Solution Brief. Load Balancing to Provide Scalable, Reliable, Secure Access Solutions

Similar documents
Configuring and Implementing A10

Deployment Guide. AX Series with Juniper Networks SA Series SSL-VPN Appliances Solution

Layer 4-7 Server Load Balancing. Security, High-Availability and Scalability of Web and Application Servers

Increase Simplicity and Improve Reliability with VPLS on the MX Series Routers

Global Server Load Balancing

Deployment Guide. AX Series with Oracle Application Server

Microsoft Office Communications Server 2007 & Coyote Point Equalizer Deployment Guide DEPLOYMENT GUIDE

GLOBAL SERVER LOAD BALANCING WITH SERVERIRON

Cisco Virtual Office: Flexibility and Productivity for Your Workforce

FortiBalancer: Global Server Load Balancing WHITE PAPER

A10 Thunder and AX Series

Microsoft Dynamics CRM 2015 with NetScaler for Global Server Load Balancing

Deployment Guide. AX Series with Microsoft Office SharePoint Server

WHITE PAPER. Enhancing Application Delivery and Load Balancing on Amazon Web Services with Brocade Virtual Traffic Manager

Superior Disaster Recovery with Radware s Global Server Load Balancing (GSLB) Solution

Deployment Guide. AX Series with Microsoft Exchange Server

The Evolution of Application Acceleration:

Load Balancing Security Gateways WHITE PAPER

Deployment Guide AX Series with Microsoft Windows Server 2008 Terminal Services

Global Server Load Balancing

Deployment Guide. AX Series with Microsoft Office Communications Server

Next Generation Application Delivery

The Application Delivery Controller Understanding Next-Generation Load Balancing Appliances

Deploying SAP NetWeaver Infrastructure with Foundry Networks ServerIron Deployment Guide

Deployment Guide AX Series with Citrix XenApp 6.5

Avoid Microsoft Lync Deployment Pitfalls with A10 Thunder ADC

Peak Hosting, founded in 2001, provides comprehensive ITas-a-service

PRODUCT CATEGORY BROCHURE. Juniper Networks SA Series

The Application Front End Understanding Next-Generation Load Balancing Appliances

access convergence management performance security

Deployment Guide AX Series with Active Directory Federation Services 2.0 and Office 365

Cisco Application Networking for IBM WebSphere

White paper. Keys to SAP application acceleration: advances in delivery systems.

Overcoming the Performance Limitations of Conventional SSL VPN April 26, 2006

Implementing Microsoft Office Communications Server 2007 With Coyote Point Systems Equalizer Load Balancing

5 Easy Steps to Implementing Application Load Balancing for Non-Stop Availability and Higher Performance

Alteon Global Server Load Balancing

Deployment Guide Microsoft IIS 7.0

White Paper A10 Thunder and AX Series Application Delivery Controllers and the A10 Advantage

SafeEnterprise SSL igate Managing Central Access to Resources with VPX Technology

Healthcare Security and HIPAA Compliance with A10

VMware View 5.0 and Horizon View 6.0 DEPLOYMENT GUIDE

White paper. Load balancing basics. Updated 12-07

White Paper. McAfee Multi-Link. Always-on connectivity with significant savings

SVN5800 Secure Access Gateway

Whitepaper. Controlling the Network Edge to Accommodate Increasing Demand

Load Balancing for Microsoft Office Communication Server 2007 Release 2

Cisco Application Networking for BEA WebLogic

Deployment Guide Oracle Siebel CRM

ZEN LOAD BALANCER EE v3.04 DATASHEET The Load Balancing made easy

Network Management for Common Topologies How best to use LiveAction for managing WAN and campus networks

CISCO CATALYST 6500 SERIES CONTENT SWITCHING MODULE

Reasons to Choose the Juniper ON Enterprise Network

SharePoint Performance Optimization

Juniper Solutions for Turnkey, Managed Cloud Services

Using Entrust certificates with VPN

CLE202 Introduction to ServerIron ADX Application Switching and Load Balancing

Content Switching Module for the Catalyst 6500 and Cisco 7600 Internet Router

Staying Alive Understanding Array Clustering Technology

PRODUCT CATEGORY BROCHURE

Radware s AppDirector and Microsoft Windows Terminal Services 2008 Integration Guide

Request Routing, Load-Balancing and Fault- Tolerance Solution - MediaDNS

Array Networks & Microsoft Exchange Server 2010

Deployment Guide MobileIron Sentry

Advanced Core Operating System (ACOS): Experience the Performance

DEPLOYMENT GUIDE. Deploying F5 for High Availability and Scalability of Microsoft Dynamics 4.0

AppDirector Load balancing IBM Websphere and AppXcel

Deployment Guide July-2014 rev. a. Deploying Array Networks APV Series Application Delivery Controllers with Oracle WebLogic 12c

NetScaler: A comprehensive replacement for Microsoft Forefront Threat Management Gateway

Private Cloud Storage for Media Applications. Bang Chang Vice President, Broadcast Servers and Storage

WHITE PAPER MICROSOFT LIVE COMMUNICATIONS SERVER 2005 LOAD BALANCING WITH FOUNDRY NETWORKS SERVERIRON PLATFORM

How Cisco IT Uses Firewalls to Protect Cisco Internet Access Locations

Corepoint Community Exchange Features and Value - Overview

Availability Digest. Redundant Load Balancing for High Availability July 2013

About. Resonate Global Dispatch Microsoft UAG environments. Intelligent Load Balancing for Smarter Networks and Applications

ZEN LOAD BALANCER EE v3.02 DATASHEET The Load Balancing made easy

The term Virtual Private Networks comes with a simple three-letter acronym VPN

KEMP LoadMaster. Enabling Hybrid Cloud Solutions in Microsoft Azure

Multi-Link - Firewall Always-on connectivity with significant savings

IPSec or SSL VPN? Copyright 2004 Juniper Networks, Inc. 1

Business Case for Data Center Network Consolidation

VALIDATING DDoS THREAT PROTECTION

Reasons Enterprises. Prefer Juniper Wireless

Whitepaper. StoneGate Multi-Link. Ensuring Always-on Connectivity with Significant Savings

Networking and High Availability

The Global Attacker Security Intelligence Service Explained

Configuring Citrix NetScaler for IBM WebSphere Application Services

Radware AppDirector and Juniper Networks Secure Access SSL VPN Solution Implementation Guide

Getting More Performance and Efficiency in the Application Delivery Network

Load Balancing 101: Firewall Sandwiches

CNS-200-1I Basic Administration for Citrix NetScaler 9.0

APV9650. Application Delivery Controller

Chapter 16 Route Health Injection

Citrix NetScaler 10 Essentials and Networking

World Leading Application Delivery Controllers. Peter Draper Technical Director EMEA

SoLuTIoN guide. CLoud CoMPuTINg ANd ThE CLoud-rEAdy data CENTEr NETWork

5 Key Reasons to Migrate from Cisco ACE to F5 BIG-IP

Unified Threat Management, Managed Security, and the Cloud Services Model

Huawei One Net Campus Network Solution

Transcription:

Solution Brief Load Balancing to Provide Scalable, Reliable, Secure Access Solutions September 2008

Mobile Users Require Secure Always-On Network Access Secure Sockets Layer (SSL) virtual private networks (VPNs) have become the de facto standard technology for remote access to enterprise network resources. SSL VPN has attained widespread adoption as a low-cost, more easily configured and managed alternative to cumbersome, cost-inefficient IPsec solutions. With SSL VPN, employees, partners, and vendors can easily and securely access the enterprise network from remote locations, without the need to install or maintain special software. Evolution of the technology over the last several years has yielded mature, highly configurable solutions such as Juniper Networks Secure Access. Success Brings New Challenges The success of SSL VPN has created its own challenges. As organizations continue to deploy the technology, the user base accordingly continues to grow. Organizations are faced with the need to scale deployed SSL VPN solutions to meet ever increasing demand, while at the same time maintaining the availability, robustness, and ease of use of the solution. Similar scalability and reliability challenges confront organizations wishing to deploy new SSL VPN solutions. To address the challenges facing legacy and greenfield global SSL VPN deployments, robust, reliable, high performance load balancing is required. Juniper Networks Secure Access and A10 Networks AX Series Provide a Robust, Scalable Solution A combined solution using Juniper Networks Secure Access and A10 Networks AX Series provides optimal SSL VPN service. The access and security features of Secure Access are easily extended to a quickly expanding mobile workforce by deploying AX Series server load balancers. AX Series load balancers add the following benefits to a Secure Access solution: Intelligent, flexible load balancing algorithms to select the best Secure Access node for each session Industry leading connection speed, supporting greater than 500,000 new TCP connections per second 1 Customizable health monitors to ensure service availability Stickiness options, such as persistence based on client source IP address Hardware-based protection against Distributed Denial-of-Service (DDoS) attacks One virtual VPN server to provide a single point of access for all users in all locations High Availability AX redundancy with session synchronization to eliminate single point of failure Protect Return on Investment Organizations with existing Secure Access deployments can protect return on investment and meet increasing demand by adding A10 Networks AX Series server load balancers. Likewise, organizations deploying new SSL VPN solutions can take advantage of the many benefits of the combined solution to meet present needs, with assurance that the solution will scale to meet tomorrow's needs. AX Series devices can be inserted into the network as Layer 2 "transparent" switches or Layer 3 routers that can support RIP and OSPF. In either case, Layer 4-7 features are supported. Combine Ease of Use with Scalability and Reliability Users benefit from ease of use while network administrators benefit from increased robustness and availability of SSL VPN access. Regardless of the location or size of Secure Access clusters, users can access the enterprise network using a common URL. The URL maps to a virtual IP address managed by AX Series server load balancers. 1 The actual number is 541,000 new TCP connections per second on model AX 3200, as independently verified by A10 s January 08 Tolly Test.

AX load balancing uses health checks to ensure the availability of Secure Access nodes before sending user traffic. If a Secure Access node is unavailable, the AX selects another Secure Access node to serve the user's connection. All this is transparent to the user. The user simply experiences fast, reliable access. AX Series devices deployed in High Availability sets provide an added layer or reliability. In the event an AX device or links become unavailable, the other AX device in the set takes over to provide continued service. Session synchronization ensures that existing client sessions continue uninterrupted. Global SSL VPN Load Balancing for Anywhere, Anytime Access Today's highly mobile, geographically dispersed workforce requires consistent, uncomplicated network access. A superior SSL VPN solution relieves users of the burden of remembering multiple URLs. Users should be able to log in from anywhere using a single, easily remembered (or cached) URL. Global server load balancing (GSLB) enables a seamless access solution. Users can request network access using the same URL from any geographic location. An AX Series device running GSLB selects the best site for the request and modifies the DNS to direct the user the chosen site. SSL VPN Solution Architecture To manage multiple Secure Access clusters, deploy a set of AX Series server load balancers configured for GSLB. AX Series and Secure Access Cluster AX Series server load balancers can intelligently balance traffic among multiple Secure Access nodes while presenting a single, virtual URL to users. Mobile users can access the VPN from anywhere with a single URL (for example, vpn.corp.com) mapped to a single virtual IP (VIP). To service a connection request, AX Series load balancers assess the health and session load on each Secure Access node, then select a Secure Access node for the user session based on this information. Stickiness features such as source-ip persistence can be used to keep a given user on the same Secure Access node, even across multiple sessions, so long as that node is available. Robust hardware-driven AX security features such as hardware-based SYN cookies can supplement the advanced security features of Secure Access, easily dismissing up to 9 million TCP-SYN attacks per second.

Global AX Series Managing Multiple Secure Access Clusters An AX Series server load balancer configured for GSLB manipulates DNS replies to choose the best site for each user. The AX Series device can determine the best site based on a set of configurable metrics, including the user's geographic location, capacity at each site, and the health of the Secure Access nodes. Summary The SSL VPN solution consisting of Juniper Networks Secure Access and A10 Networks AX Series provides the industry's most reliable and scalable Secure Access solution. New and existing SSL VPN deployments alike can benefit from AX Series features including configurable health monitors, flexible load balancing, persistence ("stickiness") options, and High Availability. Hardware-based DDoS protection detects and drops unfriendly TCP traffic while allowing legitimate user traffic to the Secure Access nodes. High Availability eliminates service interruption due to AX or link unavailability. GSLB provides additional flexibility and ease of use, enabling a single user access experience across multiple sites, regardless of user location, while transparently directing the user to the best site based on site health, user location, and other configurable metrics. AX Series server load balancers allow Secure Access deployments to scale in support of today's mobile workforce. Tomorrow's everincreasing numbers of users, running increasingly bandwidth intensive applications, continue to enjoy fast, reliable Secured Access without the need to manage and utilize multiple URLs due to user location or network load.

A10 Networks was founded in 2004 with a mission to provide innovative networking and security solutions. A10 Networks makes highperformance products that help organizations of all sizes accelerate, optimize and secure their applications. A10 Networks is a venturefunded, privately held, Silicon Valley-based technology company, with offices in the United States, Japan, China, Korea and Taiwan. For more information, visit www.a10networks.com. Juniper Networks, Inc. is the leader in high-performance networking. Juniper offers a high performance network infrastructure that creates a responsive and trusted environment for accelerating the deployment of services and applications over a single network. This fuels high performance businesses. Additional information can be found at www.juniper.net. Contact Information Corporate Headquarters A10 Networks, Inc. 2309 Bering Drive San Jose, CA 95131 USA Website http://www.a10networks.com A10 Sales N. America: +1-888-A10-6363 sales@a10networks.com International: +1-408-325-8616 sales@a10networks.com China: +86 10 8515-0698 china_sales@a10networks.com APAC: +886-2-2657-3198 apac_sales@a10networks.com

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information