STEELFUSION BRANCH CONVERGED INFRASTRUCTURE

Inspiring Innovation STEELFUSION BRANCH CONVERGED INFRASTRUCTURE Kazimierz Jantas Systems Engineer

RIVERBED - PRODUCT PORTFOLIO Steelhead SteelCentral SteelApp SteelFusion SteelStore WAN Optimisation Data Centre Branch Office Mobile Client User to Application and Network Platform Monitoring and reporting Application Firewall And Load Balancing Web Site Content Optimisation Edge VSI Branch Office Consolidation Encrypted & De-duplicated Cloud Backup SteelScript Control Automation Reporting

GARTNER S VIEW WAN OPTIMISATION Riverbed are a leader once again in the Gartner Magic Quadrant. After 6 years in a row as a leader in WAN optimization controllers, Riverbed stands alone in the leaders quadrant. This Magic Quadrant graphic was published by Gartner, Inc. as part of a larger research note and should be evaluated in the context of the entire report. The Gartner report is available upon request from Riverbed. Source: Gartner (April 2013) Joe Skorupa, Mark Fabbi, Bjarne Munch Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

GARTNER S VIEW RIVERBED PORTFOLIO Gartner 2013 Magic Quadrant for WAN Optimization Controllers Gartner 2013 Magic Quadrant for Application Delivery Controllers Gartner 2013 Magic Quadrant for Application Performance Monitoring Gartner 2013 Magic Quadrant for Network Performance Monitoring and Diagnostics Leaders Quadrant Visionaries Quadrant Leaders Quadrant Leaders Quadrant The Riverbed Application Performance Platform gives companies the flexibility to host applications and data in the locations that best serve the business while ensuring the flawless delivery of those applications to better leverage global resources, radically reduce the cost of running their business and maximize customer satisfaction.

WHATEVER THE TRAFFIC, RIVERBED CAN HELP CIF S CIFS signed CIFS print Mac CIFS MAPI MAPI 2K3 MAPI 2K7 MAPI crypto MAPI prepop Lotus Notes HTTP SSL Oracle Forms ICA NFS RIVERBED

OPTIMISE STREAMLINE DATA TRANSFER USERS NETWORK DATA CENTER Data DE-DUPLICATE DATA OPTIMIZE TCP VIRTUALLY ELIMINATE APPLICATION LATENCY

Steelhead Appliance & SMC Interoperability Optimized WAN transfer Overview Branch Office WAN Data Center Occurs within software Optimized WAN transfer 1. Mobile Software and branch appliances both leverage the same data center infrastructure 2. Mobile Software and appliances use the same auto-discovery technology 3. Mobile Software and appliances use the same technology for latency optimization 4. Mobile Software and appliances use the same technology for data reduction

RIVERBED LAB

Steelhead Mobile DEMO LIVE Steelhead Mobile Controller Mobile Users Port 7870 Home Users VPN/ WA N VPN Port 7800 Steelhead Appliance DMZ DATA CENTER 1. Steelhead Mobile Controller (SMC) at Data Center 2. Endpoint user establishes a VPN connection Small Branch Offices 3. Once connected, Steelhead Mobile client first gets policy and license from the Controller 4. Steelhead Mobile client then connects to the Steelhead appliance & begins accelerating data transfers

ZYCKO INTERNAL TRAFFIC

Only Riverbed offers a complete enterprise WAN optimization portfolio The Right Solution for the Right Challenge Branch / Remote Site Branch Converged Infrastructure Steelhead EX Virtual Services Platform (VSP) Granite Storage Consolidation Riverbed Optimization System (RiOS) 4 Mbps 100 Mbps WAN Data Center & Branch Industry-leading WAN Optimization Steelhead CX Application Acceleration Bandwidth Optimization Advanced Network QoS & Path Selection Physical, Virtual, Mobile, Cloud 1 Mbps 1.5 Gbps WAN DC-to-DC Purpose-built Data Center-to-Data Center WAN Optimization 2014 Steelhead DX Data & Transport Streamlining Storage-granular WAN visibility and control Plug-n-play deployment for storage replication 2+ Gbps WAN

Steelhead CX Appliances are Sized to Meet Your Needs 150-M 1 Mbps optimized throughput 20 optimized TCP connections 40 GB Data Store 250-L 1 Mbps optimized throughput 40 optimized TCP connections 40 GB Data Store 250-M 2 Mbps optimized throughput 125 optimized TCP connections 40 GB Data Store 250-H 2 Mbps optimized throughput 200 optimized TCP connections 40 GB Data Store 555-M 6 Mbps optimized throughput 350 optimized TCP connections 80 GB Data Store 555-H 10 Mbps optimized throughput 650 optimized TCP connections 80 GB Data Store 755-L 10 Mbps optimized throughput 900 optimized TCP connections 100 GB Data Store 755-M 10 Mbps optimized throughput 1500 optimized TCP connections 100 GB Data Store 755-H 20 Mbps optimized throughput 2300 optimized TCP connections 160 GB Data Store (SSDs) 1555-L 50 Mbps optimized throughput 3000 optimized TCP connections 400 GB Data Store 1555-M 50 Mbps optimized throughput 4500 optimized TCP connections 400 GB Data Store 1555-H 100 Mbps optimized throughput 6000 optimized TCP connections 320 GB Data Store (SSDs) 5055-M 200 Mbps optimized throughput 14,000 optimized TCP connections 640 GB Data Store (SSDs) 5055-H 400 Mbps optimized throughput 25,000 optimized TCP connections 640 GB Data Store (SSDs) 7055-L 622 Mbps optimized throughput 75,000 optimized TCP connections 1.6 TB Data Store (SSDs) 7055-M 1 Gbps optimized throughput 100,000 optimized TCP connections 2.4 TB Data Store (SSDs) 7055-H 1.5 Gbps optimized throughput 150,000 optimized TCP connections 4.8 TB Data Store (SSDs) Massive Scaling Interceptor 9350 40 Gbps optimized throughput 1,000,000 optimized TCP connections Management & Reporting Central Management Console CMC 8150-50 devices Optional Component Manages and monitors hundreds of appliances at once Mobile Worker Steelhead Mobile Software Installed on end-user machine Min1.5Ghz Celeron, 512MB RAM, 1GB HDD Steelhead Mobile Controller Required for Steelhead Mobile SMC appliance 40 to 4,000 concurrent users Cluster to scale higher SMC-VE 10-100 concurrent users

Application Acceleration Bandwidth Optimization Management Streamlining RiOS system features RiOS 1 & 2 Serial Clustering In-Path rule Port Ranges Touchless Configuration Scheduled Operations Enhanced Policy Configs Aggregated Reporting Simplified Routing Support for VLAN trunked Unified links data 802.1q store Disk-based data reduction/ de-dupe Auto negotiate to decline SMB signing Steelhead Encryption Connection Forwarding High Speed TCP TCP Connection Pooling MAPI 2K3 Enhancements non-cached mode Secure CIFS option MS-SQL MAPI 2K3 CIFS large folder Proxy File Services RiOS 3 Asymmetric Route Detection Netflow Export Enhanced Traffic Reporting Client-side connection forwarding New Hardware New models QoS enhancement & HFSC NFS Agentless CIFS prepopulation PFS Integrated Replication CIFS Overlapping Opens Mobile 1 RiOS 4 Encrypted Data Store Enhanced Auto- Discovery Active-Active Failover Print Server DR Acceleration QoS Enhancements Max Speed TCP SSL Enhanced HTTP(S) Oracle Mobile 2 RiOS 5 Top Talkers Reporting RSP Enhancements Riverbed Services Platform 3 WAN Visibility Modes Centralized Security IPSEC Enhancements Role Based Administration Enhanced GUI Hieratical QoS DR Acceleration Enhancements Lotus Notes Encrypted MAPI SMB Signing Support MSFT Office Outlook Acceleration MAPI 2K7 Web App Enhanced SSL Mobile 3 IPv6 phase 1 CMC 6.0 FIPS Common Criteria Passthrough Reporting Diagnostics improvements Netflow v9/improved SNMP SDR for data rep workloads EMC SRDF module SMBv2 Outlook anywhere Satellite Client-side certification Deep Packet Inspection App-based QoS BPOS Sharepoint MAPI 2010 Citrix Optimization Mac CIFS Optimization Centralized Print optimization RSP, SSL & Notes RDF reporting for SRDF/A HTTP auto-config Embedded Cascade Shark CIFS Pre-pop enhancements IPv6 phase 2 SNMPv3 encryption Windows Domain Health Media Stream splitting Inbound Q0S UDP Optimization Encrypted Notes End-to-End Kerberos ICA over SSL & CDM Satellite integration BPOS-D support SMB1/SMB2 enhancements SaaS ICA multi-port & multistream 2005 2006 2007 2008 2009-2010 2011 2012 RiOS 6 Cloud RiOS 7 Mobile 4 RiOS 8 Account Control Authenticated NTP TACACS access on IPV6 networks Enhanced report features Updated graphical timebased reports Bandwidth optimization and filtering Application flow engine supporting over 600 apps Higher performance DPI classification engine Processing engine improvements PCoIP application prioritization Enhanced CIF - OS X Mountain - OS X Mountain Lion

Steelhead Mobile Client Installation and Configuration Steelhead Mobile Laptop/PC/Mac with Steelhead Mobile (Endpoint) Port 7870 Controller Package: Group Assignments Policy VPN/W AN Port 7800 Steelhead Appliance Mobile Client Package Policies Data Center 1. Create Mobile Client Policies and Packages on the Steelhead Mobile Controller 2. The Mobile Client Package is installed on the Steelhead Mobile Client Endpoint 3. Once connected, the Steelhead Mobile Controller utilizes the Group Assignments to associate a given Policy to one or more particular groups of Mobile Client Endpoints 4. The association occurs when a Policy is matched to one or more Group Assignments

Steelhead Mobile Solution Overview Steelhead Mobile Controller Appliance or Virtual ESX Deployed in data center ESXi v4.1 and v5.0 Handles reporting Handles licensing Supports up to 4000 concurrent Mobile clients Required component Clusters for scale Designed for large deployments and rapidly growing organizations Steelhead Mobile Client Software Deployed on a PC/MAC laptop or desktop Users do not configure anything Runs in invisible or visible mode Requires Steelhead appliance in the data center Steelhead Appliance EX or CX Virtual Steelhead

Steelhead Mobile & VPN: Client PC and MAC Riverbed tests major VPN software vendors for compatibility with the Steelhead Mobile client Check the Riverbed Tech Support website below for the latest updated list VPN Software VPN/Firewall

Steelhead Mobile Client: Deployed in two modes: Windows Interface Invisible mode Visible mode Visible mode is accessed via system tray s Steelhead Mobile icon

VPN Deployment: In-path Mode for Server-Side Steelhead In-path VPN Deployment (VPN terminates in front of Steelhead) Mobile employee and branch office is using the same Steelhead appliance, both leveraging in-path mode Also works for Branch Office VPN backup links WA N

VPN Deployment: Server-Side Steelhead Hybrid Mode Out-of-path VPN Deployment Mobile employee and branch office is using the same Data Center Steelhead appliance (in hybrid mode) Also works for Branch Office VPN backup links Backup VPN route Primar y In-Path

Steelhead Mobile Controller Clustering: Feature Overview Details Mobile Controller scalability improvements Mobile Controller license failover Clustering to easily manage large Mobile Controller deployments License are preserved across multiple SMC in event of SMC failure (License Pooling) Mobile Users SMC Node Licenses Installed Allocated Free SMC A 3000 1000 2000 SMC B 3000 2000 1000 SMC C 4000 3000 1000 Total 10,000 6,000 6000 3000 4000 3000 SMC A SMC B Location 1 SMC Cluster TCP/787 0 Mobile Users WAN SMC C ON VSP Location 2 Lesson: SMC Clustering

VISIBILITY ENHANCED APPLICATION VIEWS Previously - Limited visibility Now - Deep application visibility Port 443 Port 80 Port 1494 Application level visibility across the hybrid network/wan Gain insight into application type, usage - who used it, when they used it and from where Recognize popular business and recreational applications Classify any custom web application using URLs New SteelCentral 460 Bundle ~20k

CONTROL - QUALITY OF SERVICE Identify all applications Protect what s important Contain what s not Voice Video P2P Citrix itunes Email Business Web WAN

RiOS RDF-level Visibility and Selective Optimization TCP:1748 Encrypted Check VM Images Exchange DB Oracle Logs Images LZ-Only Opt Policy None Efficient use of resources for higher throughput Symmetrix-level visibility (end-to-end) Layer-7 intelligence at work Approach applicable elsewhere Eg. RecoverPoint consistency groups LZ+SDR

CONTROL - PATH SELECTION Performance and Availability Automated Failover of Paths and performance management ISP 1 ISP 2 Transparency & Simplicity Virtualized path selection based on path characteristics Applications vs. Packets Application layer policy and control

INCREASING NEED FOR HYBRID NETWORKS 1 Private Networks 2 Internet VPNs 3 Local Internet access Internet Cloud SaaS IaaS Internet Branch MPLS Data Center

Designing Path Selection X MPLS Branch? Internet Internet/VPN Ping router? Data Center 1 Classification Use DPI or packet header? 3 Path Monitoring What endpoint will be monitored? 2 Traffic Steering Gateway, interface, or DSCP? 4 Path Failover Different path, drop packet, or send anyway?

RiOS: Scalable Data Reference (SDR) Copyright 2013 Files & Data Original text Riverbed Technology Binary representation 01000011011011110111000001111001011100100110100101100111011010000111010000100000110 00010101010010010000000110010001100000011000100110011000010100101001001101001011101 10011001010111001001100010011001010110010000100000010101000110010101100011011010000 11011100110111101101100011011110110011101111001 1 st lvl references Ref[9z34] Ref[55k1] Ref[816378] Ref[4u244] Ref[j8s] 2 nd lvl reference Ref[vs5q6] Ref[qk7j9] 3 rd lvl reference Ref[vv7a2] 4th lvl reference

RiOS: SDR Benefit Seattle Branch Office New York Datacenter Seattle Branch Office Data 60-98% reduction in bandwidth New York Datacenter

RiOS: Bandwidth Streamlining DEMO LIVE 60-98% reduction over time in WAN utilization Request Reconstructed Files & Data Data Files & Data WAN Branch Office Data Center References New data Requests from the client to the server Steelhead auto-intercepts the request, segments data and LZ compress it Only new bytes are LZ compressed and sent over the WAN 16-Byte references communicate gigabytes of existing data Remote Steelhead reconstructs data and delivers it to the client

Data Streamlining Comparison Compression-only SDR-M LAN-side Throughput SDR-A Advanced SDR-A Legacy Default SDR Data Reduction (X-Factor)

Steelhead DX Edition decicated for DC February, 2014 Target GA Date Steelhead DX8000 Purpose-built for DC-to-DC optimization 2 Gbps Optimized WAN Capacity (unrestricted) 10,000 Connections 10 Gbps Compression Card On-board datastore architecture Includes 1 x 2-port 10 GbE SR bypass card Model DX8000 Profile 2U Optimized WAN Capacity (a) 2 Gbps Optimized TCP and UDP flows 10,000 QoS Bandwidth (b) No limit QoS Rules/Classes (c) 4000 RAM 128 GB Hard Disk 1 TB Hot Swappable Drives 2 Included Bypass Ports (10 GbE SR Fibre) 2 Included Bypass Ports (1 GbE Copper) 4 Expansion Slots (PCI-e) (f) 3 Max. # of Bypass Ports 18 NOTE: All WAN Capacity / Bandwidth, TCP Connections and UDP flows, and QoS specifications listed are maximums and may not be achieved in all environments. (a) No enforced optimized WAN bandwidth limit (b) Recommended maximum outbound QoS shaping capacity (c) Total of classes plus rules (d) Optional Network Bypass cards: Dual and Quad LX and SX GigE Fiber GigE, Quad Copper GigE, 10GbE SR/LR

RiOS SSL Optimization Overview Request Optimized WAN transfer over SSL WAN Branch Office SSL Auto-discovery SSL session setup Temporary Session Key Data Center Decrypt (K s ) Encrypt (K s ) De-optimize Decrypt (K c ) Optimize Encrypt (K c ) Legend Decrypt (K t ) Encrypt (K t ) SSL Certificate Temporary Session Key Secured connection Lesson: SSL-Optimization

Asymetric Optimization SteelApp Traffic Manager Stingray provides visibility and control Stingray Traffic Manager Web and Application Servers Optimize and Accelerate... to improve performance and increase capacity Differentiate and Prioritize... to give users the level of experience they require Inspect and Secure... to block attackers

The SteelApp and SteelCentral Portfolio Traffic Manager Stingray Web Aptimizer Accelerator Web App Firewall SteelCentral Services Controller Load Balancer / Traffic Manager / ADC Provides reliability, availability, offload, security, scripting, and more Website Acceleration Reduces page load time and cuts bandwidth. Application Aware Firewall Defends your applications against threats Elastic and adaptive services controller Automates the deployment, licensing, provisioning & metering of ADC services A COMPREHENSIVE APPROACH TO APPLICATION DELIVERY Software/Virtual Appliance/Cloud/Micro Instance

Why Stingray? More Performance Up to 4x faster page views and 40-60% less bandwidth More Control App-level scripting, Automation, Management and Resilience, Local and Global Load balancing More Protection Protection from Layer 7 application-level attacks More Cost Savings Server & SSL Offload with Caching to cut server costs

Stingray Aptimizer: Faster Page Views Stingray Aptimizer PAGE COMPONENT OPTIMIZATION Object merging Object compression Smart browser caching Dynamic layout DYNAMIC LAYOUT STREAMLINING: JavaScript re-ordering Asynchronous JavaScript Opt On-demand image loading Device + browser aware optimizations Result: Enterprise Web apps and public web sites up to 4x faster

Aptimize Unoptimized web page 0 s Optimized web page 1 s User sees blank page until script loads and executes Origin site content slowed down by 3 rd party content 2 s 3 s User sees page begin to render immediately Origin site content loads at maximum speed 4 s Browser retrieves HTML page content Loads and executes JavaScript files one-by-one Then starts loading other page elements Is slowed down by 3 rd party content 5 s 6 s 7 s 8 s Browser retrieves HTML page content Begins loading JavaScript in the background Starts loading other page elements immediately Is not affected by speed of 3 rd party content 37

SSL Optimization for SHmobile Request Optimized WAN transfer over SSL WA N DATA CENTER Secured connection Temporary Session Key SSL session setup Encrypted data typically confounds acceleration Scrambled data patterns cannot be optimized Patent-pending approach to SSL encryption maintains the preferred trust model : Private keys never leave the data center Does not require fake certificates in branch offices Encrypted and unencrypted applications are now optimized for the mobile worker. Legend SSL Certificate Temporary Session Key Secured connection

Inspiring Innovation Riverbed SteelFusion Branch Converged Infrastructure

BRANCH OFFICE PROLIFERATION Branch and remote offices are the front lines of business Users need data and apps and performance Work must continue even when disconnected It was a combination of organic growth and acquisitions that led to this situation. - Searl Tate, Director of engineering Paul Hastings international law firm Source: IDC 2013

WHERE IS YOUR DATA? THE STARK REALITY... What percentage of all data in your organization would you estimate is stored primarily in branch offices today? 11% to 19% Less then 10% 20% to 29% 30% to 39% 50% or more 40% to 49% Base:207 IT leaders in organizations with branch offices Forrester Consulting, October 2011 Successfully Consolidating Branch-Office Infrastructure in the Face of More Users, Services, and Devices

WHAT ARE THE PROBLEMS? Servers and data in the remote office are:

WHY CONVERGED INFRASTRUCTURE? VIRTUAL APP 1 VIRTUAL APP 2 VIRTUAL APP 3 VIRTUALIZATION AND MANAGEMENT SERVER STORAGE NETWORK Pre-integrated, pre-configured TODAY S Server + Storage + Networking + MODERN IT INFRASTRUCTURE STACK Virtualization Workload-optimized

STEELFUSION AND THE BRANCH CUSTOM APPS AD, FILE, AND PRINT FIREWALL, PROXY VIRTUALIZATION AND MANAGEMENT SERVER STORAGE NETWORK All-in-one branch platform VSP running VMware vsphere BlockStream storage delivery SteelHead WAN optimization STEELFUSION

A NEW BRANCH OFFICE ARCHITECTURE BRANCH SteelFusion Edge DATACENTER SteelFusion Core WAN VM VM VM VM SAN CONVERGED APPLIANCE Combines compute + storage + virtualization + WAN optimization Consolidates remote IT Provides local performance STORAGE DELIVERY CONTROLLER Interfaces with SAN Projects VMs and data to branch Protects branch data centrally Eliminates branch backups

WHAT IS IN A STEELFUSION PLATFORM? VSP GE SH

GRANITE ENVIRONMENT Application Server VM VM iscsi Steelhead EX + Granite Storage Array WAN Steelhead FC or iscsi BRANCH Granite Core VM DATACENTER BRANCH BRANCH BRANCH BRANCH

STORAGE ABSTRACTION - PROTOCOLS VM VM VSP GE SH WAN SH GC STORAGE iscsi RIVERBED DISK RDISK FC or iscsi PORTS 7950, 7951, 7952, 7953, 7970

STEELFUSION EDGE APPLIANCES 1160 Series 1260-2 Series 1260-4 Series 1360 Series 1360P Series BlockStore 760 GB 1580 GB 3574 GB 9400 GB 9400 GB Total RAM 48 GB 72 GB 88 GB 128 GB 128 GB RAID level RAID 1 RAID 10 RAID 10 RAID 10 RAID 10 Dual Power Supplies Optimized WAN capacity Up to 100 Mbps Optimized Connections Up to 6000 Profile 1U 2U 2U 2U 2U

STEELFUSION CORE 1000 Series 1500 Series 2000 Series 3000 Series Number of LUNs Up to 40 Up to 60 Up to 160 Up to 300 Projected Data Set Up to 10 TB Up to 35 TB Up to 35 TB Up to 100 TB Profile Virtual Virtual 2U 2U

WHAT IS A VM?? 60GB VMFS FOLDER CONTAINING A NTFS FILE SYSTEM INSTALLATION OF WINDOWS 2008 R2 DOMAIN CONTROLLER 17GB OF DATA 300MB DATA APPLY A 90%+ DATA REDUCTION

SteelFusion configure DEMO LIVE

BOOTING A VM THE INNOVATION VM THAT S WINDOWS1.DLL! YOU WILL NEED WINDOWS2.CAB NEXT VSP G S E H WAN SH GC STORAGE 10110011101011110000101010101001 REQUEST 0001 GET 0001 PREFETCH - 0010 PREFETCH - 0011

GRANITE EDGE DATA OPERATING MODES Pin the LUN Reserves space at the edge for the entire LUN Allows all data blocks to be pre-populated Ideal for disconnected operations 100% of space & blocks 1TB 1TB Working Set Active data blocks cached locally at the edge A subset of total data size Block misses retrieved from data center Active blocks only 100GB 1TB Local LUN Writes are not synced back to the data center Used for swap partition, tmp_files, swap space, etc. Localonly block storage 50GB

LIFE OF A FILE X:/USER/HOME/ VM VSP G S E H WAN SH GC STORAGE 10110011101011110000101010101001

LIFE OF A FILE WAN OUTAGE?? X:/USER/HOME/ VM VSP G S E H WAN SH GC STORAGE 10110011101011110000101010101001

SteelFusion Multi-Path & HA Failover HA SteelFusion Core VM VM External Host DATA CENTER MPIO MPIO BRANCH Storage Array SteelFusion Edge HA Multipath I/O (MPIO) enables connection via more than one physical interface Fault-tolerance Increased performance Load balance workload 50/50 over 2 cores for HA Failover SteelFusion Edge and Core HA support Failover capabilities at the edge and core Ensures end-to-end branch resiliency

RPO AND RTO DISASTER RECOVERY Branch Server Up Down Near-instant provisioning Time to provision a new server Zero Admin at the Branch Near zero Near-instant data loss (RPO) RPO (1 day) recovery (RTO) 24hr Backups 24hr Data Loss D a t a L o s s RTO (days) Provision Protect Recover time

LUN SNAPSHOTS A snapshot is a point-in-time image of a LUN Application-consistent snapshot All activity on LUN is quiesced 1. All in-memory data is flushed to disk 2. Snapshot is recorded App can easily resume from snapshot Crash-consistent snapshot Snapshot is made without considering app state Must repair data before apps can resume Some business transactions could be lost Same effect as pulling the plug! Ways to trigger a snapshot: CLI command issued from the Granite Edge Windows Agent (RHSP) (hardware provider) VM Tools Snapshot Scheduler

SNAPSHOTS Snapshot VM and data here either manually or via schedule

DATA PROTECTION AND SNAPSHOTS Snapshot VM and data here either manually or via schedule Enabling VADP, CBT and Incremental Backups and have it automatically mounted here! Dramatically reducing backup software licensing

Inspiring Innovation GRANITE AND VDI

VMWARE VIEW & RIVERBED GRANITE View Clients BRANCH Virtual Desktops Local Performance DATA CENTER Centralized Virtual Applications Desktops Steelhead EX + Granite WAN LAN performance Bandwidth reduction PCoIP NOT across the WAN Disconnected operations during WAN outages Acceleration for centralized applications Centralized management and security Reduced cost on central storage Steelhead View Manager View Composer Active Directory Granite Core Central Management Storage

TEST ENVIRONMENT TOPOLOGY ESX 5.0.0 U1 30 Linked-cloned desktops View 5.1 300 GB LUN 1.5Mbps T1 link 100ms RTT

PERFORMANCE REPORT 30 DESKTOPS Video Frames Outlook Read IE Browse Excel Sort Powerpoint Modify Word Modify Adobe Reader Browse 42 79 42.. 13 FPS.. 24 FPS.. 24 FPS = High-fidelity video 577 564 221 524 211 130 279 129 457 428 123 605 120 271 283 Granite Granite delivers delivers LAN LAN performance performance 794 LAN 971 1125 0 200 400 600 800 1000 1200 Time in milliseconds (lower is better)

Steady State Boot Storm REDUCED COST ON CENTRAL STORAGE Write 343 833 Lower SAN IOPS requirements Read 0 1295 Write 147 112 Read 0 51 WAN (SAN) Granite (SAN) 0 200 400 600 800 1000 1200 1400 SAN IOPS (lower is better)

BY THE NUMBERS # of User Sessions on T1 link Maximum WAN latency supported 100 20 35 70 1000 250 250 700 0 0 IOPS during boot storms 100 % Bandwidth reduction 90 2000 0 833 833 343 1295 1295 0 50 0 0 40 None Steelhead Granite

Inspiring Innovation STEELFUSION USE CASES

STEELFUSION VALUE DRIVERS EFFICIENCY Consolidation/Centralization Eliminate need for separate servers and storage at branch Simplified Management Centralize control, eliminate fly and fix missions Quickly provision remote locations from DC RESILIENCY Disaster Recovery & Avoidance Recover from disasters in minutes Improve RPO, reduce data loss Data Protection Eliminate branch backup Disconnected Operations Maintain operations when WAN link is down SECURITY Control Remove data from remote locations Render data on stolen appliances inaccessible Encryption Ensure data is safe with AES 256-bit encryption

STEELFUSION USE CASES

REDUCE BRANCH FOOTPRINT REDUCE CAPITAL COSTS Minimize the physical infrastructure needed to run branch apps Eliminate disparate servers and storage from the branch Drive greater utilization of datacenter storage investments Eliminate branch-based data protection Get rid of backup and replication servers Remove tape and backup media

REDUCE BRANCH FOOTPRINT REDUCE OPERATIONAL COSTS Centralize control and management Eliminate the need for remote IT personnel or fly and fix missions Provision branches remotely Leverage standardized datacenter policies and procedures

PROVISIONING A VM WITH STEELFUSION SteelFusion 10 Minutes Traditional Approach 5 Hours 0 50 100 150 200 250 300 350 Minutes "We estimate that Riverbed s SteelFusion yields a 30X reduction of time and effort in branch office configuration process Source: Taneja Group Technology Validation, Convergence For The Branch Office, April 2014

CENTRALISE BACKUP OPERATIONS Centralize protection of branch servers, applications and data Benefit from mature, Enterprise-class datacenter practices Array-based snapshots Disk backup and deduplication Datacenter-to-datacenter replication

QUICKLY RECOVER BRANCH OFFICES Connect Power on Recover in minutes from disasters Recover VMs by starting in the datacenter when remote locations are inaccessible Re-project VMs from the datacenter to the branch with BlockStream Enact disaster avoidance Proactively move services in anticipation of outage event Reduce data loss with near real-time synchronization of data to the datacenter

DISASTER RECOVERY PROCESS Taneja validated recovery to remote location Recovery within the datacenter is much faster SteelFusion 15 Minutes Traditional Protection 24 Hours 0 200 400 600 800 1000 1200 1400 1600 Minutes "Our testing suggests Riverbed SteelFusion may reduce the recovery time for branch offices by 96X or more Source: Taneja Group Technology Validation, Convergence For The Branch Office, April 2014

GET DATA OUT OF HIGH RISK PLACES Remove sensitive information from high-risk locations Politically unstable Remote/offshore Rugged Manage primary data and backup copies in the secure data center

REDUCE RISK AT BRANCH OFFICES Maintain only limited set of active data blocks at remote locations Protect data at rest with AES 256- bit encryption Secure data in-flight with industrystandard SSL or IPSEC encryption

Customer Success Industry: Mining CHALLENGE Too much infrastructure in remote and rugged sites High-latency and week long WAN outages Data shipped on media to HQ a 3-4 day process RESULT A simplified remote site Data centralized in real time to Dell EqualLogic storage Server available despite WAN outages Fast access to centralized resources SteelFusion lets us bring down the complexity of what local IT resources need to manage, and allows us to focus our IT expertise in Toronto where there is ample talent available

Customer Success Industry: Legal CHALLENGE Consolidate to four data centers within five years Deliver core IT to emerging growth regions without exposing data to risk Eliminate need for IT support in remote branch sites RESULT Complete centralization of data to a secure data center Seamless delivery of centrally managed storage to remote branches New levels of data security for remote site operations [With SteelFusion] applications perform as they did when the data was stored locally.

Customer Success Industry: Oil & Gas Exploration CHALLENGE No one to manage backups at remote exploration and production sites Failing servers in remote locations increased risk Outgrowing existing infrastructure and skill sets RESULT Centralized data in co-location facility Consolidated backup operations in data center no more edge backup Reduced footprint in remote locations Enabled full centralized control SteelFusion was easy to justify. The alternative was going to cost us three times as much. We spent less AND we improved our recovery capability at the same time.

Customer Success Industry: AEC CHALLENGE Need to replace aging branch infrastructure in 9 locations Servers coming off maintenance Backup servers beginning to fail Unable backups during day due to impact on users RESULT Simplified branches All data managed on central storage Improved data protection IT staff time saved The cost was less than our old branch server model. It was an easy decision for us to move forward with SteelFusion.

ZYCKO VALUE ADD - EXAMPLE

RIVERBED GRANITE DEPLOYMENT EXAMPLE Global Construction Company Granite Deployment to all Offices with 20-150 employees Phase 1: 250 sites, Replicated and Resilient Data Centre Solution with Cloud Backup Instant on sites Ease of Deployment Standard Builds Centralised management Centralised Backups Resilient Data Centres RPO Average under 10 Minutes RTO Average under 1 day ESX HOSTS ESX HOSTS

SUMMARY SteelFusion: Branch Converged Infrastructure Local user performance Data centralization Instant recovery Lower TCO

Business impact of different performance issues USER (Employee) APPLICATION PAGE COMPOSITION USER (Consumer) NETWORK Compression Can I consolidate? QoS/ Is app BW performance Shaping meeting my SLA? Application Employee Productivty? Streamlining Transport Control Network Streamlining Costs? Data Deduplication Fill the pipe technology APPLICATION Compression Impact of server failure? Peak capacity mgmt? QoS/ BW Shaping Can I secure the app? App Can Firewall I make rapid changes to application functionality? TCP/SSL Offload Load Balancing Application Scripting CONTENT Browser/Device Can I improve user Specific Optimization experience? Resource Can I map Shrinking the application & Merging to mobile, ipad platforms? Image Spriting Auto URL Versioning HTML Metadata removal COMPLEX PERFORMANCE CHALLENGES REQUIRE AN INTEGRATED STRATEGY

The right performance tools for your challenge USER (Employee) APPLICATION PAGE COMPOSITION USER (Consumer) Symmetric - WOC Compression Accelerate Enterprise QoS/ Applications BW Shaping Cut WAN Bandwidth Application Improve Employee Streamlining Transport Productivity Streamlining Data Deduplication Steelhead Fill the pipe technology Asymmetric - ADC Compression Accelerate applications over the Internet QoS/ BW Shaping Scale applications App Improve Firewall app resiliency Leverage cloud TCP/SSL Offload Stingray Load Balancing Traffic Manager Application Scripting Asymmetric - WCO Browser/Device Optimize web Specific pages - Optimization Image, Browser, Script, Resource and HTML Shrinking & Merging Adapt to user platform (PC, Phone, Tablet) Image Spriting Auto Stingray URL Versioning Aptimizer HTML Metadata removal

Inspiring Innovation Q&A Zycko Polska Sp. z o.o. Kazimierz.Jantas@zycko.com zyckopolska@zycko.com http://pl.zycko.com

Inspiring Innovation ADDITIONAL SLIDES

Asymetric Optimization SteelApp Traffic Manager Stingray provides visibility and control Stingray Traffic Manager Web and Application Servers Optimize and Accelerate... to improve performance and increase capacity Differentiate and Prioritize... to give users the level of experience they require Inspect and Secure... to block attackers

The SteelApp and SteelCentral Portfolio Delivering ADC-as-a-Service Traffic Manager Stingray Web Aptimizer Accelerator Web App Firewall SteelCentral Services Controller Load Balancer / Traffic Manager / ADC Provides reliability, availability, offload, security, scripting, and more Website Acceleration Reduces page load time and cuts bandwidth. Application Aware Firewall Defends your applications against threats Elastic and adaptive services controller Automates the deployment, licensing, provisioning & metering of ADC services A COMPREHENSIVE APPROACH TO APPLICATION DELIVERY Software/Virtual Appliance/Cloud/Micro Instance

Why Stingray? More Performance Up to 4x faster page views and 40-60% less bandwidth More Control App-level scripting, Automation, Management and Resilience, Local and Global Load balancing More Protection Protection from Layer 7 application-level attacks More Cost Savings Server & SSL Offload with Caching to cut server costs

Stingray the High-Performance software ADC MORE COST SAVINGS: SSL,TCP and XML offload Content Compression HTTP Caching HTTP Multiplexing MORE FLEXIBILITY: Physical, Virtual, Cloud Auto-scaling capability Integration with provisioning tools MORE PROTECTION: Server Isolation Traffic Filtering and Scrubbing Scalable, Distributed Application Firewall MORE OPTIMIZATION: Industry-leading WCO Object compression Object merging Automatic versioning HTML reordering MORE REVENUE: Faster response times Increase transaction capacity Happier customers MORE RELIABLE: Global load balancing Fault tolerance Monitoring Bandwidth and rate shaping MORE PRODUCTIVITY: Ease of use Graphical analysis TrafficScript logic Java Extensions MORE CONTROL: Service Level Monitoring Reporting and alerting Control and Event API Centralised management

Stingray Traffic Manager features 1000 Series 2000 Series 4000 Series Throughput 10,200,1000 Mbps 1, 2 Gbps 5, 10, 20, unlimited Gbps SSL Performance 1,000 SSL TPS 10,000 SSL TPS Unlimited Load Balancing Y Y Y Compression Y Y Y Content Caching Y Y Y Scripting Y Y Y Global Load Balancing N Y Y Bandwidth Management N Y Y Rate Shaping N Y Y Service Level Monitoring N Y Y Auto-Scaling N Y Y Application Firewall Option Option Option Web Content Optimization Option Option Option

Stingray Aptimizer: Faster Page Views Stingray Aptimizer PAGE COMPONENT OPTIMIZATION Object merging Object compression Smart browser caching Dynamic layout DYNAMIC LAYOUT STREAMLINING: JavaScript re-ordering Asynchronous JavaScript Opt On-demand image loading Device + browser aware optimizations Result: Enterprise Web apps and public web sites up to 4x faster

Aptimize Unoptimized web page 0 s Optimized web page 1 s User sees blank page until script loads and executes Origin site content slowed down by 3 rd party content 2 s 3 s User sees page begin to render immediately Origin site content loads at maximum speed 4 s Browser retrieves HTML page content Loads and executes JavaScript files one-by-one Then starts loading other page elements Is slowed down by 3 rd party content 5 s 6 s 7 s 8 s Browser retrieves HTML page content Begins loading JavaScript in the background Starts loading other page elements immediately Is not affected by speed of 3 rd party content 97

How Aptimize works BEFORE AFTER 1. Install software: On web front-end servers or virtual machine SharePoint / Windows Configuration in 1-2 hours 2. Aptimize dynamically: Merges files (fewer round trips) Shrink + compress files (less data) Increase caching (reduce reloads) Tune page layout (1 st things 1 st ) 3. Instant results: Up to 76% reduction in load times Up to 43% less traffic Better CDN performance