Академический Документы
Профессиональный Документы
Культура Документы
PLAYBOOK
CONTENTS
Introduction........................................................................................................................................................................................................................3 Caching Solutions.............................................................................................................................................................................................................4 Proxy (Explicit mode) Cache Switching................................................................................................................ 4 Transparent Cache Switching (TCS)...........................................................................................................................................................................7 Benefits of using the ServerIron with Blue Coat Proxy SGs in Explicit and Transparent Mode ....................... 9 Configurations................................................................................................................................................................................................................10 WAN Optimization Solutions.....................................................................................................................................................................................11 Standard Inline WAN Optimization .................................................................................................................... 11 Enhanced WAN Optimization ............................................................................................................................. 12 Benefits of using the ServerIron with Blue Coat Proxy SGs in Standard and Enhanced Mode ..................... 13 Configurations................................................................................................................................................................................................................14 Contacts............................................................................................................................................................................................................................16 Documentation Resources........................................................................................................................................................................................16
Page 2 of 17
PLAYBOOK
INTRODUCTION
The Brocade ServerIron family of Application Delivery Controllers intelligently balance user traffic to application servers for increased performance and ultimately an enhanced user experience. The ServerIron family offers enterprises and service providers highly resilient Server Load Balancing (SLB) with both stackable and high-port-density, chassis-based solutions. ServerIron provides optimization for application availability, performance, and securityand decreases application ownership costs. ServerIron addresses the following enterprise challenges: Meeting Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO) for business continuity Application, server, and network security Reducing capital and operational costs (CapEx and OpEx) for applications, servers, and networking
The Blue Coat ProxySG family of appliances delivers a scalable proxy platform architecture to protect Web traffic and accelerate the delivery of business applications. ProxySG is built on SGOS, a custom, object-based operating system, which enables flexible policy control over content, users, applications and protocols. With Blue Coat ProxySG appliances, you can: Manage various proxy requirements across a distributed enterprise Protect internal users and networks from spyware and other attacks Significantly reduce bandwidth with leading compression, byte caching, and object caching technologies Accelerate application performance for files, e-mail, Web, SSL, and rich media applications
This document provides a high-level technical description of configurations where a joint Brocade Blue Coat solution can be best applied. Readers should already be familiar with Brocade ServerIron and Blue Coat ProxySG products and have a general understanding of how they function in a typical network. For detailed deployment, installation and configuration procedures refer to the appropriate product documentation, and to the various technical guides associated with this Joint Solutions sales kit.
Page 3 of 17
PLAYBOOK
CACHING SOLUTIONS
Proxy (Explicit Mode) Cache Switching
Explicit Mode requires that the users Internet Explorer is pointed to the IP address of the cache server. With multiple cache servers, the ServerIron is configured with a Virtual IP (VIP) to represent a single point that provides the front end to multiple cache servers. Blue Coat ProxySG cache servers process web queries faster and more efficiently by temporarily storing details about repetitive web queries locally, reducing the number of external inquiries required to process a web query. By limiting the number of queries sent to remote web servers, the overall WAN access capacity required is lessened as is the overall operating cost for WAN access. Brocade ServerIron Application Delivery Controllers increase the reliability of explicit mode caching within a network by supporting redundant web cache server configurations known as web cache server groups, as well as supporting redundant paths to those server groups with the server backup option.
Page 4 of 17
PLAYBOOK
In explicit mode, the users browser must be configured to use the proxy server. For Internet Explorer (IE), the following must be completed in the Tools Menu under Internet Options:
Page 5 of 17
PLAYBOOK
Page 6 of 17
PLAYBOOK
Page 7 of 17
PLAYBOOK
Page 8 of 17
PLAYBOOK
Benefits of using the ServerIron with Blue Coat Proxy SGs in Explicit and Transparent Mode
ServerIron provides several benefits in Explicit and Transparent Mode configurations: Load BalancingServerIron will distribute traffic to the ProxySG cache servers dependant on the balancing scheme used. Transparent Mode uses hashing and Explicit mode will use a predictor Proxy SG Health ChecksServerIron monitors the health of the ProxySG cache servers by performing health checks. If a ProxySG fails the ServerIron removes it from the Cache Group RedundancyIf a failure occurs on one of the cache servers, ServerIron will redirect the traffic to other available cache servers ScalabilityAs the load increases on the cache servers, additional cache servers can be added with no disruption to current traffic Ease of DeploymentServerIron creates a single point-of-entry for the cache servers whether Explicit or Transparent Mode is used SpoofingWith spoofing enabled on the ServerIron, the cache server spoofs the clients IP address instead of using its own IP address when accessing the real server
Page 9 of 17
PLAYBOOK
CONFIGURATIONS
Table 1 Transparent Mode (TCS) configuration on the ServerIron
context default server cache-name SG2 10.98.1.3 port http port http url "HEAD /" port http l4-check-only port ssl port ssl l4-check-only server cache-name SG3 10.98.1.4 port http port http url "HEAD /" port http l4-check-only port ssl port ssl l4-check-only server cache-name SG4 10.98.1.5 port http port http url "HEAD /" port http l4-check-only port ssl port ssl l4-check-only server cache-group 1 hash-mask 255.255.255.255 0.0.0.255 filter-acl 101 cache-name SG2 cache-name SG3 cache-name SG4 ip acl-permit-udp-1024 ip l4-policy 1 cache tcp http global ip route 0.0.0.0 0.0.0.0 10.97.0.1 ! access-list 101 permit tcp any any Note that redundancy and routing configuration has not been added. These configuration parameters will be dependent on the customer implementation.
Page 10 of 17
PLAYBOOK
Page 11 of 17
PLAYBOOK
Page 12 of 17
PLAYBOOK
Benefits of using the ServerIron with Blue Coat Proxy SGs in Standard and Enhanced Mode
ServerIron provides several benefits in Standard and Enhanced Mode configurations: Load BalancingServerIron will distribute the traffic to the ProxySGs using a hashing algorithm, and can also load balance the traffic to the server farm dependant on the predictor used Health ChecksServerIron monitors the health of ProxySGs and real servers found in the server farm. By performing health checks, if a ProxySG or a real server has failed, ServerIron removes it from the Cache Group or VIP respectively RedundancyIf a failure occurs on one of the Proxy SGs or real servers, ServerIron will redirect the traffic to other available ProxySGs or real servers respectively ScalabilityAs load increases on the Proxy SGs or real servers in the server farm, additional Proxy SGs or server farm servers can be added without disruption to the current traffic Ease of DeploymentServerIron creates a single point-of-entry for Proxy SGs and real servers
Page 13 of 17
PLAYBOOK
CONFIGURATIONS
Table 3 Configuration on the ServerIron when using Standard WAN Optimization
server backup ethe 3 0012.f27c.8540 vlan-id 999 server backup-preference 5 ! ! server no-fast-bringup server source-nat server source-nat-ip 192.168.1.50 255.255.255.0 0.0.0.0 port-range 1 server router-ports ethernet 4 ! context default ! server real r1 192.168.1.10 port http port http keepalive port http url "GET /default.aspx HTTP/1.1\r\nHOST: www.contoso.com\r\n\r\n" ! server real r2 192.168.1.11 port http port http keepalive port http url "GET /default.aspx HTTP/1.1\r\nHOST: www.contoso.com\r\n\r\n" ! server real r3 192.168.1.12 port http port http keepalive port http url "GET /default.aspx HTTP/1.1\r\nHOST: www.contoso.com\r\n\r\n" ! ! server virtual vip1 192.168.1.100 predictor least-conn port http bind http r1 http r2 http r3 http ! vlan 1 name DEFAULT-VLAN by port no spanning-tree ! vlan 999 by port untagged ethe 3 no spanning-tree ! aaa authentication web-server default local boot sys fl sec wsm boot sec no enable aaa console hostname SP1 ip address 192.168.1.253 255.255.255.0 ip default-gateway 192.168.1.1 telnet server username admin password ..... Note that routing was not implemented in this configuration, instead transparent or bridged mode (Layer 2) with redundancy was used. Routing can be used and is dependent on the customers requirements.
Page 14 of 17
PLAYBOOK
Page 15 of 17
PLAYBOOK
CONTACTS
Contact adcinquries@brocade.com for further assistance.
DOCUMENTATION RESOURCES
Documentation for ServerIron GT-C Series, GT-E Series, 350, 350 Plus, 450, 450 Plus 850, 850 Plus, 10G, and 4G can be found under the product documentation page at http://www.foundrynet.com/services/documentation/index2.html ServerIron Hardware Installation Guide HTML or PDF (5.8 MB)
This guide provides an overview of the ServerIron GT-C series, GT-E Series, 350 Series, 350 Plus Series, 450 Series, 450 Plus Series, 850 Series, 850 Plus Series, 10G Series, and 4G Series. It includes hardware installation instructions and hardware specifications.
Page 16 of 17
PLAYBOOK
2009 Brocade Communications Systems, Inc. All Rights Reserved. 06/09 GA-PB-00 Brocade, the B-wing symbol, BigIron, DCX, Fabric OS, FastIron, IronPoint, IronShield, IronView, IronWare, JetCore, NetIron, SecureIron, ServerIron, StorageX, and TurboIron are registered trademarks, and DCFM and SAN Health are trademarks of Brocade Communications Systems, Inc., in the United States and/or in other countries. All other brands, products, or service names are or may be trademarks or service marks of, and are used to identify, products or services of their respective owners. Notice: This document is for informational purposes only and does not set forth any warranty, expressed or implied, concerning any equipment, equipment feature, or service offered or to be offered by Brocade. Brocade reserves the right to make changes to this document at any time, without notice, and assumes no responsibility for its use. This informational document describes features that may not be currently available. Contact a Brocade sales office for information on feature and product availability. Export of technical data contained in this document may require an export license from the United States government. Brocade ServerIron and Blue Coat ProxySG Joint Solutions Overview Page 17 of 17