Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
MS TechDays 2011 - Virtualization Solutions to Optimize Performance
1. SINGAPORE
DEVELOPMENT, ADVANCED
Leslie Wong
Client Manager, F5 Networks
F5 optimizations
for the Microsoft
platform
2. F5 and Microsoft
10-year Global partnership
Solution development across
products and technologies Dynamics
SharePoint
Exchange
Joint investment, shared Lync
thought leadership and Forefront
strategic planning
System Center
SSTP
F5 training for Microsoft
RDS /Terminal Services
technical field, services and IIS/ASP.NET
support teams
Windows
Availability | Reliability | Scalability | Security | Visibility | Manageability
3. Globally managed technology partner
since 2001
One of 60 MTC Alliance partners
MPSC Alliance partner with office
and lab in Redmond
Founding member of System Center
Alliance
4. F5 & Microsoft technologies
together
Server Virtualization Efficiency & Agility Costs
Application delivery networking Reliability & Availability Risk
Management integration Visibility & Control Costs
5. Architected for Integration
iControl for Application Integration
F5 Products
Application Application Application
Security Optimization Availability
Shared Application Services
TMOS
Operating System
Shared Network Services
6. F5’s Dynamic Control Plane Architecture
Users
Application and Data
Delivery Network
Availability Optimization Security Management
•Scale •Network •Network • Integration
•HA / DR •Application •Application • Visibility
•Bursting •Storage •Data • Orchestration
•Load-Balancing •Offload •Access
Resources
Private Public
Cloud
Physical Virtual Multi-Site DCs
7. Application delivery
F5 devices manage traffic within the context of the applications
running on the network, optimizing user experience and
providing visibility and control to IT.
Acceleration • TCP
• Caching
• Compression
Availability • Intelligent health monitoring and load-balancing
• Horizontal scaling
• SSL offloading
• Security operation offloading
• Cross-site load-balancing and resilience
Security • Application layer protection
• SPAM
Manageability • Templates that reduce deployment times
• Fully extensible platform
• System Center integration
• Dynamic computing
14. How it works
2
1
4
3
5 Repeat for all physical servers
15. Microsoft and F5 technologies
Windows Server • BIG-IP Local Traffic
Manager (LTM)
2008 R2
• F5 Management Packs for
Hyper-V System Center
– F5 Management Pack for
System Center Operations Manager
– Operations Manager – F5 PRO-enabled
– Virtual Machine Manager Management Pack for
Virtual Machine Manager
Windows PowerShell – F5 Live Migration Pack
– F5 Application Designer
Packs for SharePoint
16. Resources
Video demo
– http://www.f5.com/news-press-events/web-media/webcasts/server-virtualization-f5-microsoft.html
F5 Managements Packs on DevCentral
– http://devcentral.f5.com/mpack
Online community for Microsoft-F5 solutions
– http://devcentral.f5.com/microsoft
Microsoft
– Windows Server and Hyper-V
• http://www.microsoft.com/windowsserver
• http://www.microsoft.com/virtualization
– System Center
• http://www.microsoft.com/systemcenter
18. SharePoint
SharePoint is a business collaboration platform that can be
deployed with specific roles in these areas:
Web portals and Web content management
Business Intelligence and Analysis
Collaboration
Document management
Enterprise Search
Custom .NET Web application development
F5 supports each of these server capabilities, providing
performance, availability and security enhancements over the
network and seamless to the application.
19. SharePoint Momentum
17K+ Customers, 100M Licenses
Leader in Gartner® Magic Quadrants,
Forrester WaveTM
Continued Platform and Application
Innovation
4,000+ Partners Today across Collaboration,
Content Management and Search
“SharePoint is the fastest-growing product in Microsoft’s history... And this
is just the beginning: SharePoint continues to grow as customers are just
beginning to apply it to a wide array of business issues and processes.”
- AMR RESEARCH, APRIL 22, 2008
20. SharePoint topology with BIG-IP
1
Local Traffic Manager
Web Accelerator
Global Traffic Manager
External
2 Application Security Manager
Edge Gateway
2 DMZ
Internal
1
Active Database Application Front end servers
Directory servers
21. Session agenda
Site-level Application
Application
health and layer security
health and
disaster and device
availability
recovery access
22. Session agenda
Site-level Application
Application
health and layer security
health and
disaster and device
availability
recovery access
23. Considerations for availability
BIG-IP LTM (Local Traffic Manager)
Increased SharePoint server availability =
– More productive users
– More efficient use of application computing
resources
– Enhanced visibility for IT
24. Session agenda
Site-level Application
Application
health and layer security
health and
disaster and device
availability
recovery access
25. Site level health
BIG-IP Global Traffic Manager (GTM)
– Starts with good server level health within 1 site
– Includes external link health
– Disaster Recovery and Active/Active
Users
Global Traffic Manager
Site A Site B
26. Considerations for availability
BIG-IP GTM (Global Traffic Manager)
• Site level health opens the door to service resilience
• Cross-site load-balancing increases infrastructure
ROI
• Flexible and powerful deployment options
• Best in class integration of geolocation
27. Session agenda
Site-level Application
Application
health and layer security
health and
disaster and device
availability
recovery access
29. Considerations for acceleration
BIG-IP WA (Web Accelerator Module)
Application delivery (ADC) benefits start with
asymmetric deployment
WA improves end user experience for repeat
visitors by eliminating network chatter
Best in class caching
– Intelligent Browser Referencing (IBR) is unique
WOM reduces file load time by 95%
Explore Windows Server 2008 R2 BranchCache to
reduce bandwidth use
30. Considerations for application
access
BIG-IP EG (Edge Gateway)
Next generation remote access solution
• Converged security and acceleration services
platform
Optimize access for mobile users and remote
offices
• New BIG-IP Solution for the Network Edge
– Includes new BIG-IP Edge Client solution
– Up to 8 Gbps, 600 log-ins per second, 40,000 users
– Mobile devices, notebooks, PCs supported
– Redirect for mobile users (SharePoint Mobile View)
Edge Portal
31. Unified and Optimized Access to the Data Center
BIG-IP Edge Gateway DMZ
Internet Datacenter
www.abc.com Resouces
Intranet
//abc
Extranet
Extranet.abc.com
Utilize existing user directories
• One solution to manage all access policies regardless of access
network
• Capacity and performance to secure all user traffic
• Optimizes application delivery to remote and mobile users
• Improves quality of real-time applications; soft phones and streaming
media
33. Unified Access to SharePoint
Twice as Fast User Downloads
First Time Repeat
Competitor SSL VPN = 211s = 47s
BIG-IP Edge Gateway = 114s = 16s
Test includes a user logging onto VPN, navigating
through SharePoint content, and downloading a 4 MB document
34. Considerations for application
layer security
BIG-IP ASM (Application Security Module)
• Security or performance? Fastest layer 7 (application layer)
security product
• Compliance regulations PCI DSS, SOX, Basel II, HIPAA
compliance
• New malicious behavior Built-in security policy for SharePoint
• Beyond HTTP protection ICSA Web Application Firewall
Certification
SC Magazine's 2010 Reader Trust Award for Best Web Application Security solution
35. Application health and
availability
One solution for access policy
Site-level health and management
disaster recovery
Secure access for remote and
mobile users
Application layer security
and device access Highest availability of SharePoint
for all types of devices
36. Resources
F5 Networks
– Solution page for SharePoint Server 2010
• Solution Overview | Solution Guide | Deployment Guide
– F5 Management Pack on DevCentral
– Microsoft community on DevCentral
• http://devcentral.f5.com/microsoft
– Free 90-day trial of BIG-IP VE
Microsoft
– SharePoint Web site @ http://sharepoint.microsoft.com
– IT Admin Related Content @
http://technet.microsoft.com/en-us/sharepoint
– Developer Related Content @
http://msdn.microsoft.com/en-us/sharepoint/
39. What does F5 have to do with
Exchange?
Exchange 2010 Client Access Servers (CAS)
need load balancing
Customers need to choose software or
hardware load balancing
40. Exchange 2010 Architecture
Phone system
(PBX or VoIP)
Edge Transport Hub Transport
Routing and AV/AS Routing and policy
External
SMTP
servers
Mailbox Unified Messaging
Storage of mailbox Voice mail and
items voice access
Mobile phone
Client Access
Web browser Client connectivity
BIG-IP Web services
Outlook
(remote user) Line of business application
Outlook (local user)
41. Software or hardware load
balancing?
Answering “yes” to any of these indicates a key reason for hardware load balancing Yes No
1 Will there be a reverse proxy or NAT between users and Exchange servers?
2 Will you deploy Outlook Anywhere, Active/Sync mobile and web clients?
3 Will you deploy multi-role servers (Mailbox and CAS on the same server?)
4 Do you need continuous Exchange availability during CAS server maintenance?
5 Do you need Exchange service health awareness (not merely server health)?
6 Will you use client IP addresses from a small number of Class C subnets?
7 Will you deploy more than 8 CAS servers?
42. Load balancing guidance from
TechNet
http://technet.microsoft.com/en-us/library/ff625247.aspx
43. View the Microsoft presentation
http://www.msteched.com/2010/Europe/UNC311
Skip to 47:48 in this video presentation
44. Microsoft guidance summarized
Microsoft recommends load balancing
Customers can choose software or hardware based
load balancing
It is crucial to clearly understand the implications of
Windows NLB limits
After the first year in market, Microsoft voice
concerns over using Windows NLB for Exchange
45. Windows NLB limits
IP affinity only works if reverse proxy/NAT is not used
and “tends” to group all class C IP subnet addresses on
one CAS server
Performance limit due to broadcast flooding of internal
CAS network
Add/remove node causes a re-connect of all active
connections
Cannot be used with MCS
Server aware, not service aware. Requires manual
detection and intervention
Maximum 8 CAS servers
46. The F5 Solution for Exchange
Server 2010
Prevent these pains
– Dropped sessions re-authentication,
reconnection
– Failed network connections retries, delay
– Slow response trapped users
These capabilities
– Health monitoring and intelligent load-balancing
– Client persistence
– Server off-load
– Availability of servers, arrays and sites
47. Pages 59 and 70
Use hardware load balancers to publish Client Access servers Microsoft IT capitalizes on a
single load-balancing infrastructure to provide load balancing for both internal and external
access to Client Access server resources. This ensures a uniform load across the Client
Access servers and a single point of security control.
48. NLB and Hardware-Based Load
Balancing…
Which way to go?...
For Exchange 2010, the choice is
clear…
Microsoft internal Exchange design:
http://technet.microsoft.com/en-us/library/ff829232.aspx
TechNet guidance for high-availability:
http://technet.microsoft.com/en-us/library/ff625247.aspx
49. The F5 Solution for Exchange
Server 2010
User - Client to CAS server
Mail - Mail flow through Edge Farms
Availability Performance Security Configuration
• Intelligent load • Server optimization • Bi-directional proxy • Application template
balancing for error-free, fast
• Caching and • AuthN/AuthZ from the configuration
• Server and site level compression for Web perimeter
health monitoring clients • DevCentral online user
• Protection against community
• SSL offload • Reduced bandwidth application layer
use attacks • Integration with
• Cross-site resilience systems management
• SPAM filter
• Robust persistence
54. Exchange related resources
F5 Solution page for Exchange Server
– http://www.f5.com/solutions/microsoft/exchange
Video demo of BIG-IP deployment for Exchange Server 2010
– http://www.vimeo.com/album/1537190
F5 Deployment Guide for Exchange Server 2010
– http://www.f5.com/pdf/deployment-guides/f5-exchange-2010-dg.pdf
F5 developer/IT admin user community
– http://devcentral.f5.com/microsoft
Microsoft Exchange Tested Solution with F5
– http://technet.microsoft.com/en-us/library/gg513522.aspx
Technical white paper by Microsoft on their internal deployment
– http://download.microsoft.com/download/8/5/D/85D61478-8719-4219-96BA-
E5C53DD4F436/0941_ExchangeServer2010ArchitectureTWP.docx
Load-balancing requirements from TechNet
– http://technet.microsoft.com/en-us/library/ff625247.aspx