Blog

Riverbed today announced an industry game-changer - a new platform that can enable and equip any cloud provider (public cloud, hosted or managed provider or enterprises rolling out private clouds) with the tools and technology required to deliver application delivery controller-as-a-service (ADCaaS) with the Riverbed Stingray Services Controller.

With the introduction of the Stingray Services Controller, cloud providers will have a dynamic and elastic application delivery infrastructure, giving them all the necessary tools to automatically provision, deploy, license, and meter application services and resources anywhere in their network, data center or end-user premises.

You probably saw the news from last week: according to analyst firm IDC, PC shipments in 1Q13 suffered their largest decline in recorded history – almost 14 percent.

And immediately the cries of the coming of the “post-PC” era begin rattling through our collective brains.

But hold on a minute. What’s this in front of me? Am I working from a tablet or my mobile phone? No, I’m on my laptop. And it may be a Mac, but I couldn’t imagine working at a corporate job without Outlook, Excel, PowerPoint, and Word (possibly in that order).

Forrester analyst, Ted Schadler nailed it in his blog, where he wrote “PCs, like cars and shoes and dishwashers, are here to stay. However, it is true that PC shipment numbers will decline or be stagnant as people fill out their multi-device toolkits.”

Call it a “dirty little secret,” but there’s a line item in your public cloud bill that you may not be expecting: outbound bandwidth usage.

Cloud computing’s ”Hotel California” situation isn’t a big secret - the prices are generally published alongside other charges that may apply. And they make sense, given that cloud providers are just passing through some of the basic infrastructure costs, including bandwidth.

But plenty of cloud customers have had sticker shock at that first (or second, or third) bill from their cloud provider. Interestingly, many don’t charge for moving the data INTO their cloud, but as my high school economics teacher reiterated many times: There’s no such thing as a free lunch.

The data center is the heart of IT: would your cardiologist be impressed?

In today's connected world we expect fast and reliable access to applications and data that matter to us right here, right now. Whether we get it or not depends on how well "the black box of IT infrastructure" is architected.

The data center is the heart of IT. Just like the heart suffers from untreated diabetes and a high-cholesterol diet, a data center is burdened by new demands for more performance and functionality without extra budget allocations.

You cannot cure what you cannot diagnose. The signs of a heart attack aren't always obvious and can be as subtle as unusual fatigue that only an experienced doctor is able to read correctly. Similarly, getting to the root cause of a performance issue in a virtualized data center is not a straightforward task and requires specialized monitoring tools.

 

 

Has your organization bought into cloud computing? Don’t let performance issues ruin your day. The Airbus 380 was made for speeding through the clouds at 560 mph -- 52 times faster than the average speed of a bicycle.

Unfortunately, most SaaS apps still reach their users at bicycle speeds. With Riverbed cloud-ready WAN optimization solutions, you can accelerate your SaaS apps by up to 52 times! Learn how by watching this short video:

Come back tomorrow for the fitth and final consolidation resolution for 2013. We'll look into performance management tools that can help provide important insights into any consolidation project. Previously, in part one we looked at reducing the number of data centers in your fleet, in part two we analyzed branch simplification approaches, and in part three we focused on protecting data through centralization.

 

One of the more popular arguments made against cloud computing is a perceived lack of useful standards. For example, Dave Linthicum, the CTO and founder of Blue Lab Mountains, mentioned in a recent article:

“...the notion that you can easily move from one provider to another without significant work and cost is largely science fiction at this point.”

While his argument may have a certain degree of technical merit, it still rings hollow. The growth of cloud computing shows no signs of slowing down: major providers display consistently strong growth. Analyst firm Gartner predicts worldwide cloud services spending to surpass $109 billion in 2012 alone. In fact, large enterprises willingly choose multiple clouds, and it's illuminating to consider the reasons why this happens. 

The entire premise of virtualizing your application infrastructure is to give you the ability to divorce your apps from your physical infrastructure on which they are hosted. This, in turn, allows your application workloads to be dynamically placed and migrated across a pool of application server resources, which allows the infrastructure to dynamically adapt and respond to your evolving business needs. If you look at traditional applications and how they are developed, it’s clear they were not designed for the cloud, and they definitely don’t take advantage of some of the best benefits a virtualized infrastructure can offer.

By Ray Villenueve, GM, Riverbed Whitewater cloud storage gateway business unit

Even with the recent storage price reduction from Amazon, it's clear from the interest expressed from Whitewater customers and people I spoke with at the AWS re:Invent developer conference last week, that Glacier, Amazon’s low-cost archiving service is going to be a huge hit. With a price point of 1c per GB per month, it will form the basis of a low-cost storage tier perfect for storing long-term archives and seldom accessed data sets.  
 
The economics offered by Glacier put its cost far below tape-based data protection solutions and eliminates the need for tape vaulting and migrating between tape formats, while delivering much faster restore times than recalling tapes from an off-site vault. In addition, like any cloud storage service, data is accessible from any location with Internet access.
 
Glacier will gain a prominent role as a storage location for long-term backup data sets as organizations can easily segment recent active backup data from monthly and yearly data sets by policy in AWS or by their backup application.

I was pleased to see F5 Networks finally announce BIG-IP availability for AWS.  (Click here to read about their announcement)

As many of our followers know, Riverbed Stingray has been available for years in public and private cloud environments. AWS has been a strong partner and platform for us for quite some time, and announcements like this one prove that will be the case for some more time to come. 

On the face of it, F5's announcement is all roses. You know BIG-IP, you love BIG-IP, and now it's on Amazon. You have been told you will like it.

But let's ask a few questions and see where we end up:

Riverbed announced today that our Stingray™ product family is available through the Amazon Web Services (AWS) Marketplace. This enhanced offering allows customers to deploy an application delivery controller (ADC) solution with Web Content Optimization (WCO) and Web Application Firewall (WAF) security capabilities. These new features are an expansion of the Stingray offering that was first launched on Amazon Elastic Compute Cloud (EC2) in 2009 using Amazon’s DevPay model.

Watch the below podcast to get some insight into this announcement

 

You can also watch a demo below

 

 

 

Riverbed announced today that it has been positioned by Info-Tech Research Group in the ‘Champions’ quadrant of their “2012 Vendor Landscape: Application Delivery Controllers Report.” The report from Info-Tech Research Group positions vendors in one of four zones of the landscape - Champions, Market Pillars, Innovators and Emerging Players stating that ADCs have become more than load balancing and content compression. Inclusion in this Vendor Landscape required advanced features for securing servers from outside threats and offloading server functionality to decrease server load. Info-Tech focused on vendors that offer broad capabilities across multiple platforms, and that have a strong market presence and/or reputational presence among mid and mid-large sized enterprises.

The Stingray product family is recognized for its flexibility and ease of deployment into any physical, virtual, or cloud environment due to its pure software and virtual form factors. Info-Tech highlighted several key differentiators of the Stingray product family when awarding it the Champion position, including the custom scripting capability with Riverbed Stingray™ TrafficScript that provides organizations with granular control over their applications, advanced features such as WCO with Stingray Aptimizer, and the deep application-level security capabilities of the Stingray Application Firewall. You can download the complete report here.

The Vendor Landscape itself is shown below: 

Riverbed announced today that it has been positioned by Gartner in the ‘Visionaries’ quadrant of the 2012  “Magic Quadrant for Application Delivery Controllers” authored by Neil Rickard, Bjarne Munch, and Joe Skorupa, and published in October, 2012. In the report, Gartner positions vendors in one of four quadrants - Leaders, Challengers, Visionaries and Niche Players - based on the companies’ vision and ability to execute on that vision. You can download the complete report here. The Magic Quadrant itself is shown below:
 

Riverbed tech expert Brett Hill demos the Riverbed Steelhead Cloud Accelerator software, which addresses customer needs for performance by providing an easy to deploy WAN acceleration solution. Watch the video and come by booth #417 today at Interop NY:

Learn more about the performance gains you can achieve from SaaS

The emergence of the application-centric operations model

Just as virtualization has transformed data center operations, the emergence of cloud computing represents a significant shift in the way we operate applications today. Up until now, IT ops teams have been driven by a server-centric operations model, where the application itself played a secondary role. Cloud computing, on the other hand, is an application-centric operations model.

As applications get more distributed, virtualized, and pushed into the cloud, application developers and architects are being faced with a multitude of challenges in how they develop, deliver, and manage applications with this new paradigm.

 

Image courtesy of DevOps Delivering Change: http://dev2ops.org/blog/2010/2/22/what-is-devops.html

Applications that run in the cloud still need to be highly available, resilient, adaptable to varying loads, and be monitored as they were before. What changes now is that these features that were provided in the past by the IT ops infrastructure now need to be part of the application itself. Now these operational capabilities need to become part of the development environment. In this new application-centric environment, operations teams will need to collaborate with the developers who create these applications - this new breed of is also known as ‘DevOps.’

“The DevOps tribe is a growing group of people practicing a new way of combining development and system administration for more speed, quality, revenues, and fun.” http://www.agileweboperations.com/20-devops-guys

 Your ADC and DevOps 

Application delivery controllers (ADCs) can play a significant role in alleviating some of the challenges that arise from this changing environment, particularly for organizations that are using agile development methods. Being able to proactively implement production-level best practices much earlier on in your dev and test processes will save you a whole lot of sustaining costs and pain later on in the game when you are in production, especially when deploying your apps in business and mission critical situations.

Imagine if your ADC could help you replicate your entire production environment during your dev and tests phase.

By using real-world configs, testing features, and loads on the production network, during your dev and test phases, you'll be able to iteratively test and troubleshoot in real-time as your application goes through the continuous build and integration process. In addition, you will be able to gain a better understanding of the potential bottlenecks that may arise when your applications are deployed in various environments.

You can only be proactive if you have enough visibility into how your applications are working in a production environment. Having to deal with problems much later on in the process will prove to be both time and resource constraining.

With the right set of tools, you’ll be able to get your applications to market faster, not to mention significantly improve your feature velocity. 

Riverbed Stingray Traffic Manager loves app developers

Having an ADC that integrates seamlessly into your application stack in the same way you use Apache or MySQL will give you a new set of tools to solve this problem with. Traditional ADC architectures are not well positioned to truly make this shift. You need an ADC that is as dynamic as your application. Stingray Traffic Manager software is just that.

Our ability to deliver software ADCs (not virtual) mean we are better positioned for organizations who use agile development methods, embrace the DevOps philosophy, and are aggressively looking for ways to optimize their dev, test, and ops to achieve better and faster real-world application results: and all in real time.

Designed for application developers, the Stingray TrafficScript programming language enables DevOps teams to create application deployment policies that are specific to your applications. You'll be able to quickly and easily deploy policies that inspect, transform, prioritize, and route traffic to address application delivery challenges and achieve strategic business goals. In addition, capabilities like Stingray Aptimizer can save developers time and effort to focus on strategic challenges instead of day-to-day maintenance activities.

 

http://www.networkcomputing.com/wan-optimization-and-application-acceleration/wan-optimization-meets-application-accel/240002418

 We believe that:

1. Every developer should have access to application development tools that fit right into modern QA/test platforms, and that those tools can be used to test exactly the same rules and scenarios as would be used to deploy into global production environments.
2. Every developer and test team should have a software ADC in their development environment.
3. Every developer should have a rich, familiar scripting language (TrafficScript) and an ADC that can re-use programs or code from other languages.

Download Stingray Developer Edition for free

The Stingray Developer Edition, available either as pure software or as a virtual appliance, makes the complete ADC technology platform available to everyone on your team, and helps you develop applications faster, test them in a production-identical environment, and bring them to market quicker.

Download here

 

So after spending not nearly enough time with the Google Compute Engine for a comprehensive review, but having spent enough time with it to form some initial opinions, I have come to several early conclusions:

1) Google are doing it right.

By having machines that will return from from an instance failure wiped clean of any data you left on them, Google is implicitly forcing sys admins to build their application stacks in a way that ensures it can be scaled and does not rely on the persistence or existence of a single node.  Your nodes need to be able to boot and provision themselves from scratch with automation or orchestration.  I fundamentally agree with cloud providers forcing users to adopt good practice when deploying applications.  

Anyone who gets caught out by very low frequency Cloud Data Centre outages (such as the AWS issues in July of this year)  and complains, has no real leg to stand on in my opinion.  I believe this is especially the case when the cloud has provided all the tools needed to manage these risks, where your business requirements demand it. After all, this is why Riverbed's Stingray Traffic Manager is growing so rapidly in market take up, especially in cloud environments.

 2) Every Enterprise Administrator will hate them.

Based on my conversations in "customer land", the vast majority of enterprise administrators that I have spoken to do not yet function with anywhere near this level of automation.  Applications are still a static and manual construct in the enterprise.  The automation that is  around in these enterprises (and these are the ones that are ahead of the pack) in my experience is usually limited to template driven Operating System builds that allow for the provisioning of a generic Windows or Linux server as a hypervisor guest.  

What does this all mean?

Well, in the grand scheme of things, it all depends:  

• WIll Google go after the enterprise market?
• Will Google offer Windows Server licensing for virtual machines?
• Will Google evolve their offerings in future iterations to cater to the old world of static application stacks or will the world move on as more and more cloud is taken into the Enterprise?

I guess, as with all things, time will tell...

VMworld this week was all about the vision of software-defined data centers, the power of automation and enabling any application, on any cloud.

Deconstructing the software-defined data center

VMware’s vision for software-defined data centers starts with all infrastructure being virtualized and delivered as a service, while the data center control is entirely automated by software. In addition this extends to addressing the challenges that will now arise from having heterogeneous environments (physical infrastructure, Amazon Web Services, Open Stack, cloud stack elements, etc.), specifically around application development, cloud management and cloud networking.

This new architecture aims to abstract all hardware resources and pool them into an aggregate capacity, enabling the resources required for secure and efficient application provisioning and management to be automated. With this new paradigm, tenants or customers utilizing the software-defined data center can now have their own virtual DCs, with a logical separation of all their virtual compute, storage, networking, and security resources.

It’s clear that having an API-focused strategy is paramount to the success of VMware’s datacenter products. 

In his blog, Steve Herrod, VMware’s CTO states:

“First of all, VMware has moved beyond managing server virtualization to managing the datacenter as a virtual entity – that includes networks, security, storage and pools of VMs. This virtual entity is a software-defined datacenter…”

“Secondly, as we get deeper and deeper into this transformation, we hear very clearly from our customers that they will continue to have heterogeneous infrastructure in their purview and need help dealing with the associated challenges. Here is a simple visualization of our current strategy:” 

 

Herrod continues by stating…”Code speaks far more than words, and you’ll see our commitment to this strategy in the contributions you’ll continue to see from VMware.”

This is a big step towards simplifying IT operations and providing IT organizations with all the tools required for them to build, operate and manage their cloud environments.

 

So what is the intersection between software-defined data centers and ADCs?

As the world progresses into multi-cloud deployments and sophisticated software-defined data centers, having a software ADC that is cloud-aware and can seamlessly fit into these environments becomes increasing important.

Traditional ADC architectures are not well positioned to truly make this shift. Next gen ADCs should be as dynamic as the application is, be able to apply application specific optimizations and policies and deliver advanced layer 7 features and services.

 

Why Riverbed Stingray?

1. ADC for any cloud, any app, anywhere: As a software product, Stingray can be easily ported and integrated for seamless deployment in private, public, and hybrid cloud environments. This makes Stingray better suited than a hardware load balancer to accelerate multi-tier applications in a virtual or cloud environment.  
2. Deeper application integration: Stingray is natively 'unboxed' and designed for better application control. Stingray’s simple scripting, easy user interface-based configuration management, and robust APIs enable it to be easily integrated into the application stack and orchestrated like any other software, and in fact managed as a service. 
3. A complete approach to performance: With advanced features such as Web Content Optimization (WCO), we are able to augment the value of the ADC by extending performance improvements right through to the end user, enhancing their web experience. 
4. Integration with Development>Test>Production lifecycle: Stingray's application development tools fit right into modern QA/test platforms, and can be used to test exactly the same rules and scenarios as would be used to deploy into global production environments.

 

The Integration of Riverbed Stingray Traffic Manager with VMware’s vFabric Application Director

We announced the integration of our Riverbed Stingray Traffic Manager with VMware’s vFabric Application Director this week. This brings together the Application Acceleration & Performance power of our Stingray Traffic Manager software, with the Simple & Automated application provisioning capability from VMware’s, vFabric Application Director. The combination is powerful!

 

           

Stingray Traffic Manager is available today as a service for vFabric Application Director on the VMware Cloud Application Management Marketplace^Beta: https://solutionexchange.vmware.com/store/content/getting-started-with-vmware-cloud-application-management-marketplace

 

Now an application architect that wants to deploy applications in the cloud, can download Stingray as a service on vFabric Application Director’s drag and drop visual canvas, download the out-of-the-box application blueprints, and they are ready to go!

This integration effort with VMware is yet another proof point that further validates Stingray as the ADC of choice for cloud providers and application architects. 

With this integration, enterprises, cloud providers and application architects will now be able to:

• Provision and scale high performing their multi-tier applications faster in the hybrid cloud
• Accelerate their application performance and portability across cloud services
• Accelerate their time to market and reduce costs, by leveraging these repeatable and portable deployments on any cloud

 

To end with an excerpt from Steve Herrod’s keynote:

 “So, in the end, it is the applications that matter. It’s the applications that help a business make new revenue or be more efficient in how they are doing so.”

Bill Hartwell talks about the performance challenges facing government agencies as they move to the cloud and how Riverbed addresses the performance challenges.

 

 

 

One of the announcements that caught my eye in the last few weeks, and caused me to ponder was the announcement of the Google Compute Engine.  Now I have been an avid follower of Google Betas over the years (gmail/wave/plus/[…]) and have seen many google "playtings" come and sometimes go.

In vendor land, there has always been a need for pragmatic review of products.  It can be hard to make the decision to kill off a product or system that is flagging or failing as a commercial offering.  Lego had to do it with Lego Universe, Apple does it constantly.  Microsoft on the other hand just can't seem to be able to knife the baby.

Now, when it is your personal mail, or a blog, or other "small" things, a beta that comes then goes is not the end of the world (although, if my gmail archive were to disappear after using it as my primary mail since 2004).  I am not losing sleep over the disappearance of the data I had accumulated in Google Wave. but IaaS is a little different.  A move to a cloud provider, especially for an enterprise is not a small decision or process.

If Google's foray into Cloud Computing is a serious long term thing, then great!  I genuinely agree with some of their design decisions such as forced outage windows in availability zones that force people to design with High Availability in mind (which prevents situations like those that occurred with the AWS power outage last week.

So, what is my point?  

I have applied for a GCE account so that I can assess how Stingray will run in it, and how it can be leveraged to help with the direction of traffic between "on-premesis" and cloud based resources.

If I were an enterprise, I would be hanging back a little to see how GCE pans out.

Or, I guess you could hedge your bets like Apple did and use multiple cloud providers...

I am happy to announce that our Steelhead Cloud Accelerator has won the Microsoft Best of TechEd award in the Cloud Computing category as it accelerates software-as-a-service (SaaS) performance for Microsoft Office 365. Winners of the Best of TechEd award were announced at the recent Microsoft TechEd Conference that took place in Orlando, Florida. This award recognizes the innovation brought to market with Steelhead Cloud Accelerator, which provides a solution to overcome the potential performance problems created by the distance between end users and applications – problems that must be addressed to realize the full potential of SaaS.

You can learn more about our Steelhead Cloud Accelerator product by visiting our product page or by watching the below demo.

  

 

 

With cloud computing becoming the norm for many organizations, the specter of outages has taken on a new look. It’s not that outages are more common in Amazon as compared to private infrastructure; in fact for many organizations AWS probably provides better uptime than they could have achieved on their own. With last Friday’s outage impacting well known applications like Netflix, Twitter, and Pinterest, organizations are once again looking carefully at Amazon EC2 and trying to determine, “Can I do better on my own?”

By giving up ownership and operation of the underlying hardware of their data center operations, organizations may feel as though they have less control over their end-to-end application delivery capability. I believe these fears are unfounded; they are easy to overcome with the right design elements, and cost effective enough that they can still leverage the economic benefits of cloud computing. 

At the heart of this argument is the concept of designing for failure. Organizations shouldn’t hide from failure, but rather expose themselves to it early and often, in a way that allows them to learn quickly and build the right infrastructure to enable operations in a world where any cloud – public or private – can fail.

Of course, failing and recovering is a lot of work. So we might as well learn to design from other people’s failures and save ourselves the effort. Here are three ideas that will help you avoid the impacts of Amazon’s next cloud outage:

1. Balance across Amazon availability zones. One key way to make sure your application is available in the event of a regional disaster or a data center specific outage is to ensure that your application is set to run in multiple Availability Zones (AZs). We talk about cross-AZ balancing as one of the benefits of using Stingray in Amazon.

Balancing across availability zones ensures that, in the event of one zone going down, users can be redirected in real-time to another zone. If the secondary zone is far from the end user, performance might be slower, but your service will be up and running. The secondary zone’s infrastructure can be kept small and then auto-scaled up in the event of failover. 

2. Cloud balance. The concept of cloud balancing is similar to leveraging availability zones, but instead of only leveraging Amazon’s infrastructure, the enterprise leverages multiple clouds. For example, they might instead use a combination of AWS with RackSpace, GoGrid, and/or IBM. Cloud balancing assumes that you have application delivery infrastructure that is hyper-portable across clouds, so that you can ensure that all functionality that you implement in your application delivery controller is available in all locations.

Cloud Balancing has the potential to provide you with more than just a security blanket in the event of a cloud outage. Leveraging multiple cloud providers will enable you to: develop an application that is battle-tested across multiple cloud platforms; allow you to benefit from different SLAs and different datacenter locations; and, provide leverage in case you need to shift cloud strategies in the future.

We’ve got an entire paper on cloud balancing here in case you’re interested in learning more.

3. Add a private cloud back into the mix. While some organizations have shifted to the public cloud and would never look back, organizations should also ask themselves if they have the baseline traffic needs as well as the technical skills to run some private cloud infrastructure. While organizations often think of maintaining infrastructure for baseline traffic and then bursting to the cloud, the model for organizations in the future may be to flip this around, running core operations in the cloud and then bursting into the private cloud in the event of a major outage.

These options are only a few ways to design for failure. The key message is that organizations need to recognize that outages happen and the difference between good and great systems is that great ones won’t miss a beat during the next Amazon outage.

 

As data protection vendors improve their public cloud connectivity, some wonder if a cloud storage gateway is required within their backup infrastructure. The answer depends on the organization’s goals for increasing flexibility, reducing costs, and streamlining IT operations. But there are five benefits commonly cited by customers who've implemented cloud storage gateways:

1. Increased flexibility – Few data protection applications support the broad range of cloud storage providers offered by cloud storage gateways. Support for a broad range of vendors creates strong competition between cloud storage providers that lowers storage costs and benefits customers. Products such as the Riverbed® Whitewater® cloud storage gateway also support private cloud storage solutions such as EMC Atmos or systems-based on OpenStack, allowing the use of Whitewater gateways with public, private, and hybrid clouds. 
2. Reduced license fees – Most data protection vendors offer data protection licensing based on agent or capacity-based pricing models. Capacity-based pricing typically benefits organizations that require a large number of agents relative to the size of their storage pool. Many organizations find it beneficial to leverage a cloud storage gateway and simply purchase the required agents instead of adopting capacity licensing. As cloud storage gateways are typically priced on the size of the data stored after deduplication rather than the total number of terabytes protected, significant savings are realized.
3. Support for multiple data protection products – Many organizations run two or more data protection applications, a legacy backup application to protect physical servers, and another tasked with protecting the virtual machine infrastructure. While one or the other may be able to store data in the public cloud, it can be difficult to find multiple applications that support the same cloud storage provider. Cloud storage gateways can simultaneously accept data streams from multiple backup applications and store them in the same cloud account. Cloud storage gateways also provide the freedom to easily add new backup products while retaining the installed solution. The gateway essentially functions as a broker between all the backup applications and the cloud storage vendor. This allows organizations to implement the data protection applications that meet their needs today as well as the flexibility to quickly respond to changing business requirements.
4. Time to cloud – Often customers find that to leverage the cloud storage capabilities of their backup application, they're forced to upgrade their software and hardware, install additional software, and pay additional license fees. Installing a cloud storage gateway is a much faster path to cloud storage as the only change required is to update the storage target within the backup application to the address of the gateway appliance. No change to the backup schedule, jobs or policies is required. Whitewater cloud storage gateways are often installed and send data to the cloud in less than one hour.
5. Ease of use –The Whitewater cloud storage gateway appliance is purpose built for data protection and utilizes extremely advanced networking and storage technologies from Riverbed Technology that are proven in enterprise networks around the globe. Whitewater gateway has an easy-to-use graphical user interface and minimal administration requirements, providing substantial time savings.

To learn more about Whitewater cloud storage gateways and see how easy it is to implement with your existing data protection applications please visit www.riverbed.com/whitewater.   

Watch Miles Kelly of Riverbed Technology discuss Steelhead Cloud Accelerator, live from Interop 2012.  Steelhead Cloud Accelerator was nominated as a finalist for best of Interop 2012.

Link to video

At Riverbed, we believe we're leading the move to Cloud. Over the last 3 years we've launched the Riverbed Cloud Portal, the Cloud Steelhead, Whitewater Cloud Storage Gateway, and the Steelhead Cloud Accelerator. These products help our customers reduce costs, and improve focus, by taking advantage of the economies-of-scale and specialization available in the Cloud.

But does Riverbed itself use the Cloud? We sure do! Early on we identified the need for our own production and test systems. We needed dedicated test Portals to deploy, license, and manage Cloud Steelheads. Other tests Portals are needed to help us develop and test the Steelhead Cloud Accelerator.

Eating our own Dogfood

How do we do this? The Riverbed Cloud Portal runs in the Amazon Web Services (AWS) Cloud, using many of the features provided by that system. We run all our test Portals up there too, and even optimize access to those Portals, from here in San Francisco, using a Cloud Steelhead.  Using the Cloud allows us to provision resources in a cost-effective manner, scale testing quickly, and eat our own Dogfood. As significant consumers of Cloud services, we believe this makes us better producers of equipment for Cloud Infrastructures

Building the Portal

How have we built the Riverbed Cloud Portal? It's built using the Python-based web framework Django, and uses the AWS Relational Database Service for the back-end. Reliability is very important since the Portal is a mission-critical component of many of Riverbed's next-generation solutions, so we put a lot of thought into load-balancing and redundancy. Riverbed used to be a company that just built clever network appliances. Now we're building web services, distributed systems, and Cloud Infrastructure technology. Sound like fun? Why not join us?

Join Riverbed at the General Dynamics C4 Systems (GDC4S) Conference, which will take place May 23-24 at The Paris in Las Vegas, Nevada. Visit the Riverbed booth (booth #18) to learn about our performance solutions, which help overcome limitations inherent in C4ISR networking.  

Nick Yuran, business development manager at Riverbed, will present on the requirements and deployment models for tactical WAN optimization models, including virtualized environments and integration into cloud architecture.

Nick will focus on WAN optimization mobility solutions, and optimization of storage networking in a tactical environment. In Addition, Nick will highlight how the Riverbed performance platform provides a comprehensive, cross-layer solution to the networking performance requirements of the deployed warfighter.

The 15th annual General Dynamics User Conference & Training event provides military members and federal government employees with an opportunity to network with peers from the United States, United Kingdom, Canada, Australia, and New Zealand. Attendees can participate in hands-on training and demonstrations on assurance, cyber security, and computing technologies. 

For more information about the conference visit http://www.gdc4s.com/content/detail.cfm?item=93b27f1a-f9da-413a-852c-4e42370bf09b&page=1

To learn about Riverbed solutions for governmental agencies visit http://www.riverbed.com/us/solutions/industry_solutions/government/

 

Kristi Berg discusses how Riverbed plays a critical role in the enabling of the consolidation of IT infrastructure.

 

With the adoption of hybrid cloud, the need to move workloads between the clouds in a secure and efficient manner becomes imperative. The VMware vCloud Connector® (VCC) working in conjunction with VMware vCloud Director® (vCD) allows IT managers to move workloads between VMware vCD clouds efficiently. The movement of data across the wide area networks (WAN) has challenges that need to be addressed in order to successfully move workloads between clouds. 

Today Riverbed and VMware have announced a new collaboration that will enable users to move between clouds -private, public, and hybrid - more efficiently that ever by utilizing Riverbed’s wide area network (WAN) optimization solutions and VMware vCloud Connector. 

 

 

 

 

Are you a federal IT manager responsible for the performance of applications and the network? If yes, then join Riverbed (booth# 418) at the Defense Information Systems Agency (DISA) Customer & Industry Forum, taking place May 7-10 at the Tampa Florida Convention Center. At the conference, we will showcase our performance solutions, which are utilized by defense and intelligence agencies to analyze, accelerate and control their IT infrastructure, resulting in improved collaboration among personnel across remote locations – all for supporting the goal of achieving mission success.

This year, the DISA conference theme is “The Joint Enterprise: Delivered Through Partnership,” which will focus on technologies and initiatives to bridge gaps in communications and interoperability for further enabling collaboration with timely information.

How does the Riverbed performance platform benefit in this case? In many important ways:

Enhancing Collaboration and Efficiency Through Visibility, Consolidation, and the Cloud
Accelerated performance of applications and the network enhances collaboration between joint-forces and civilian personnel. However, application and network performance are challenges associated with the Federal Data Center Consolidation Initiative (FDCCI) and Cloud First policy as poor performance can negatively impact personnel trying to access services and applications in the cloud, over the WAN. Riverbed Cascade, an application-aware NPM solution, provides defense and intelligence agencies with complete network visibility to quickly map IT assets and applications, and their dependencies, reducing the risk of network outages during consolidation of infrastructure or a migration to the cloud. This level of visibility also enables IT managers to decide which applications to optimize to help improve productivity and collaboration among personnel. 

As part of the Cloud First policy, each Federal agency will move three services to the cloud. Riverbed performance solutions help agencies build and migrate to a flexible, high-performance hybrid infrastructure of public and private clouds to realize the promised benefits of cost reduction, resilience, and scalability of IT resources. Riverbed Steelhead appliances, with quality-of-service (QoS) capabilities, allow agencies to manage and optimize the network connection, which benefit the common workloads and services being moved to public cloud, including cloud-based email and collaboration services, and batch processing workloads. 

To deliver IT efficiencies and consolidation at branch office locations, Riverbed Granite allows IT managers to consolidate and manage all edge applications, servers, and storage to the data center. This supports the commitment to virtualization and consolidation of global IT infrastructure by removing any remaining servers from branch locations, while enabling the delivery of services to any branch location as if it were local. 

Improving Performance of Collaborative Web-based Applications
To further enhance collaboration among defense and intelligence personnel, agencies leverage Riverbed Stingray Aptimizer to accelerate Web-based applications, such as Microsoft SharePoint, which optimizes Web content on the server delivered to any browser. Stingray Traffic Manager, deployed virtually into a public cloud, enables websites and application to respond more quickly, particularly during unpredictable spikes in traffic and when the ability to collaborate is needed most. 

Learn how governmental organizations utilize other Riverbed performance solutions to overcome application and network performance challenges at http://www.riverbed.com/us/solutions/industry_solutions/government/. 

Unless you have been living under a rock for the last ten years, most people in IT have grasped the concept that perfectly working applications will eventually break: sometimes badly, other times CATASTROPHICALLY. Let's chalk this up to a mix of Murphy's and Moore's laws:

"With the speed of technology advancing and refreshing constantly, whatever can to wrong eventually will..."

Or as I like to define my 1st law:

"The amount of entropy in any IT system is directly proportionate to the frequency that things will go horribly wrong."

Now the worst part of this is that business is asking for IT systems to be more dynamic and agile moving forward. The capacity for catastrophic disaster when projects go "agile" or start a "continuous delivery" cycle are much greater if changes are not effectively tested and managed. Discreet infrastructure changes that are needed to support these agile and continuous deliveries can also cause havoc.

Now virtualisation has helped solve entropy in server hardware architecture by providing an abstraction layer between hardware and the operating system.

Moving further up the stack, similarly, Application Delivery Controllers (ADC) have carved out a place in the modern data centre to provide a critical abstraction between the entry point for a service and the resources that actually processes a given request. The abstraction comes when you create a virtual server and define a pool of resources to handle requests to that virtual server: The ADC ensures that the request is serviced by an available resource and that any resources that are not funcitoning correctly are bypassed.

Now we get to my 2nd law:

"Good health checks lead to good traffic management decisions."

The more granular and effective the health checks on any given system, the more effective your traffic management will be.

Now health checks are only half of the solution. Health checks are great at letting you know when a resource fails, but deciding what to do *when* that resource fails is where the "rubber meets the road."

Let's get to the topic in the title of this post: "Just what is the backup plan for the backup plan to the backup plan?"

Over the next four posts, I'll be running through the areas where your humble Stingray Traffic Manager can be configured to provide healthy available applications when things go HORRIBLY wrong. We are going to cover a variety of topics from things you can do inside your data centre to ways you can leverage public and private clouds to ensure you are able to keep on keeping on when DISASTER strikes.

This week we are going to cover:

Load Balancing - your first line of defence.

So you have your shiny new virtual ADC installed and you have set up your first virtual server and pool of resources. You are pretty proud of yourself but you wonder:

"Is there anything I could do to make it... Better?"

Chances are that there might be. There are several things that I do instinctively when setting up ADC virtual servers. Now good decisions come from experience, and experience, as we all know comes from *bad* decisions. So what have I learned in the last few years from all the *bad* decisions I have made looking after ADC's?

1) Make your health checks as granualr as you can: 

• ICMP Ping is better than nothing;
• TCP Port checks are better than ICMP Pings;
• "Basic HTTP" checks are better than TCP port checks (for Webservers anyway); and
• "Full HTTP" checks that actually submit a valid HTTP request and validates the server's response are better still (again for web servers).

If we look at the Basic HTTP checks in the screenshot below, you can see that there is limited scope for customisation.

The basic HTTP check will send a "GET /" and will accept *any* response as a succesful health check. If the web server responds, it is considered healthy.

Now for a more granular health check, we could use the "Full HTTP" check. Out of the box the "Full HTTP" check will perform a similar "GET /" check, but will require the server to respond with a 2XX, 3XX or 4XX server response code to be considered healthy. A "500 Internal Server Error" status code would cause the node to fail the health check:

As you can see, we could also specify:

• A Host Header (in case we have virtual hosts being used to present multiple sites on a single back end node )
• A Path to retrieve: /myapplication/login.aspx for example
• A Status Regex to match ('^[234][0-9][0-9]$' is the default that will ensure a 2XX, 3XX or 4XX message is returned)
• An HTTP response body value to match so you can ensure your application is responding correctly.

Now that we have granular health checks in place, it is time to look at what we do when health checks fail.

2) Failure Pools

Failure Pools are designed to let you have a pool that has one or more servers to use if there are no healthy members of the default pool to service the request.

A common use for failure pools is to host a "Sorry" page - a pretty static content page advising users connecting to a service that there is a technical fault or a scheduled outage. To define a Failure Pool, just create a pool in the normal fashion. Lets say we called our failure pool  "my_failure_pool". You can then configure our main pool to use it as a backup. Inside the configuration of the main pool, drop down the "Failure Pool" list and select it. It really is that simple, as you can see from the screenshot below:

3) Priority Lists

Priority lists are designed to allow you to control which hosts get used in a particular pool. A common use case for Priority Lists is when there is connectivity between two data centres, a pool definition might include resources from two different sites. Ideally, you want to always use the nodes that are local to the ADC. If enough of the local nodes are not available, then you want to expand the pool definition to include the nodes on the remote site. In the screen shot below, you can see I have configured the 172.16.10.x nodes as the highest priority group, but if the number of nodes in this group drops below 1, it will engage the next Priority Group level and use the nodes in the 172.16.135.x range.

4) Autoscaling Pools

Stingray Traffic Manager support the ability for the STM to automatically scale the number of nodes in a pool based on demand for the service. Out of the box VMWare ESX (tm), Amazon EC2 (tm) and Rackspace (tm) are supported targets.

Many integrations have been performed by Stingray customers into other API's for Autoscaling such as environments built on OpenStack and CloudStack. The Autoscale feature is provided with appropriate credentials to the Hypervisor or cloud environment and monitors server response times. If the defined percentage of server responses exceed the required maximum threshold for response times, the STM will trigger an autoscale to increase the number of nodes in the pool. The size of the Autoscaled pool can have a low and high watermark set to allow you to constrain the minimum and maximum nodes that will be dynamically provisioned. As you can see from the screen shot below, Autoscaling has been set up onto a VMWare hypervisor for a mimumum of 2 nodes and a maximum of 10 nodes.

In the screenshots above, if 40 percent of the connections exceed 1000ms response times for a period of 20 seconds, the STM will initiate a scale up of the pool. If 95 percent of the connections return under the 1000ms response time for more than 20 sec, the STM will initiate a scale down of the pool.

So as you can see, even with basic load balancing features such as Advanced Health Checks, Failure Pools, Priority Group Lists and some advances features such as Pool Autoscaling, there really are many things that you can do to add more resiliency to your deployment.

Currently in front of the US Congress is the Cybersecurity Act of 2012. With so much of today's infrastructure and economy dependent on the Internet the US Govt is considering what additional measures it can take to protect critical infrastructure, government assets, companies and individuals. A portion of this act is focused on education and awareness, which we all can use in the fast moving world of security.

While we can't control what the US Govt, or any other govt does to protect us, we certainly can take action to protect our own infrastructures. Designing a strong security architecture requires building layers of security.  By this I mean, having multiple security and monitoring systems that provide many methods of monitoring, detection, defense, etc. However, to do this you need to consider the various attack vectors, your gaps, and how to economically implement the architecture. In many cases, making security economical within a large organization requires leveraging solutions you already have, but possibly haven't utilized to their maximum capability.

Riverbed's IT Performance solutions not only contribute to improving efficiencies, they also have extensive capabilities related to monitoring and security. However, often our clients aren't leveraging these existing capabilities as part of their security architecture. Using tools already deployed in your infrastructure can help your organization improve security, while saving money.

In today's blog we'll briefly cover some of the security and monitoring capabilities in Riverbed's solution portfolio.

Stingray supports:

• Application delivery controller service protection capabilities against attacks such as malformed requests, Denial of Service (DOS), Distributed DOS, etc.
• Access rules to deny unauthorized addresses, as well as user authentication integration to deny to unauthorized users.
• The Web Application Firewall (WAF) can block application layer attacks, such as code injection, cross site scripting, phishing attacks, spiders and much more.  This can be done in software on the servers or in the Traffic Manager itself.  This architecture enables massive scaling that is cloud ready, can be distributed globally, all while being centrally managed.   
• Develop sophisticated OSI layer 3 - 7 security policies, to include shadow rule sets to model how a policy will affect traffic prior to applying it.
• Bandwidth management capabilities to limit requests, bandwidth, etc.
• Global Load Balancing for COOP scenarios.
• Extensive and customizable web logging for deep application analysis both onboard Stingray or using third-party web log analysis tools.
• Request tracing and packet capture for deeply analyzing attacks or suspicious users.
• Traffic Script and Java integration provides extensibility to build custom security capabilities.  Your imagination is truly the limit with these unique options.

Cascade supports:

• Drill-able network visualization tools to easily see who did what to whom and what happened.
• Extensive flow reporting to cost effectively monitor every conversation within an enterprise.  
• Network Behavior Analysis and Detection (NBAD) and Rule Based Events (RBE) for performance and security event alerting. Enabling you to be told about security events or anomalies very efficiently - such as new hosts, suspicious hosts, worms, unauthorized scanners, servers transmitting on unauthorized ports, backdoored hosts, unauthorized firewall policies, and much more.
• Integration with vulnerability scanners, SIMs, Active Directory, DHCP and DNS architectures to enable streamlined analysis and security automation.
• Automated and/or manual right-click integration with switching and routing infrastructure to disable interfaces with compromised hosts so they can be quickly and easily quarantined.  
• Shark provides continuous high-speed long-term packet capture with analysis via PIlot.
• Shark can export packets in PCAP format to support analysis with third-party tools, like your favorite reconstruction tool. This enables deep forensic analysis and the packets to prove exactly what happened.

Steelhead supports:

• Flow export to Cascade and/or Security Information Management (SIM) frameworks so you can monitor host level conversation details globally.
• Continuous packet capture for forensic analysis (tcpdump format).
• QoS and Inpath rules to deny or block suspect traffic types - such as P2P, malware, etc.  This enables distributed blocking of unwanted traffic.  When using Central Management Console (CMC) your organization can enforce actions globally within seconds.
• RSP/VSP virtualization frameworks to deploy your favorite security tools within a remote site without the need for more hardware (VPN, Firewalls, IDS/IPS, open source tools, etc).  For example, a SNORT package is available for RSP from the Riverbed Community site.

While Rivered is know as the IT Performance company, you can see we also have useful security capabilities.

Scary Fact: The Verizon 2012 Data Breach Investigations Report analyzed over 855 data breaches (i.e. compromised records).  Of these data breaches the attacked organization only discovered eight percent of the breaches.  Ninety-two percent of the breaches were discovered by other parties (law enforcement, fraud detection services, customers, etc).  Records were exfiltrated in seconds to hours in sixty percent of the cases, while in eighty-three percent of the cases it took weeks to months for the breach to be discovered.

Are your web applications protected from code injection, cross-site scripting, insecure direct object references or cross-site request forgery?  These are just a few of the most common web application vulnerabilities. If you are interested in learning more about web application security there are outstanding free resources at the Open Web Application Security Project (OWASP). One my my favorites is the WAF Best Practices article. OWASP hosted AppSec 2012 recently and was kind enough to invite Riverbed's Alex Meseil, Director of WAF, to discuss his experience and lessons learned about Cloud-based Distributed WAF - an architecture being used by some of the largest Internet content providers today.

We all need to be aware of the challenges with security, especially at the application layer.  Contact Riverbed today to discuss how we can further assist.

 

 

There has been a relatively recent evolution in the way network infrastructures are designed to cater to the needs of delivering applications and services to branch offices.  Zeus Kerravala from the Yankee Group recently posted a nice article on Network World where he discusses how WAN optimization was originally architected to address the performance of legacy "hub and spoke" network design.

Specifically, traditional WAN optimization is symmetrically deployed with a device on both end of the network connection and this worked well for applications that are delivered from the data center to the branch.  Zeus argues that a new breed of single-ended or asymmetric WAN optimization technology is needed to address the rising needs of internet delivered applications.  His argument is based on his understanding that there is no way to place a WAN optimization appliance in front of the application since the app resides in the cloud.

Zeus makes some great points and for most WAN optimization vendors his argument makes sense.  Many WAN optimization vendors will need to figure out ways to optimize asymmetrically with a single device since as they have no way of getting their physical or even virtual appliance near where the cloud-based application resides.

This is where Riverbed is different.  Earlier this year, Riverbed launched the Steelhead Cloud Accelerator.  SCA is a groundbreaking product that was jointly developed by Riverbed and Akamai.  With SCA, Riverbed customers can take their Riverbed Steelhead WAN optimization that resides in the branch office and/or data center and extend it to SaaS applications such as Office365, salesforce.com, and Google Apps.  SCA is software that is installed on the existing Riverbed device in the branch and data center and using the Akamai network of more than 100,000 servers globally, a virtual Riverbed device is automatically spun up on the other side of the network connection near where the cloud application provider is located.  The whole process is simple, seamless and the result is LAN-like performance for cloud based applications accessed by branch office or data center users.  Below is a demo I recorded of this capability.

 

 

Unimaginable complexity, combined with a lack of resources (time, money, skills) has created a situation in corporate IT  where $2.5 Trillion – 70% of the global IT budget – is spent just making sure the status quo works. As a result, 1 in 5 projects never see the light of day and there is a backlog in IT of more than 18 months.  

Its time to stop the complexity and redirect this time and money to projects that will help businesses innovate and succeed in today’s dynamic marketplace.

Riverbed and the Stingray software ADC family are proud to announce that we’ve joined IBM in pioneering a new era of computing that will help eliminate complexity and fundamentally transforming the experience and economics of enterprise IT. Expert Integrated Systems is a new category of smarter computing that combines the flexibility of a general purpose system, the elasticity of cloud and the simplicity of an appliance.  

IBM PureSystems is a new family of expert integrated systems offered by IBM that combines hardware, software and expertise into one solution, allowing us to help our clients eliminate the complexities of enterprise IT, reduce cost and encourage innovation. We are confident that this new system will significantly simplify IT infrastructure by tackling the biggest, consistent IT pain points that the industry has faced for years, resulting in more time and money for the IT projects that actually matter. 

Riverbed is among the first group of companies to learn about, test and develop applications for IBM PureSystems.  

For customers who are looking for a more flexible, dynamic way to implement their application delivery fabric within a virtual environment, Stingray is the software ADC of choice. For more information on Stingray, visit http://www.riverbed.com/us/products/stingray/

For more information about IBM PureSystems visit www.ibm.com/puresystems.

 

Remember the bit where Neo looks down the corridor, and all he sees is the code behind the seemingly solid walls/doors, etc.?

That’s what I see when I look down the aisle of a modern data centre (well ok, I don’t really, but it’s what I imagine). All the “real” servers are present only in code, sitting within the physical servers you can actually see, in the Matrix of virtualization…

This means that if you are the “Chosen One” (i.e., you have admin rights within your virtualization system), you can make miracles happen. I'm not saying you can fly through the ceiling of the data centre, or put your hands through the walls of a cabinet (or jump in the air, slow motion kicking three people in the head in the process, as tempting as the notion may be!).

No, but you can auto-magically destroy a web server in one location, and have it suddenly appear in another. Or replicate a running Exchange server, before you apply that scary patch!

Now the same is happening to your network appliances, they are vanishing from the racks, only to reappear in a virtual state in the Matrix.

Before too long, the data centre will be back where it started; one great big computer sitting in the middle with a cable (or two for redundancy) connecting it to the outside world (probably not, but somewhere between that point and the myriads of underused servers/appliances that many data centres and server rooms consist of today).

Application server virtualisation has been with us for a while now, and most organisations have at least dabbled with the concept. It’s this latest step of virtualising the network infrastructure that will give even more flexibility and control over how you choose to deliver the services your organisation relies upon.

Need a device for a proof of concept, or to test a configuration change? Don’t wait days (weeks?) for delivery, or getting someone in the right place with the right skills to install and cable it (and with a console cable, so you can get the basic config in the box). Simply click to provision exactly what you need, where you need it and for as long as you need it.

Riverbed already has vast swathes of our product lines available as Virtual Appliances (and the ones that aren’t, are adding value to virtualisation projects anyway), ready to deploy at the drop of a hat.

The Matrix is here; can you see the reality, or just the corridor…?

Hello World! This is my first post on the Riverbed blog. So let me start it by asking you a question "How many times has someone asked you about your cloud strategy over the past three months?" Is it every day, every other day, a few times, or not at all? If this were a slashdot poll I bet the "not at all" option would be running last. It seems clouds are every where (they certainly are in Cambridge, UK this morning). So what is your cloud strategy? Hah. Now you have to change your answer!

Regardless of how you currently stand on "The Cloud" or where you strategy will take over the next few months, Riverbed can help. We can help in Physical Data Centres, we can help in Virtual Environments, and we can help in the cloud. So even if your cloud strategy is "No thank you", we can help. But as you're still reading a post titled "Cloud Bursting..." lets suppose that you're atleast a little curious about this cloud thing.

So now I could start talking about the Riverbed Cloud Steelhead and how it can help accelerate your data between the cloud and you physical DC or branch office. Alternatively I could start waxing lyrical about the SaaS accelerator we've recently launched with our good friends Akamai. But I'm not going to talk about either of those. The title of this post says Stingray, and Stingray is what you're going to get. Stingray Traffic Manager and Cloud-Bursting specifically.

So What is Cloud Bursting?

Cloud-Bursting is a deployment model which allows you to make use of cloud infrastructure on your own terms. It's often a hybrid cloud model where you continue to use your current physical or virtual Data Centre, and simply utilize resource within a third party cloud on demand. We're effectively taking dynamic infrastructure to it's logical conclusion; Data Centre on Demand. Hang on, that sounds complicated... How does it work?

Auto-Scaling

An important component in bringing up Data Centres on Demand is the ability to bring up individual servers on demand. Fortunately Stingray TM allows you to do just that with the Auto-Scaling module. This can be used in Virtual or cloud environments with or without cloud bursting. Sometimes you just want to scale up within your Data Centre, Stingray Auto-Scaling allows you to do that. It's an important feature in cloud environments where you are billed per minute for running services. Stingray will ensure that you only have the servers running required to meet demand.

Global Load Balancing

Another important component in our Data Centre on Demand strategy is a Global Load Balancer (GLB). We need a GLB component to detect when new Data Centres are spun up and to start directing traffic over to them, once they are ready to receive that traffic. Obviously the GLB component needs to include sophisticated monitoring to achieve this. Guess what? Stingray Traffic Manager has this too.

Event Mapping (Orchestration)

Thirdly we need some way to detect the need for a new Data Centre and trigger the deployment process. Stingrays sophisticated Alerting and Event system allows us to trigger the Cloud-Bursting based on any number of events. We could trigger it from Stingrays scripting language TrafficScript, we could use a local Auto-Scaling limit, or Service Level Monitoring thresholds. We could even base it on how much money your website is turning over per minute. Extensibility is Stingrays middle name.

Show me the demo

So this all sounds very good, but I'll believe it when I see it. Right? Well then, let me show it to you..

 

 

 

 

 

Today is truly is Super Tuesday (http://en.wikipedia.org/wiki/Super_Tuesday), because in San Francisco, Boston and throughout the world today Riverbed and Akamai introduce the worlds first product for optimizing SaaS application performance.  Software as a Service (SaaS) applications are constrained by network latency and limited bandwidth as their data is delivered to users spread around the world, typically over the public internet. The Steelhead Cloud Accelerator optimizes Microsoft® Office 365, Google Apps, and Salesforce.com® improving performance by up to 50x and reducing bandwidth utilization by over backhauled networks by up to 99%.  

The success of virtualization once made the decisions for IT leaders a question of whether to host applications locally at the edge or in a centralized data center.  Advances in cloud computing applications and services have added a viable third option for leaders considering their network topology today and in the future.  Unfortunately, just as the problems of application inefficiency and latency created by the distance between applications and users wreaked havoc on performance, cloud applications aresubject to similar constraints as well as the added problems that come fromworking outside of the carefully cultivated private networks on the public internet.  These problems can be even more debilitating across backhauled network architectures, which consolidate all access to public internet to a single location, but which add additional network hops and latency for users to contend with when trying to use cloudapplications.  To solve these problems, the Steelhead Cloud Accelerator combines the best of breed in public internet optimization with the best of breed in private wide area network (WAN) optimization. 

The Steelhead Cloud Accelerator is a first of its kind solution integrating Akamai’s globally distributed Intelligent Platform, which optimizes traffic across the public internet, with Riverbed award winning RiOS® (Riverbed Optimization System) technology to accelerate data and application protocols.  The Steelhead Cloud Accelerator delivers optimized performance up to 50x or more for SaaS applications like Microsfot Office 365, Google Apps, or Salesforce.com, regardless of whether the end user is located at the corporate headquarters or in a geographically remote branch office.  This solution is an add-on to existing Steelhead appliance deployments and does not require any changes in the way Steelhead appliances are deployed today or any changes on the SaaS provider’s infrastructure. RiOS will be installed on Akamai’s SureRoute gateways to be activated whenever a customer purchases a license. The RiOS instance on the Akamai gateway will then optimize content and applications to the Steelhead appliance deployed within the customer’s enterprise network. By hosting Riverbed RiOS technology on Akamai’s Edge Platform, the joint solution enables the seamless optimization of WAN and public networks, all the way to the front door of a SaaS application provider.   Best of all, these benefits are provided automatically and transparently to the end user, without the involvement of the SaaS provider or Akamai.  

As the number of choices for IT leaders increases, Riverbed is excited to continue to extend the benefits of optimization everywhere.  Steelhead Cloud Accelerator provides the flexibility to extend optimization to the public cloud and ensures that whatever topology an organization adopts, now or in the future, performance won’t be a concern, which I’m sure you can agree is a super any day of the week!

 

This short demo covers Riverbed's Cascade, Stingray Traffic Manager, Stingray Aptimizer, Steelhead / Akamai SaaS acceleration, and Whitewater products through the lens of Microsoft SharePoint.

 

Yet again, we hear the same tired, old line that a software ADC is somehow “a lower-end solution. It's got all the functionality but it doesn't have the performance”.  In a recent interview, F5 CEO John McAdam went on to assert that software offers “single-digit gigabits-per-second vs. hundreds of gigabits-per-second” for an integrated hardware solution.  This simultaneously flatters F5’s own Virtual Edition (which tops out at 1 Gbps) and overstates the real-world capacity of integrated hardware appliances that depend on hardware fast paths to achieve such performance heights; layer4/7 fast-paths that preclude the use of the sophisticated ADC functionality that is often needed to support the application.

The application and infrastructure experts who take responsibility for the successful deployment and delivery of a business’s applications think differently in term of performance: page views, site visitors, number of customers, transactions per second, and service levels and page load time.  These need to be measured within the context of the specific capabilities of an ADC that are required to deliver the applications effectively.  Performance depends on the efficiency of the ADC software and scales with the CPU capacity of the server or appliance. 

Measuring the value of an ADC solution in terms of gigabits alone is understandable when hardware is your differentiator, but it misses the value of an ADC.  The value that distinguishes an ADC from a network load balancer is realized when it finds it way to the individual who understands the needs of the applications. An ADC is a tool to help deal with unexpected application problems, application security vulnerabilities, flash floods that need smart prioritization, to facilitate routine maintenance, yet so often we hear the same complaint from application owners at organizations where hardware ADCs are incumbent – frustration that the tool that might fix their problem is managed by another team who have very different goals, constraints and SLAs.

Organizational changes alone cannot resolve these difficulties. There will certainly always be a place for the hulking hardware ADC-asaurus, exiled to the edge of the datacentre to perform basic load balancing and routing with little thought, but the more challenging application delivery problems need the flexibility and scale that only an on-tap software solution can offer.

The emerging datacentre infrastructure, whether physical, virtual or cloud, shows two qualities – programmable to the needs of the business services that are delivered, and responsive to the needs of the applications that make up the services.  Insisting that an ADC will always be tied to a piece of tin fails to recognise neither this trend in infrastructure, nor the needs of the new application users of advanced ADC functionality.

We’re proud to find ourselves helping customers to achieve things with their applications that they could not do with our technology.  Software (ADC, web/app server, whatever), in the hands of the application experts, enables quick prototyping, rapid application release cycles, flexible and immediate test environments, and our customers know their investment in our Stingray technology can grow and move with them as their business grows with their success.

One of my duties as a Channel System Engineer is to update our partners on our new technologies and products. In the recent months after people heard that we acquired two new outstanding technologies, I was often asked why believe that the Zeus ADC now Stingray Traffic Manager is superior to other ADCs on the market.

Of course there are many different correct answers to this question. But for me one of the main reasons is its flexibility, scalability and of course the fact that it is highly customizable, making it a solution that is easy to adapt to all the customer scenarios out there.

For those who might have missed it: Stingray Traffic Manager is a high-availability, application-centric traffic management and load balancing virtual ADC. It provides control, intelligence, security and resilience for all application traffic. Stingray Traffic Manager is intended for organizations hosting valuable business-critical services, such as TCP and UDP-based services like HTTP (web) and media delivery, and XML-based services such as Web Services.

Stingray Traffic Manager’s architecture ensures it can handle large volumes of network traffic efficiently. Its scalability allows you to add more front-end traffic managers or back-end servers as the need arises. The cluster size is unlimited, and the performance of the traffic manager grows in line with the performance of the underlying hardware.

These are all amazing features Stingray TM provides for scalabilty and felxibilty, but today I would like to talk specifically about one of the capabilities of the Stingray Traffic Manager that extends the possibilities mentioned above and makes it highly adaptable beyond what would be achievable with a monolithic approach: TrafficScript.

Using the TrafficScript language you can write tailored traffic management rules to inspect, manage and route requests and responses in every imaginable way.

TrafficScript rules can be executed whenever a new connection or network request is received, and whenever it receives a response from a node. The rules you create inspect the incoming and outgoing data in the connection, and other aspects such as  e.g. the remote client address, destination address and port. You can write rules that can then modify the request or response (for example, rewriting the URL or headers in an HTTP request), set session persistence parameters, or decide how to route the request or even rewrite the content of the output page.

 

 

There are many occasions when you might want to use a TrafficScript rule.:

• You can use a rule to dictate session persistence information

• Rules can be used to check the response from the server and modify it, or even retry the request (if possible) if a transient error was detected.

•  If you use various back-end systems with different presentation styles or even different protocols, rules can be used to integrate them into a single, coherent and consistent service. Incoming requests can be rewritten into the format suitable for the required service, and responses can be rewritten into a single, consistent form.  For example, HTTP requests that involve a database lookup can be rewritten into SOAP request for a Web Service; the XML response can then be transformed into a suitable HTML document to return via HTTP.

• Rules can specify custom behavior for each connection; e.g. connections to a slow resource can be given a longer response time tolerance for example.

• Security:  You can use a rule to check packets for a match with known web worms or viruses.

• Data Protection: you can write rules that ensure that sensitive data like credit card numbers or social security numbers are automatically hidden even if they were to be displayed in the output of a web page by accident.

 

One of the great properties of TrafficScript is that it is easy to learn and understand! Even for people with little coding experience. You don’t have to worry about having to learn an entirely new, complicated scripting language, TrafficScript will look familiar even to the untrained eye.

 

Here are two examples of TrafficScript rules:

 

1) Restricting Access Based on the Time of Day

This example only allows access to a particular service during office hours (between 9am and 6pm, Monday to Friday). It discards all connections that occur outside these times.

$dayofweek = sys.time.weekDay();

$hourofday = sys.time.hour();

# $dayofweek: Sunday is 1, Saturday is 7

# $hourofday: office hours are between 9am and 5:59pm if( $dayofweek == 1 ||

    $dayofweek == 7 ||

    $hourofday < 9  ||

$hourofday >= 18 ) {

  log.warn( "Warning: access out of hours!" );

  connection.discard();

}

 

2) Customer Prioritization

This example inspects the cookie in an HTTP request. It uses the value of the cookie to determine which pool to direct the request to. One pool is faster than the other because it contains machines that are reserved for premium users.

A company has a customer base divided into “gold” and “silver” membership. It wishes to give priority to the “gold” customers and has five servers, yellow, green, blue, black and purple.

Two server pools are created: standard, for the “silver” customers, containing machines yellow, green and blue; and premium, for the “gold” customers, which includes all five of the servers. Thus black and purple are only available to the “gold” customers.

 

 

The site uses a cookie login system, with the customer type encoded in the cookie. Different membership levels can be detected, and sent to the correct pool.  This is the script needed to achieve this:

$cookie = http.getHeader( "cookie" );

if( string.contains( $cookie, "gold" )) {

   pool.use( "premium" );

} else {

   pool.use( "standard" );

}

5 short lines of code to ensure that your premium customers get the best possible service!

 

These two short examples  show that TrafficScript is indeed a very approachable, easy to learn scripting language. The best part is: our outstanding Support Team will assist you if you have problems writing or adaptig your own TrafficScripts.

This is part of your support contract and ensures that there is someone around to help you at all times at no extra cost.

For a detailed overview and syntax  to get you started, take a look at our Stingray Traffic Manager TrafficScript Guide.

Of course there is also a community of TrafficScript Users that can help you with your first (and further) steps. Visit them  at http://community.riverbed.com/t5/Stingray-Family/ct-p/zeusproducts  for code samples, answers to your questions and further documentation.

 

 

 

Amazon is an excellent cloud storage partner of Riverbed Whitewater.  Riverbed Whitewater gateways and Amazon Simple Storage Service (Amazon S3) are tested and proven in production environments at many mutual customers today. 

While both offerings fit into the broad category of cloud storage gateway products, Whitewater is an industrial grade, optimized solution purpose built for data protection that supports all leading data protection software applications.  This optimization includes substantial engineering investment around backup applications that enable Whitewater to achieve higher levels of deduplication and performance compared to general purpose iSCSI based gateways.  Whitewater leverages Riverbed’s proven byte level deduplication and WAN optimization technologies that greatly reduce the size of the cloud data stored and therefore, monthly storage costs, in addition to speeding the transmission to and from the cloud.

Security is a top concern of our customers and Whitewater secures the data using strong encryption within the gateway itself and during transport to the cloud.  Further, the encryption key is kept safe and under customers’ control in their data center which eliminates concerns about the cloud storage vendors’ or a rogue third party’s access to the data.  Riverbed’s approach is far more secure than Amazon’s gateway where key storage and encryption are both done within the Amazon cloud.

Freedom of choice is a common request from our customers and Whitewater delivers in its support of all leading cloud storage providers.  Riverbed provides this flexibility as well as the ability to deploy either virtual or physical gateway appliances.  Riverbed’s industry recognized support – available 24x7 addresses the needs of the most demanding enterprises and ensures fast response should an issue arise.    

We welcome Amazon’s entry into the cloud storage gateway market with their recent announcement as we feel this will accelerate the market.   Customers interested in a production quality gateway for data protection will no doubt see the many advantages of Whitewater.

It often seems that there are few really new ideas in computers. There are many, many interesting technologies, novel approaches, and effective products -- but when examined closer, most are old ideas in a few form.

Take CPU architecture. The very first CPUs were RISC-type machines, but were severely-limited by the technology available. Limited RAM, and slow access times, meant it was advantageous to perform as much work as possible without accessing RAM. So we got CISC architecture. But as hardware improved, RISC architectures came to the fore again. It seemed new to many engineers, but was simply an idea whose time had come.

Another example is Cloud Computing. Often mistaken as a new idea, of course it's actually a very old idea. 1950s science fiction is replete with visions of centralized computing. Take Ray Bradbury's Farenheit 451, a dystopian novel about the future. It features a centralized, interactive, video distribution system (admittedly used to distract the populace, and keep it content!).

So while Cloud Computing is an old idea -- as are the problems of insufficient bandwitdh and high latencies that go with it -- Riverbed has new solutions for these problems. The Riverbed Cloud Steelhead allows enterprises to overcome these problems, giving end-users LAN-like performance access to services and data located in the Cloud.  The Whitewater Cloud Storage Gateway allows you to eliminate dependence on unreliable, error-prone tape systems for backup and DR Eliminate tape and enjoy the benefits of cloud backup with a Whitewater cloud storage gateway.

It often seems to me that if one wants to learn the best technical approaches, one needs to look back, not forward. History is full of ideas which are just waiting for engineering ability to catch up. And Riverbed's engineers have now caught up and are helping those visions become a reality, allowing enterprises to deliver services to their end-users, in an efficient and secure manner.

We're making a presence at the first Federal show of the year, the West 2012 conference, which will take place January 24-26 at the San Diego Conference Center in San Diego, California. Visit the Riverbed booth (#1910) to learn about our IT performance solutions, which help defense organizations meet government mandates – to consolidate data centers, reduce costs for IT, and execute on the cloud first policy – without compromising performance.

West 2012 is co-sponsored by AFCEA International and the U.S. Naval Institute, and is the largest defense technology event on the U.S. west coast for communications, electronics, intelligence, information systems and imaging. The theme of this year’s West 2012 conference is “America’s Military at the Crossroads: What’s Out and What’s In for 2012 and Beyond?” Defense and industry leaders will discuss and debate the technologies and approaches for successful military programs this year.

For more information on the West 2012 event, visit: http://www.afcea.org/events/west/12/introduction.asp.

 

Today we are trying something different in the blog.  We are posting two articles with differing points of view.  The article below takes the position that Public Cloud is more important than the Private Cloud and should take precedent.  The other article, located here, takes the opposing viewpoint that the Private Cloud is more important should be given priority.  

We hope you will chime in with your comments and opinions in the comments.

Let the Blog Battle begin!

Why public cloud is the future of IT

Why not?  Streamline your infrastructure.  Unless you want to manage an ever-growing pile of applications, servers, and storage, the chances are public cloud offers you a better way.  Hoarding stuff under your roof is so yesterday.

Reason 1 - Cost: The traditional “own” vs. “rent” argument always comes up, but it largely misses the concept of innovation.  The downward spiral is of cyclical binge purchases, struggles to digest all that hardware, and the eventual purge.  Huge capital budgets are wasted on over-priced kit that you’ll outgrow in a couple years anyway. Take your backup storage as an example: how many different tape formats have you bought en masse?  4mm, optical disk, 8mm, DLTI, DLTIII, DLT IV, LTO 3, 4, 5….  Every time a new format came out, you probably blew a ton of cash on new hardware and media.  Don’t even get me started on hallways full of self-proclaimed “redundant” disks.  You’ve been left holding bags full of outdated and possibly unreadable data.  Far more efficient to use operating budgets for cloud services that empower you to provision only what you actually need, on demand when you actually need it. 

 

Reason 2 - Human resources: Meanwhile your staff spends their time on low-value activities like unboxing and racking and wiring and patching and repairing and replacing.  Continuing with the tape storage example, how many man-hours have been spent over the last few decades inventorying and duplicating (again!) and ejecting and off-siting and requesting and waiting for the tape before you can start a restore job?  Is that really how you want your information technology professionals spending their days?  The same class of problem carries into other IT disciplines like apps and servers.

So if you’re going to join us in the 21^st century, why not maximize the efficiency of your infrastructure by adopting public cloud services?  There’s a ton of benefit to gain from virtualizing applications and running them on consolidated infrastructure in a highly automated data center.  Just let someone else spend the capital and manpower to run that cloud data center for you!

-        First, you’re going to need to have a clear picture of what applications you have and how they are connected before making changes like migrating servers into the public cloud. Application-aware network performance management, like Riverbed Cascade, can rapidly build application dependency maps to give you visibility to benchmark performance for multi-tier applications.

-        Next, you’ll need to actually move those applications to your cloud provider’s environment, without disrupting service availability. Global load-balancing capabilities in the Riverbed Stingray Traffic Manager can allow you to rewire applications in the background while maintaining service availability.  Your public cloud service will also benefit from the automation that Stingray provides in increasing application performance and reliability, and support greater server throughput for more efficient usage.  As a cloud appliance, you can easily right-size your Stingray deployment, while taking full advantage of your new infinitely scalable infrastructure.

-        Not least, you can bin the tapes entirely, by backing up to the cloud storage provider of your choice.  Whitewater offers drop-in integration with you current backup software, but encrypts and deduplicates the backup data before storing it safely in the cloud.  You can restore locally for common incidents or from the cloud in a “smoking crater” type disaster.  Win, win.

-        Finally, you’ll need to make sure users can still access applications running in the public cloud… which is probably a greater distance from your end users than local servers and data centers were before. Riverbed’s Steelhead WAN optimization technology minimizes the impact of latency – something that adding bandwidth capacity alone cannot do – so that end-users  anywhere can continue to use applications as if they were local.  As an added benefit, Cloud Steelhead and Steelhead Mobile software can reduce bandwidth consumption by 65-95%, providing efficiency and savings that can be funneled back into the business. 

While most hardware pushers slap on a “private cloud” label to keep you over-buying boxes for your data center, the real efficiency and innovation is coming from the public cloud.  We’ll help you get there!

So who's right?  Which do you think is more important to your organization?  Public or private cloud?  Let us know in the comments.

Today we are trying something different in the blog.  We are posting two articles with differing points of view.  The article below takes the position that Private Cloud is more important than the Public Cloud and should take precedent.  The other article, located here, takes the opposing viewpoint that the Public Cloud is more important should be given priority.  

We hope you will chime in with your comments and opinions in the comments.

Let the Blog Battle begin!

I hereby proclaim that the private cloud should take precedence in your hearts and minds, winning the favor of your attention and mastery!

Why? You will always have infrastructure. Unless you are a very small company that plans on staying a very small company, the chances that you will continue to have some amount of infrastructure to purchase and manage is extremely high.

Reason 1- Cost: The economics of running certain applications in the public cloud just don’t make sense (yet). Pay-by-the-hour, infinitely scalable, public cloud resources are great for certain types of applications. A huge batch job of analytics processing? Why overbuy when you can rent! A seasonal promotion? Perfect for deploying in the cloud that can support spiky workloads! But your day-to-day, predictable workloads? When you add up the service costs for month after month of cloud service fees and weigh that against the declining cost of most hardware… well sometimes it’s better to own (and get the depreciation benefit) than to rent.

Reason 2 – Human resources: To fully take advantage of cloud scalability, you have to do some rewiring of the application… and sometimes the person who wrote that application is long gone. So until you decommission the application, or decide it’s worth it to pay consultants to dig into the code, that app is staying put.

So if you’re going to have some applications remaining on premise, why not maximize the efficiency of your infrastructure by adopting private cloud practices and technologies? There’s a ton of benefit to gain from virtualizing applications and running them on consolidated infrastructure in a highly automated data center. Here are some examples:

1. You’re going to need to have a clear picture of what applications you have and how they are connected before making changes like migrating servers between locations and consolidating them into virtualized data centers. Application-aware network performance management, like Riverbed Cascade, can rapidly build application dependency maps to give you visibility into multi-tier applications. There are ongoing benefits as well, such as rapid troubleshooting capabilities from having an integrated tool for analyzing enterprise-wide flow data and drilling down into specific packets.
2. You’ll need to actually move those applications to your virtualized data center without disrupting service availability. Global load-balancing capabilities in the Riverbed Stingray Traffic Manager can allow you to rewire applications in the background while maintaining service availability.  Your private cloud will also benefit from the automation that Stingray provides in increasing application performance and reliability, and support greater server throughput for further consolidation potential.  As a virtual appliance, you can easily right-size your Stingray deployment, while taking full advantage of your virtualized infrastructure.
3. Finally, you’ll need to make sure users can still access applications running in your private cloud data center… which is probably a greater distance from your end users than local servers and data centers were before. Riverbed’s Steelhead WAN optimization technology minimizes the impact of latency – something that adding bandwidth capacity alone cannot do – so that end-users in branch offices and on mobile laptops can continue to use applications as if they were local.  As an added benefit, Steelhead appliances and mobile software can reduce bandwidth consumption by 65-95%, providing efficiency and savings that can be funneled back into the business.

So, not to rain on the whole public cloud parade, but the big party is happening over in private cloud-land. And you’re invited.

So who's right?  Which do you think is more important to your organization?  Public or private cloud?  Let us know in the comments.

Gartner will kick off its 30^th Data Center Conference amongst the glitz and glamour of beautiful Caesar's Palace in Las Vegas next week. Leading Gartner analysts such as Joe Skorupa will be covering hot issues including next-stage virtualization, the impact of cloud computing, mobility, best practices in cost optimization, managing escalating energy costs, the aging infrastructure. Additionally Riverbed customers James Hardie,  a world leader in fiber cement siding, and Psomas, a Southern-Calif.-based engineering consulting firm will present on how they are leveraging Riverbed IT performance solutions to enhance its disaster recovery capabilities.

Featured at the conference is a track titled, “Twin Goals, Unique Approaches:  Improving Data Replication, Back-Up and Storage - With the Cloud, and Without”, where Riverbed customers James Hardie and Psomas will share their IT success stories with their peers. If you’re at the conference, be sure to check out the session on Wednesday, December 7 from 11:15 - 11:45 a.m.

Here’s a bit more information:

Twin Goals, Unique Approaches:  Improving Data Replication, Back-Up and Storage - With the Cloud, and Without

For James Hardie, data protection and Disaster Recovery are paramount. So SAP data replication and failover that were running a day behind and nightly data backup replication of 18 hours+ constituted an untenable situation. Deduplication alone was not enough to improve end-to-end performance. Learn how the company has deployed WAN optimization from Riverbed Technology to reduce its RPO to one hour or less, slash backup times by almost 3X and improve bandwidth utilization from 30% to nearly 100%.

For Psomas, eliminating tape and leveraging cloud based backup and recovery are an IT priority. Cost reduction, improved business continuity, freeing administrative time for more high value activities, and achieving competitive advantage were just a few of the factors motivating the change. Learn how the company has deployed Riverbed Technology’s Whitewater cloud storage gateway and Cloud Steelhead WAN optimization technology to move to a hybrid cloud model for CAD computing that best serves its highly mobile and distributed workforce.

And please stop by our booth #30 during the show. Happy Holidays!

With initiatives, mandates and reforms in place aimed at bringing efficiencies to government IT, it should be no surprise that over the last few months you’ve seen a lot of Riverbed at government IT conferences and events. After all, our IT performance solutions help government agencies meet initiatives, mandates and reforms – from enabling data center consolidation, to helping reduce costs for IT, and executing on the cloud first policy.

On November 16, Riverbed will be at the Akamai Government Forum, taking place at the Grand Hyatt Washington in Washington, D.C. The second annual Akamai Government Forum will focus on the latest solutions for scaling the Internet infrastructure for local, state and federal government agencies. Visit the Riverbed station to see demos and learn about our cloud performance solutions, including Steelhead WAN optimization, Stingray application delivery and Web content optimization, Cascade application-aware network performance management for traffic visibility, and Whitewater cloud storage gateways for data protection.

And, because you can’t get enough of him, Riverbed technical leader, cloud expert and aficionado Steve Riley will deliver the cloud track discussion on hybrid cloud from 3:00 to 4:00 p.m. ET.

In his presentation, Steve will highlight how the performance problems associated with distance computing can be mitigated with optimization techniques designed for multiple layers: application, transport, network and storage.

Here is the teaser:

No longer just the fluff of airplane magazine articles, cloud computing is here to stay. The architectures envisioned for large public cloud providers are revolutionizing on-premises data centers, too. Hybrid clouds – clouds that utilize both public and private resources – allow agencies to spread workloads across multiple locations to satisfy distinct policy, regulatory, security and financial requirements. Hybrid clouds, like their individual counterparts, involve adding distance between users and their data. In most cases, the particular distance at any point in time is unpredictable, which will lead to inconsistent user experiences. Applications deployed in hybrid clouds often move large amounts of data across multiple internal and external providers; long waits for data transfer will affect productivity and availability.

Stop by; learn everything you need to know about optimization, acceleration and performance to meet the government IT mandates; and tell us what you thought of the conference.

 

 An underappreciated aspect of the Steelhead product line is that it has a diverse set of form factors and – crucially – those different packages all use the same optimization architecture, and thus interoperate. What does that mean for a customer?  It gives tremendous flexibility to adapt to changes in how data and users are distributed, without needing to cause ripple effects elsewhere in the infrastructure.  Let’s consider a simple (and common) example first before we move on to looking at the larger implications. 

Organizations often have some branch offices that are very small.  For the very smallest offices and individual users, it’s usually not hard to decide that the right solution is to use Steelhead Mobile on a laptop or workstation.  And when you get to  10-12 people in an office, both the technology and the ROI arguments for a Steelhead appliance (physical or virtual) are pretty easy to make.  But there’s an area in the middle, around 5-6 users, where there’s enough overlap of capabilities that either approach could work.  Add to this that a given office may grow or shrink enough so that the original configuration in the office may need to be replaced with a different one.

 Using the Steelhead family, these choices and changes at the branch can be accommodated with no additional impact on the data center side.  For a given workload from a given set of users, it just doesn’t matter whether they’re coming from a Steelhead appliance or Steelhead Mobile. 

 Now, if you’re only familiar with Riverbed, at this point your reaction is probably something like “so what?  Big deal!”  But let’s look at just this one scenario with the #2 vendor: their mobile client doesn’t use the same technology as their appliance, so you have to have two separate data-center infrastructures to support the branches if you have a mixture of the technologies.  And as you migrate a given branch from appliance to mobile or vice-versa, you’re changing the load on the corresponding data-center pieces. 

 That divided-technology approach means that it’s easy with the #2 vendor to be in a situation where an apparently-straightforward change at a branch gets tripped up because it exceeds the capacity of some piece of data center infrastructure.  Another layer of complexity comes from the fact that these two different technologies have different network characteristics: their appliance uses an autodiscovery mechanism somewhat like the way that Steelheads work, while their mobile client needs an explicit connection set up to its data-center counterpart.  Their appliance marketing repeatedly insists on the necessity of transparency and the avoidance of tunnels, while the mobile client uses a tunnel-based system – so it’s possible that a particular branch network configuration that works with one of the technologies simply won’t work with the other.

 It’s tempting to say that the divided-technology problem of the #2 vendor is just a typical lapse by a very large company, and that smaller competitors would have a better approach. So we look at the #3 vendor in our space, which is a private company that prides itself on only doing WAN optimization.  But they don’t have any mobile client at all!  So their theory is that you should just pretend that you don’t need WAN optimization when you’re out on the road and dealing with networks in coffee shops and hotels – exactly the opposite of most real-world experience.  And apparently when your branch is too small to support an appliance or virtual appliance, you should just stop using WAN optimization.  (All of a sudden, the #2 vendor looks really good by comparison.)

Before we leave this topic, it’s worth noting that the preceding comparison actually understates the Riverbed advantage. A further advantage comes from the fact that Steelhead Mobile and a Steelhead appliance (physical or virtual) can cooperate via branch warming. In branch warming, Steelhead Mobile and a local Steelhead appliance work together: each time a piece of "optimization vocabulary" is used by the machine running Steelhead Mobile, the mobile client and the appliance coordinate so that both have a copy.  As the mobile client is used in the branch office, their vocabularies will tend to converge.

Without spending too much time on the details of how it works, let’s talk about where it’s useful:  Sometimes there are enough people in an office to justify an appliance, but the nature of the work means that some or all of them have a significant need for mobility – often because they are salespeople, hands-on repair technicians, or field supervisors.  They can use Steelhead Mobile when they are on the road, but they stop needing a mobile license when they’re in the office, and they take the benefits of their office work (newly learned optimizations) back on the road with them when they leave. 

 Now let’s talk about the bigger picture of why this matters.  After all, your organization may not have small branches or mobile users, so that set of examples might not impress you. But the same general principle of agility through a common architecture is more broadly useful, and almost certainly can make a difference to your organization now or in a future configuration.

 A way of getting a handle on this is to list out the different “packages” of Steelhead technology:

• Physical appliance
• Virtual appliance
• Cluster of appliances (physical and/or virtual)
• Software client
• Cloud-integrated service
• “Blade” for HP switch

 All of these interoperate with each other – so it’s easy to go “physical to virtual” or vice-versa without needing to disrupt the other side of the application.  Likewise it’s easy to have a set of services growing beyond the capacity of a single appliance, or migrating into (or out of) a cloud service, without prompting a redesign or redeployment of the client side.

 Again, a comparison with the #2 vendor is illuminating. A casual examination of their WAN optimization product line would suggest a similar kind of breadth and agility. They have a variety of packages of WAN optimization technology. But it turns out that the commonality is more marketecture than architecture.  That is, they use a common branding for what are actually 3 very-different classes of products: what we might call “main”, “mobile”, and “express.”  The “mobile” products can’t interoperate at all with “main” products or with “express” products.  The “main” products and “express” products can interoperate, but only at the lower level of function supported by the “express” products.  So actually trying to use the #2 vendor products for Riverbed-like agility can lead to all sorts of unpleasant surprises, as WAN optimization functionality either doesn’t work at all (mobile/main and mobile/express combinations) or works with sharply reduced functionality and performance (main/express combinations).

IT organizations need agility and flexibility to meet changing circumstances and demands.  The Riverbed single common architecture approach for WAN optimization helps ensure that Steelhead technology can help meet that need.

Bob Gilbert sits down with Zeus Kerravala from the Yankee Group to discuss application performance in the cloud.

 

 

Thank you for tuning in to the Federal IT Q&A series with Steve Riley, our friend for all things cloud. With this episode, we're wrapping up the series with one question and one answer. 

The question: what does the Federal Data Center Consolidation Initiative, Cloud First policy, data protection, mobility and telework, and desktop virtualization, have in common?

The answer: Distributed recentralization. In the below video, Steve provides a history on the computing models we've experienced (i.e., mainframe, client-server and centralized computing), and talks about the direction we're moving towards - distributed recentralization. The trend is that we're moving to fewer but larger data centers. And, compared to centralized computing (creation, access and process happening in one place), with distributed decentralization, access and creation are happening in one place, and processing and storage are happening in another place. Also, with fewer data centers, these two activities are occurring at even greater distances in the past ten years. 

This is why adding a layer of intelligence to networks is critical.

 

Actually, there is one more question. What topics — within the realm of IT performance — would you like to see from us?  

 

Riverbed is looking for customers that are interested in extending their Steelhead WAN optimization to SaaS applications such as Office 365, Salesforce.com, and Google Apps.

This groundbreaking technology is a joint effort from both Riverbed and Akamai and for existing Steelhead customers, it requires no new hardware. If you are interested in participating in the SaaS acceleration beta, please email Bob Gilbert: bob@riverbed.com.

 

Owen Garrett, Director of Product Management for Riverbed's Stingray line of asymmetric optimization products, provides an overview of the Stingray Traffic Manager.