steps
 Summary
 Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
43
Data Backup/restore and Replications
 Online data
backup/restore
Replication time takes
several hours
WAN link speed is 45Mbps
while utilization is 20Mbps
 Backup accessible
over WAN
 Reduces recovery time
 Data replication
 Continuous data
synchronization across
the network
 Rapid failover to
remote DC for 24/7 data
availability
 Reduced recovery time
and improved overall
recovery
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Backup/Replications
WAN
Local
Data Center
Cisco Confidential
Remote
Data Center
44
Replication and backup Optimization
Local
Data Center
Challenge
Remote
Data Center
Backup/Replications
High
Throughput
 Requires costly High Bandwidth Low Latency Links
 Inability of storage systems to fill WAN link due to
latency/packet loss issues
 Need to increase the distance of the disaster recovery
site
Solution
WAN
LAN like
throughput
Bandwidth savings
Fewer round trips
 Device Mode purposely designed for DC-to-DC
replication and backup optimization
 Optimized for High Speed Links, Low Connection
Count, and Low Fan-out
 Supported on DC devices WAE-73x1
 Branch/DC and DC/DC managed from same WAAS
Central Manager (CM)
 3rd party data replication solutions support
No WAAS
 EMC SRDF/A, NetApp SnapMirror
 Solution does not preclude acceleration of other
replication protocols
Benefit
WAAS enabled with
Replication Accelerator Mode
Presentation_ID
 Back-up/Replication window reduction up to 5x
 Improved throughput and WAN link utilization
 Meet RPO and RTO
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
45
Agenda
 Enterprise Application Delivery Challenges
 Introducing Cisco Wide Area Application Services
 Cisco WAAS Product Architecture
 Application Specific Acceleration
 WAAS Express
 Data Replication Acceleration
 Network-embedded virtualization
 Remote Access Optimization with WAAS Mobile
 Management and WAE Platforms
 WAAS Installation steps
 Summary
 Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
46
Virtualized Application Delivery for Branch
Office – Cisco WAAS Virtual Blade
 Centralize what you can with WAAS
 Locally host services (e.g. Windows Servers) on same WAAS device
Flexible, Optimized Branch IT
Data Center
Cisco WAAS
Backup
Users
Local Storage
WAN
Business and
Communication Applications
Servers
Cisco WAAS
Router
V
B
Windows Server 2008 R2
Microsoft
System Center
Storage
Cisco WAAS Virtual Blade technology
Providing Best Mix of Distributed and Centralized IT Services
Validated by Microsoft for Windows Services
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
Backup
47
Virtual Blade Deployment
 Allocate resources and start Virtual-Blade instance
Easy & Simple - from WAAS CM or from CLI
 Centrally deploy server image over to WAE
From CLI or WAAS CM, using FTP or HTTP
Remote
Office
WAAS
Appliance
WAAS
Appliances
Data
Center
WAN
Remote
Office
Presentation_ID
WAAS
Appliance
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
48
Virtual Blade Offerings
 Broad range of services
 Microsoft Windows Services (e.g. DNS, DHCP, SCCM)
 Custom applications (internally developed )
 Other applications (NAM, ACNS, Altiris)
 Improved performance, scale and usability
 Multiple CPUs for VB (SMP) for higher compute
performance
 Network I/O Paravirtualization for higher network
performance
 Remote Network Boot Install (PXE) for agile provisioning
 Microsoft SVVP validated for Windows Server 2003,
2008 and 2008 R2
V V V
B B B
1 2 3
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
49
Microsoft and Cisco Solution
Microsoft Windows
Server 2008 Server Core
 Broad range of services
(DNS/DHCP/SCCM/…)
Cisco WAAS
with Virtualization
 Complete WAN optimization +
application acceleration
 SVVP certification on 2008 R2
(broader range of windows
services)
Cisco WAAS with pre-packaged Windows Server 2008 services
 Jointly developed architecture
 Joint customer support
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
50
Agenda
 Enterprise Application Delivery Challenges
 Introducing Cisco Wide Area Application Services
 Cisco WAAS Product Architecture
 Application Specific Acceleration
 WAAS Express
 Virtual WAAS
 Data Replication Acceleration
 Network-embedded virtualization
 Remote Access Optimization with WAAS Mobile
 Management and WAE Platforms
 WAAS Installation steps
 Summary
 Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
51
Cisco WAAS Mobile Architecture
1. Client/Server Architecture
2. What It Does
• Installs on Windows Desktop
WAN
Cisco WAAS
Mobile Client
Cisco WAAS
Mobile Server
• Accelerates Application
Performance over Challenged Mobile
or Remote Connections
Web, File &
App Servers
3. Why It’s Better
Purpose Built for
the Windows
PC/Laptop
 Designed for Mobile & Remote Users
Industry-leading
Performance
 Highest performance over mobile and SOHO networks
Lowest TCO
 Best reliability, stability and troubleshooting tools reduce cost of support
 Optimized for Diverse Challenged Networks
 Complements WAAS Appliance as Complete Acceleration Solution
 Scalable, Fault Resilient, Manageable, Interoperable
 Centralized policy based management reduces deployment and support
cost
 Integration with software distribution tools reduces deployment costs
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
52
Cisco WAAS Mobile Architecture Overview
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
53
Cisco WAAS Mobile Networking:
Deployment Topology
Cisco WAAS
Mobile
Server
Data Center
Data Center
Cisco WAAS
Mobile Server
Intranet
App Servers &
Storage
App Servers
&
Storage
Remote
Access
VPN
Mobile users
connect through
VPN aggregation
point to multiple
Cisco WAAS Mobile
Servers
Small Office
Internet
Cisco WAAS
Mobile Client
Workers in small offices
may connect to multiple
Cisco WAAS Mobile
Servers
Cisco WAAS
Mobile Clients
Simultaneously accelerate traffic to applications hosted in multiple data centers
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
54
Agenda
 Enterprise Application Delivery Challenges
 Introducing Cisco Wide Area Application Services
 Cisco WAAS Product Architecture
 Application Specific Acceleration
 WAAS Express
 Virtual WAAS
 Data Replication Acceleration
 Network-embedded virtualization
 Remote Access Optimization with WAAS Mobile
 Management and WAE Platforms
 WAAS Installation steps
 Summary
 Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
55
Scalable, Secure Central Management
 Centralized Management
Robust management, monitoring, and reporting for up to 2000 nodes
Device grouping for simplified rollout of configuration changes
Device and system alarms, as well as integration with SNMP and syslog

Platform support: WAAS appliances, WAAS Mdoules, WAAS Express, vWAAS

SOA-ready Monitoring
Standard XML Web Service (SOAP)
Integration with external reporting and monitoring portals
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
56
Secure Management & High Availability
Secure Management
High Availability
 SSL-encrypted HTTP GUI
and intra-device
communication
 Active/standby
deployments with
automatic failover,
 Roles-based Access
Control (RBAC) to isolate
users to specific
capabilities and domains of
management
 Configuration is replicated
from the primary CM to the
standby CMs
 Integrated IOS-like CLI
accessible via SSH (also
telnet, serial)
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
 Information is exchanged
using the same CM to
Cisco WAE communication
that occurs between every
Cisco WAE and the CM.
Cisco Confidential
57
Configurable Comprehensive Reporting
 Device Dashboard
Configurable list of reports to
display on a device or devicegroup homepage
 Customizable, schedulable
reports
Device and system health, WAN
optimization performance,
application acceleration
performance, and traffic
statistics
 Traffic Statistics
Optimized vs pass-through traffic
mix including pass-through
reason
 Per-Connection Statistics
Connection monitoring shows
near real-time view of optimized
connections and details
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
58
Cisco Wide Area Engine (WAE)
The Cisco WAE Appliances and Service Modules are
designed to address varying customer needs, from very
small branch offices to massive data center
deployments, and offer the highest single-device and
clustered-device scalability in the industry
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
59
Cisco WAAS Router Modules
SRE-SM
NME-WAE
Services Ready Engine (SRE)
Service Modules (SM)
for the Integrated Services Router G2
Router-Integrated Network Module
for the Cisco First Generation
Integrated Services Router
3925, 3945
2901, 2911,
2921, 2951
Cisco Integrated Services
Router (ISR) Series
2811, 2821, 2851, 3825, 3845
Reduce Branch
Footprint
Presentation_ID
Cisco Integrated Services
Router G2 (ISR) Series
2911, 2921, 2951, 3925, 3945
3925E, 3945E
Enhances IT
agility
© 2010 Cisco and/or its affiliates. All rights reserved.
Lowers Operational
Expenses
Cisco Confidential
60
WAAS Virtual Blades-Capable Branch
Appliances
WAVE-274 Appliance
WAVE-474 Appliance
 Cisco Wide Area Virtualization Engine
(WAVE) appliances extend the Cisco
WAN optimization appliance portfolio
to provide the industry's only branchoffice appliance family that
incorporates comprehensive WAN
optimization, embedded virtualization
for local hosting, and branch-office
video delivery.
WAVE-574 Appliance
WAE-674 Appliance
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
61
WAAS Express Platforms Supported
 ISR G2
 89x
 1941
 2901, 2911, 2921, and 2951
 3925 and 3945
 Interoperate with WAAS Data Center, Branch
appliances, and modules running WAAS software
4.2+
 Router Modules – NME-WAE and SM-SRE
 WAAS appliances
 WAVE appliances
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
62
Cisco WAAS Branch Platforms
Hardware
Configuration
Max Opt
TCP
Conn
Inline cards
Number
of Virtual
Blades
Drive
(GB)
RAID
Memory
(GB)
WAN Capacity
(Mbps)
NME-WAE-302
250
N/A
N/A
80
N/A
.5
4
NME-WAE-502
400
N/A
N/A
120
N/A
1
4
NME-WAE-522
800
N/A
N/A
160
N/A
2
8
SM-SRE-700
500
N/A
N/A
500
N/A
4
20
SM-SRE-900
1000
N/A
N/A
500
RAID-1
4
50
WAVE-274
200
2-port
2
250
N/A
3
2
WAVE-474
400
2-port
2
250
N/A
3
4
WAVE-574-3GB
750
2-port/4-port
2
500
RAID-1
3
8
WAVE-574-6GB
1,300
2-port/4-port
6
500
RAID-1
6
20
WAE-674-4GB
2,000
4-port/8-port
2
600
RAID-5
4
45
WAE-674-8GB
6,000
4-port/8-port
6
600
RAID-5
8
90
* Final recommendations requires a detailed sizing exercise that include application traffic mix, traffic characteristics, application load and other factors
mentioned in the sizing guidelines.
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
63
Cisco WAAS Express Sizing
Recommendations
Platform
Total
DRAM
Required
Maximum WAN
Recommended
bandwidth
Number of Users
Supported
Max TCP
Connections
89x
768 M
2 Mbps
1-10
75
1941
2.5 G
4 Mbps
15-20
150
2901
2.5 G
6 Mbps
15-20
150
2911
2.5 G
6 Mbps
25
200
2921
2.5 G
6 Mbps
25
200
2951
4G
6 Mbps
25
200
3925
4G
10 Mbps
50
500
3945
4G
10 Mbps
50
500
 WAAS Express requires maximum DRAM installed as indicated
 Typical Interfaces – 3G, T1, E1, Multi T1s, Multi E1s, and Serial
 Performance Testing Conducted with IOS FW, VPN (IPsec), NAT, and, QoS
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
64
Cisco WAE Family
Data Center Platforms
Hardware
Configuration
Max Opt
TCP Conn
Inline cards
Drive (GB)
RAID
FanOut
Memory
(GB)
WAN Capacity
(Mbps)
WAE-674-8GB
6,000
4-port/8-port
600
RAID-5
200
8
90
WAE-7341
12,000
4-port/8-port
900
RAID-5
1400
8
310
WAE-7371
50,000
1500
RAID-5
2800
24
1000
4-port/8-port
Replicator Mode
WAE-7341
2,500
4-port/8-port
900
RAID-5
4
8
310
WAE-7371
5,000
4-port/8-port
1500
RAID-5
9
24
1000
WAE-7341
WAE-7371
WAE-674
Enterprise Data Center Appliance
Enterprise Data Center Appliance
Enterprise Appliance
* Final recommendations requires a detailed sizing exercise that include application traffic mix, traffic characteristics, application load and other factors
mentioned in the sizing guidelines.
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
65
Agenda
 Enterprise Application Delivery Challenges
 Introducing Cisco Wide Area Application Services
 Cisco WAAS Product Architecture
 Application Specific Acceleration
 WAAS Express
 Virtual WAAS
 Data Replication Acceleration
 Network-embedded virtualization
 Remote Access Optimization with WAAS Mobile
 Management and WAE Platforms
 WAAS Installation steps
 Summary
 Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
66
Agenda
 Enterprise Application Delivery Challenges
 Introducing Cisco Wide Area Application Services
 Cisco WAAS Product Architecture
 Application Specific Acceleration
 WAAS Express
 Virtual WAAS
 Data Replication Acceleration
 Network-embedded virtualization
 Remote Access Optimization with WAAS Mobile
 Management and WAE Platforms
 WAAS Installation steps
 Summary
 Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
67
Why Cisco WAAS?
Differentiators
Proof Points
Router integrated
Solution
Benefits
 Broadest portfolio
 Enables IT service agility
 Software based & hardware
integrated options
 Reduces branch footprint
 “On-demand” services
 Reduces deployment and
maintenance costs
Proven end-to-end
architectural approach
 Over 5000 customers
 Eases deployment
Network services
integration
 Network Transparency  Reduces deployment and
Seamless integration with QoS,
management complexity
VoIP, and firewall services
 Protects investments
 Fully preserves security policies
 Speeds problem resolution
 Industry-leading application
transparency
Presentation_ID
 Validated, tested design guides  Ensures seamless
network integration
 Award-winning Cisco global
support & advanced services
 Help where and when
you need it
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
68
Agenda
 Enterprise Application Delivery Challenges
 Introducing Cisco Wide Area Application Services
 Cisco WAAS Product Architecture
 Application Specific Acceleration
 WAAS Express
 Data Replication Acceleration
 Network-embedded virtualization
 Remote Access Optimization with WAAS Mobile
 Management and WAE Platforms
 WAAS Installation steps
 Summary
 Q&A
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
Cisco Confidential
69
Cisco Connected Grid Router & Switches
Brief Overview
Presentation_ID
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
71
Substation Automation
Cisco CGR 2010 – Substation Router
Enhanced for Utility deployments
• Substation Compliant (IEC 61850-3, IEEE 1613)
• No Moving Parts
• Purpose built for Substation envionments –
industrial grade components
• Dual Redundant, Field Replaceable Power
Supplies (Same P.S. as CGS 2520)
• Extended Temperature Range Support
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
•
•
•
•
•
•
•
Extended Power Supply Support
Choice of Front or Reverse Cabling
IEEE 1588 HW Ready
Advanced IOS Secuity - NERC/CIP capable
SCADA Inspection – IPS, FPM
SCADA Tunneling capabilities - BSTUN
Hardware Based Security solution: SUDI
Cisco Confidential
72
Substation Automation / Integration
Cisco CGS 2500 Series
CGS-2520-24TC
24 10/100 ports
2 dual-port GE uplinks
CGS-2520-16S-8PC
16 FE SFP ports
8 10/100/PoE ports
2 dual-port GE uplinks
Based on the Cisco Catalyst 2K / 3K series, the most successful
Enterprise Switches in the world today!
Enhanced for Utility deployments
• Substation Compliant (IEC 61850-3, IEEE 1613)
• No Moving Parts
• Dual Redundant, Field Replaceable Power
Supplies
• Extended Temperature Range Support
• Extended Power Supply Support
• Choice of Front or Reverse Cabling
• CG Swap Drive Functionality
Presentation_ID
© 2010 Cisco and/or its affiliates. All rights reserved.
• High availability platform: REP, Flexlink
• GOOSE support: QoS, Fast Ring Convergence
and VLAN handling
• MODBUS Memory Map support
• Utility Specific Smartport macros.
• Hardware Based Security solution: SUDI
• Advanced Security solution
• Option to upgrade to Layer 3 feature sets
Cisco Confidential
73