Leverage the Citrix WANScaler Software Client to Increase Application Performance for Mobile Users Daniel Künzli System Engineer ANG Switzerland Citrix Systems International GmbH
Specifications and Architecture
WANScaler Client Features TCP Flow Control Multi-Level Compression Application Protocol Acceleration Same acceleration features as WANScaler appliance 3
PC Resource Specifications Minimum Windows XP or 2000 1.0 GHz CPU Intel or AMD 512 MB RAM 350 MB free HD space Recommended Windows XP 1.0+ GHz Pentium 4 1 GB RAM 2 GB+ free HD space 4
VPN client interoperability Interoperates with leading VPN clients Citrix Access Gateway SSLVPN Standard/Advanced Editions IPSec Microsoft PPTP Interoperates with leading site-to-site VPNs 5
WANScaler Client Architecture Application (email, CRM, Sharepoint) Standard Windows traffic flow TCP/IP Stack NDIS* Network Driver *Network Driver Interface Specification 6
WANScaler Client Architecture Application (email, CRM, Sharepoint) TCP/IP Stack NDIS Network Driver WANScaler Client automatically accelerates all TCP app traffic WANScaler Client Dynamic network aware optimization TCP Flow Control Multi-Level Compression Application Protocol acceleration 7
WANScaler Client and Access Gateway Application (email, CRM, Sharepoint) TCP/IP Stack NDIS Network Driver WANScaler Client Access Gateway Client 8
Deployment
Planning a Deployment Placement of Appliance and Controller in network Required: WANScaler Client CCUs WANScaler Controller WANScaler 85x0 or 88x0 appliance with version 4.2 or later code Three IP addresses Firewall Configuration Client acceleration policies Compatibility with VPN solutions Distributing Client software 10
WANScaler Appliance Placement WAN WAN Router LAN subnet Router port IP i.e. 172.16.0.1 i.e. 172.16.0.0/16 WANScaler appliance Management IP i.e. 172.16.0.102 Redirector IP i.e. 172.16.0.112 Note: WANScaler appliance and Controller should be placed in the secured part of your network 11
Redirector Mode WANScaler Client WANScaler appliance Server 10.0.0.50 10.200.0.201 10.200.0.10 Source Address Source Address Destination Address Destination Address 2. Traffic meets acceleration policy, WS Client accelerates traffic to WS Appliance 1. Application sends traffic to server Source Address Destination Address 3. WS Appliance redirects traffic to destination server 4. Server accepts traffic from Appliance 5. Server responds, sends traffic to Appliance 7. WS Client passes traffic to application Source Address Destination Address 6. WS Appliance redirects traffic to WS Client Source Address Destination Address 12
Redirector Mode Not Used with AG WANScaler Client WANScaler appliance Server Citrix Access Gateway Redirector Mode Is a proxy mode, not a tunnel or encapsulation of traffic Not used when deployed with Access Gateway in the inline mode 13
WANScaler Controller Placement WAN WAN Router LAN subnet Router port IP i.e. 172.16.0.1 i.e. 172.16.0.0/16 WANScaler appliance Management IP i.e. 172.16.0.102 Redirector IP i.e. 172.16.0.112 WANScaler Controller Note: WANScaler appliance and Controller should be placed in the secured part of your network Controller IP i.e. 172.16.0.110 14
WANScaler Controller Hardware device Minimum of one per network Must be accessible by all Client users Centrally manages Client acceleration policies Appliance addresses Accelerated subnets Client contacts when logging onto network 15
WANScaler Controller Placement WAN WAN Router LAN subnet Router port IP i.e. 172.16.0.1 i.e. 172.16.0.0/16 WANScaler appliance Management IP i.e. 172.16.0.102 Important: Controller must be accessible by all WANScaler Client users from any location Redirector IP i.e. 172.16.0.112 WANScaler Controller Note: WANScaler appliance and Controller should be placed on the secured part of your network Controller IP i.e. 172.16.0.110 16
WANScaler Controller Placement 2.WANScaler Client connects to Controller in London and downloads policies 1.User connects to VPN gateway in Sydney 17
WANScaler Controller Placement 2.WANScaler Client connects to Controller in London and downloads policies 3.After connecting to the Controller WANScaler Client knows which subnets have appliances 1.User connects to VPN gateway in Sydney 18
WANScaler Controller Placement 2.WANScaler Client can not reach Controller in London 3.A WANScaler Controller is required in Sydney 1.User connects to VPN gateway in Sydney 19
Firewall Considerations WANScaler Client WANScaler appliance Server WANScaler Controller Accelerated traffic between Client and Appliance Source and Destination IP address of Client and Appliance Destination port number (e.g. port 80 for HTTP) is maintained WANScaler uses TCP options field for accelerating traffic Default Appliance-Client signaling port is 2312 (see manual for more details) Client and Appliance register with Controller using port 443 20
Configuring Client Policies Include or exclude traffic for acceleration by Subnets Port WANScaler Appliance 21
Pre-Configure WANScaler Client MSI Free Orca editor from Microsoft OMSHOST WANScaler Controller IP address OMSPORT WANScaler Controller port DBCMINSIZE WANScaler Client hard disk usage 22