edgemo university€¦ · · 2016-06-07lync 2013 – deployment – gslb ... – gslb –...
TRANSCRIPT
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
NetScaler ADC + SD-WANEdgemo University
Morten KallesoeSenior Systems Engineer – Delivery networks
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Agenda
• NetScaler– XenApp/Desktop/Mobile– Core
• Remote Branch– NetScaler SD-WAN
• Use-cases
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Orchestrates and optimizes delivery ofall SaaS, Web, Windows and Mobile apps
© 2015 Citrix | Confidential
Dynamic Data Center
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Secure reverse proxy – provides an AirGap
Citrix NetScaler
UserService
Client traffic Backend traffic
© 2015 Citrix | Confidential
NetScaler: XenApp/Desktop/Mobile
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Unified Gateway provides One URL to any application
ONEURL
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
• Multiple point solutions result in:– Multiple URLs, Limited or poor end user
experience
– Complicated and hard to manage infrastructure
– Multiple islands, limited integration between solutions
– Multiple upgrade cycles that lead to disruption
– Misconfiguration of security and access policies
Multiple URLs for remote access, datacenter infrastructure is costly and hard to manage
Mobile UserClient/Server
SaaS
SG
ADC ICA
SSL VPN mVPN
Distributed App Infrastructure
Public Cloud
Hybrid CloudOn Prem
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Load Balancing
9
• Spreading the load across multiple back end servers in a variety of methods to suit your needs.
• Easy to scale (add more servers, and 2 lines of config on appliance per server.)
• TCP Multiplexing
• Per-Protocol enhancements.
• Stickiness (Persistence)
• Content Switching. . .
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Load Balancing Availability
• Spillover, Max Clients, DOS protection
• Appliance High Availability
• Health Checks ( not to be underestimated!)
• Backup Virtual Servers, Redirect URL
• Responder (last man standing…)
xx
x
10
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
XenDesktop / XenApp
VirtualDesktops
VirtualApps
Desktop Director(Management)
WAN
Rem
ote
Acce
ss
LAN
Campus
3rd Party Ops Tools/Analytics
e.g. Splunk
HDX Insight for End-to-End Visibility
• Full ICA visibility only through Citrix • End to end user and apps monitoring
• Effective capacity planning tool for CIOs• Now integrates with Director
© 2015 Citrix | Confidential
NetScaler: Core
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Receiver, microVPN,SSLVPN
Web
SSO with NetScaler Authentication Fabric
ActiveSync
Server SSOClient Authentication
10.1 10.5
SAML SSO
KerberosImpersonation
KCD & PT
Basic
Digest
NTLM v1/v2
Web Form
401 BASIC Web Form
CAC /SmartCard
NTLM v1/v2
SAML 2.0consumer Kerberos
SAML 2.0producer(NSNS)
401BASIC (w CAC/SmartCard)
Auth v2
SAML IDP
oAuth
11.0
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Front End OptimizationImportance Of Mobile User Acceleration
FEOEvery device unique
Firmware different
Screen size different
Retina displays Web
browser different
Connectivity location different
Network speed
different
• Optimization historically focused on optimizing and reducing load at the backend.
• With current trend of Mobility NetScaler Focuses on faster and efficient web content delivery by optimizing the web page components most dependent on client side processing.
Mobile Acceleration Improves Your Mobile Clients’ Experience
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Improvise the Application layer
16
Payload Reduction Packet Loss Rate
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
• Full function Web Application Firewall• HTTP and XML attack protections• Data theft protection• Hybrid security model• Rate controls, Rich AAA, policy-driven• FIPS, Common Criteria and ICSA Certification
• Centralized Management• Software-based management console• Fully automatable via APIs• Role-based administration, fleet management
• Fastest Web App Firewall (up to 40 Gbps)
• Very low latency, inline deployment
• Flexibility for multiple environments:• On-Premise, Virtualized, Hosted/Cloud
aaccess
tthreat
Web Application Firewall
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Scale Up Scale Out High-Availability
NetScaler DataStream
SQL Multiplexing Scale TCP connections Host more DBs on server Reduce SQL hardware
SQL Conn. Offload Frees memory/cpu resources Faster query execution
Native SQL LB Request switching Fast app response
SQL Aware Policies Read/write split DB sharding Granular control
Automated IP Failover Virtual IP based Lower cost HA
Intelligent Monitoring Replication state aware
Virtualization of database connection layer
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Deployment Guides for Microsoft• Microsoft Dynamics 2015
– Deployment– GSLB
• Lync 2013– Deployment– GSLB
• Exchange 2013– Deployment– Authentication & Optimization– GSLB– ActiveSync with Kerberos
• Office 365– Forms authentication– Kerberos Authentication
• Microsoft SQL– Server 2008 R2– Server 2012 Always On– Scaling and Optimization
• Microsoft ADFS– Proxy Replacement
• MS TMG– Replacement guide
• SharePoint 2013– Load balancing + Authentication– Hybrid deployment– GSLB– Optimization– Cisco ACI Automation
© 2015 Citrix | Confidential
NetScaler SD-WAN
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
As of May 20, the CloudBridge product line has been renamed to NetScaler SD-WAN. See the table below for name mapping:
Name Change: Cloudbridge to NetScaler SD-WAN
Old NewCloudBridge Enterprise Edition NetScaler SD-WAN Enterprise Edition
(EE)CloudBridge Virtual WAN Edition NetScaler SD-WAN Standard Edition
(SE)CloudBridge WAN Optimization NetScaler SD-WAN WANOP Edition
(WO)CloudBridge Plug-in NetScaler SD-WAN Plug-inCloudBridge Connector NetScaler Cloud ConnectorCloudBridge Virtual WAN Center NetScaler SD-WAN Center
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
WorkSpace Delivery Needs
24/7
Reduced Cost and Complexity
Alwayson Branch
User Experience Deployed in Days Not Months
MPLSINTERNET
4G/LTESATELLITE
Cloud/SaaS
Datacenter
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Standard Edition
Scale bandwidth, ensure availability, and reduce costs
WANOP Edition
Optimize bandwidth while accelerating application
delivery
Enterprise Edition
Fully integrated solution for efficiency, reliability, and
usability
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Gartner’s definition of SD-WAN
Intelligent and dynamic load sharing
Secure connectivity and integrated
network services
Simplified management
Lightweight replacement for
WAN routersSource:Gartner Market Guide for Software Defined WAN-Dec 1, 2015
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Measure real-time performance…in each
direction
Accelerate ICA/CIFS/SMB/MAPI
Compress/cache data
Bandwidth priority and sensitivity to latency, jitter
and packet loss
Business policies on link
types and usage
Citrix SD-WAN Framework
Optimal Application
delivery
Network Policies
Application Needs
Network Conditions
Application Acceleration
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Optimal Delivery for Enterprise Applications
24/7
Reduce Cost• Low cost links• Efficient use of
links
Increase Reliability
Improve User Experience• XA/XD Accel• CIFS/SMB/MAPI Accel• Compression / caching• Flow Control + QoS• Duplicate packets
Increase Agility
MPLSINTERNET
4G/LTESATELLITE
Datacenter
Broad Visibility• WAN Insight• HDX Insight
© 2015 Citrix | Confidential
Use-cases
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
NetScaler
• Banker• Forsikring• Uddannelse• Transport• Dot-coms
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
NaturErhvervstyrelsen: Denmark’s Fish and Agriculture Regulatory Agency
Challenges & Opportunities• Agencies patrol vessels were using expensive satellite connectivity to augment
4G/LTE services for file access, file uploads, and crew welfare (i.e. email) activities• The vessels had separate 4G/LTE connections from different mobile providers, but
coverage was not consistent• While executing their mission patrol vessels often switched among the mobile and
satellite networks impacting operations
Why CloudBridge• The SD-WAN solution enabled applications to seamlessly migrate among mobile
connections without disruption or sacrificing security, minimizing satellite use.• When using satellite, the QoS capabilities ensured that mission critical data was
prioritized over other applications.
Results• Uninterrupted connectivity, without sacrificing security by combining services from
multiple mobile providers. Management GUI helps with troubleshooting connections.• Improved throughput for applications by combining available network bandwidth
© 2016 Citrix | Confidential – Content in this presentation is under NDA.
Use Case: Providing resilience between key office locations
• Care Australia promotes innovative solutions and are advocates for global responsibility
• It directly assists more than 2 million people across 23 countries through a staff of over 900 employees
• As an NGO, reliant upon donations and grants, managing IT expenses is extremely important
• Care Australia was intrigued by how CloudBridge Virtual WAN could reduce WAN costs while ensuring reliable connectivity between key office locations
• Based upon a demonstration of the Virtual WAN solution benefits, Care is deploying the solution between two data centers for increased throughput and reliability
Network better. Live better.