Brkapp 2017

Optimizing Application
Delivery
BRKAPP-2017
BRKAPP-2017
14328_04_2008_c2
2008 Cisco Systems, Inc. All rights reserved.
2006, Cisco Systems, Inc. All rights reserved.

Presentation_ID.scr
Cisco Public
Cisco Application Delivery Networks

Network Classification
Application Scalability
Application Networking
Quality of service
Network-based app recognition
Queuing, policing, shaping
Visibility, monitoring, control
Server load-balancing
Site selection
SSL termination and offload
Video delivery
Message transformation
Protocol transformation
Message-based security
Application visibility
WAN
Application Acceleration
WAN Acceleration
Application Optimization
Latency mitigation
Application data cache
Meta data cache
Local services
BRKAPP-2017
14328_04_2008_c2
Data redundancy elimination

Window scaling
LZ compression
Adaptive congestion avoidance
Delta encoding
FlashForward optimization
Application security
Server offload
3
Cisco Public
Other Cisco Live Breakout Sessions

that You May Want to Attend
Relevancy
GSS
ISR
WAAS
ACNS
ACE
AXG
Applications
BRKAPP-2002 Server Load Balancing Design

BRKAPP-3003 Troubleshooting ACE
BRKAPP-1004 Introduction WAAS
BRKAPP-2005 Deploying WAAS
BRKAPP-3006 Troubleshooting WAAS
BRKAPP-1008 What can Cisco IOS do for my application?
BRKAPP-1009 Introduction to Web Application Security
BRKAPP-2010 How to build and deploy a scalable video
communication solution for your organization
BRKAPP-2011 Scaling Applications in a Clustered
Environment
BRKAPP-2013 Best Practices for Application Optimization
illustrated with SAP, Seibel and Exchange
BRKAPP-2014 Deploying AXG
BRKAPP-1015 Web 2.0, AJAX, XML, Web Services for
Network Engineers
BRKAPP-1016 Running Applications on the Branch Router
BRKAPP-2017 Optimizing Application Delivery
BRKAPP-2018 Optimizing Oracle Deployments in
Distributed Data Centers
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
Agenda
Why Optimize?
Enterprise Framework for WAN/Application
Optimization
Technologies That Will Be Discussed
Deployment Scenario in Depth
Caveats
BRKAPP-2017
14328_04_2008_c2
Cisco Public
Why Optimize?
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
WAN Characteristics
Bandwidth
Bandwidth constraints keep applications from performing well
Too much data and too small of a pipe causes congestion, packet loss,
and backpressure
Packet loss, congestion, and retransmission

Packet loss and congestion cause retransmission which hinders
application performance and throughput
Commonly caused by saturated device transmit queues in the
network path
Packet Loss
Congestion
BRKAPP-2017
14328_04_2008_c2
Cisco Public
Enterprise
WAN/Application
Optimization
Framework
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
Bulk File / Storage
Policy Configuration
& Management
Transactional
IP Communications
Classification
Interactive Services
Layer
Applications
Enterprise WAN/Application
Optimization Framework
Monitoring
WAN/Application
Optimization Services
Optimization
Control
Networked
Infrastructure
Layer
Secure and Highly Available Network Infrastructure
BRKAPP-2017
14328_04_2008_c2
Branch Office
Internet
IP WAN/FR
/MPLS
Cisco Public
Data Center
9
WAN/Application
Optimization
Technologies
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
10
WAN/Application Optimization
TechnologiesSSLDeploy
ACE:
Offload and SLB
Deploy NetQoS
Monitoring tools
DMVPN
Deploy
WAAS
Farm
Data
Center
Deploy
WAAS
Si
Si
Campus
Internet
QoS
Branch
IP SLAs
Measurements
WAN
IP SLAs
Measurements
IOS
FW
PfR and QoS
Branch
Deploy
WAAS
PfR and
QoS
NBAR Protocol Discovery
and NetFlow Monitoring
Deploy
WAAS
Branch
BRKAPP-2017
14328_04_2008_c2
Cisco Public
11
Cisco Public
12
Deployment
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Deployment
Step 1Visibility
Obtain visibility into applications running across the network
Application discovery and reporting per location
Including encapsulated applications
Get visibility into end-to-end application performance

Application bandwidth/throughput usageper user, per site, per prefix
Application performance metricsloss, RTT, one-way delay, jitter,
latency, ART, MOS
Top talkersapplications, sessions, prefixes
TCP session statscomplete, open, expired
Historical and real-time
Network-wide congestion points
Application behavior analysis
Behavioral based application analysis

BRKAPP-2017
14328_04_2008_c2
13
Cisco Public
Network Based Application Recognition

(NBAR)
Stateful Application Intelligence
Protocol Discovery:
discover what apps are
running on your network
and provide real-time
statistics
Per-interface, per-protocol,
bi-directional statistics
bit rate (bps); packet count;
byte count
SNMP accessible for

centralized monitoring
Voice
Best
Effort
25%
P2P
Supported by Partner
products (Concord|CA,
InfoVista, Micromuse|IBM)
and MRTG
BRKAPP-2017
14328_04_2008_c2
E-mail
Backup,
etc.
Bulk
RealTime
33%
InteractiveVideo
Critical
Data
StreamingVideo
Routing
Call-Signaling
Net Mgmt
Transactional
Mission-Critical
Link Utilization

Presentation_ID.scr
Cisco Public
14
Application DiscoveryNBAR
Real-Time Application Visibility
Configure NBAR on the
LAN interface on the
branch router
ip nbar protocol-discovery
Identify all applications

(NBAR can detect more
than 500 applications and
protocols)
Determine application
specific SLAs
BRKAPP-2017
14328_04_2008_c2
Cisco Public
15
Application Discovery
NBAR and NetQOS
NetQOS supports SNMP
Configure NetQOS to
take
in NBAR info
Map NetQOS to
recognize applications
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
16
NetFlow
Characterize and analyze application traffic flow
Understand who is utilizing the network and top talkers
Diagnose slow network performance, bandwidth hogs
and bandwidth utilization in real-time
Information for network capacity and traffic engineering
Used for anomaly detection, worm diagnosis, and
DOS attacks
BRKAPP-2017
14328_04_2008_c2
Cisco Public
17
Making Sense of Your Network Traffic
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
18
Monitoring Application Performance

Identifying FlowsNetFlow
Configure NetFlow on LAN and WAN interfaces (ingress)

ip flow ingress
Identify flows using show ip cache flow command.

BRKAPP-2017
14328_04_2008_c2
Cisco Public
19

Identifying FlowsNetFlow and NetQOS
Configure NetFlow to
export statistics
to NetQOS
ip flow-export source
FastEthernet3/1.3051
ip flow-export version 5
ip flow-export destination
52.1.1.22 9995
Use NetQOS reports to

identify top protocols and
network-wise traffic
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
20
10
IP SLAResponse Time Measurement

Source
Responder
Network
Network Perspective
User Perspective
Active Agent
Sampling method
Synthetic/active
Collection method
Embedded agents as supposed
to external probes
Perspective of measurement
Network perspective
Scope of measurement
End-to-end/path
BRKAPP-2017
14328_04_2008_c2
Cisco Public
21

IP SLA and NetQOS
Configure IP SLAs manually or with NetQOS for the

flows identified
Use NetQOS to track these SLAs
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
22
11
Performance Routing Overview

What Is PFR?
Routing Based on Performance
WAN Access Links Are Biggest Endto-End Bottleneck!
Remote
Office
MC/BR
By Default BGP Chooses Best

Path Based on Fewest AsPath Hops!
BR
MC
SP B
SP A
Headquarters
SP C
BR
Bottlenecks!
BR
SP D
SP E
MC/BR
PFR Components
Optimize by:
Reachability, Delay, Loss, Jitter*,
MOS*, Throughput, Load and/or $Cost
Telecommuter
BRBorder Router
MCMaster Controller (decision maker)
BRKAPP-2017
14328_04_2008_c2
Cisco Public
23
Multi-Path BaseliningPfR
The router is configured with PfR in monitoring mode to

learn jitter, delay, mos etc for automating multi-path
baselining
Helps develop appropriate PfR policies for path
optimization
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
24
12
Multi-Path BaseliningPfR
PfR can learn and track prefixes and associated delay,

jitter etc.
BRKAPP-2017
14328_04_2008_c2
Cisco Public
25
Establishing Application Performance

BaselinesNetQOS
Various NetQOS reports can be used to establish

application performance baselines
Drill down reports provide greater granularity
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
26
13
Identify What Can Be Optimized

and Where
Top traffic in New York is voice and low latency queues

with higher bandwidth for voice traffic might provide
optimum delay, jitter and performance
BRKAPP-2017
14328_04_2008_c2
Cisco Public
27
Deployment
Step 2Visibility and Control
Assumes visibility tools are already deployed and all applications
have been recognized and appropriate priorities mapped
Provide application-level SLAs for prioritized traffic flows
Apply application based QoS within the networkshaping, queuing, marking
Ability to apply per branch and per application QoS policies
If application SLA are not met based on monitored performance,

behavioral based anomaly following actions should be taken:
For local congestion, the local hierarchical QoS policies will be in play
If above dont suffice then have ability to change application class of service
per policy
Local and remote
If alternate path exist which meets SLA, reroute traffic per policy
Local and remote congestion
Once SLAs are met on the congested path revert back to defaults
If traffic is anomalous drop the traffic or redirect for forensic analysis
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
28
14
QoS Deployment for

Converged Networks
Goal: To Deploy Consistent, End-to-End QoS
for Voice, Video, and Data
WAN
WAN
Access Layer
Classification and Trust
Boundary
Marking / Remarking
Egress Queue Scheduling
Buffer Management
BRKAPP-2017
14328_04_2008_c2
Intelligent Classification
Bandwidth Provisioning
Admission Control
Shaping
Link Fragmentation and
Interleaving
Header Compression
Distribution Layer
Layer 3 Policing
Egress Scheduling
(multiple queues with
WRR)
Priority Queuing for Voice
over IP (VoIP)
Buffer Management
Cisco Public
29
NBAR Application Discovery and

QOS Marking
Configure NBAR classification
policies on the LAN interface
to recognize different
application traffic
match protocol HTTP url *cisco*
match protocol sip
match protocol rtcp
Configure QOS policies to mark

those traffic with appropriate
DSCP/TOS markings
match all class HTTP
Set precedence 3
match all class rtcp
Set precedence 6
match all class sip
Set precedence 7
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
30
15
NBAR Application Discovery and QOS

Marking Show Command Outputs
MQC markings before TCP optimization help in applying appropriate

application specific QOS policies on the exit after optimization
BRKAPP-2017
14328_04_2008_c2
Cisco Public
31
Control Policies with QOS

Configure appropriate congestion
management QOS policies on the
WAN interfaces for both optimized
and unoptimized traffic
match ip precedence 5
set bandwidth 20
match ip precedence 3
Set bandwidth 30
Ensure real time traffic like voice

are prioritized with appropriate low
latency queues
If using a DMVPN tunnel for
security, configure appropriate
policy and apply the policy map to
the physical interface mapped to
the tunnel
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
32
16
Control Policies with QOS

Show Commands
Verify that the QOS
policies are adhered
to with appropriate
show commands
BRKAPP-2017
14328_04_2008_c2
Cisco Public
33
Path OptimizationPfR
Configure PfR to monitor
and route traffic based on
appropriate application
specific policies
Configure the branch
router to be both PfR
master and border router
Tag the appropriate
internal(ingress) and
external(exit) interfaces
Define appropriate policy to
enable PfR load balance
traffic across both the
WAN exits
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
34
17
PfR Path OptimizationLoad Balancing
Effective bandwidth utilization using both the links

Distinctive treatment for different kids of traffic
BRKAPP-2017
14328_04_2008_c2
Cisco Public
35
PfR Path OptimizationCongestion
Passive or active monitoring of network parameters like

delay, jitter, etc.
Fast switch over to alternate path in case of failure
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
36
18
PfR Path OptimizationCongestion

Show Command
PfR continuously monitors and verifies that the network

parameters are within the defined policy for path
optimization
During congestion the delay increases in that path
PfR compares this delay with that of the alternate path
and switches path
BRKAPP-2017
14328_04_2008_c2
Cisco Public
37
PfR Path OptimizationPath Failure
Passive or active monitoring of path reachability

Fast switch over to alternate path in case of failure
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
38
19
PfR Path OptimizationPath Failure

Debug Command
As soon as PfR detects reachability has gone down

it switches to alternate path
Alternate path held in HOLDDOWN state for a period
of time (configurable) to prevent flapping
BRKAPP-2017
14328_04_2008_c2
Cisco Public
39
Deployment: Step 3Visibility, Control

and Optimization
Assumes visibility and control service already running or is part of
this service
Provide application optimization
TCP acceleration
Date Compression
Application acceleration and caching
DC to DC Active Application Load Distribution
Should support both native and hardware acceleration optimization

Ability for the monitoring tool to extract and present pre/post
optimization datacompressions stats, ART, latency, etc.
Per user, per application, per site
Should be consistent across all implementations (native or Hw)NBI and
Instrumentation
Should be transparent to other services (interop and co-exist)

already deployed
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
40
20
TCP Performance Improvement

Transport flow optimization overcomes TCP and WAN
bottlenecks
Shields nodes connections from WAN conditions
Clients experience fast acknowledgement
Minimize perceived packet loss
Eliminate need to use inefficient congestion handling
WAN
Window Scaling
Large Initial Windows
Congestion Mgmt
Improved Retransmit
LAN TCP
Behavior
BRKAPP-2017
14328_04_2008_c2
LAN TCP
Behavior
41
Cisco Public
Data Compression
Reduce overall WAN consumption based on redundancy
Maintain active database of previously sent and received traffic
Send database index on behalf of traffic that has been seen before
Realize 5x50x compression, minimize WAN bandwidth consumption
Compress all outbound traffic with LZ compression

Additional 2x compression beyond data suppression
Very good compression for non-redundant data
ABCDEFGHIJKLMN
OPQRSTUVWXYZ
ABCDEFGHIJKLMN
OPQRSTUVWXYZ
L1+MNOP+L2
IP
Network
DRE CACHE
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Label
Data
L1
ABCDEFGHIJKL
L2
QRSTUVWXYZ
Cisco Public
DRE CACHE
42
21
TCP Optimization with Web Cache

Communication Protocol (WCCP)
Configure WCCP interception
on LAN and WAN interfaces
ip wccp 61 redirect in (LAN)
ip wccp 62 redirect in (WAN)
Configure appropriate
optimization policies
on the WideArea Application
Engine (WAE) for different
kinds of traffic
TCP flow
Data Redundancy Elimination
(DRE)
LZ
Full
BRKAPP-2017
14328_04_2008_c2
Cisco Public
43
TCP Optimization with WCCP

Show Commands
No of packets
redirected by WCCP
show ip wccp command on routers

BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
No of bypassed
packets returned by
WAE
44
22
TCP Optimization
Show Commands
Full
optimization
Only TCP Flow

optimization
show tfo connection summary on WAEs

BRKAPP-2017
14328_04_2008_c2
Cisco Public
45
TCP Optimization
NetQOS
NetQOS trend charts can be used to track optimization

efficiency by tracking throughput
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
46
23
ACE Optimization at
Data Center
BRKAPP-2017
14328_04_2008_c2
47
Cisco Public
Server Load Balancing (SLB) and

Secure Socket Layer (SSL) Offload with ACE
Load Balancing Algorithms (Round
Robin, Least Connections, Hash)
Stickiness (session persistence
mechanismsSource IP/Source
Subnet Sticky, Cookie sticky, HTTP
Redirection sticky, SSL sticky)
SLB load balances

to the selected
SSL Module
SSL Module
decrypts traffic &
returns it to SLB
Health Monitoring (Return code

checking, TcL scripts)
Redundancy (stateful versus
stateless redundancy, session
and sticky state replication)
Offload of CPU-intensive SSL
processing
Servers resources are dedicated
to serving requests and running
applications, rather than
encrypting data
Clients send
Clients send
traffictraffic
to a to
SSL
aVirtual
VirtualIPIP
SLB makes a L7
decision on the traffic
and sends the
connection to the best
serverfarm
Allows packet inspection and

advanced content switching (cookie
sticky) of SSL traffic
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
48
24
SLB and SSL Offloading with ACE

Offload of CPU-intensive SSL
processing
Application
Control Engine
Servers resources are

dedicated to serving requests
and running applications,
rather than encrypting data
Allows packet inspection and
advanced content switching
(cookie sticky) of SSL traffic
BRKAPP-2017
14328_04_2008_c2
Cisco Public
49
WAN Optimization
and Security
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
50
25
MPLS WAN Optimization

US
HeadQuarters
Support Center
India
MPLS
WAN
US
Assembly
US
Customer
.
.
.
Manufacturing
Europe
WAN
Manufacturing
China
US
CallCenter
L2 WAN is a typical hub and spoke network

All spoke to spoke traffic go through the hub
MPLS provides direct path between branches
BRKAPP-2017
14328_04_2008_c2
51
Cisco Public
Group Encrypted Technology

VPNGET VPN
US
HeadQuarters
Support Center
India
MPLS
WAN
US
Assembly
US
Customer
.
.
.
WAN
US
CallCenter
Manufacturing
Europe
Manufacturing
China
IPSec tunnel mode security is a typical hub and spoke overlay network
Get VPN - Scalable architecture for any-to-any connectivity and encryption
No overlays native routing. Any-to-any instant connectivity.
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
52
26
Dynamic Multipoint VPNsDMVPN

Hub Site 1
Branch Offices
Broadband,
Frac-T1, T1 Branch Router
VPN
Head-end
DMVPN
DS3, OC3,
OC12
Dynamic IGP routing

(EIGRP, OSPF, etc.)
IP WAN
NHRP
Home Offices
DMVPN
Hub Site 2
Primary DMVPN Tunnel

Secondary DMVPN Tunnel
Spoke-to-Spoke Tunnel
IP only branch offices

Branches
Routing
Control Plane
Dynamic NHRP
Routing
Dynamic NHRP
Routing
GRE
Control Plane
Multipoint
GRE
Multipoint
GRE
IPSec
Control Plane
Tunnel
DPD
Protection
Tunnel DPD
Protection
Good For:
Customers already
using routing
Broadband
Head-End
BRKAPP-2017
14328_04_2008_c2
Key Features:
Multipoint GRE (mGRE)
WAN Router
IP multicast
requirementshub and
spoke only
Customers with dynamic
partial or full mesh
requirements
Cisco Public
53
Cisco Public
54
Deployment
Summary
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
27
Where to Apply WAN/Application

Optimization Technologies
Deploy NetQoS
Monitoring Tools
DMVPN
Internet
Deploy
WAAS
Farm
Deploy ACE:
SSL Offload and SLB
Data
Center
Deploy
WAAS
Si
NAM
Troubleshooting
Si
Campus
QoS
Branch
IP SLAs
Measurements
WAN
IP SLAs
Measurements
IOS
FW
PfR and QoS
Branch
Deploy
WAAS
PfR and
QoS
NBAR Protocol Discovery
And NetFlow Monitoring
Deploy
WAAS
Branch
BRKAPP-2017
14328_04_2008_c2
Cisco Public
55
Quick LookBefore Optimization
At around 300 msec

latency, 10 users could
sustain connection rate of
around 20 connections per
second
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
56
28
Quick LookAfter Optimization
At around 130 msec

latency, 10 users could
sustain a connection
rate of around 110
connections per second
BRKAPP-2017
14328_04_2008_c2
Cisco Public
57
Suggested Branch
Deployment Designs
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
58
29
Branch Deployment Scenarios 1 and 2
Single Homed Small Branch Office
BRKAPP-2017
14328_04_2008_c2
Dual Homed Small Branch Office
Cisco Public
59
Branch Deployment Scenario 3

Dual homed Medium Branch Office
MCPfR master controller

Recommended not to be placed in the forwarding path
GLBPcan provide load balancing

BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
60
30
Deployment Caveat
PfR: Lacks Support for Multipoint Interfaces
PfR supports only single next hop per interface
Will work with:
PPP/HDLC/Frame Relay
GRE
DMVPN (point to point GRE)
Will not work with:

VPLS
Common Ethernet VLAN
DMVPN (multipoint GRE)
Support will be available from IOS version 12.5(pi4)T

expected in late 2008
BRKAPP-2017
14328_04_2008_c2
Cisco Public
61
Deployment Caveat
PfR Only Supports Static or BGP Routes
PfR currently supports route learning with only static or
BGP routes for path control
Support for other routing protocols like EIGRP or OSPF
does not exist
Workaround is to add summary static routes and use
PfR for only route unreachability mitigation
Support for EIGRP will be available from IOS version
12.5(pi4)T in late 2008 or early 2009
Plans are there to add support for OSPF
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
62
31
Deployment Caveat
WAE TCP Options and Firewalls
WAEs add TCP options (0x21) to the TCP header that help in
WAE peer discovery and negotiations
Many firewalls do not understand these options and clear them
WAEs peer discovery and negotiation fails and hence no
optimization can take place
Wokaround: configure firewalls to allow TCP options
Many Cisco firewalls like IOS Firewall, PIX and the Firewall
Service Module (FWSM) can be configured to allow TCP options
BRKAPP-2017
14328_04_2008_c2
Cisco Public
63
Deployment Caveat
WAE Sequence Numbers and Firewalls
Introduction of WAEs causes
three different TCP sessions
to be established
WAEs jump sequence numbers
on the optimized TCP session
once TCP handshake is done
Many firewalls do not like this and
will drop subsequent traffic
Workaround: sequence check can
be disabled on the firewalls or
traffic from WAEs can be
tunneled, say, with GRE
Cisco software and firewall
modules can be configured to
support this behavior.
PIX 7.2(3)/FWSM v3.2.1
BRKAPP-2017
14328_04_2008_c2
IOS Zone based FW 12.4(11)T2


Presentation_ID.scr
Cisco Public
64
32
Branch Deployment Scenario 4

Dual homed Large Branch Office
MCPfR master controller

Recommended not to be placed in the forwarding path
IPSec protection for traffic optional (GetVPN)

BRKAPP-2017
14328_04_2008_c2
Cisco Public
65
Suggested Data
Center Deployment
Designs
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
66
33
Data Center View

WAE at WAN-Edge
DATA CENTER 1
WAAS
WCCP redirects
packet to WAAS
WAE device
Core
MAN
DATA CENTER 2
Distribution
Uncompressed /
unoptimized Packets
pass thru Firewall to the
Server Farm Load
Balanced By ACE
BRKAPP-2017
14328_04_2008_c2
67
Cisco Public
Data Center View

ACE Load Balancing WAE
DATA CENTER 1
d
re
cu N
Se WA
d
re
cu
Se
AN
Packets need to
traverse Firewalls
so open
appropriate ports
Core
MAN
DATA CENTER 2
Distribution
Uncompressed
/ unoptimized
packets are
spanned to the
NAM for
Monitoring
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
WAAS
Cisco Public
ACE redirects
and Load
Balances
across the
WAAS Farm
68
34
Deployment Caveat
WCCP and DMVPN
DMVPN uses NHRP to create
spoke-to-spoke shortcuts
When spoke to spoke traffic
hits the DMVPN hub, a NHRP
redirect gets generated
In a DMVPN environment,
WCCP is redirected on the
tunnel interfaces
WCCP breaks this NHRP
redirect in both IP return and
GRE return
Workaround: use WCCP
redirect out on client facing
interface on HUB; will affect
performance
BRKAPP-2017
14328_04_2008_c2
Cisco Public
69
Deployment Caveat
WCCP/WAEs Do Not Support VRFs
Current WCCP versions do not support VRF
Also WAEs do not support multi-tenant, or overlapping
address ranges
VRF support is being planned
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
70
35
Q and A
BRKAPP-2017
14328_04_2008_c2
Cisco Public
71
Recommended Reading
Continue your Cisco Live
learning experience with further
reading from Cisco Press
Check the Recommended
Reading flyer for suggested
books
Available Onsite at the Cisco Company Store

BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
72
36
Complete Your Online

Session Evaluation
Give us your feedback and you could win
fabulous prizes. Winners announced daily.
Receive 20 Passport points for each session
evaluation you complete.
Complete your session evaluation online now
(open a browser through our wireless network
to access our portal) or visit one of the Internet
stations throughout the Convention Center.
Dont forget to activate

your Cisco Live virtual
account for access to
all session material
on-demand and return
for our live virtual event
in October 2008.
Go to the Collaboration
Zone in World of
Solutions or visit
www.cisco-live.com.
BRKAPP-2017
14328_04_2008_c2
Cisco Public
73
BRKAPP-2017
14328_04_2008_c2
Cisco Public
74

Presentation_ID.scr
37
Backup Slides
BRKAPP-2017
14328_04_2008_c2
75
Cisco Public
Enterprises Becoming Global

US
HeadQuarters
US
Customer
Support Center
India
US
Assembly
WAN
Manufacturing
Europe
Manufacturing
China
US
CallCenter
.
.
As enterprises evolve so do the applications

As enterprises keep growing so do applications
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
76
38
Enterprises Becoming Global

US
Headquarters
US
Customer
Support Center
India
US
Assembly
WAN
Manufacturing
Europe
Manufacturing
China
US
CallCenter
.
.
As enterprises and applications grow so do their need for bandwidth

Murphys law
BRKAPP-2017
14328_04_2008_c2

Presentation_ID.scr
Cisco Public
77
39

Brkapp 2017

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Brkapp 2017

Uploaded by

Copyright:

Available Formats

Optimizing Application

2008 Cisco Systems, Inc. All rights reserved.

2006, Cisco Systems, Inc. All rights reserved.

Cisco Application Delivery Networks

2008 Cisco Systems, Inc. All rights reserved.

Data redundancy elimination

Other Cisco Live Breakout Sessions

BRKAPP-2002 Server Load Balancing Design

2008 Cisco Systems, Inc. All rights reserved.

2006, Cisco Systems, Inc. All rights reserved.

2008 Cisco Systems, Inc. All rights reserved.

2008 Cisco Systems, Inc. All rights reserved.

2006, Cisco Systems, Inc. All rights reserved.

Packet loss, congestion, and retransmission

2008 Cisco Systems, Inc. All rights reserved.

2008 Cisco Systems, Inc. All rights reserved.

2006, Cisco Systems, Inc. All rights reserved.

Bulk File / Storage

Secure and Highly Available Network Infrastructure

2008 Cisco Systems, Inc. All rights reserved.

2008 Cisco Systems, Inc. All rights reserved.

2006, Cisco Systems, Inc. All rights reserved.

PfR and QoS

2008 Cisco Systems, Inc. All rights reserved.

2008 Cisco Systems, Inc. All rights reserved.

2006, Cisco Systems, Inc. All rights reserved.

Get visibility into end-to-end application performance

Behavioral based application analysis

2008 Cisco Systems, Inc. All rights reserved.

Network Based Application Recognition

SNMP accessible for

2006, Cisco Systems, Inc. All rights reserved.

Identify all applications

2008 Cisco Systems, Inc. All rights reserved.

2008 Cisco Systems, Inc. All rights reserved.

2006, Cisco Systems, Inc. All rights reserved.

2008 Cisco Systems, Inc. All rights reserved.

Making Sense of Your Network Traffic

2008 Cisco Systems, Inc. All rights reserved.

2006, Cisco Systems, Inc. All rights reserved.

Monitoring Application Performance

Configure NetFlow on LAN and WAN interfaces (ingress)

Identify flows using show ip cache flow command.

2008 Cisco Systems, Inc. All rights reserved.

Monitoring Application Performance

Use NetQOS reports to

2008 Cisco Systems, Inc. All rights reserved.

2006, Cisco Systems, Inc. All rights reserved.

IP SLAResponse Time Measurement

2008 Cisco Systems, Inc. All rights reserved.

Monitoring Application Performance

Configure IP SLAs manually or with NetQOS for the

2008 Cisco Systems, Inc. All rights reserved.

2006, Cisco Systems, Inc. All rights reserved.

Performance Routing Overview

By Default BGP Chooses Best

2008 Cisco Systems, Inc. All rights reserved.

The router is configured with PfR in monitoring mode to

2008 Cisco Systems, Inc. All rights reserved.

2006, Cisco Systems, Inc. All rights reserved.

PfR can learn and track prefixes and associated delay,

2008 Cisco Systems, Inc. All rights reserved.

Establishing Application Performance