Branch Cache. Happiest People Happiest Customers

Similar documents
The Advantages and Disadvantages of ITIL

BCP and DR Plan With NAS Solution

A Comparative Study on Vega-HTTP & Popular Open-source Web-servers

Cloud Migration: Migrating workloads to OpenStack Cloud

BIG DATA TOOLS. Top 10 open source technologies for Big Data

Designing Industrial Network - An Approach

the client omits the BranchCache identifier from the request message.

Owner of the content within this article is Written by Marc Grote

Windows Server on WAAS: Reduce Branch-Office Cost and Complexity with WAN Optimization and Secure, Reliable Local IT Services

Workflow Guide. Establish Site-to-Site VPN Connection using RSA Keys. For Customers with Sophos Firewall Document Date: November 2015

WAN Migration Techniques

Course 6292A: Installing and Configuring Windows 7 Client. About this Course. Audience Profile

The safer, easier way to help you pass any IT exams. Exam : Implementing an Advanced Server Infrastructure. Title : 1 / 4

Can Securing Critical Digital Assets Be Made Simple? Absolutely

Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure

Analytics. Data. Analyzing Big Data a platform to comprehend customers

DevOps. Happiest People Happiest Customers

Fortinet Network Security NSE4 test questions and answers:

Configuring a Check Point FireWall-1 to SOHO IPSec Tunnel

Workflow Guide. Establish Site-to-Site VPN Connection using Digital Certificates. For Customers with Sophos Firewall Document Date: November 2015

LOAD BALANCING 2X APPLICATIONSERVER XG SECURE CLIENT GATEWAYS THROUGH MICROSOFT NETWORK LOAD BALANCING

VPN. Date: 4/15/2004 By: Heena Patel

Configuring a Site-to-Site VPN Tunnel Between Cisco RV320 Gigabit Dual WAN VPN Router and Cisco (1900/2900/3900) Series Integrated Services Router

Caching SMB Data for Offline Access and an Improved Online Experience

Microsoft Exam

Introduction to Windows 7 Feature Practice Examination (brought to you by RMRoberts.com)

Installing and Configuring Windows 7 Client

ISG50 Application Note Version 1.0 June, 2011

Course Syllabus. Fundamentals of Windows Server 2008 Network and Applications Infrastructure. Key Data. Audience. Prerequisites. At Course Completion

Connecting an Android to a FortiGate with SSL VPN

Building scalable IPSec infrastructure with MikroTik. IPSec, L2TP/IPSec, OSPF

Using LISP for Secure Hybrid Cloud Extension

Configuring Security Features of Session Recording

Planning and Maintaining a Microsoft Windows Server Network Infrastructure

EMC VNX Series: Introduction to SMB 3.0 Support

Microsoft.Test-inside v by.ROD.239q

Microsoft. Pro: Upgrading to Windows 7 MCITP Enterprise Desktop Support Technician.

COURSE 20410C: INSTALLING AND CONFIGURING WINDOWS SERVER 2012

Table of Contents Introduction and System Requirements 9 Installing VMware Server 35

Intego Enterprise Software Deployment Guide

VPN PPTP Application. Installation Guide

Exam : TS: Upgrading Your MCSE on Windows Server 2003 to Windows Server 2008, Technology Specialist. Title : Version : DEMO

Outpost Office Firewall

VPN. VPN For BIPAC 741/743GE

IPsec VPN Application Guide REV:

MOC 20413C: Designing and Implementing a Server Infrastructure

Understanding Windows Server 2003 Networking p. 1 The OSI Model p. 2 Protocol Stacks p. 4 Communication between Stacks p. 13 Microsoft's Network

Building Your Complete Remote Access Infrastructure on Windows Server 2012

Updating Your Windows Server 2008 Technology Skills to Windows Server 2008 R2

Configuring and Troubleshooting a Windows Server 2008 Network Infrastructure (6421B)

Introducing. Markus Erlacher Technical Solution Professional Microsoft Switzerland

McAfee Web Gateway Administration Intel Security Education Services Administration Course Training

Sync Security and Privacy Brief

Configuring a WatchGuard SOHO to SOHO IPSec Tunnel

How to Setup PPTP VPN Between a Windows PPTP Client and the DIR-130.

Matrix Technical Support Mailer 167 NAVAN CNX200 PPTP VPN with Windows Client

7.1. Remote Access Connection

AV-006: Installing, Administering and Configuring Windows Server 2012

Configuring an IPSec Tunnel between a Firebox & a Check Point FireWall-1

THE BCS PROFESSIONAL EXAMINATIONS BCS Level 6 Professional Graduate Diploma in IT. April 2009 EXAMINERS' REPORT. Network Information Systems

Microsoft Exam

Product Engineering Services

Software Defined Data Center An Implementation view

msuite5 & mdesign Installation Prerequisites

Enterprise Cloud Services HOSTED PRIVATE CLOUD

STeP-IN SUMMIT June 18 21, 2013 at Bangalore, INDIA. Performance Testing of an IAAS Cloud Software (A CloudStack Use Case)

Symantec Backup Exec.cloud

Cyberoam Configuration Guide for VPNC Interoperability Testing using DES Encryption Algorithm

Windows 7. Noen nyheter. Olav Tvedt, Deployment Ranger Microsoft

Solutions Guide. Secure Remote Access. Allied Telesis provides comprehensive solutions for secure remote access.

Evolution of the Software Defined Data Center

How to access peers with different VPN through IPSec. Tunnel

/ Preparing to Manage a VMware Environment Page 1

Microsoft Configure and Troubleshoot Windows Server 2008 Network Infrastructure

Networking with Windows Server vb. Day(s): 5. Version: Overview

REMOTE BACKUP SOLUTION CASE STUDY

DIRECTACCESS FEATURE IN WINDOWS 7

TELSTRA CLOUD SERVICES CLOUD INFRASTRUCTURE PRICING GUIDE SINGAPORE

Sage Abra HRMS. Abra HRMS Security Considerations

Meraki as Cisco Cloud Services Manage your network Where ever you are!

VPN L2TP Application. Installation Guide

IBM Tivoli Storage Manager Version Introduction to Data Protection Solutions IBM

Prepared for: The American Association of State Highway and Transportation Officials. Julian Soh Microsoft Corporation.

Online Backup Plus Frequently Asked Questions

Fundamentals of Windows Server 2008 Network and Applications Infrastructure

Installing and configuring Microsoft Reporting Services

The full setup includes the server itself, the server control panel, Firebird Database Server, and three sample applications with source code.

Asigra Cloud Backup V13.0 Provides Comprehensive Virtual Machine Data Protection Including Replication

Requirements Collax Security Gateway Collax Business Server or Collax Platform Server including Collax SSL VPN module

Network Services Internet VPN

How To Establish IPSec VPN between Cyberoam and Microsoft Azure

Omniquad Exchange Archiving

Masters Project Proxy SG

Technical Brief. VBrick Rev & DME Interoperability with Cisco Wide Area Application Services (WAAS) and Akamai Connect

Installing and Configuring Windows Server 2012

ZyWALL USG-Series. How to setup a Site-to-site VPN connection between two ZyWALL USG series.

Training Name Installing and Configuring Windows Server 2012

MS Managing and Maintaining Windows 8

You need to recommend a monitoring solution to ensure that an administrator can review the availability information of Service1. What should you do?

Ports Reference Guide for Cisco Virtualization Experience Media Engine for SUSE Linux Release 9.0

Transcription:

Branch Cache Happiest People Happiest Customers

Contents Introduction... 3 Overview... 3 Host Cache Mode... 4 Distributed Cache Mode... 5 BranchCaches Configuration... 6 Conclusion... 6 References...6 2

Introduction Organizations constantly seek ways to lower operating costs while not affecting productivity. One particular area in which organizations look for workable solutions is IT infrastructure supporting branch or any remote office. As an organization spreads its wings and has workers accessing documents and downloading them from a central database. A lot of these documents are heavy demanding very high Wide Area Network bandwidth usage having unfavorable effects on productivity. When Microsoft released Windows 7, they also delivered BranchCache, a solution designed to address this challenge. This document provides an overview of BranchCache, explains the different modes in which BranchCache operates and describes how BranchCache is configured. This document additionally explains how BranchCache works with SCCM servers. Overview The concept of Branch Cache is rather simple. Once it is enabled, it makes a copy of the data that is being accessed from the central database, locally in the branch office / remote location. When another source looks for the same file, it is transferred from the local cache instead of using WAN. Or in other words, BranchCache allows systems in the same subnet (and separated from a central content source) to download content locally rather than depending on network link back to the original content source. BranchCache is designed to work with the existing network and security infrastructure. It supports IPv4, IPv6 and end to end encryption methods such as SSL and IPsec. It ensures that the most recently updated version of a package is served and that clients are authorized by SCCM server before they retrieve the package from within the local branch. There are two types of operation or solution available in BranchCache : Hosted Cache mode and Distributed Cache mode. 3

Host Cache Mode In the hosted cache mode, there is a computer running a Windows 2008 R2 server, where the data downloaded is saved as the local repository. s are configured with the fully qualified domain name of the host computer so that they can retrieve packages from the Hosted Cache, whenever required. If the packages are not available in the cached server, it can then be retrieved from SCCM/Distribution servers by using WAN link. Central Office Transfer identifier SCCM/Distribution Server Transfer Branch Office Received cache Cache Hosted Cache The workstation connects to the SCCM server and requests a package exactly as it would have, if retrieving the file without using BranchCache. The SCCM server authenticates and authorizes the workstations just like it would without using BranchCache. If success ful, it returns the package via the same channel that data would normally have been sent. The workstation uses the hashes in the package to search for the package in the Hosted Cache server. Since this is the first time any workstation has retrieved the file, it is not already cached on the local network. Therefore, the workstation retrieves the package directly from the SCCM server. The workstation establishes an SSL connection with the Host Cache server and it offers the package identifiers over this encrypted channel. The Hosted Cache server connects to the workstation and retrieves the set of blocks that it has not cached. The second workstation requests the same package from the SCCM server and the SCCM server authorizes the user and returns the package identifiers. The workstation identifiers requests the package from Hosted Caches server. The Hosted Cache server encrypts the package and returns it to the workstations. The workstation decrypts the data, computes the hashes on the blocks received from Hosted cache and ensures that it is identical to the block hashes that the SCCM server provided as part of the package. This ensures that the content has not been modified. 4

Distributed Cache Mode In Distributed Cache mode, Windows 7 clients uses the peer to peer format. The cache content that they retrieve by using the WAN, is then sent directly to other authorized Windows 7 clients upon request. In this mode, there is no requirement of dedicated Windows 2008 R2 machine for the cache. Local Windows 7 workstation keeps the copy of the package and makes it available to other authorized workstation that requests the same package. This eliminates the need to have a separate server in the branch office. For some reason if that particular workstation which has cache copy is not available in the network, then other workstations can download the requested package from SCCM via WAN. Central Office Transfer identifier SCCM/Distribution Server Transfer Branch Office Requested cache Cache The workstation connects to the SCCM server and requests a package exactly as it would if it were to retrieve the package without using BranchCache. The SCCM server authenticates and authorizes the workstations. The server returns and identifies that the workstation used to search for the package is on the local network. Since this is the first time any workstations has attempted to retrieve the package, it is not already cached on the local network. The workstation retrieves the package directly from SCCM server and then caches it locally. The second workstation requests the same package from SCCM server. The SCCM server authenticates and authorizes the work station in exactly the same manner it would if BranchCache was not being used. If successful, it returns package via the same channel that package would normally have been sent. 5 4

The second workstation sends a request on the local network for the required package by using the WS-Discovery multicast protocol. The workstation that previously cached the package sends the file to the requesting workstations. The package is encrypted by using a key derived from the hashes sent by the SCCM server as part of the package. The workstation decrypts the package, computes the hashes on the blocks received from the first workstation and ensures that it is identical to the block hashes provided as part of the package by the SCCM server. This ensures that the package has not been modified. BranchCache : Configuration BranchCache can be configured either by manual configuration (netsh command) or GPO (for mass update).these are the steps: Enable Branch Cache (disabled by default). Select Distributed Cache or Host Cache mode. Specify the size of the client computers cache (only for Distributed Cache mode). By default, it will use 5% of the hard disk drive for the cache. Specify the location of the hosted cache (Only for Host cache mode). Conclusion: We can be benefitted with BranchCache if we have a remote office without having SCCM server. This will help us to reduce the bandwidth utilization of existing WAN link. References: Reference has been taken from the document of BranchCache in Windows 7 and Windows Server 2008 R2 Overview published over Microsoft website. 6 129 12

About the Author Ramesh Adarakatti Ramesh Adarakkatti has 8 plus years of experience as an IT Infrastructure Professional including Senior Technical Specialist in Cloud Technology Management Services Practice. He has Computer Engineering Diploma and a Masters degree in IT. In the past he has engaged in different roles such as System Engineer, Teach Lead etc. He is a specialist in Windows, VMware and SCCM Administration and in past worked with CSC Pvt Ltd and InKnowTech Pvt Ltd. In his ideal time he chooses to socialize and Music is his passion. You can reach out to him at Ramesh.Adarakatti@happiestminds.com Happiest Minds Happiest Minds enables Digital Transformation for enterprises and technology providers by delivering seamless customer experience, business efficiency and actionable insights through an integrated set of disruptive technologies: big data analytics, internet of things, mobility, cloud, security, unified communications, etc. Happiest Minds offers domain centric solutions applying skills, IPs and functional expertise in IT Services, Product Engineering, Infrastructure Management and Security. These services have applicability across industry sectors such as retail, consumer packaged goods, e-commerce, banking, insurance, hi-tech, engineering R&D, manufacturing, automotive and travel/transportation/hospitality. Headquartered in Bangalore, India, Happiest Minds has operations in the US, UK, Singapore, Australia and has secured $ 52.5 million Series-A funding. Its investors are JPMorgan Private Equity Group, Intel Capital and Ashok Soota. 2014 Happiest Minds. All Rights Reserved. E-mail: Business@happiestminds.com Visit us: www.happiestminds.com Follow us on This Document is an exclusive property of Happiest Minds Technologies Pvt. Ltd 7 129 12

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information