F5 Networks Traffic Management by Design: Presented By: Jürg Wiesmann Field System Engineer, Switzerland
F5 Networks Traffic Management by Design: Presented By: Jürg Wiesmann Field System Engineer, Switzerland
F5 Networks Traffic Management by Design: Presented By: Jürg Wiesmann Field System Engineer, Switzerland
Presented by:
Jürg Wiesmann
Field System Engineer, Switzerland
jü[email protected]
2
Company Snapshot
Leading provider of solutions
that optimize the security,
performance & availability of
IP-based applications
?
Application
Application
More
Bandwidth
A Costly Patchwork
Users Point Solutions Applications
DoS Protection
Mobile Phone
IPS/IDS SSL Acceleration
SFA
Rate Shaping/QoS CRM
CRM ERP
PDA
WAN Connection
Traffic Compression
Optimization
Desktop
SFA
Application Firewall
Custom
Application
Co-location
8
CRM
Database
Siebel
PDA BEA
Legacy
.NET
SAP
Laptop PeopleSoft
IBM
ERP
SFA
Custom
Desktop
TMOS
Co-location
10
TMOS
Users Applications
BIG-IP
Global BIG-IP BIG-IP Local BIG-IP BIG-IP
Link WANJet FirePass Application
Traffic Traffic Web
Manager Controller Manager Accelerator Security
Manager
Enterprise Manager
11
F5 Networks
Remote Access Today
Presented by:
Jürg Wiesmann
Field System Engineer, Switzerland
jü[email protected]
12
Current Issues
Unreliable access
Mobile Workforce Worm/virus propagation
High support costs
Any Devices
Laptop Highly Available
Kiosk Global LB
Home PC Stateful Failover
PDA/Cell Phone Disaster Recovery
Secure
Ease of
Data Privacy
Integration
Device Protection
Network Protection AAA Servers
Ease of Use
Granular App Access Directories
Clientless
Instant Access
Simple GUI
Detailed Audit Trail
16
Any Devices
Laptop Highly Available
Kiosk Global LB
Home PC Stateful Failover
PDA/Cell Phone Disaster Recovery
Secure
Ease of
Data Privacy
Integration
Device Protection
Network Protection AAA Servers
Ease of Use
Granular App Access Directories
Clientless
Instant Access
Simple GUI
Detailed Audit Trail
18
FirePass Overview
®
Portal
Access
Secured by
SSL
Laptop
FirePass
® Specific
Internet Application
Kiosk Access
Standard browser
– Access to applications
from anywhere
Select application
– Shortcuts automate
application connections
No preinstalled client
software required
– All access via a web
browser
20
Access Types
Network Access
Application Access
– Application Tunnels
– Terminal Server
– Legacy Hosts
– X Windows
Portal Access
– Web Applications
– File Browsing (Windows, Unix)
– Mobile E-Mail
Desktop Access (Webtop)
21
Kiosk Corporate
Policy Mini Browser Policy
Policy
Cache/Temp File Firewall/Virus
Cleaner Check
Client/Server
Application
Full Network
Terminal Files Intranet Email
Servers
23
Full
FirePass Network
®
Quarantine
Network
Please update
your machine!
24
Results
Over 50% faster access
Supports compression
for any IP application
Faster email & file
access
Works across both dial-
up and broadband
26
30 Minute Install
NEW
Quick Setup enables rapid installation and setup even for non-experts
28
FirePass
®
Internet
Web
Servers
Application Security
Web
ICAP Servers
AntiVirus
FirePass
®
Internet
Product Lines
31
FirePass Failover
Redundant pair
– Stateful failover provides
uninterrupted failover for most
Internet applications (e.g. VPN
connector)
Single management point
Hot standby
– Active unit is configured
Active
– Configuration and state
information is periodically
synchronized
Separate SKU
Intranet application servers – Active unit determines software
configuration and concurrent
users
33
Summary of Benefits
Increased productivity
– Secure access from any
device, anywhere
– No preinstalled VPN clients
Reduced cost of ownership
– Lower deployment costs
– Fewer support calls
Improved application security
– Granular access to corporate resources
– Application layer security and audit trail
37
38
40
Partnerships
F5 Services
SERVICES & SUPPORT CERTIFIED GLOBAL TRAINING PROFESSIONAL SERVICES
F5 Networks Globally
Seattle
EMEA
Japan
APAC
International HQ – Seattle
Regional HQ / Support Center
F5 Regional Office
F5 Dev. Sites –Spokane, San Jose, Tomsk, Tel Aviv,
Northern Belfast
44
F5 Networks
Message Security Module
Presented by:
Jürg Wiesmann
Field System Engineer, Switzerland
jü[email protected]
45
DMZ
Firewall
Messaging
Security Email Servers
50
X
X
X
Terminating
X 70% of the
Spam from the
X “e hello” Filters out 10%
to 20% of Spam
X
X
51
Why TrustedSource?
Industry Leader
– Solid Gartner reviews & MQ
– IDC market share leader
Superior technology
Stability
52
TrustedSource
GLOBAL DATA MONITORING AUTOMATED ANALYSIS
Messages Analyzed
IntelliCenter per Month
• 10 Billion Enterprise
• 100 Billion Consumer
London
Portland
Atlanta
Hong Kong
Brazil
Dynamic Computation
Of Reputation Score
Bad Good
♦ 11/03/05: Anti-virus
signatures were
available to protect
against Bagle
Image-based spam
Hashbusting
Scratches
58
Summary of Benefits
Error Msg
for clean termination
Animation slide
61
85%
Percent Spam
70%
35%
30%
25%
Percent of Total Email
20%
15%
10%
5%
0%
rd h h h t h h h h h h
5th 3 10t 17t 24t 31s 28t 6t 2nd 9t 2t 6t 9t 3r
d
r y l 2 g ct t 1 t 1 t 1 t 2
Ap M
a ay ay ay ay Ju
n
Ju Au O O
c
O
c
O
c
O
c
M M M M
2006
63
Backup Slides
Firepass
65
Key Features
– Transparent secure logon to
corporate network from any access
network (remote, wireless and local
LAN)
– Non-intrusive and works with
existing GINA (no GINA
replacement)
– Drive mappings/Login scripts from
AD
– Simplified installation & setup (MSI
package)
– Password mgmt/self-service
Customer Benefits
– Unified access policy mgmt
– Increased ROI
– Ease of use
– Lower support costs
66
Solution
– Provide a user
service on the client
machine which
allows component
updates without
admin privileges
68
Simplified webtop
Interface
Automatically
minimizes to
system tray
69
Auto Remediation
72
Dynamic AppTunnels
Feature Highlights
– No client pre-
installation
– No special admin
rights for on-demand
component install
– No host file re-writes
– Broader application
interoperability
(complex web apps,
static & dynamic ports)
Benefits
– Lower deployment and
support costs
– Granular access
control
73
Web Apps
Client/Server
Apps