Customer Driven Innovation A10 Networks Orchestrating the next generation data center WHD 2014 Do not distribute/edit/copy without the written consent of A10 Networks 2
About A10 3
Customer Driven Innovation Do not distribute/edit/copy without the written consent of A10 Networks 4
The Choice of Leading Companies Service Providers Enterprises Web Giants 3 of top 4 US wireless carriers 4 of top 4 service providers in Japan 7 of Top 10 US cable providers 5
Challenges 6
Networking Industry Trends & Challenges Rapid Mobile Growth Scaling Services 100Gbps+ Website Performance Cloud / SDN Sustain App Uptime & Availability Extend IPv4 Infra & Migrate to IPv6 Mitigate Sophisticated Cyber Attacks Application-Aware Cloud DC Architectures Scale App & Security Services to 100Gbps Cyber Security Threats 7
Legacy Data Center Service Architecture DDoS WAF Challenges: Static Inflexible Manually Provisioned QoS SLB 8
Data Centre Challenges Competition Cost/Margins (reducing TCO, Capex/Opex) Technology Change Parity Power / Cooling Bandwidth, Resource Optimisation & Billing Multi-tenancy & Integrity Security (DDOS, key management, scale, regulations ) Automation, Responsiveness, Agile Provisioning 9
Why Are These Challenges so Difficult to Solve? High-Values Services: Optimization, Availability, Security OSI Reference Model Application Presentation Session Scale & Complexity of Challenge Existing Infrastructure / Migration Lack of standards Transport Network Data Link Physical MAC: f4:f9:51:f0:d5:9d IP: 192.168.1.1 IP: 192.168.1.1 MAC: f4:f9:51:f0:d5:9d Visibility License Management Cost Transparency (both over time and elastic use) Low-Value Services: Forwarding, Segmentation Maintaining Security 10
Industry Trends Cloud multi-tenancy, elastic, utility billing, automation SDN API vs protocol, overlays, policy Virtualisation storage, server NFV Security threats New design models for DC build, power, cooling Consolidation & Optimisation rack, service, resource, cost Elasticity & Automation are key for efficient dynamic resource utilisation 11
Solutions 12
Orchestrating the Data Centre OpenStack OpenFlow Puppet, Chef, Ansible, Salt MS SC, HP OO, Cisco VFrame VMWare, KVM, Xen, Hyper-V Virtualised Network Functions & Service Chaining No common tools but trends and de-facto methods emerging 13
acloud Services Architecture for IaaS Cloud Data Centers Element Value 1 Hi Performance Appliances 2 Virtualized & Hybrid Appliances 3 Pay-as-You-Go Licensing Support Perimeter Functions per Tenant (Encap/Decap, SSL, DDoS) Distributed Service Scale- Out per Tenant (ADC, Security, CGN) IaaS Service Pricing Model 4 SDN Integration Overlay & Fabric Integration Static & Dynamic Service Chaining 5 Cloud Orchestration Integration Policy Integration with Cloud Orchestration 14
A10 Initiatives Appliances, Hybrid & Fully Virtualised Appliances NVGRE, VXLAN support Cloud Orchestration & Integration acloud utility billing models, agalaxy OpenStack, LBaaS Plugins, MS-SCVMM SDN Integration OpenFlow, NEC, Cisco APIC, IBM SDN-VE, VMWare NSX Puppet POC AWS and MS Azure store components DDOS mitigation (DC availability) axapi (RESTful API) 15
IaaS Cloud DC: Any Server, Any Network, Any Time. Cloud Tenants Cloud Orchestration Platform Compute Network Storage Virtualized Shared Infrastructure Dynamic L4-L7 Service Chaining SDN Network Fabric SDN Controller Physical Compute + L2/3 Network Infrastructure 16
acloud Services Architecture Sample Use Cases acloud Pay-As-You-Go GLM NVGRE SLB SSL-Offload Content Opt. WAF Thunder-HVA Hybrid Appliances Thunder Series Physical Appliances VXLAN SSL-Offload DDoS aglalxy Policy Mgmt SDN Fabric WAF SLB Content Optimiz. acloud Pay-As-You-Go LLM vthunder Virtual Appliances 17
Use Case Terrastream?? vthunder virtualised Instances OpenStack Elastic vthunder Orchestration Multi-Tenancy, Elasticity Billing AXAPI 18
Thank You www.a10networks.com Do not distribute/edit/copy without the written consent of A10 Networks 19
Backup Slides 20
Thunder ASG Products & Deployment Use Cases Thunder TPS: DDoS Detection & Mitigation Thunder GGN: NAT44, NAT64, DS-LITE, 6rd vthunder Pay-as-You-Go: IaaS Licensing Model Network Edge Carrier Network IaaS Cloud Data Center Thunder ADC: SLB, Cache, SSL-O, WAF Thunder ADC: FWLB & SSL-I Data Center Demilitarized Zone (DMZ) 21
Thunder Series Application Service Gateway Portfolio Product Lines ADC Product Line CGN Product Line TPS Product Line Application Optimization, Availability & Security for Web and Data Center Servers Carrier-Grade, RFC Compliant IPv4 NAT Extension and IPv6 Migration Solutions DDoS Detection & Mitigation Products Protecting Attack on Critical Server Infrastructure Thunder 930 ADC Thunder 3030S CGN Thunder 4435/4435S TPS Physical Appliance Offerings Thunder 1030S ADC Thunder 3030S ADC Thunder 5430S CGN Thunder 6430/6430S CGN Thunder 5435/5435S TPS Thunder 6435/6435S TPS Thunder 5430S ADC Thunder 6430/6430S ADC Virtual Appliance Offerings vthunder ADC Thunder 3030 HVA Thunder 3530 HVA vthunder CGN Thunder 3030 HVA Thunder 3530 HVA vthunder Pay-as-You-Go vthunder Pay-as-You-Go 22
ACOS Platform: High Performance Application Networking Efficient & Accurate Memory Architecture Shared Memory Architecture Application Acceleration 64-Bit Multi-Core Optimized 1 2 3 N Application Security Optimized Flow Distribution Flexible Traffic Accelerator Application Availability Switching and Routing 23
ACOS: Platform for Application Service Gateways Application Service Gateways Policy Mgmt Policy-Based Networking aflex agalaxy Virtual Chassis Mgmt acloud TM SDN/Cloud Control Plane Integration Software Product Lines Platform OS & Services Security CGNAT ADC ADC DDoS Optimization & Availability Security DDoS WAF AAM CGNAT DNS FW Security ACOS Advanced Core Operating System SSL Intercept DAF GSLB ADP Dedicated Data Centers Multi-Tenant Data Centers Form Factors A10 Thunder TM & AX Series Appliance Virtual Chassis Virtual Appliance Application Delivery Thunder HVA Partitions Appliance acloud TM Pay-as-You-Go Licensing acloud TM SDN Data Plane Integration 24