Вы находитесь на странице: 1из 12

SERVERIRON

APPLICATION SWITCHES

Intelligent Layer 4-7 Application Switches


Features ServerIron™Intelligent Application
t Intelligent load balancing,Layer 7 content switching and Switching and Security System with
security for mission-critical applications Internet IronWare® Layer 2 through
t Integrated full-function Layer 2/3 switching and routing 7 Switching
combined with high-performance Layer 4-7 switching Foundry Networks®’award-winning ServerIron Family of
t Support for up to 15,000,000 concurrent sessions,and switches provide high performance Layer 2 through 7 switching,
56 Gbps of throughput enabling network managers to control and manage today’s
t High-availability server load balancing with stateful fail-over exploding IP transactions, IP applications and e-commerce
t Industry’s most powerful content switching,including URL, traffic flows.Internet IronWare,Foundry’s unique software suite
Cookie,XML,HTTP Header,and SSL Session ID of application traffic management capabilities—powers the
based switching ServerIron switches to direct requests to the right server and
t High performance Server,Cache,VPN/Firewall and ISP link application based on the information that resides beyond the
load balancing traditional Layer 2 and 3 packet headers. ServerIron eases
t Wire-speed Gigabit rate protection against Denial of Service escalating application traffic overload, dramatically increases
(DoS) attacks service availability, maximizes utilization, reduces the burden
t Most scalable Global Server Load Balancing (GSLB) with of server farm management, and allows the entire server facility
DNS Proxy and client proximity measurements to scale to meet current and future needs.
t Ease of use and manageability with IronView Network Built on Foundry’s proven IronCore™ and JetCore™
Manager (INM) architectures, ServerIron enables application traffic switching
t Always-on network monitoring with standards-based sFlow based on Layer 2 through Layer 7 definitions.ServerIron delivers
t Superior support for all major streaming media protocols industry-leading performance for Internet traffic management
t Industry’s #1 Layer 4-7 application switch functions, including local and global server load balancing, ISP
with Modular 10 Gigabit Ethernet Support link load balancing,firewall load balancing,and transparent cache
switching. ServerIron’s superior content-switching capabilities

1
include support for up to 256 rules based on URL, HTTP 6. ISP Link Load Balancing (LLB) — Significantly increase
header, XML, cookie and SSL session ID content. Furthermore, Enterprise Internet link utilization and reduce the cost of ISP
ServerIron provides the foundation for high service availability, service without the complexities and limitations of BGP
disaster recovery,location and server transparency,backbone cost routing.Improve bandwidth scalability with optimal capacity
control,and a consistent user experience. utilization based on intelligent traffic switching using key
metrics like service response time and bandwidth price.
ServerIron supports the following major traffic
Achieve load balancing, redundancy and resiliency on
management applications:
business-critical Internet links with a single application.
1. Efficient Server Load Balancing (SLB) — Distribute IP-
based services and transparently balance traffic across multiple
servers while continuously monitoring server,application and Key Benefits
content health.This enhances overall reliability and availability Server and Application Availability
of the services while simultaneously ensuring peak server
ServerIron ensures service availability by offering switch, server,
farm utilization.
link,and session level redundancy.
2. Robust Application Security — Shield server farms and In the event of a server or application outage,ServerIron provides
applications from wire-speed Gigabit rate DoS, DDoS, virus detection and rapid fail-over to the next server in a logical group
and worm attacks while serving legitimate application traffic. that supports a like service. ServerIron detects application error
Improve security using IronShieldTM security suite with conditions such as HTTP “404 – Object not found” before the
support for features like advanced ACLs and sFlow network client sees them and transparently redirects the requests to other
monitoring. servers without any manual intervention.
3. Disaster Recovery and Global Server Load Balancing
(GSLB) — Distribute services transparently across multiple
sites and server farm locations and balance the traffic across Internet

those sites/servers on a global basis while monitoring


site/server and application health. By directing the client to
the best site for the fastest content delivery, ServerIron NetIron 400 OC-3, -12, -48
NetIron 400

enhances overall application availability and reduces FSRP


VRRP

bandwidth costs. Site level redundancy and rapid transparent


failover are supported for disaster recovery. 100-FX 100-FX

1000-SX
1000-SX 1000-SX

4. Firewall Load Balancing (FWLB) — Increase the


ServerIronXL ServerIronXL
network’s overall firewall performance by distributing BigIron
4K

Internet traffic load across multiple firewalls. Overcome


firewall scalability limitations, increase firewall throughput
and performance, and improve firewall resiliency by
eliminating the firewall as a “single point of failure”.
t Figure 1
5. Transparent Cache Switching (TCS) — Eliminate the
need to configure each client browser, improve Internet To provide 100 percent availability, ServerIron includes an
response time, decrease WAN access costs, and increase active-standby or active-active redundancy capability that
overall web caching solution resiliency by balancing web protects against session loss. When enabled, this feature allows
traffic across multiple caches. ServerIron improves service network administrators to establish primary and secondary load
availability by implementing cache health checking and balancing switches to support identical configuration
redirects client requests to the next available cache server or parameters.In active-standby mode,one unit operates while the
directly to the origin server in the event of a cache or server other unit sits as a backup. In active-active mode, both units
farm failure. operate symmetrically. In either situation, each switch
continuously monitors the health of the other. In the event that
2
one device fails, the other switch takes over without losing For enhanced security and performance, ServerIron’s FWLB
sessions or connectivity. ServerIron also supports link-level eliminates firewall bottlenecks and scales firewall
redundancy that ensures server connectivity by automatically implementations by balancing and distributing load across
switching sessions from a failed link to a redundant link. multiple firewalls. With load balancing support for synchronous,
ServerIron’s extensive service health check capability monitors non-synchronous,Network Address Translation (NAT),Layer 2,
Layer 2,Layer 3,Layer 4,and Layer 7 connectivity and services and and Layer 3 firewalls,network administrators can deploy firewalls
determines the servers’ ability to respond to user requests. in the most flexible and reliable manner. ServerIron supports
This ensures fast detection of service problems and eliminates active-standby as well as active-active FWLB configurations.
service outage. ServerIron’s FWLB supports environments built on static or
dynamic routing protocols including RIPV2 and OSPF.
Robust Security
With a rich set of advanced high-performance security features,
the ServerIron acts as the last line of defense for the servers and
applications from malicious clients. Using the superior Internet

performance and advanced security algorithms, the ServerIron


can prevent unauthorized client requests from reaching the
server and therefore substantially improving server availability. NetIron 400
NetIron 400

ServerIron offers the industry’s best and the most advanced


security intelligence as part of the high-performance
IronShieldTM security suite. ServerIron switches protect the ServerIron 400
ServerIron 400

networks, server farms and applications against wire-speed


Gigabit DoS attacks. Only legitimate client traffic is allowed to
pass through to the real servers. With sophisticated and high-
performance URL, cookie, HTTP header and XML content
filtering, ServerIron switches prevent viruses and worms
from spreading to the application infrastructure through
application messages. t Figure 2

Maximum Scalability
Easy to Set Up and Manage
ServerIron supports high port density on both the stackable and
ServerIron is simple to configure and manage using the Foundry
chassis platforms, allowing for support of massive server farms
Command Line Interface (CLI) or built-in Web interface.The
and network devices such as firewalls and caches.
CLI uses well known Cisco-like commands allowing network
TrafficWorks IronWare running on ServerIron simplifies administrative staff to easily configure all Foundry products.
network design by enabling network managers to create a server
In addition, ServerIron’s support for Simple Network
farm, represented by a single IP address known as a Virtual IP
Management Protocol (SNMP) allows device management
(VIP) address. ServerIron appears as a virtual server with a VIP
using applications such as HP OpenView, available on major
address that controls, monitors, and directs client requests to the
server platforms including Sun Solaris,HP-UX,andWindows NT.
most appropriate real server in a server farm. By supporting a
wide selection of intelligent load balancing methods, network Foundry’s IronView NMS application can be used to monitor
administrators can transparently and easily scale server capacity and chart SLB and TCS data polled at regular intervals. Formats
regardless of the server platform. ServerIron delivers these include bar graph, line graph, and pie chart allowing network
benefits without using expensive hardware add-ons or server- managers to easily collect and display detailed information about
side agents. network traffic destined to server farms.Network administrators
can also gauge the amount of traffic between servers and clients,
ServerIron allows ISPs and enterprises to deploy GSLB to
as well as which application is dominating network traffic.
transparently expand server capacity on a worldwide basis by
Extensive accounting and statistics allow network managers to
redirecting service requests across multiple data centers located
easily collect and display detailed information about network
around the world and scale application capabilities to global
proportions. 3
traffic destined to server farms. Network administrators can also typically consumes more bandwidth because it contains the
gauge the amount of traffic between servers and clients,as well as information that the client has asked for,switches directly to the client
which application is dominating network traffic. In addition, on the return path.By avoiding the load-balancing device,Switch
ServerIron tracks the number of active and open sessions per Back provides wire-speed throughput servicing the clients.
server.These statistics can also be used to track traffic loads on t Throughput — The various ServerIron platforms provide
servers that support multiple applications. differentiated system performance and throughput levels from 2 Gbps
with ServerIronXL,right up to 56 Gbps with ServerIron 800/850
ServerIron supports advanced configuration synchronization depending on policies enabled on the ServerIron.
features to minimize configuration errors, and consequently t Session Processing — Foundry leads the industry with real-
network and application downtime. Using the command-by- world session processing capabilities of over 600,000 connection
command and block-by-block synchronization modes, setups per second.
administrators have the flexibility to replicate configuration on t Symmetric Load Balancing — Multiple switches can be deployed
the peer ServerIron in high availability designs at the granularity to increase load-balancing capabilities in parallel and multiply the
they desire without manual repetition. Additionally, ServerIron total connection capacity and overall performance.Also known as an
products are integrated with IronView Network Manager active-active configuration,IronWare’s symmetric load balancing
(INM) to provide comprehensive centralized configuration provides cross-platform fault tolerance,picking up the full load where
the failed switch left off without losing any state information.
management. The INM supports configuration creation,
archival,comparison and tracking of configuration files for all the t Switching Capacity — Built on Foundry’s custom ASIC designs,
ServerIronXL,ServerIron 100 Series,ServerIron 400 and
ServerIrons deployed in a network. Administrators are able to
ServerIron 800 respectively deliver 4.2 Gbps,20 Gbps,128 Gbps
update configurations on multiple ServerIrons with a click of the and 256 Gbps of total switching capacity.ServerIron 450 and 850
button. deliver 128 and 256 Gbps of total switching capacity.
IronClad Application Performance t Trunking for Performance — Trunk groups can be configured
between ServerIron switches,between ServerIron and other
ServerIron delivers unmatched Layer 2 through Layer 7 standards-compliant switches,or between the ServerIron switch and
switching performance.Utilizing the same proven technology of the server to increase overall server farm bandwidth,throughput,
Foundry’s BigIron wire-speed switches, all ServerIron platforms performance,and redundancy. ServerIronXL supports up to five
contain a unique distributed switching fabric and powerful trunk groups containing from two to four 10/100Base TX ports,
packet processing engines to deliver load-balancing capacity of and ServerIron 800 and 850 support up to 22 trunk groups.
over 150,000 Layer 4 connections per second including data t IP Filters — Network managers can define up to 1024 IP filters to
transfer,or 600,000 connection setups per second with no session selectively control SLB and TCS traffic. These dynamic filters,which
loss.As well,ServerIron scales to maintain 15,000,000 concurrent take effect immediately without requiring a reboot,match on source
and destination IP address,network mask,and TCP/UDP port
sessions.This ensures service availability during peak application
information.
traffic load and during massive denial of service attacks.
t Overflow Protection — In the event that the local servers exceed
their maximum capacity,Foundry’s Internet traffic management

Key Features systems can load balance the subsequent requests to remote
server farms.
Exceptional Performance t Massive Server Farms — ServerIronXL supports up to 24
and Capacity 10/100 ports and 2 Gigabit ports,ServerIron 100 Series offers 3
t Industry Leader in Concurrent Session Capacity — ServerIron models with Gigabit or Fast Ethernet copper or fiber ports,
effectively handles over 15,000,000 concurrent connections to ServerIron 800 supports up to 168 10/100BaseTX ports or 56
accommodate more client traffic as the application infrastructure Gigabit ports, ServerIron 850 supports up to 112 Gigabit ports in
experiences growing traffic demands. a single chassis.With support for unlimited Virtual IP addresses,and
up to 2048 real servers,ServerIron switches provide the highest
t Direct Server Return (Switch Back) — Inherently asymmetrical
connectivity to server farms.
nature of streaming media and bulk data applications requires high-
throughput support.The client-to-server traffic flows through the load t High Performance Web Hosting — ServerIron’s many-to-one
balancing device but the return (server-to-client) traffic,which load-balancing features enable network managers to define multiple
VIPs and track service usage by VIP. With this capability,a single
server and port number can load balance multiple web sites across a
shared set of real servers.
4
t Slow Start — To protect the server from a surging flow of traffic at t Scripted — Using scripted health checks,the ServerIron provides a
startup,ServerIron implements a unique slow-start service that allows flexible mechanism to check the health of applications using non-
real servers to gradually accept connections when the server comes up. standard ports.The switch inspects the health check response messages
This is especially useful for SLB implementations using least from the server for user-configured ASCII text that indicates
connections as the load balancing method.Since most servers today application health.
cannot handle more than 2000 new connections per second,this t Boolean — Boolean health checks offer immense flexibility by
feature helps ensure stability when bringing new servers online. allowing to decouple health checking from the ports bound to the
t Cookie Insertion/Deletion — This feature enables transparent Virtual IP. Multiple Boolean health checks may be combined and
application support by allowing the ServerIron to insert cookies into tied to the health of any port on any VIP.
HTTP requests and responses. This allows client/server persistence
even when the application itself does not support cookies. Load Balancing Method
t Server Connection Offload — The ServerIron increases server t Round Robin — Assigns connections sequentially among servers in
performance,availability,response time and security by offloading a logical community.Round robin treats all servers as equal regardless
connection management from the servers.Using persistent HTTP of the number of connections or response time.
1.0 and 1.1 connections to the server,the ServerIron sequentially t Least Connections — Assigns a connection to the server with the
streams large number of client-side connections to a few server-side least number of open connections.This option works well in server farms
connections.Connection offload allows the servers to focus on mission- which have groups of servers with dissimilar performance capabilities.
critical high-performance application service delivery.In addition to Least connections ensures adequate distribution and avoids
the performance gain,the servers also get protection against DoS, server overload.
virus and worm attacks from hackers because the servers never directly t Weighted Percentage — Allows managers to assign a performance
interact with the clients for connection management. weight to each server.Use weighted percentage to ensure that those
t Maximum Connections— Used to protect servers from bogging servers capable of processing connections faster receive the largest
down due to high amounts of Internet traffic,this feature allows number of connections.
administrators to limit the number of concurrent connections handled t Response Time — Directs requests to the server providing the best
by a particular server and ensures that the traffic does not outpace the response time.Response time measurements include the network
performance of the server. latency and the response time for the application-level health checks.
t Enterprise Application Support — ServerIron can be deployed in t Combined Response Time and Least Connections — Directs
many Enterprise environments where IP-based applications are used, requests to a server based on the server and application response time,
including the popular applications like Oracle,BEA WebLogic,IBM and the number of active connections on the server.
WebSphere,PeopleSoft and Siebel. ServerIron supports custom t Bandwidth and Weighted Bandwidth — Load balances between
features for load balancing and persistence for these applications. servers based on the amount of bandwidth processed by each real
Additionally,the ServerIron support includes VoIP,where load server in a given duration of time.Sampling interval and duration
balancing and fault tolerance can be provided for IP PBXs,as well as for bandwidth measurements are user configurable.Using weighted
database environments,CRM systems,and popular financial and bandwidth assigns greater weight to most recent samples,or to
production management systems. more potent servers to deliver the highest server performance
Server and Application Health and scalability.
Checks t Cookie Switching — This feature directs HTTP requests to a
t Layer 3 — Upon configuration,ServerIron immediately and server group based on information embedded in a cookie in the
automatically health checks the server via ARP and ping to HTTP header.The next time the client requests information from
determine whether the server is ready for operation.If problems the server,the cookie specifies which server group should handle the
arise,ServerIron can automatically take corrective action. request.Cookie switching ensures that a particular server group
always handles requests from a particular client,even across sessions,
t Layer 4 — When the network manager binds an application
thereby guaranteeing client persistence and a more satisfying
(TCP/UDP port) on a real server to an application on a virtual
end-user experience.
server, ServerIron performs a Layer 4 health check,which the server
must pass. This guarantees that clients do not hit “dead”servers. t URL Switching — ServerIron directs HTTP requests to a server
or group of servers,using information contained inside the text of
t Layer 7 — With health checking enabled for a service (TCP /UDP
a URL string.URL switching grants the network administrator
port),ServerIron can perform a Layer 7 application-specific health
greater control over the web site deployment to place different web
check immediately after successful completion of the Layer 4 health
content on different servers,thereby eliminating the constraint of
check.These include the following:HTTP,DNS,SMTP,
duplicating all content across all load-balanced real servers.
POP3,LDAP,NNTP,IMAP4,FTP,Telnet,RADIUS,
and others.
5
t URL Hashing — Using this feature enables ServerIron to examine t Enhanced NAT — Unique to Foundry Networks,ServerIron’s
information in the HTTP request (either the Cookie header or the generic NAT supports generic UDP,TCP,and ICMP applications
URL string) and internally map this information to one of the real as well as active and passive FTP,Windows™ Media,RealAudio,
servers bound to the virtual server.This HTTP request and all future Real Video,RealMedia,and QuickTime protocols
HTTP requests that contain this information then always go to the t Transaction Rate Limiting™ — ServerIron protects real servers
same real server. against malicious attacks from high-bandwidth users by allowing
t URL Parsing — Selects a real server or a group of servers by administrators to configure a threshold for the rate of incoming
looking at the prefix or suffix of the URL or by applying a pattern- connections per user.
matching expression to the entire URL.ServerIron supports up to t SYN-Guard ™ — ServerIron protects server farms against multiple
256 URL rules and imposes no limit on the URL length examined. forms of Denial of Service (DoS) attacks,such as TCP SYN attacks,
t SSL Session ID Switching — SSL (Secure Socket Layer) is a by monitoring and tracking session flows.Only valid connection
protocol for secure World Wide Web connections used to protect requests are sent to the server.This capability combined with the
confidential information with server authentication,data encryption ability to support over 15 million concurrent connections protects
and message integrity.In order for SSL to work,all the SSL against the hijacking of server resources by malicious users and
connections between a client and server must reach the same host. ensures connectivity for genuine clients.Using the SYN-Cookie
ServerIron ensures that all the traffic for an SSL transaction with a feature,the ServerIron forwards only completed client connections
given SSL ID always goes to the same server.It is a “must have” to the servers.
feature for commerce,financial,and shopping-cart based web sites. t High Performance Access Control Lists (ACLs) and Extended
t HTTP Header Switching — Directs client requests to the ACLs — By using ACLs,network administrators can restrict access
appropriate group of servers by reading deep into the contents of the to specific applications from a given address or subnet. Filters can be
HTTP header.For example,using the language code embedded in easily set to deny access to servers by any particular port or VIP
the header,the ServerIron sends the client request to the group of address.For example,a network administrator can deny FTP traffic
servers providing content for a specific language.The HTTP protocol to a particular address.Conversely,filters can be set to allow access by
header has fields that carry valuable information that can assist in a subset of users or subnets.
further optimizing server utilization and increasing server scalability. t Cisco-syntax ACLs — ServerIron supports Cisco-syntax ACLs,
t XML Switching — XML has emerged as a dominant standard for which network administrators can easily cut/copy/ paste from their
exchanging information between applications in the Internet.The existing Cisco products to drop them right into the ServerIron
ServerIron provides intelligent Layer 7 switching based on XML configuration for the ultimate in portability and security.
tags and attributes embedded in XML documents encapsulated in
SOAP and HTTP messages.Load balancing,persistence and Session Persistence for
content filtering are supported with XML switching rules.
Web Application Transactions
t Advanced Rules Engine —The ServerIron supports the industry’s t Internet IronWare maintains up to seven different methods of
most comprehensive rules engine that gives maximum flexibility to persistence to ensure that shopping-cart type applications and long-
the customers in defining and applying Layer 4-7 switching rules to running transactions proceed accurately.When combined with the
a rich set of application content.Switching rules are not limited to ability to handle over 15 million concurrent sessions,ServerIron
one type of content or protocol,and can be combined for maximum provides the industry’s best persistence methods to build high-
flexibility and scalability. performance networks for e-commerce.
t Port Tracking — Some web applications define a lead port and
IronShield™ Security follower ports.ServerIron ensures that all connections to the follower
t Intelligent TCP and UDP Connection Rate Limiting — ports arrive at the same server as the lead port connection.For
ServerIron further protects server farms,firewalls and cache servers by example,if SSL traffic follows HTTP traffic,the network
controlling the rate of TCP and UDP connections on an application administrator often defines the SSL port as the follower port
port basis.Controlling the rate of new connections that each device to the HTTP port.This ensures that both types of traffic arrive
receives ensures availability despite increased levels of activity due to at the same server for a given customer.
DDoS attacks or surges in user access. t Sticky Ports — ServerIron supports a wide variety of “sticky”
t Network Address Translation (NAT) — Using ServerIron’s connections,including those where applications require that the client
bi-directional NAT,network administrators can assign real servers request for additional TCP/UDP ports always go to the same real
internal non-routable private addresses to enhance security and server,to the server using arbitrary port numbers,or to the server using
conserve address space.ServerIron also supports NAT functionality sequential TCP/UDP ports.
for environments where the real servers reside in different subnets.
This translates to complete network design flexibility when laying
out server farms.
6
t Additional Persistence Methodologies — ServerIron supports t Graceful Shutdown — ServerIron allows you to gracefully remove
many other types of persistence based on a large range of user a server from the load balancing rotation without disrupting any
programmable options,including Source IP/VIP/Port,Source existing session.This increases site stability when upgrading or
IP/VIP,and SSL Session ID. repairing servers.
t Mega Proxy Server Persistence — Network managers can t SNMP Reporting — ServerIron reports SNMP traps and events
configure ServerIron to treat a range of source IP addresses as a single to the specified trap receiver and can send those management
source to solve the persistence problem caused by certain mega proxy messages to up to six different Syslog servers.
sites in the Internet.
t Comprehensive Session Persistence — ServerIron expands www.foundrynet.com

upon simple cookie-based switching by including support for Source New York

IP based persistence.When configured for cookie-based persistence, ServerIron


B
ServerIron uses Source IP-based session persistence if there is no
cookie present.This provides a superior level of session persistence
San Jose
over other vendor implementations. Proximity Authoritative DNS
7 and Load
Round Trip Time Conditions
1. San Jose
High Availability Services 2. New York
www.foundrynet.com

t Remote Backup Servers — If no local servers or applications are 6


Local
DNS
5
ServerIron
A
3

available,ServerIron sends client requests to remote servers.The


1 2 4
remote server can be another server farm managed by another DNS 1. New York
Client Request/ 2. San Jose
ServerIron or just another group of real servers.By defining multiple Denver
Response

remote servers,ServerIron will load balance the traffic among them


using the selected load balancing method. t Figure 3
t HTTP Redirect — ServerIron can also use HTTP redirect to send
traffic to remote servers if the requested application is not available on
Disaster Recovery and Global
Server Load Balancing
the local server farm.
t Active/Standby — When deployed in active-standby mode,the ServerIron redirects client traffic globally by site availability, site
standby ServerIron will assume control and preserve the state of load, and site response time. ServerIron also measures client/
existing sessions in the event the primary load-balancing device fails. server proximity as defined by round trip delay and geographic
Configuration common to the two ServerIron switches can be location. All these features can work in conjunction with the
automatically synchronized to avoid manual replication. network’s existing DNS servers and results in minimizing
t Active/Active — When deployed in active-active mode,both network disruption when implementing GSLB. ServerIron
ServerIron switches work simultaneously and provide a backup for continually monitors the sites to detect any changes in servers or
each other while supporting stateful fail-over.Configuration common services due to varying health and traffic conditions.
to the two ServerIron switches can be automatically synchronized to
Configurable site load thresholds enable network administrators
avoid manual replication.
to fine tune the health checking parameters to best suit the site’s
t Quality of Service — Network administrators can prioritize traffic
server and service capabilities.[See Figure 3]
based on ports,MAC,VLAN,and 802.1p attributes,as well as
by service port and application type;for example,ServerIron can FlashBack™, a unique Foundry Internet traffic management
grant priority to HTTP traffic over FTP. feature, measures response time between the authoritative DNS
t Redundant Power Supplies — ServerIronXL supports an site and each data center.ServerIron actually computes proximity
optional built-in redundant power supply and ServerIron based on the round trip time between the different global sites
800/850 support multiple (up to three additional) hot-swappable and uses these measurements as a benchmark to determine site
power supply options.ServerIron 100,400 and 450 support dual responsiveness and the site’s range to the client.
hot-swappable power supplies.
In addition,ServerIron uses geographic site selection to keep the
Ease Server Farm Management requests within continental domains. ServerIron constantly
t Mix and Match Servers — ServerIron increases network design monitors application traffic to create a knowledge base that
flexibility and investment protection for existing resources by enables a more intelligent GSLB methodology, powering
allowing for application distribution on different servers based on smarter site selection criteria. ServerIron handles server farm
performance requirements,with dynamic adjustment and without outages or overloads even after the DNS lookup by automatically
interruption of service. triggering HTTP redirection or implementing remote server
load balancing.ServerIron GSLB provides the following: 7
t Acts as a DNS proxy to transparently intercept and modify the
DNS responses,thereby directing customers to the best site.
t Handles server farm outage or overload after the DNS lookup by
HTTP redirect or remote server load balancing.
t Leverages the existing DNS server and minimizes disruption to
Web Server Farm
the existing DNS environment.
Static Dynamic
t Provides continuous site monitoring to detect changes in site Content Content

health conditions.
Cache
t Allows the network administrator to tune individual site load
thresholds through configurable settings. Web Server Farm
t Monitors and selects sites based on FlashBack speed,which
measures performance using site,server and application t Figure 4
responsiveness.
t Adds an evolutionary knowledge based in the global server load ServerIron switches provide the industry’s most powerful
balancer that enables smarter site selection as more clients access content-aware cache switching features to build intelligent
the site. content networks that route traffic based on content rather than
t Grants the network administrator the ability to tune ServerIron just IP addresses.The ServerIron TCS application includes the
settings and ensure that minimal differences in various site metrics following content-switching features:
do not affect site selection.
t Intelligent load balancing of caches to eliminate content duplication,
Foundry offers another unique Internet application increase cache-hit ratio,and improve the Internet response time.
management feature called “Global IP”. Working alongside t Accelerate delivery of dynamic content and optimize the cache
Foundry Layer 3 switches (BigIron® and NetIron®) and powered utilization by bypassing the caches automatically for dynamic content.
by unique VIP health checking algorithms, Global IP injects t Specify content-based rules to determine what content should
routes to client application services based on regional data center be cached.
server-farm health and provides GSLB capability without t Organize caches into logical groups that serve different content to
relying on the DNS protocol.This enables ISPs and enterprises provide differentiated service offerings to content providers.
to instantaneously build networking infrastructures on a global
basis and offer ready-to-go differentiated services to customers
for multi-site deployments.

Transparent Cache Switching


ServerIron switches improve Internet response time and
decrease WAN access costs by redirecting web traffic destined
for remote Internet hosts to local cache servers. Foundry’s
Transparent Cache Switching (TCS) can be used with any cache
server that supports transparent redirection, including those
from leading vendors such as Blue Coat, Cobalt, Compaq, Dell,
Inktomi (aYahoo company),Network Appliance,and Novell.
Foundry’s TCS offers network managers a resilient web caching
solution that significantly simplifies administration. Unlike
proxy server solutions that require manual configuration of each
client’s browser,ServerIron transparently intercepts and switches
HTTP client requests to an available cache server without
reconfiguring the client’s browser. Network administrators can
configure the device to switch traffic based on source and
destination IP address.[See Figure 4]

8
Technical and Physical Specifications
Load Balancing Protocol Standards Web-based GUI
Methods Support Compliance Telnet
Least connections TCP 802.3,10BaseT SNMP
Response time UDP 802.3u 100BaseTX, RMON
Response time + least connections SSL 100BaseFX IronView Network Manager
Round robin FTP 802.3z 1000BaseSX (INM)
Weighted distribution Telnet 802.3z 1000BaseLX HP OpenView
Bandwidth and Weighted Bandwidth SMTP 802.3x Flow Control
HTTP 802.1qVLAN Tagging Warranty
Layer 2 Switching IMAP4 802.1d Bridging 1 year hardware
Capabilities LDAP 802.3 Ethernet Like MIB 90 days software
32,000 MAC addresses NNTP Repeater MIB Upgrades to higher
802.1d Spanning Tree Protocol POP3 Ethernet Interface MIB levels available
802.1p prioritization DNS SNMPV1
Policy-basedVLANs BootP SNMP MIB II Mounting Options
Port-basedVLANs TFTP 19" Universal EIA
Layer 3 protocolVLANs SNMP Network (telco) Rack
Layer 3 protocol and subnetVLANs VRRP/VRRPe Management Tabletop
802.1qVLAN tagging IPSec Integrated Command Line
RADIUS Interface
VoIP SSH

ServerIronXL ServerIron 100 ServerIron 400/450 ServerIron 800/850


Series
Concurrent sessions 1,000,000 5,000,000 15,000,000 15,000,000
Throughput 2 Gbps 10 Gbps 56 Gbps 56 Gbps
Switching capacity 4.4 Gbps 20 Gbps 128 Gbps 256 Gbps
Packet forwarding rate 3,000,000 pps 48,000,000 pps 48,000,000 pps 84,000,000 pps
Number of Virtual IP addresses Unlimited Unlimited Unlimited Unlimited
Number of real servers 1,024 2,048 2,048 2,048
Number of 10/100 ports 24 24 72 168
Number of Gigabit ports 2 10 48 112
Total number of ports 26 24 72 168
Layer 3 switching capabilities Supports servers OSPF, RIPv2, Supports OSPF, RIPv2, Supports OSPF, RIPv2, Supports
on different subnets servers on different servers on different servers on different
from that of Virtual subnets from that of subnets from that of subnets from that of
IP address Virtual IP address Virtual IP address Virtual IP address
Physical dimensions 2.75" h x 17.5" 8.75" h x 17.5" 8.75" h x 17.5" 20.75" h x 17.5"
w x 16.75" d w x15" d w x 15" d w x15.25" d
(6.7 cm x 44.5 (22.2 cm x 44.5 (22.2 cm x 44.5 (52.7 cm x 44.5
cm x 42.2 cm) cm x 38.1 cm) cm x 38.1 cm) cm x 38.7 cm)
Weight 18–22 lbs Not to exceed 60 lbs 60 lbs fully loaded 117 lbs fully loaded
(8–10 kg) (29.9 kg) (29.9 kg) (43.7 kg)
Power requirements 110v/220v Single (1) Power Supply: 4-slot Chassis with Single 8-slot Chassis with Single
auto-sensing Input Voltage and Current (1) Power Supply: (1) Power Supply:
Power Supply Rating— InputVoltage and Current InputVoltage and Current
70 to -40 VDC: 17A 100 Power Supply Rating -70 Power Supply Rating -70
to 120 VAC (auto-ranging): to -40 VDC: 17A 100 to -40 VDC: 17A 100
8A 200 to 240 VAC to 120 VAC (auto-ranging): to 120 VAC (auto-
(auto-ranging): 4A AC 8A 200 to 240 VAC ranging): 8A 200 to 240
line frequency: 47–63 Hz (auto-ranging): 4A AC VAC (auto-ranging): 4A
line frequency: 47–63 Hz AC line frequency:47–63 Hz

9
Ordering Information
Part Number Description
ServerIron 450 and 850 Base Platforms
SI450 4-slot chassis equipped with WSM6 (Web Switching Management Module) that automatically aligns itself with up to three
additional JetCore based line modules installed in the chassis for high-performance Layer 4-7 switching applications
SI450-DC 4-slot –48V DC chassis equipped with WSM6 (Web Switching Management Module) that automatically aligns itself with up to
three additional JetCore based line interface modules installed in the chassis for high-performance Layer 4-7 switching applications
SI850 8-slot chassis equipped with WSM6 (Web Switching Management Module) that automatically aligns itself with up to seven
additional JetCore based line modules installed in the chassis for high-performance Layer 4-7 switching applications
SI850-DC 8-slot –48V DC chassis equipped with WSM6 (Web Switching Management Module) that automatically aligns itself with up to
seven additional JetCore based line modules installed in the chassis for high-performance Layer 4-7 switching applications
S450 4-slot ServerIron 450 chassis with single AC power supply
S450-DC 4-slot ServerIron 450 chassis with single –48V DC power supply
S450-S 4-slot ServerIron 450 SPARE chassis, NO Power supply
S850 8-slot ServerIron 850 chassis with single AC power supply
S850-DC 8-slot ServerIron 850 chassis with single –48V DC power supply
S850-S 8-slot ServerIron 850 SPARE chassis, NO Power supply
ServerIron 450 and 850 Module Options
J-B48E 48-port 10/100Base-TX (RJ45) double-wide JetCore line Module
J-BxG 8-port 1000Base-X (mini-GBIC) JetCore line Module
J-B16GC 16-port 100/1000Base-T (RJ45) JetCore line Module
J-B16Gx 16-port 1000Base-X (mini-GBIC) JetCore line Module
ServerIron 450 and 850 System Options
WSM6 Web Switch Management Module (WSMM) II. Use this to order replacement or for inventory of a backup WSMM.
TRFWRKS-PREM Premium Layer 2 Switching, Layer 3 Routing, & Layer 4-7 Traffic management software
ServerIron 450 and 850 Gigabit Optic Upgrades
LHA 1-port 1000Base-LongHaul (SC) series A Gigabit uplink for 70km maximum reach with 9 or 10µm SMF and minimum 10dB
attenuation—specify SX to LHx upgrade quantities
LHB 1-port 1000Base-LongHaul (SC) series B Gigabit uplink for 150km maximum reach with 9 or 10µm SMF and minimum 10dB
attenuation—specify SX to LHx upgrade quantities.
ServerIron 450 and 850 Mini GBIC Options
E1MG-SX 1000Base-SX mini-GBIC optic, MMF, LC connector
E1MTG-SX 1000Base-SX mini-GBIC optic, MMF, MTRJ connector
E1MG-LX 1000Base-LX mini-GBIC optic, SMF, LC connector
E1MG-LHA 1000Base-LHA mini-GBIC optic, SMF, LC connector
E1MG-LHB 1000Base-LHB mini-GBIC optic, SMF, LC connector, 150km Maximum reach
E1MG-TX 1000BASE-TX Mini-GBIC Copper, RJ-45 Connector
ServerIron 400 and 800 Base Platforms
SI400 4-slot chassis equipped with WSMM—high-performance application switching module
SI400-DC 4-slot chassis equipped with WSMM—high-performance application switching module and –48V DC power
SI800 8-slot chassis equipped with WSMM—high-performance application switching module
SI800-DC 8-slot chassis equipped with WSMM—high-performance application switching module and –48V DC power
S400 4-slot ServerIron chassis with single AC power supply
S400-DC 4-slot ServerIron chassis with single–48V DC power supply
S400-S 4-slot ServerIron SPARE chassis with NO power supply
S800 8-slot ServerIron chassis with single AC power supply
S800-DC 8-slot ServerIron chassis with single –48V DC power supply
S800-S 8-slot ServerIron SPARE chassis with NO power supply
ServerIron 400 and 800 Module Options
BxG-A 8-port 1000Base-X (mini-GBIC) ServerIron IronCore module
B2G-A 2-port 1000Base-SX (SC) for 50 or 62.5µm MMF ServerIron IronCore module
B4G-A 4-port 1000Base-SX (SC) for 50 or 62.5µm MMF ServerIron IronCore module
B8G-A 8-port 1000Base-SX (SC) for 50 or 62.5µm MMF ServerIron IronCore module
B8GC 8-port 1000Base-T (RJ45) ServerIron IronCore module
B24E-A 24-port 10/100Base-TX (RJ45) ServerIron IronCore module
B24FX 24-port 100Base-FX (MTRJ) for 50 or 62.5µm MMF ServerIron IronCore module
ServerIron 400 and 800 System Options
WSM4 ServerIron 400/800 Web Switch Management Module. Use this to order replacement or for inventory of a backup Web Switch
Management module.
TRFWRKS-PREM Premium Layer 2 Switching, Layer 3 Routing, & Layer 4-7 Traffic management software
ServerIron 400 and 800 Gigabit Optic Upgrades
LHA 1-port 1000Base-LongHaul (SC) series A Gigabit uplink for 70km maximum reach with 9 or 10µm SMF and minimum 10dB
attenuation—specify SX to LHx upgrade quantities
LHB 1-port 1000Base-LongHaul (SC) series B Gigabit uplink for 150km maximum reach with 9 or 10µm SMF and minimum 10dB
attenuation—specify SX to LHx upgrade quantities.

10
ServerIron 400 and 800 Mini GBIC Options
E1MG-SX 1000Base-SX mini-GBIC optic, MMF, LC connector
E1MTG-SX 1000Base-SX mini-GBIC optic, MMF, MTRJ connector
E1MG-LX 1000Base-LX mini-GBIC optic, SMF, LC connector
E1MG-LHA 1000Base-LHA mini-GBIC optic, SMF, LC connector
E1MG-LHB 1000Base-LHB mini-GBIC optic, SMF, LC connector, 150km Maximum reach
E1MG-TX 1000BASE-TX Mini-GBIC Copper, RJ-45 Connector
ServerIron 100 Base Platforms
SI-100-2402 24-port 10/100Base-TX (RJ45) ServerIron IronCore module and 2 port 1000Base-SX (SC) for 50 or 62.5µm MMF ServerIron
IronCore module (DC Power)
SI-100-2402-DC 24-port 10/100Base-TX (RJ45) ServerIron IronCore module and 2 port 1000Base-SX (SC) for 50 or 62.5µm MMF ServerIron
IronCore module (DC Power)
SI-100-8GC02F 8-port 1000Base-T (RJ45) ServerIron IronCore module and 2-port 1000Base-SX (SC) for 50 or 62.5µm MMF ServerIron IronCore module
SI-100-8GC02F-DC 8-port 1000Base-T (RJ45) ServerIron IronCore module and 2-port 1000Base-SX (SC) for 50 or 62.5µm MMF ServerIron IronCore
module (DC Power)
SI-100-8G 8-port 1000Base-X (mini-GBIC) ServerIron IronCore module. GBICs required
SI-100-8G-DC 8-port 1000Base-X (mini-GBIC) ServerIron IronCore module. GBICs required (DC Power)
ServerIron 100 System Options
WSM4-100 ServerIron 100 Web Switch Management Module. Use this to order replacement for the management module in SI-100 configurations.
SI-100-TW-PREM Enhanced version of Trafficworks IronWare for the SI 100 series that includes Global Server Load Balancing (GSLB)
ServerIron 100 Gigabit Optic Upgrades
LHA 1-port 1000Base-LongHaul (SC) series A Gigabit uplink for 70km maximum reach with 9 or 10µm SMF and minimum 10dB
attenuation—specify SX to LHx upgrade quantities
LHB 1-port 1000Base-LongHaul (SC) series B Gigabit uplink for 150km maximum reach with 9 or 10µm SMF and minimum 10dB
attenuation—specify SX to LHx upgrade quantities.
ServerIron 100 Mini GBIC Options
E1MG-SX 1000Base-SX mini-GBIC optic, MMF, LC connector
E1MTG-SX 1000Base-SX mini-GBIC optic, MMF, MTRJ connector
E1MG-LX 1000Base-LX mini-GBIC optic, SMF, LC connector
E1MG-LHA 1000Base-LHA mini-GBIC optic, SMF, LC connector
E1MG-LHB 1000Base-LHB mini-GBIC optic, SMF, LC connector, 150km Maximum reach
E1MG-TX 1000BASE-TX Mini-GBIC Copper, RJ-45 Connector
ServerIronXL Base Platforms
FCSLB16 16-port 10/100Base-TX (RJ45) ServerIron XL with one expansion slot
FCSLB24 24-port 10/100Base-TX (RJ45) ServerIron XL with one expansion slot
FCSLB16-I (International Orders Only) 16-port 10/100Base-TX (RJ45) ServerIron XL with one expansion slot
FCSLB24-I (International Orders Only) 24-port 10/100Base-TX (RJ45) ServerIron XL with one expansion slot
FCSLB16DC 16-port 10/100Base-TX (RJ45) ServerIron XL with one expansion slot and –48VDC power supply
FCSLB24AC 24-port 10/100Base-TX (RJ45) ServerIron XL with one expansion slot and –48VDC power supply
ServerIronXL System Options
U1GC 1-port 1000Base-T (RJ45) copper Gigabit uplink
U2GC 2-port 1000Base-T (RJ45) copper Gigabit uplink
RPS Redundant auto-switching 90-240v AC power supply for ServerIron XL 16/24 port only
RPS-I (International Orders Only) Redundant auto-switching 90-240v AC power supply for ServerIron XL 16/24 port only
RPSDC-FC -48VDC power supply for ServerIron XL 16/24 only and is a factory configuration only
F2100F 2-port 100Base-FX MMF (SC) uplink
F1GE 1-port 1000Base-SX (SC) Gigabit uplink for 50 or 62.5 um MMF
F2GE 2-port 1000Base-SX (SC) Gigabit uplink for 50 or 62.5 um MMF
FLX1GE 1-port 1000Base-LX (SC) Gigabit uplink for 9 or 10 um SMF
FLX2GE 2-port 1000Base-LX (SC) Gigabit uplink for 9 or 10 um SMF
FLXSXGE 2-port Gigabit uplink with 1-port 1000Base-SX (SC) and 1-port 1000Base-LX (SC) for 50 or 62.5 um MMF and 9 or 10 um SMF
FLHA1G 1-port 1000Base-LogHaul (SC) series A Gigabit uplink for 70 km maximum reach with 9 or 10 um SMF and minimum 10 db attenuation
FLHA2G 2-port 1000Base-LogHaul (SC) series A Gigabit uplink for 70 km maximum reach with 9 or 10 um SMF and minimum 10dB attenuation
FLHB1G 1-port 1000Base-LongHaul (SC) series B Gigabit uplink for 150 km maximum reach with 9 or 10 um SMF and minimum 10dB attenuation
FLHB2G 2-port 1000Base-LongHaul (SC) series B Gigabit uplink for 150 km maximum reach with 9 or 10 um SMF and minimum 10 dB attenuation
ServerIronXL GBIC Options
LHA 1-port 1000Base-LongHaul (SC) series A Gigabit uplink for 70 km maximum reach with 9 or 10 um SMF and minimum 10dB attenuation—
specify SX or LHx upgrade quantities
LHB 1-port 1000Base-LongHaul (SC) series B Gigabit uplink for 150 km maximum reach with 9 or 10 um SMF and minimum 10dB attenuation—
specify SX or LHx upgrade quantities

Specifications subject to change without notice.

11
Foundry Networks, Inc. U.S.and Canada Toll-free:
Corporate Headquarters 1-888-TURBOLAN (887-2652)
2100 Gold Street Tel:+1 408.586.1700
P.O.Box 649100 Fax:+1 408.586.1900
San Jose,CA 95164-9100 info@foundrynet.com
www.foundrynetworks.com

Although Foundry has attempted to provide accurate information in these materials, Foundry assumes no legal responsibility for the accuracy or
completeness of the information.More specific information is available on request from Foundry.Please note that Foundry’s product information does
not constitute or contain any guarantee,warranty or legal binding representation,unless expressly identified as such in duly signed writing.

© 2004 Foundry Networks, Inc.All Rights Reserved. Foundry Networks, BigIron, FastIron, NetIron, ServerIron, IronPoint,
Terathon, JetCore, EdgeIron, IronView, JetScope, IronShield, MetroLink, IronWare,TrafficWorks, Power of Performance and
the ‘Iron’ family of marks are trademarks or registered trademarks of Foundry Networks, Inc. in the United States and other 12
countries.All others are trademarks of their respective owners. DS-004/Rev.5/06-04