F5 Software Defined Application Services F5 Synthesis Fred Wu Technical Director of F5 Networks China
Advanced threats "Software defined" everything SDDC/Cloud Internet of Things Mobile HTTP is the new TCP F5 Networks, Inc 2
SDN Current Network Infrastructure Provided by ISPs Vertically integrated, closed, and exclusive network devices Complex, expensive, and unscalable A large number of exclusive devices manually configured by users Standardization mostly conducted by network giants, not by users Software Defined Network Diverts to commoditized hardware from exclusive network devices. Simplifies network design. SDN controller instructs data- plane devices, in which intelligence does not need to be defined. Allows users to configure networks using the programming mode. Enables enterprises to quickly change network behaviors so that new applications and network services can be deployed in a few hours or days (currently, it takes several weeks or months). Manages multiple providers, implementing functions such as on-demand resource allocation and self-service service configuration. F5 Agility 2014 3
Layer 4-77 Application Service Architecture Is Vital For applications Layers 4-7 Application security Application Traffic optimization management Layer 4-7 load balancing Firewall Stateful Manages applications, session, availability, and performance. Message- based processing Efficiently processes content/applic ations. Layer 4-7 content awareness Detects application users, including the time, persons who use applications, and involved devices. Layers 2-3 Switch Router Stateless Group- based processing No application logic F5 Agility 2014 4
SDAS: Software Defined Application Service Applies to the Entire Application Life Cycle Layer 4-7 application services Compatible with traditional network, SDN, and cloud F5 Agility 2014 5
F5 Technology Evolution 4 Software Defined Application Services (SDASs) 3 Hypervisor/Cloud ubiquity Multi-tenant, all-active Identity access management 2 Security Mobility/LTE Domain name service 1 Traffic management Optimization Acceleration F5 F5 Agility Networks, 2014 Inc. 6
SDAS High Performance Services Fabric Simplified Business Models F5 Agility 2014 7
High Performance Services Fabric
High Performance Services Fabric Virtual Edition Appliances Chassis Network [Physical Overlay SDN] F5 Agility 2014 9
High-Performance Services Fabric On-Demand Scaling All-Active Clustering Multi-Tenancy TMOS TMOS TMOS TMOS ScaleN Network [Physical Overlay SDN] F5 Agility 2014 10
High Performance Services Fabric VIPRION 4800 Throughput Connections per second Concurrent connections Multi-tenant instances per device Device service cluster *Up to 40K when admin instances are combined with vcmp Network [Physical Overlay SDN] F5 Agility 2014 11
High Performance Services Fabric Programmability Data plane Control plane Management plane Virtual Edition Appliances Chassis Network [Physical Overlay SDN] F5 Agility 2014 12
Layer 2-7 software defined data center 7 6 Programmability Data plane Control plane Management plane 5 4 Virtual Edition Appliances Chassis 3 VLAN NVGRE VXLAN OpenStack OpFlex 2 1 Network [Physical Overlay SDN] F5 Agility 2014 13
Intelligent Services Orchestration
Intelligent Services Orchestration Orchestration Connector Schema Connector BIG-IQIQ Cloud Connector Module Connector F5 Agility 2014 15
F5 Synthesis Partner Ecosystem / DevOps F5 F5 Agility Networks, 2014 Inc. 16
Simplified Business Models
Standard Edition Enterprise Edition Increases Return on Investment (ROI) 1 2 3 F5 Agility 2014 18
Standard Edition/Enterprise Edition Service options BIG-IP IP local traffic manager BIG-IP IP WAN traffic manager BIG-IP IP application acceleration manager BIG-IP IP advanced firewall manager BIG-IP IP application security manager BIG-IP IP access policy manager PCI Compliant Web Application Firewall Web scraping prevention Integrated XML firewall Violation correlation & incident grouping Application DDoS protection 500 concurrent users, scalable up to 200K BYOD enablement Full Proxy for VDI (Citrix, VMware) Single sign-on enhancements (Identity Federation with SAML 2.0) Target customers: Enterprises that requires: Local and WAN intelligent traffic management to ensure network security Advanced access management Comprehensive network security Customer requirements: Manage application access. Support BYOD plan. Speed up remote access. Protects IP and minimize vulnerabilities. Utilize free deployment resources to create value. F5 Agility 2014 19
Reference Architectures Solving Customer Issues
Reference Architecture DDoS Protection S/Gi network simplification Security for Service Providers DevOps Secure Web gateway Application service LTE roaming Cloud Federation NFV Web fraud protection DNS VDI Cloud Bursting g Migration to cloud High performance IPS List Solution map Structure chart Product map Solution demo White papers One-paper datasheet Solution videos Whiteboard animation Technical validation documents F5 Agility 2014 21
SDAS Constructs Active-Active DC One-click configuration Active- active center One-click disaster recovery SDAS SDAS Original DC Nextgeneration DC C S B S Virtualization Computing resources Storage resources SDN F5 Agility 2014 22
Benefits of F5 Synthesis Drive Increase Reduce Future F5 F5 Agility Networks, 2014 Inc. 23